@Generated public class RecipientFederationPoliciesAPI extends Object
For more information, see https://www.databricks.com/blog/announcing-oidc-token-federation-enhanced-delta-sharing-security and https://docs.databricks.com/en/delta-sharing/create-recipient-oidc-fed
| Constructor and Description |
|---|
RecipientFederationPoliciesAPI(ApiClient apiClient)
Regular-use constructor
|
RecipientFederationPoliciesAPI(RecipientFederationPoliciesService mock)
Constructor for mocks
|
| Modifier and Type | Method and Description |
|---|---|
FederationPolicy |
create(CreateFederationPolicyRequest request)
Create recipient federation policy.
|
FederationPolicy |
create(String recipientName,
FederationPolicy policy) |
void |
delete(DeleteFederationPolicyRequest request)
Delete recipient federation policy.
|
void |
delete(String recipientName,
String name) |
FederationPolicy |
getFederationPolicy(GetFederationPolicyRequest request)
Get recipient federation policy.
|
FederationPolicy |
getFederationPolicy(String recipientName,
String name) |
RecipientFederationPoliciesService |
impl() |
Iterable<FederationPolicy> |
list(ListFederationPoliciesRequest request)
List recipient federation policies.
|
Iterable<FederationPolicy> |
list(String recipientName) |
FederationPolicy |
update(String recipientName,
String name,
FederationPolicy policy) |
FederationPolicy |
update(UpdateFederationPolicyRequest request)
Update recipient federation policy.
|
public RecipientFederationPoliciesAPI(ApiClient apiClient)
public RecipientFederationPoliciesAPI(RecipientFederationPoliciesService mock)
public FederationPolicy create(String recipientName, FederationPolicy policy)
public FederationPolicy create(CreateFederationPolicyRequest request)
Create a federation policy for an OIDC_FEDERATION recipient for sharing data from Databricks to non-Databricks recipients. The caller must be the owner of the recipient. When sharing data from Databricks to non-Databricks clients, you can define a federation policy to authenticate non-Databricks recipients. The federation policy validates OIDC claims in federated tokens and is defined at the recipient level. This enables secretless sharing clients to authenticate using OIDC tokens.
Supported scenarios for federation policies: 1. **User-to-Machine (U2M) flow** (e.g., PowerBI): A user accesses a resource using their own identity. 2. **Machine-to-Machine (M2M) flow** (e.g., OAuth App): An OAuth App accesses a resource using its own identity, typically for tasks like running nightly jobs.
For an overview, refer to: - Blog post: Overview of feature: https://www.databricks.com/blog/announcing-oidc-token-federation-enhanced-delta-sharing-security
For detailed configuration guides based on your use case: - Creating a Federation Policy as a provider: https://docs.databricks.com/en/delta-sharing/create-recipient-oidc-fed - Configuration and usage for Machine-to-Machine (M2M) applications (e.g., Python Delta Sharing Client): https://docs.databricks.com/aws/en/delta-sharing/sharing-over-oidc-m2m - Configuration and usage for User-to-Machine (U2M) applications (e.g., PowerBI): https://docs.databricks.com/aws/en/delta-sharing/sharing-over-oidc-u2m
public void delete(DeleteFederationPolicyRequest request)
Deletes an existing federation policy for an OIDC_FEDERATION recipient. The caller must be the owner of the recipient.
public FederationPolicy getFederationPolicy(String recipientName, String name)
public FederationPolicy getFederationPolicy(GetFederationPolicyRequest request)
Reads an existing federation policy for an OIDC_FEDERATION recipient for sharing data from Databricks to non-Databricks recipients. The caller must have read access to the recipient.
public Iterable<FederationPolicy> list(String recipientName)
public Iterable<FederationPolicy> list(ListFederationPoliciesRequest request)
Lists federation policies for an OIDC_FEDERATION recipient for sharing data from Databricks to non-Databricks recipients. The caller must have read access to the recipient.
public FederationPolicy update(String recipientName, String name, FederationPolicy policy)
public FederationPolicy update(UpdateFederationPolicyRequest request)
Updates an existing federation policy for an OIDC_RECIPIENT. The caller must be the owner of the recipient.
public RecipientFederationPoliciesService impl()
Copyright © 2025. All rights reserved.