'AWS Lake Formation: (AccessDeniedException) when calling the GetTable operation: Insufficient Lake Formation permission(s) on table
I have implemented LakeFormation on my data bucket.
I have a step function in which one step consists of running a GlueJob that reads and writes to the data catalog.
I have upgraded my DataLake permissions as reported here.
The Service Role that runs my Step Function has a root-type policy (granted just for debugging this issue):
Statement:
- Effect: "Allow"
Action:
- "*"
Resource:
- "*"
On lake formation the service role has:
- Administrator Rights
- Database Creation rights (and Grantable)
- Data Location access to the entire bucket (and Grantable)
- Super rights on read and write Database (and Grantable)
- Super rights on ALL tables within above Databases (and Grantable).
The bucket is not encrypted.
But, somehow, its access to the tables is denied with the error:
(AccessDeniedException) when calling the GetTable operation: Insufficient Lake Formation permission(s) on table
What's really strange is that the Glue Job succeeds when writing to some tables, and fails on others. And there is no real substantial difference across tables: all of them are under the same S3 prefix, parquet files, partitioned on the same key.
Given the abundance of permissions granted, I am really clueless about what is causing the error.
Please, send help.
amazon-web-services
amazon-s3Sources
This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.
Source: Stack Overflow
| Solution | Source |
|---|