Facing issue while creating a table in Athena

Question

© Exception in User Class: org.apache.spark.sql.catalyst.analysis.AccessControlException : User:
arn:aws:sts::awsaccoundid:assumedRole/IAMRole/GlueJobRunnerSessionisnotauthorizedto perform: glue:CreateTable on resource: arn:aws:glue:us-east-1:glueaccountid:table/_database/tablename because no identity-based policy allows the glue:CreateTable action (Service: AWSGlue; Status Code: 400; Error Code:
AccessDeniedException;) and my code is def createTable (spark: SparkSession, dbName: String, tableName: String, s3FileLocation: Strin
var tableDescription: String = ""
var schemaString : String = ""
if (tableName == "xyz") {
tableDescription = "Global Auth Login"
schemaString = schema. Tablenameschema.fields
.map(field => field.name.replaceAl("""^_""", "")
.concat (" ") . concat (field. dataType. typeName match {
case
"timestamp" => "string" case "Long" => "string" case "boolean" => "string" case smt => smt}))
.mkString(" , 
") }
spark.sql(s"DROP TABLE IF EXISTS ${dbName].${tableName]")
val tableQuery = s"""
|CREATE EXTERNAL TABLE IF NOT EXISTS ${dbName} .$(tableName] (${schemaString)
ISTORED AS PARQUET
¡COMMENT '${tableDescription]'
|LOCATION '$(s3FileLocation}"
ITBLPROPERTIES ("skip.header . line.count" = "¡") www.stripMargin spark.sql(tableQuery)

Answer

Hi Madhu,

From the error message it seems that permissions to create table is missing to IAM role.

Please refer **CREATE TABLE** section at [Fine-grained access to databases and tables in the AWS Glue Data Catalog](https://docs.aws.amazon.com/athena/latest/ug/fine-grained-access-to-glue-resources.html) and add these permissions to IAM role being used here.

Once you add these permissions to respective IAM role either by adding a new policy to role or updating one of the already attached policy to this role, this error would be resolved.

Hope you find this information helpful.

Comment here if you have additional questions, happy to help.

Abhishek

Facing issue while creating a table in Athena

相關內容