Databrew
The DataBrew CDK application is used to configure and deploy secure databrew jobs and associated resources.
Deployed Resources and Compliance Details
DataBrew Jobs - Secure databrew Profile & Recipe jobs.
- All job data will be encrypted with a configured KMS Key
DataBrew Projects, Datasets, and Recipes - Will be used by DataBrew jobs.
Configuration
MDAA Config
Add the following snippet to your mdaa.yaml under the modules: section of a domain/env in order to use this module:
dataops-databrew: # Module Name can be customized
module_path: "@aws-mdaa/dataops-databrew" # Must match module NPM package name
module_configs:
- ./dataops-databrew.yaml # Filename/path can be customized
Module Config (./dataops-databrew.yaml)
# (Optional) Name of the associated glue data-ops project
# Other resources within the project can be referenced in the config using
# the "project:" prefix on the config value.
projectName: glue-project
# List of recipes to be created
recipes:
mdaa-jdbc-recipe:
steps: |
[
{
"Action": {
"Operation": "RENAME",
"Parameters": {
"sourceColumn": "id",
"targetColumn": "employee_id"
}
}
}
]
mdaa-s3-recipe:
steps: |
[
{
"Action": {
"Operation": "RENAME",
"Parameters": {
"sourceColumn": "employee_id",
"targetColumn": "id"
}
}
}
]
mdaa-catalog-recipe:
steps: |
[
{
"Action": {
"Operation": "RENAME",
"Parameters": {
"sourceColumn": "employee_id",
"targetColumn": "id"
}
}
}
]
# List of datasets to be created
datasets:
mdaa-jdbc-dataset:
input:
databaseInputDefinition:
glueConnectionName: project:connections/connectionJdbc
databaseTableName: 'mydb_admin.allusers'
mdaa-s3-dataset:
input:
s3InputDefinition:
bucket: ssm:/path_to_bucket_name
key: 'data/raw_data/input_data.csv.snappy'
mdaa-catalog-dataset:
input:
dataCatalogInputDefinition:
databaseName: project:databaseName/demo-database
tableName: demo_raw_data
# List of databrew jobs to be created
jobs:
# Template for recipe job
test-recipe-job6:
type: 'RECIPE'
# data brew project associated with this job.
projectName: 'mdaa-test-project'
# Source dataset for the job - Either define new one or just specify the name of existing dataset
dataset:
generated: mdaa-jdbc-dataset
# Transformations for the job - Either define new one or just specify the name and optional version of existing recipe
recipe:
existing:
name: org-dev-data-ops-databrew-mdaa-s3-recipe
version: '1.0'
# Output locations for the recipe job
outputs:
- location:
bucket: ssm:/path_to_bucket_name
key: 'data/databrew/transformed/'
compressionFormat: 'SNAPPY'
format: 'PARQUET'
overwrite: true
partitionColumns: ['id']
# Execution role for the job
executionRole:
name: ssm:/path_to_role_name
# Encryption Key for the job output
kmsKeyArn: ssm:/ssm:/path_to_kms_arn
# Schedule for the job
schedule:
name: 'mdaa-test-job-schedule'
cronExpression: 'Cron(50 21 * * ? *)'
# Template for PROFILE job
test-profile-job:
type: 'PROFILE'
# Source dataset for the job - Either define new one or just specify the name of existing dataset
dataset:
generated: mdaa-jdbc-dataset
# Output location for the profile job
outputLocation:
bucket: ssm:/path_to_bucket_name
key: 'data/databrew/profile/'
# Execution role for the job
executionRole:
name: ssm:/path_to_role_name
# Encryption Key for the job output
kmsKeyArn: ssm:/path_to_kms_arn
# Schedule for the job
schedule:
name: 'mdaa-test-profile-schedule'
cronExpression: 'Cron(50 21 * * ? *)'