Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Inter region sharing is not allowed. #318

Closed
manjulaK opened this issue Feb 17, 2023 · 2 comments
Closed

Inter region sharing is not allowed. #318

manjulaK opened this issue Feb 17, 2023 · 2 comments
Labels
status: needs more info type: bug Something isn't working

Comments

@manjulaK
Copy link
Contributor

Describe the bug

It is not possible to share a data set from Account A (region A) to Account B (region B) . This is a critical requirement.

How to Reproduce

  1. create dataset in account A region 1
  2. request dataset from account b region 2
  3. the approval of table fails for cross region.

Expected behavior

No response

Your project

No response

Screenshots

No response

OS

unix

Python version

3.1

AWS data.all version

v1.3

Additional context

No response
@dlpzx dlpzx added type: bug Something isn't working status: needs more info labels Feb 20, 2023
@dlpzx
Copy link
Contributor

dlpzx commented Feb 20, 2023
edited
Loading

Hi @manjulaK, yes, this is a known limitation of Lake Formation. It is supposed to throw an error when a request is open from a different region, but I was able to reproduce that in fact is allows you to create the request.

In particular for sharing issues, I highly recommend you to upgrade to V1.4.0. In this last release we reviewed the whole sharing workflow to make it more robust and error-less.

@dlpzx dlpzx mentioned this issue Feb 21, 2023
Merged
dlpzx added a commit that referenced this issue Feb 21, 2023
@dlpzx
Add cross-region sharing error message/exception (#322)
e5d195f 
### Feature or Bugfix
- Feature/Bugfix

### Detail
- Cross-region sharing is not possible for table sharing because Lake
Formation does not allow (yet) cross region sharing.
- Cross-region sharing of folders using access points currently includes
errors in the implemented policy
For this reason for the time being we display an error for cross-region
sharing to disallow this behaviour

### Relates
- #318

By submitting this pull request, I confirm that my contribution is made
under the terms of the Apache 2.0 license.
@dlpzx
Copy link
Contributor

dlpzx commented Feb 21, 2023

In the PR #322 we added an error message that prevents users to open a cross-region share request, this will ensure you do not run into this issue. In the future we can explore options to allow cross-region sharing, for example with Bucket policies #284, but in general working with data in different accounts is not recommended. So if possible we advice you to avoid this architecture, if it is not possible because of compliance or because of AWS services not available in a region we can discuss alternatives.

@dlpzx dlpzx closed this as completed Feb 21, 2023
dlpzx added a commit that referenced this issue Mar 6, 2023
@dlpzx
Add cross-region sharing error message/exception (#322)
a64530f 
### Feature or Bugfix
- Feature/Bugfix

### Detail
- Cross-region sharing is not possible for table sharing because Lake
Formation does not allow (yet) cross region sharing.
- Cross-region sharing of folders using access points currently includes
errors in the implemented policy
For this reason for the time being we display an error for cross-region
sharing to disallow this behaviour

### Relates
- #318

By submitting this pull request, I confirm that my contribution is made
under the terms of the Apache 2.0 license.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
status: needs more info type: bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@manjulaK @dlpzx