subcategory |
---|
Unity Catalog |
-> Note This resource could be used with account or workspace-level provider.
A metastore is the top-level container of objects in Unity Catalog. It stores data assets (tables and views) and the permissions that govern access to them. Databricks account admins can create metastores and assign them to Databricks workspaces in order to control which workloads use each metastore.
Unity Catalog offers a new metastore with built in security and auditing. This is distinct to the metastore used in previous versions of Databricks (based on the Hive Metastore).
A Unity Catalog metastore can be created without a root location & credential to maintain strict separation of storage across catalogs or environments.
For AWS
resource "databricks_metastore" "this" {
name = "primary"
storage_root = "s3://${aws_s3_bucket.metastore.id}/metastore"
owner = "uc admins"
region = "us-east-1"
force_destroy = true
}
resource "databricks_metastore_assignment" "this" {
metastore_id = databricks_metastore.this.id
workspace_id = local.workspace_id
}
For Azure
resource "databricks_metastore" "this" {
name = "primary"
storage_root = format("abfss://%s@%s.dfs.core.windows.net/",
azurerm_storage_container.unity_catalog.name,
azurerm_storage_account.unity_catalog.name)
owner = "uc admins"
region = "eastus"
force_destroy = true
}
resource "databricks_metastore_assignment" "this" {
metastore_id = databricks_metastore.this.id
workspace_id = local.workspace_id
}
For GCP
resource "databricks_metastore" "this" {
name = "primary"
storage_root = "gs://${google_storage_bucket.unity_metastore.name}"
owner = "uc admins"
region = us-east1
force_destroy = true
}
resource "databricks_metastore_assignment" "this" {
metastore_id = databricks_metastore.this.id
workspace_id = local.workspace_id
}
The following arguments are required:
name
- Name of metastore.storage_root
- (Optional) Path on cloud storage account, where manageddatabricks_table
are stored. Change forces creation of a new resource. If nostorage_root
is defined for the metastore, each catalog must have astorage_root
defined.region
- (Mandatory for account-level) The region of the metastoreowner
- (Optional) Username/groupname/sp application_id of the metastore owner.delta_sharing_scope
- (Optional) Required along withdelta_sharing_recipient_token_lifetime_in_seconds
. Used to enable delta sharing on the metastore. Valid values: INTERNAL, INTERNAL_AND_EXTERNAL. INTERNAL only allows sharing within the same account, and INTERNAL_AND_EXTERNAL allows cross account sharing and token based sharing.delta_sharing_recipient_token_lifetime_in_seconds
- (Optional) Required along withdelta_sharing_scope
. Used to set expiration duration in seconds on recipient data access tokens. Set to 0 for unlimited duration.delta_sharing_organization_name
- (Optional) The organization name of a Delta Sharing entity. This field is used for Databricks to Databricks sharing. Once this is set it cannot be removed and can only be modified to another valid value. To delete this value please taint and recreate the resource.force_destroy
- (Optional) Destroy metastore regardless of its contents.
In addition to all arguments above, the following attributes are exported:
id
- system-generated ID of this Unity Catalog Metastore.
This resource can be imported by ID:
terraform import databricks_metastore.this <id>