2017/04/07 - Amazon Redshift - 1 new 6 updated api methods
Changes This update adds the GetClusterCredentials API which is used to get temporary login credentials to the cluster. AccountWithRestoreAccess now has a new member AccountAlias, this is the identifier of the AWS support account authorized to restore the specified snapshot. This is added to support the feature where the customer can share their snapshot with the Amazon Redshift Support Account without having to manually specify the AWS Redshift Service account ID on the AWS Console/API.
Returns a database user name and temporary password with temporary authorization to log in to an Amazon Redshift database. The action returns the database user name prefixed with IAM: if AutoCreate is False or IAMA: if AutoCreate is True . You can optionally specify one or more database user groups that the user will join at log in. By default, the temporary credentials expire in 900 seconds. You can optionally specify a duration between 900 seconds (15 minutes) and 3600 seconds (60 minutes). For more information, see Generating IAM Database User Credentials in the Amazon Redshift Cluster Management Guide.
The IAM user or role that executes GetClusterCredentials must have an IAM policy attached that allows the redshift:GetClusterCredentials action with access to the dbuser resource on the cluster. The user name specified for dbuser in the IAM policy and the user name specified for the DbUser parameter must match.
If the DbGroups parameter is specified, the IAM policy must allow the redshift:JoinGroup action with access to the listed dbgroups .
In addition, if the AutoCreate parameter is set to True , then the policy must include the redshift:CreateClusterUser privilege.
If the DbName parameter is specified, the IAM policy must allow access to the resource dbname for the specified database name.
See also: AWS API Documentation
Request Syntax
client.get_cluster_credentials( DbUser='string', DbName='string', ClusterIdentifier='string', DurationSeconds=123, AutoCreate=True|False, DbGroups=[ 'string', ] )
string
[REQUIRED]
The name of a database user. If a user name matching DbUser exists in the database, the temporary user credentials have the same permissions as the existing user. If DbUser doesn't exist in the database and Autocreate is True , a new user is created using the value for DbUser with PUBLIC permissions. If a database user matching the value for DbUser doesn't exist and Autocreate is False , then the command succeeds but the connection attempt will fail because the user doesn't exist in the database.
For more information, see CREATE USER in the Amazon Redshift Database Developer Guide.
Constraints:
Must be 1 to 128 alphanumeric characters or hyphens
Must contain only lowercase letters.
First character must be a letter.
Must not contain a colon ( : ) or slash ( / ).
Cannot be a reserved word. A list of reserved words can be found in Reserved Words in the Amazon Redshift Database Developer Guide.
string
The name of a database that DbUser is authorized to log on to. If DbName is not specified, DbUser can log in to any existing database.
Constraints:
Must be 1 to 64 alphanumeric characters or hyphens
Must contain only lowercase letters.
Cannot be a reserved word. A list of reserved words can be found in Reserved Words in the Amazon Redshift Database Developer Guide.
string
[REQUIRED]
The unique identifier of the cluster that contains the database for which your are requesting credentials. This parameter is case sensitive.
integer
The number of seconds until the returned temporary password expires.
Constraint: minimum 900, maximum 3600.
Default: 900
boolean
Create a database user with the name specified for DbUser if one does not exist.
list
A list of the names of existing database groups that DbUser will join for the current session. If not specified, the new user is added only to PUBLIC.
(string) --
dict
Response Syntax
{ 'DbUser': 'string', 'DbPassword': 'string', 'Expiration': datetime(2015, 1, 1) }
Response Structure
(dict) --
Temporary credentials with authorization to log in to an Amazon Redshift database.
DbUser (string) --
A database user name that is authorized to log on to the database DbName using the password DbPassword . If the DbGroups parameter is specifed, DbUser is added to the listed groups for the current session. The user name is prefixed with IAM: for an existing user name or IAMA: if the user was auto-created.
DbPassword (string) --
A temporary password that authorizes the user name returned by DbUser to log on to the database DbName .
Expiration (datetime) --
The date and time DbPassword expires.
{'Snapshot': {'AccountsWithRestoreAccess': {'AccountAlias': 'string'}}}
Authorizes the specified AWS customer account to restore the specified snapshot.
For more information about working with snapshots, go to Amazon Redshift Snapshots in the Amazon Redshift Cluster Management Guide .
See also: AWS API Documentation
Request Syntax
client.authorize_snapshot_access( SnapshotIdentifier='string', SnapshotClusterIdentifier='string', AccountWithRestoreAccess='string' )
string
[REQUIRED]
The identifier of the snapshot the account is authorized to restore.
string
The identifier of the cluster the snapshot was created from. This parameter is required if your IAM user has a policy containing a snapshot resource element that specifies anything other than * for the cluster name.
string
[REQUIRED]
The identifier of the AWS customer account authorized to restore the specified snapshot.
To share a snapshot with AWS support, specify amazon-redshift-support.
dict
Response Syntax
{ 'Snapshot': { 'SnapshotIdentifier': 'string', 'ClusterIdentifier': 'string', 'SnapshotCreateTime': datetime(2015, 1, 1), 'Status': 'string', 'Port': 123, 'AvailabilityZone': 'string', 'ClusterCreateTime': datetime(2015, 1, 1), 'MasterUsername': 'string', 'ClusterVersion': 'string', 'SnapshotType': 'string', 'NodeType': 'string', 'NumberOfNodes': 123, 'DBName': 'string', 'VpcId': 'string', 'Encrypted': True|False, 'KmsKeyId': 'string', 'EncryptedWithHSM': True|False, 'AccountsWithRestoreAccess': [ { 'AccountId': 'string', 'AccountAlias': 'string' }, ], 'OwnerAccount': 'string', 'TotalBackupSizeInMegaBytes': 123.0, 'ActualIncrementalBackupSizeInMegaBytes': 123.0, 'BackupProgressInMegaBytes': 123.0, 'CurrentBackupRateInMegaBytesPerSecond': 123.0, 'EstimatedSecondsToCompletion': 123, 'ElapsedTimeInSeconds': 123, 'SourceRegion': 'string', 'Tags': [ { 'Key': 'string', 'Value': 'string' }, ], 'RestorableNodeTypes': [ 'string', ], 'EnhancedVpcRouting': True|False } }
Response Structure
(dict) --
Snapshot (dict) --
Describes a snapshot.
SnapshotIdentifier (string) --
The snapshot identifier that is provided in the request.
ClusterIdentifier (string) --
The identifier of the cluster for which the snapshot was taken.
SnapshotCreateTime (datetime) --
The time (UTC) when Amazon Redshift began the snapshot. A snapshot contains a copy of the cluster data as of this exact time.
Status (string) --
The snapshot status. The value of the status depends on the API operation used.
CreateClusterSnapshot and CopyClusterSnapshot returns status as "creating".
DescribeClusterSnapshots returns status as "creating", "available", "final snapshot", or "failed".
DeleteClusterSnapshot returns status as "deleted".
Port (integer) --
The port that the cluster is listening on.
AvailabilityZone (string) --
The Availability Zone in which the cluster was created.
ClusterCreateTime (datetime) --
The time (UTC) when the cluster was originally created.
MasterUsername (string) --
The master user name for the cluster.
ClusterVersion (string) --
The version ID of the Amazon Redshift engine that is running on the cluster.
SnapshotType (string) --
The snapshot type. Snapshots created using CreateClusterSnapshot and CopyClusterSnapshot will be of type "manual".
NodeType (string) --
The node type of the nodes in the cluster.
NumberOfNodes (integer) --
The number of nodes in the cluster.
DBName (string) --
The name of the database that was created when the cluster was created.
VpcId (string) --
The VPC identifier of the cluster if the snapshot is from a cluster in a VPC. Otherwise, this field is not in the output.
Encrypted (boolean) --
If true , the data in the snapshot is encrypted at rest.
KmsKeyId (string) --
The AWS Key Management Service (KMS) key ID of the encryption key that was used to encrypt data in the cluster from which the snapshot was taken.
EncryptedWithHSM (boolean) --
A boolean that indicates whether the snapshot data is encrypted using the HSM keys of the source cluster. true indicates that the data is encrypted using HSM keys.
AccountsWithRestoreAccess (list) --
A list of the AWS customer accounts authorized to restore the snapshot. Returns null if no accounts are authorized. Visible only to the snapshot owner.
(dict) --
Describes an AWS customer account authorized to restore a snapshot.
AccountId (string) --
The identifier of an AWS customer account authorized to restore a snapshot.
AccountAlias (string) --
The identifier of an AWS support account authorized to restore a snapshot. For AWS support, the identifier is amazon-redshift-support .
OwnerAccount (string) --
For manual snapshots, the AWS customer account used to create or copy the snapshot. For automatic snapshots, the owner of the cluster. The owner can perform all snapshot actions, such as sharing a manual snapshot.
TotalBackupSizeInMegaBytes (float) --
The size of the complete set of backup data that would be used to restore the cluster.
ActualIncrementalBackupSizeInMegaBytes (float) --
The size of the incremental backup.
BackupProgressInMegaBytes (float) --
The number of megabytes that have been transferred to the snapshot backup.
CurrentBackupRateInMegaBytesPerSecond (float) --
The number of megabytes per second being transferred to the snapshot backup. Returns 0 for a completed backup.
EstimatedSecondsToCompletion (integer) --
The estimate of the time remaining before the snapshot backup will complete. Returns 0 for a completed backup.
ElapsedTimeInSeconds (integer) --
The amount of time an in-progress snapshot backup has been running, or the amount of time it took a completed backup to finish.
SourceRegion (string) --
The source region from which the snapshot was copied.
Tags (list) --
The list of tags for the cluster snapshot.
(dict) --
A tag consisting of a name/value pair for a resource.
Key (string) --
The key, or name, for the resource tag.
Value (string) --
The value for the resource tag.
RestorableNodeTypes (list) --
The list of node types that this cluster snapshot is able to restore into.
(string) --
EnhancedVpcRouting (boolean) --
An option that specifies whether to create the cluster with enhanced VPC routing enabled. To create a cluster that uses enhanced VPC routing, the cluster must be in a VPC. For more information, see Enhanced VPC Routing in the Amazon Redshift Cluster Management Guide.
If this option is true , enhanced VPC routing is enabled.
Default: false
{'Snapshot': {'AccountsWithRestoreAccess': {'AccountAlias': 'string'}}}
Copies the specified automated cluster snapshot to a new manual cluster snapshot. The source must be an automated snapshot and it must be in the available state.
When you delete a cluster, Amazon Redshift deletes any automated snapshots of the cluster. Also, when the retention period of the snapshot expires, Amazon Redshift automatically deletes it. If you want to keep an automated snapshot for a longer period, you can make a manual copy of the snapshot. Manual snapshots are retained until you delete them.
For more information about working with snapshots, go to Amazon Redshift Snapshots in the Amazon Redshift Cluster Management Guide .
See also: AWS API Documentation
Request Syntax
client.copy_cluster_snapshot( SourceSnapshotIdentifier='string', SourceSnapshotClusterIdentifier='string', TargetSnapshotIdentifier='string' )
string
[REQUIRED]
The identifier for the source snapshot.
Constraints:
Must be the identifier for a valid automated snapshot whose state is available .
string
The identifier of the cluster the source snapshot was created from. This parameter is required if your IAM user has a policy containing a snapshot resource element that specifies anything other than * for the cluster name.
Constraints:
Must be the identifier for a valid cluster.
string
[REQUIRED]
The identifier given to the new manual snapshot.
Constraints:
Cannot be null, empty, or blank.
Must contain from 1 to 255 alphanumeric characters or hyphens.
First character must be a letter.
Cannot end with a hyphen or contain two consecutive hyphens.
Must be unique for the AWS account that is making the request.
dict
Response Syntax
{ 'Snapshot': { 'SnapshotIdentifier': 'string', 'ClusterIdentifier': 'string', 'SnapshotCreateTime': datetime(2015, 1, 1), 'Status': 'string', 'Port': 123, 'AvailabilityZone': 'string', 'ClusterCreateTime': datetime(2015, 1, 1), 'MasterUsername': 'string', 'ClusterVersion': 'string', 'SnapshotType': 'string', 'NodeType': 'string', 'NumberOfNodes': 123, 'DBName': 'string', 'VpcId': 'string', 'Encrypted': True|False, 'KmsKeyId': 'string', 'EncryptedWithHSM': True|False, 'AccountsWithRestoreAccess': [ { 'AccountId': 'string', 'AccountAlias': 'string' }, ], 'OwnerAccount': 'string', 'TotalBackupSizeInMegaBytes': 123.0, 'ActualIncrementalBackupSizeInMegaBytes': 123.0, 'BackupProgressInMegaBytes': 123.0, 'CurrentBackupRateInMegaBytesPerSecond': 123.0, 'EstimatedSecondsToCompletion': 123, 'ElapsedTimeInSeconds': 123, 'SourceRegion': 'string', 'Tags': [ { 'Key': 'string', 'Value': 'string' }, ], 'RestorableNodeTypes': [ 'string', ], 'EnhancedVpcRouting': True|False } }
Response Structure
(dict) --
Snapshot (dict) --
Describes a snapshot.
SnapshotIdentifier (string) --
The snapshot identifier that is provided in the request.
ClusterIdentifier (string) --
The identifier of the cluster for which the snapshot was taken.
SnapshotCreateTime (datetime) --
The time (UTC) when Amazon Redshift began the snapshot. A snapshot contains a copy of the cluster data as of this exact time.
Status (string) --
The snapshot status. The value of the status depends on the API operation used.
CreateClusterSnapshot and CopyClusterSnapshot returns status as "creating".
DescribeClusterSnapshots returns status as "creating", "available", "final snapshot", or "failed".
DeleteClusterSnapshot returns status as "deleted".
Port (integer) --
The port that the cluster is listening on.
AvailabilityZone (string) --
The Availability Zone in which the cluster was created.
ClusterCreateTime (datetime) --
The time (UTC) when the cluster was originally created.
MasterUsername (string) --
The master user name for the cluster.
ClusterVersion (string) --
The version ID of the Amazon Redshift engine that is running on the cluster.
SnapshotType (string) --
The snapshot type. Snapshots created using CreateClusterSnapshot and CopyClusterSnapshot will be of type "manual".
NodeType (string) --
The node type of the nodes in the cluster.
NumberOfNodes (integer) --
The number of nodes in the cluster.
DBName (string) --
The name of the database that was created when the cluster was created.
VpcId (string) --
The VPC identifier of the cluster if the snapshot is from a cluster in a VPC. Otherwise, this field is not in the output.
Encrypted (boolean) --
If true , the data in the snapshot is encrypted at rest.
KmsKeyId (string) --
The AWS Key Management Service (KMS) key ID of the encryption key that was used to encrypt data in the cluster from which the snapshot was taken.
EncryptedWithHSM (boolean) --
A boolean that indicates whether the snapshot data is encrypted using the HSM keys of the source cluster. true indicates that the data is encrypted using HSM keys.
AccountsWithRestoreAccess (list) --
A list of the AWS customer accounts authorized to restore the snapshot. Returns null if no accounts are authorized. Visible only to the snapshot owner.
(dict) --
Describes an AWS customer account authorized to restore a snapshot.
AccountId (string) --
The identifier of an AWS customer account authorized to restore a snapshot.
AccountAlias (string) --
The identifier of an AWS support account authorized to restore a snapshot. For AWS support, the identifier is amazon-redshift-support .
OwnerAccount (string) --
For manual snapshots, the AWS customer account used to create or copy the snapshot. For automatic snapshots, the owner of the cluster. The owner can perform all snapshot actions, such as sharing a manual snapshot.
TotalBackupSizeInMegaBytes (float) --
The size of the complete set of backup data that would be used to restore the cluster.
ActualIncrementalBackupSizeInMegaBytes (float) --
The size of the incremental backup.
BackupProgressInMegaBytes (float) --
The number of megabytes that have been transferred to the snapshot backup.
CurrentBackupRateInMegaBytesPerSecond (float) --
The number of megabytes per second being transferred to the snapshot backup. Returns 0 for a completed backup.
EstimatedSecondsToCompletion (integer) --
The estimate of the time remaining before the snapshot backup will complete. Returns 0 for a completed backup.
ElapsedTimeInSeconds (integer) --
The amount of time an in-progress snapshot backup has been running, or the amount of time it took a completed backup to finish.
SourceRegion (string) --
The source region from which the snapshot was copied.
Tags (list) --
The list of tags for the cluster snapshot.
(dict) --
A tag consisting of a name/value pair for a resource.
Key (string) --
The key, or name, for the resource tag.
Value (string) --
The value for the resource tag.
RestorableNodeTypes (list) --
The list of node types that this cluster snapshot is able to restore into.
(string) --
EnhancedVpcRouting (boolean) --
An option that specifies whether to create the cluster with enhanced VPC routing enabled. To create a cluster that uses enhanced VPC routing, the cluster must be in a VPC. For more information, see Enhanced VPC Routing in the Amazon Redshift Cluster Management Guide.
If this option is true , enhanced VPC routing is enabled.
Default: false
{'Snapshot': {'AccountsWithRestoreAccess': {'AccountAlias': 'string'}}}
Creates a manual snapshot of the specified cluster. The cluster must be in the available state.
For more information about working with snapshots, go to Amazon Redshift Snapshots in the Amazon Redshift Cluster Management Guide .
See also: AWS API Documentation
Request Syntax
client.create_cluster_snapshot( SnapshotIdentifier='string', ClusterIdentifier='string', Tags=[ { 'Key': 'string', 'Value': 'string' }, ] )
string
[REQUIRED]
A unique identifier for the snapshot that you are requesting. This identifier must be unique for all snapshots within the AWS account.
Constraints:
Cannot be null, empty, or blank
Must contain from 1 to 255 alphanumeric characters or hyphens
First character must be a letter
Cannot end with a hyphen or contain two consecutive hyphens
Example: my-snapshot-id
string
[REQUIRED]
The cluster identifier for which you want a snapshot.
list
A list of tag instances.
(dict) --
A tag consisting of a name/value pair for a resource.
Key (string) --
The key, or name, for the resource tag.
Value (string) --
The value for the resource tag.
dict
Response Syntax
{ 'Snapshot': { 'SnapshotIdentifier': 'string', 'ClusterIdentifier': 'string', 'SnapshotCreateTime': datetime(2015, 1, 1), 'Status': 'string', 'Port': 123, 'AvailabilityZone': 'string', 'ClusterCreateTime': datetime(2015, 1, 1), 'MasterUsername': 'string', 'ClusterVersion': 'string', 'SnapshotType': 'string', 'NodeType': 'string', 'NumberOfNodes': 123, 'DBName': 'string', 'VpcId': 'string', 'Encrypted': True|False, 'KmsKeyId': 'string', 'EncryptedWithHSM': True|False, 'AccountsWithRestoreAccess': [ { 'AccountId': 'string', 'AccountAlias': 'string' }, ], 'OwnerAccount': 'string', 'TotalBackupSizeInMegaBytes': 123.0, 'ActualIncrementalBackupSizeInMegaBytes': 123.0, 'BackupProgressInMegaBytes': 123.0, 'CurrentBackupRateInMegaBytesPerSecond': 123.0, 'EstimatedSecondsToCompletion': 123, 'ElapsedTimeInSeconds': 123, 'SourceRegion': 'string', 'Tags': [ { 'Key': 'string', 'Value': 'string' }, ], 'RestorableNodeTypes': [ 'string', ], 'EnhancedVpcRouting': True|False } }
Response Structure
(dict) --
Snapshot (dict) --
Describes a snapshot.
SnapshotIdentifier (string) --
The snapshot identifier that is provided in the request.
ClusterIdentifier (string) --
The identifier of the cluster for which the snapshot was taken.
SnapshotCreateTime (datetime) --
The time (UTC) when Amazon Redshift began the snapshot. A snapshot contains a copy of the cluster data as of this exact time.
Status (string) --
The snapshot status. The value of the status depends on the API operation used.
CreateClusterSnapshot and CopyClusterSnapshot returns status as "creating".
DescribeClusterSnapshots returns status as "creating", "available", "final snapshot", or "failed".
DeleteClusterSnapshot returns status as "deleted".
Port (integer) --
The port that the cluster is listening on.
AvailabilityZone (string) --
The Availability Zone in which the cluster was created.
ClusterCreateTime (datetime) --
The time (UTC) when the cluster was originally created.
MasterUsername (string) --
The master user name for the cluster.
ClusterVersion (string) --
The version ID of the Amazon Redshift engine that is running on the cluster.
SnapshotType (string) --
The snapshot type. Snapshots created using CreateClusterSnapshot and CopyClusterSnapshot will be of type "manual".
NodeType (string) --
The node type of the nodes in the cluster.
NumberOfNodes (integer) --
The number of nodes in the cluster.
DBName (string) --
The name of the database that was created when the cluster was created.
VpcId (string) --
The VPC identifier of the cluster if the snapshot is from a cluster in a VPC. Otherwise, this field is not in the output.
Encrypted (boolean) --
If true , the data in the snapshot is encrypted at rest.
KmsKeyId (string) --
The AWS Key Management Service (KMS) key ID of the encryption key that was used to encrypt data in the cluster from which the snapshot was taken.
EncryptedWithHSM (boolean) --
A boolean that indicates whether the snapshot data is encrypted using the HSM keys of the source cluster. true indicates that the data is encrypted using HSM keys.
AccountsWithRestoreAccess (list) --
A list of the AWS customer accounts authorized to restore the snapshot. Returns null if no accounts are authorized. Visible only to the snapshot owner.
(dict) --
Describes an AWS customer account authorized to restore a snapshot.
AccountId (string) --
The identifier of an AWS customer account authorized to restore a snapshot.
AccountAlias (string) --
The identifier of an AWS support account authorized to restore a snapshot. For AWS support, the identifier is amazon-redshift-support .
OwnerAccount (string) --
For manual snapshots, the AWS customer account used to create or copy the snapshot. For automatic snapshots, the owner of the cluster. The owner can perform all snapshot actions, such as sharing a manual snapshot.
TotalBackupSizeInMegaBytes (float) --
The size of the complete set of backup data that would be used to restore the cluster.
ActualIncrementalBackupSizeInMegaBytes (float) --
The size of the incremental backup.
BackupProgressInMegaBytes (float) --
The number of megabytes that have been transferred to the snapshot backup.
CurrentBackupRateInMegaBytesPerSecond (float) --
The number of megabytes per second being transferred to the snapshot backup. Returns 0 for a completed backup.
EstimatedSecondsToCompletion (integer) --
The estimate of the time remaining before the snapshot backup will complete. Returns 0 for a completed backup.
ElapsedTimeInSeconds (integer) --
The amount of time an in-progress snapshot backup has been running, or the amount of time it took a completed backup to finish.
SourceRegion (string) --
The source region from which the snapshot was copied.
Tags (list) --
The list of tags for the cluster snapshot.
(dict) --
A tag consisting of a name/value pair for a resource.
Key (string) --
The key, or name, for the resource tag.
Value (string) --
The value for the resource tag.
RestorableNodeTypes (list) --
The list of node types that this cluster snapshot is able to restore into.
(string) --
EnhancedVpcRouting (boolean) --
An option that specifies whether to create the cluster with enhanced VPC routing enabled. To create a cluster that uses enhanced VPC routing, the cluster must be in a VPC. For more information, see Enhanced VPC Routing in the Amazon Redshift Cluster Management Guide.
If this option is true , enhanced VPC routing is enabled.
Default: false
{'Snapshot': {'AccountsWithRestoreAccess': {'AccountAlias': 'string'}}}
Deletes the specified manual snapshot. The snapshot must be in the available state, with no other users authorized to access the snapshot.
Unlike automated snapshots, manual snapshots are retained even after you delete your cluster. Amazon Redshift does not delete your manual snapshots. You must delete manual snapshot explicitly to avoid getting charged. If other accounts are authorized to access the snapshot, you must revoke all of the authorizations before you can delete the snapshot.
See also: AWS API Documentation
Request Syntax
client.delete_cluster_snapshot( SnapshotIdentifier='string', SnapshotClusterIdentifier='string' )
string
[REQUIRED]
The unique identifier of the manual snapshot to be deleted.
Constraints: Must be the name of an existing snapshot that is in the available state.
string
The unique identifier of the cluster the snapshot was created from. This parameter is required if your IAM user has a policy containing a snapshot resource element that specifies anything other than * for the cluster name.
Constraints: Must be the name of valid cluster.
dict
Response Syntax
{ 'Snapshot': { 'SnapshotIdentifier': 'string', 'ClusterIdentifier': 'string', 'SnapshotCreateTime': datetime(2015, 1, 1), 'Status': 'string', 'Port': 123, 'AvailabilityZone': 'string', 'ClusterCreateTime': datetime(2015, 1, 1), 'MasterUsername': 'string', 'ClusterVersion': 'string', 'SnapshotType': 'string', 'NodeType': 'string', 'NumberOfNodes': 123, 'DBName': 'string', 'VpcId': 'string', 'Encrypted': True|False, 'KmsKeyId': 'string', 'EncryptedWithHSM': True|False, 'AccountsWithRestoreAccess': [ { 'AccountId': 'string', 'AccountAlias': 'string' }, ], 'OwnerAccount': 'string', 'TotalBackupSizeInMegaBytes': 123.0, 'ActualIncrementalBackupSizeInMegaBytes': 123.0, 'BackupProgressInMegaBytes': 123.0, 'CurrentBackupRateInMegaBytesPerSecond': 123.0, 'EstimatedSecondsToCompletion': 123, 'ElapsedTimeInSeconds': 123, 'SourceRegion': 'string', 'Tags': [ { 'Key': 'string', 'Value': 'string' }, ], 'RestorableNodeTypes': [ 'string', ], 'EnhancedVpcRouting': True|False } }
Response Structure
(dict) --
Snapshot (dict) --
Describes a snapshot.
SnapshotIdentifier (string) --
The snapshot identifier that is provided in the request.
ClusterIdentifier (string) --
The identifier of the cluster for which the snapshot was taken.
SnapshotCreateTime (datetime) --
The time (UTC) when Amazon Redshift began the snapshot. A snapshot contains a copy of the cluster data as of this exact time.
Status (string) --
The snapshot status. The value of the status depends on the API operation used.
CreateClusterSnapshot and CopyClusterSnapshot returns status as "creating".
DescribeClusterSnapshots returns status as "creating", "available", "final snapshot", or "failed".
DeleteClusterSnapshot returns status as "deleted".
Port (integer) --
The port that the cluster is listening on.
AvailabilityZone (string) --
The Availability Zone in which the cluster was created.
ClusterCreateTime (datetime) --
The time (UTC) when the cluster was originally created.
MasterUsername (string) --
The master user name for the cluster.
ClusterVersion (string) --
The version ID of the Amazon Redshift engine that is running on the cluster.
SnapshotType (string) --
The snapshot type. Snapshots created using CreateClusterSnapshot and CopyClusterSnapshot will be of type "manual".
NodeType (string) --
The node type of the nodes in the cluster.
NumberOfNodes (integer) --
The number of nodes in the cluster.
DBName (string) --
The name of the database that was created when the cluster was created.
VpcId (string) --
The VPC identifier of the cluster if the snapshot is from a cluster in a VPC. Otherwise, this field is not in the output.
Encrypted (boolean) --
If true , the data in the snapshot is encrypted at rest.
KmsKeyId (string) --
The AWS Key Management Service (KMS) key ID of the encryption key that was used to encrypt data in the cluster from which the snapshot was taken.
EncryptedWithHSM (boolean) --
A boolean that indicates whether the snapshot data is encrypted using the HSM keys of the source cluster. true indicates that the data is encrypted using HSM keys.
AccountsWithRestoreAccess (list) --
A list of the AWS customer accounts authorized to restore the snapshot. Returns null if no accounts are authorized. Visible only to the snapshot owner.
(dict) --
Describes an AWS customer account authorized to restore a snapshot.
AccountId (string) --
The identifier of an AWS customer account authorized to restore a snapshot.
AccountAlias (string) --
The identifier of an AWS support account authorized to restore a snapshot. For AWS support, the identifier is amazon-redshift-support .
OwnerAccount (string) --
For manual snapshots, the AWS customer account used to create or copy the snapshot. For automatic snapshots, the owner of the cluster. The owner can perform all snapshot actions, such as sharing a manual snapshot.
TotalBackupSizeInMegaBytes (float) --
The size of the complete set of backup data that would be used to restore the cluster.
ActualIncrementalBackupSizeInMegaBytes (float) --
The size of the incremental backup.
BackupProgressInMegaBytes (float) --
The number of megabytes that have been transferred to the snapshot backup.
CurrentBackupRateInMegaBytesPerSecond (float) --
The number of megabytes per second being transferred to the snapshot backup. Returns 0 for a completed backup.
EstimatedSecondsToCompletion (integer) --
The estimate of the time remaining before the snapshot backup will complete. Returns 0 for a completed backup.
ElapsedTimeInSeconds (integer) --
The amount of time an in-progress snapshot backup has been running, or the amount of time it took a completed backup to finish.
SourceRegion (string) --
The source region from which the snapshot was copied.
Tags (list) --
The list of tags for the cluster snapshot.
(dict) --
A tag consisting of a name/value pair for a resource.
Key (string) --
The key, or name, for the resource tag.
Value (string) --
The value for the resource tag.
RestorableNodeTypes (list) --
The list of node types that this cluster snapshot is able to restore into.
(string) --
EnhancedVpcRouting (boolean) --
An option that specifies whether to create the cluster with enhanced VPC routing enabled. To create a cluster that uses enhanced VPC routing, the cluster must be in a VPC. For more information, see Enhanced VPC Routing in the Amazon Redshift Cluster Management Guide.
If this option is true , enhanced VPC routing is enabled.
Default: false
{'Snapshots': {'AccountsWithRestoreAccess': {'AccountAlias': 'string'}}}
Returns one or more snapshot objects, which contain metadata about your cluster snapshots. By default, this operation returns information about all snapshots of all clusters that are owned by you AWS customer account. No information is returned for snapshots owned by inactive AWS customer accounts.
If you specify both tag keys and tag values in the same request, Amazon Redshift returns all snapshots that match any combination of the specified keys and values. For example, if you have owner and environment for tag keys, and admin and test for tag values, all snapshots that have any combination of those values are returned. Only snapshots that you own are returned in the response; shared snapshots are not returned with the tag key and tag value request parameters.
If both tag keys and values are omitted from the request, snapshots are returned regardless of whether they have tag keys or values associated with them.
See also: AWS API Documentation
Request Syntax
client.describe_cluster_snapshots( ClusterIdentifier='string', SnapshotIdentifier='string', SnapshotType='string', StartTime=datetime(2015, 1, 1), EndTime=datetime(2015, 1, 1), MaxRecords=123, Marker='string', OwnerAccount='string', TagKeys=[ 'string', ], TagValues=[ 'string', ] )
string
The identifier of the cluster for which information about snapshots is requested.
string
The snapshot identifier of the snapshot about which to return information.
string
The type of snapshots for which you are requesting information. By default, snapshots of all types are returned.
Valid Values: automated | manual
datetime
A value that requests only snapshots created at or after the specified time. The time value is specified in ISO 8601 format. For more information about ISO 8601, go to the ISO8601 Wikipedia page.
Example: 2012-07-16T18:00:00Z
datetime
A time value that requests only snapshots created at or before the specified time. The time value is specified in ISO 8601 format. For more information about ISO 8601, go to the ISO8601 Wikipedia page.
Example: 2012-07-16T18:00:00Z
integer
The maximum number of response records to return in each call. If the number of remaining response records exceeds the specified MaxRecords value, a value is returned in a marker field of the response. You can retrieve the next set of records by retrying the command with the returned marker value.
Default: 100
Constraints: minimum 20, maximum 100.
string
An optional parameter that specifies the starting point to return a set of response records. When the results of a DescribeClusterSnapshots request exceed the value specified in MaxRecords , AWS returns a value in the Marker field of the response. You can retrieve the next set of response records by providing the returned marker value in the Marker parameter and retrying the request.
string
The AWS customer account used to create or copy the snapshot. Use this field to filter the results to snapshots owned by a particular account. To describe snapshots you own, either specify your AWS customer account, or do not specify the parameter.
list
A tag key or keys for which you want to return all matching cluster snapshots that are associated with the specified key or keys. For example, suppose that you have snapshots that are tagged with keys called owner and environment . If you specify both of these tag keys in the request, Amazon Redshift returns a response with the snapshots that have either or both of these tag keys associated with them.
(string) --
list
A tag value or values for which you want to return all matching cluster snapshots that are associated with the specified tag value or values. For example, suppose that you have snapshots that are tagged with values called admin and test . If you specify both of these tag values in the request, Amazon Redshift returns a response with the snapshots that have either or both of these tag values associated with them.
(string) --
dict
Response Syntax
{ 'Marker': 'string', 'Snapshots': [ { 'SnapshotIdentifier': 'string', 'ClusterIdentifier': 'string', 'SnapshotCreateTime': datetime(2015, 1, 1), 'Status': 'string', 'Port': 123, 'AvailabilityZone': 'string', 'ClusterCreateTime': datetime(2015, 1, 1), 'MasterUsername': 'string', 'ClusterVersion': 'string', 'SnapshotType': 'string', 'NodeType': 'string', 'NumberOfNodes': 123, 'DBName': 'string', 'VpcId': 'string', 'Encrypted': True|False, 'KmsKeyId': 'string', 'EncryptedWithHSM': True|False, 'AccountsWithRestoreAccess': [ { 'AccountId': 'string', 'AccountAlias': 'string' }, ], 'OwnerAccount': 'string', 'TotalBackupSizeInMegaBytes': 123.0, 'ActualIncrementalBackupSizeInMegaBytes': 123.0, 'BackupProgressInMegaBytes': 123.0, 'CurrentBackupRateInMegaBytesPerSecond': 123.0, 'EstimatedSecondsToCompletion': 123, 'ElapsedTimeInSeconds': 123, 'SourceRegion': 'string', 'Tags': [ { 'Key': 'string', 'Value': 'string' }, ], 'RestorableNodeTypes': [ 'string', ], 'EnhancedVpcRouting': True|False }, ] }
Response Structure
(dict) --
Contains the output from the DescribeClusterSnapshots action.
Marker (string) --
A value that indicates the starting point for the next set of response records in a subsequent request. If a value is returned in a response, you can retrieve the next set of records by providing this returned marker value in the Marker parameter and retrying the command. If the Marker field is empty, all response records have been retrieved for the request.
Snapshots (list) --
A list of Snapshot instances.
(dict) --
Describes a snapshot.
SnapshotIdentifier (string) --
The snapshot identifier that is provided in the request.
ClusterIdentifier (string) --
The identifier of the cluster for which the snapshot was taken.
SnapshotCreateTime (datetime) --
The time (UTC) when Amazon Redshift began the snapshot. A snapshot contains a copy of the cluster data as of this exact time.
Status (string) --
The snapshot status. The value of the status depends on the API operation used.
CreateClusterSnapshot and CopyClusterSnapshot returns status as "creating".
DescribeClusterSnapshots returns status as "creating", "available", "final snapshot", or "failed".
DeleteClusterSnapshot returns status as "deleted".
Port (integer) --
The port that the cluster is listening on.
AvailabilityZone (string) --
The Availability Zone in which the cluster was created.
ClusterCreateTime (datetime) --
The time (UTC) when the cluster was originally created.
MasterUsername (string) --
The master user name for the cluster.
ClusterVersion (string) --
The version ID of the Amazon Redshift engine that is running on the cluster.
SnapshotType (string) --
The snapshot type. Snapshots created using CreateClusterSnapshot and CopyClusterSnapshot will be of type "manual".
NodeType (string) --
The node type of the nodes in the cluster.
NumberOfNodes (integer) --
The number of nodes in the cluster.
DBName (string) --
The name of the database that was created when the cluster was created.
VpcId (string) --
The VPC identifier of the cluster if the snapshot is from a cluster in a VPC. Otherwise, this field is not in the output.
Encrypted (boolean) --
If true , the data in the snapshot is encrypted at rest.
KmsKeyId (string) --
The AWS Key Management Service (KMS) key ID of the encryption key that was used to encrypt data in the cluster from which the snapshot was taken.
EncryptedWithHSM (boolean) --
A boolean that indicates whether the snapshot data is encrypted using the HSM keys of the source cluster. true indicates that the data is encrypted using HSM keys.
AccountsWithRestoreAccess (list) --
A list of the AWS customer accounts authorized to restore the snapshot. Returns null if no accounts are authorized. Visible only to the snapshot owner.
(dict) --
Describes an AWS customer account authorized to restore a snapshot.
AccountId (string) --
The identifier of an AWS customer account authorized to restore a snapshot.
AccountAlias (string) --
The identifier of an AWS support account authorized to restore a snapshot. For AWS support, the identifier is amazon-redshift-support .
OwnerAccount (string) --
For manual snapshots, the AWS customer account used to create or copy the snapshot. For automatic snapshots, the owner of the cluster. The owner can perform all snapshot actions, such as sharing a manual snapshot.
TotalBackupSizeInMegaBytes (float) --
The size of the complete set of backup data that would be used to restore the cluster.
ActualIncrementalBackupSizeInMegaBytes (float) --
The size of the incremental backup.
BackupProgressInMegaBytes (float) --
The number of megabytes that have been transferred to the snapshot backup.
CurrentBackupRateInMegaBytesPerSecond (float) --
The number of megabytes per second being transferred to the snapshot backup. Returns 0 for a completed backup.
EstimatedSecondsToCompletion (integer) --
The estimate of the time remaining before the snapshot backup will complete. Returns 0 for a completed backup.
ElapsedTimeInSeconds (integer) --
The amount of time an in-progress snapshot backup has been running, or the amount of time it took a completed backup to finish.
SourceRegion (string) --
The source region from which the snapshot was copied.
Tags (list) --
The list of tags for the cluster snapshot.
(dict) --
A tag consisting of a name/value pair for a resource.
Key (string) --
The key, or name, for the resource tag.
Value (string) --
The value for the resource tag.
RestorableNodeTypes (list) --
The list of node types that this cluster snapshot is able to restore into.
(string) --
EnhancedVpcRouting (boolean) --
An option that specifies whether to create the cluster with enhanced VPC routing enabled. To create a cluster that uses enhanced VPC routing, the cluster must be in a VPC. For more information, see Enhanced VPC Routing in the Amazon Redshift Cluster Management Guide.
If this option is true , enhanced VPC routing is enabled.
Default: false
{'Snapshot': {'AccountsWithRestoreAccess': {'AccountAlias': 'string'}}}
Removes the ability of the specified AWS customer account to restore the specified snapshot. If the account is currently restoring the snapshot, the restore will run to completion.
For more information about working with snapshots, go to Amazon Redshift Snapshots in the Amazon Redshift Cluster Management Guide .
See also: AWS API Documentation
Request Syntax
client.revoke_snapshot_access( SnapshotIdentifier='string', SnapshotClusterIdentifier='string', AccountWithRestoreAccess='string' )
string
[REQUIRED]
The identifier of the snapshot that the account can no longer access.
string
The identifier of the cluster the snapshot was created from. This parameter is required if your IAM user has a policy containing a snapshot resource element that specifies anything other than * for the cluster name.
string
[REQUIRED]
The identifier of the AWS customer account that can no longer restore the specified snapshot.
dict
Response Syntax
{ 'Snapshot': { 'SnapshotIdentifier': 'string', 'ClusterIdentifier': 'string', 'SnapshotCreateTime': datetime(2015, 1, 1), 'Status': 'string', 'Port': 123, 'AvailabilityZone': 'string', 'ClusterCreateTime': datetime(2015, 1, 1), 'MasterUsername': 'string', 'ClusterVersion': 'string', 'SnapshotType': 'string', 'NodeType': 'string', 'NumberOfNodes': 123, 'DBName': 'string', 'VpcId': 'string', 'Encrypted': True|False, 'KmsKeyId': 'string', 'EncryptedWithHSM': True|False, 'AccountsWithRestoreAccess': [ { 'AccountId': 'string', 'AccountAlias': 'string' }, ], 'OwnerAccount': 'string', 'TotalBackupSizeInMegaBytes': 123.0, 'ActualIncrementalBackupSizeInMegaBytes': 123.0, 'BackupProgressInMegaBytes': 123.0, 'CurrentBackupRateInMegaBytesPerSecond': 123.0, 'EstimatedSecondsToCompletion': 123, 'ElapsedTimeInSeconds': 123, 'SourceRegion': 'string', 'Tags': [ { 'Key': 'string', 'Value': 'string' }, ], 'RestorableNodeTypes': [ 'string', ], 'EnhancedVpcRouting': True|False } }
Response Structure
(dict) --
Snapshot (dict) --
Describes a snapshot.
SnapshotIdentifier (string) --
The snapshot identifier that is provided in the request.
ClusterIdentifier (string) --
The identifier of the cluster for which the snapshot was taken.
SnapshotCreateTime (datetime) --
The time (UTC) when Amazon Redshift began the snapshot. A snapshot contains a copy of the cluster data as of this exact time.
Status (string) --
The snapshot status. The value of the status depends on the API operation used.
CreateClusterSnapshot and CopyClusterSnapshot returns status as "creating".
DescribeClusterSnapshots returns status as "creating", "available", "final snapshot", or "failed".
DeleteClusterSnapshot returns status as "deleted".
Port (integer) --
The port that the cluster is listening on.
AvailabilityZone (string) --
The Availability Zone in which the cluster was created.
ClusterCreateTime (datetime) --
The time (UTC) when the cluster was originally created.
MasterUsername (string) --
The master user name for the cluster.
ClusterVersion (string) --
The version ID of the Amazon Redshift engine that is running on the cluster.
SnapshotType (string) --
The snapshot type. Snapshots created using CreateClusterSnapshot and CopyClusterSnapshot will be of type "manual".
NodeType (string) --
The node type of the nodes in the cluster.
NumberOfNodes (integer) --
The number of nodes in the cluster.
DBName (string) --
The name of the database that was created when the cluster was created.
VpcId (string) --
The VPC identifier of the cluster if the snapshot is from a cluster in a VPC. Otherwise, this field is not in the output.
Encrypted (boolean) --
If true , the data in the snapshot is encrypted at rest.
KmsKeyId (string) --
The AWS Key Management Service (KMS) key ID of the encryption key that was used to encrypt data in the cluster from which the snapshot was taken.
EncryptedWithHSM (boolean) --
A boolean that indicates whether the snapshot data is encrypted using the HSM keys of the source cluster. true indicates that the data is encrypted using HSM keys.
AccountsWithRestoreAccess (list) --
A list of the AWS customer accounts authorized to restore the snapshot. Returns null if no accounts are authorized. Visible only to the snapshot owner.
(dict) --
Describes an AWS customer account authorized to restore a snapshot.
AccountId (string) --
The identifier of an AWS customer account authorized to restore a snapshot.
AccountAlias (string) --
The identifier of an AWS support account authorized to restore a snapshot. For AWS support, the identifier is amazon-redshift-support .
OwnerAccount (string) --
For manual snapshots, the AWS customer account used to create or copy the snapshot. For automatic snapshots, the owner of the cluster. The owner can perform all snapshot actions, such as sharing a manual snapshot.
TotalBackupSizeInMegaBytes (float) --
The size of the complete set of backup data that would be used to restore the cluster.
ActualIncrementalBackupSizeInMegaBytes (float) --
The size of the incremental backup.
BackupProgressInMegaBytes (float) --
The number of megabytes that have been transferred to the snapshot backup.
CurrentBackupRateInMegaBytesPerSecond (float) --
The number of megabytes per second being transferred to the snapshot backup. Returns 0 for a completed backup.
EstimatedSecondsToCompletion (integer) --
The estimate of the time remaining before the snapshot backup will complete. Returns 0 for a completed backup.
ElapsedTimeInSeconds (integer) --
The amount of time an in-progress snapshot backup has been running, or the amount of time it took a completed backup to finish.
SourceRegion (string) --
The source region from which the snapshot was copied.
Tags (list) --
The list of tags for the cluster snapshot.
(dict) --
A tag consisting of a name/value pair for a resource.
Key (string) --
The key, or name, for the resource tag.
Value (string) --
The value for the resource tag.
RestorableNodeTypes (list) --
The list of node types that this cluster snapshot is able to restore into.
(string) --
EnhancedVpcRouting (boolean) --
An option that specifies whether to create the cluster with enhanced VPC routing enabled. To create a cluster that uses enhanced VPC routing, the cluster must be in a VPC. For more information, see Enhanced VPC Routing in the Amazon Redshift Cluster Management Guide.
If this option is true , enhanced VPC routing is enabled.
Default: false