aws-sdk-glue 1.149.0

// Code generated by software.amazon.smithy.rust.codegen.smithy-rs. DO NOT EDIT.

/// <p>Defines a connection to a data source.</p>
#[non_exhaustive]
#[derive(::std::clone::Clone, ::std::cmp::PartialEq, ::std::fmt::Debug)]
pub struct Connection {
    /// <p>The name of the connection definition.</p>
    pub name: ::std::option::Option<::std::string::String>,
    /// <p>The description of the connection.</p>
    pub description: ::std::option::Option<::std::string::String>,
    /// <p>The type of the connection. Currently, SFTP is not supported.</p>
    pub connection_type: ::std::option::Option<crate::types::ConnectionType>,
    /// <p>A list of criteria that can be used in selecting this connection.</p>
    pub match_criteria: ::std::option::Option<::std::vec::Vec<::std::string::String>>,
    /// <p>These key-value pairs define parameters for the connection when using the version 1 Connection schema:</p>
    /// <ul>
    /// <li>
    /// <p><code>HOST</code> - The host URI: either the fully qualified domain name (FQDN) or the IPv4 address of the database host.</p></li>
    /// <li>
    /// <p><code>PORT</code> - The port number, between 1024 and 65535, of the port on which the database host is listening for database connections.</p></li>
    /// <li>
    /// <p><code>USER_NAME</code> - The name under which to log in to the database. The value string for <code>USER_NAME</code> is "<code>USERNAME</code>".</p></li>
    /// <li>
    /// <p><code>PASSWORD</code> - A password, if one is used, for the user name.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_PASSWORD</code> - When you enable connection password protection by setting <code>ConnectionPasswordEncryption</code> in the Data Catalog encryption settings, this field stores the encrypted password.</p></li>
    /// <li>
    /// <p><code>JDBC_DRIVER_JAR_URI</code> - The Amazon Simple Storage Service (Amazon S3) path of the JAR file that contains the JDBC driver to use.</p></li>
    /// <li>
    /// <p><code>JDBC_DRIVER_CLASS_NAME</code> - The class name of the JDBC driver to use.</p></li>
    /// <li>
    /// <p><code>JDBC_ENGINE</code> - The name of the JDBC engine to use.</p></li>
    /// <li>
    /// <p><code>JDBC_ENGINE_VERSION</code> - The version of the JDBC engine to use.</p></li>
    /// <li>
    /// <p><code>CONFIG_FILES</code> - (Reserved for future use.)</p></li>
    /// <li>
    /// <p><code>INSTANCE_ID</code> - The instance ID to use.</p></li>
    /// <li>
    /// <p><code>JDBC_CONNECTION_URL</code> - The URL for connecting to a JDBC data source.</p></li>
    /// <li>
    /// <p><code>JDBC_ENFORCE_SSL</code> - A case-insensitive Boolean string (true, false) specifying whether Secure Sockets Layer (SSL) with hostname matching is enforced for the JDBC connection on the client. The default is false.</p></li>
    /// <li>
    /// <p><code>CUSTOM_JDBC_CERT</code> - An Amazon S3 location specifying the customer's root certificate. Glue uses this root certificate to validate the customer’s certificate when connecting to the customer database. Glue only handles X.509 certificates. The certificate provided must be DER-encoded and supplied in Base64 encoding PEM format.</p></li>
    /// <li>
    /// <p><code>SKIP_CUSTOM_JDBC_CERT_VALIDATION</code> - By default, this is <code>false</code>. Glue validates the Signature algorithm and Subject Public Key Algorithm for the customer certificate. The only permitted algorithms for the Signature algorithm are SHA256withRSA, SHA384withRSA or SHA512withRSA. For the Subject Public Key Algorithm, the key length must be at least 2048. You can set the value of this property to <code>true</code> to skip Glue’s validation of the customer certificate.</p></li>
    /// <li>
    /// <p><code>CUSTOM_JDBC_CERT_STRING</code> - A custom JDBC certificate string which is used for domain match or distinguished name match to prevent a man-in-the-middle attack. In Oracle database, this is used as the <code>SSL_SERVER_CERT_DN</code>; in Microsoft SQL Server, this is used as the <code>hostNameInCertificate</code>.</p></li>
    /// <li>
    /// <p><code>CONNECTION_URL</code> - The URL for connecting to a general (non-JDBC) data source.</p></li>
    /// <li>
    /// <p><code>SECRET_ID</code> - The secret ID used for the secret manager of credentials.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_URL</code> - The connector URL for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_TYPE</code> - The connector type for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_CLASS_NAME</code> - The connector class name for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>KAFKA_BOOTSTRAP_SERVERS</code> - A comma-separated list of host and port pairs that are the addresses of the Apache Kafka brokers in a Kafka cluster to which a Kafka client will connect to and bootstrap itself.</p></li>
    /// <li>
    /// <p><code>KAFKA_SSL_ENABLED</code> - Whether to enable or disable SSL on an Apache Kafka connection. Default value is "true".</p></li>
    /// <li>
    /// <p><code>KAFKA_CUSTOM_CERT</code> - The Amazon S3 URL for the private CA cert file (.pem format). The default is an empty string.</p></li>
    /// <li>
    /// <p><code>KAFKA_SKIP_CUSTOM_CERT_VALIDATION</code> - Whether to skip the validation of the CA cert file or not. Glue validates for three algorithms: SHA256withRSA, SHA384withRSA and SHA512withRSA. Default value is "false".</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEYSTORE</code> - The Amazon S3 location of the client keystore file for Kafka client side authentication (Optional).</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEYSTORE_PASSWORD</code> - The password to access the provided keystore (Optional).</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEY_PASSWORD</code> - A keystore can consist of multiple keys, so this is the password to access the client key to be used with the Kafka server side key (Optional).</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_CLIENT_KEYSTORE_PASSWORD</code> - The encrypted version of the Kafka client keystore password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_CLIENT_KEY_PASSWORD</code> - The encrypted version of the Kafka client key password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_MECHANISM</code> - <code>"SCRAM-SHA-512"</code>, <code>"GSSAPI"</code>, <code>"AWS_MSK_IAM"</code>, or <code>"PLAIN"</code>. These are the supported <a href="https://www.iana.org/assignments/sasl-mechanisms/sasl-mechanisms.xhtml">SASL Mechanisms</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_PLAIN_USERNAME</code> - A plaintext username used to authenticate with the "PLAIN" mechanism.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_PLAIN_PASSWORD</code> - A plaintext password used to authenticate with the "PLAIN" mechanism.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_SASL_PLAIN_PASSWORD</code> - The encrypted version of the Kafka SASL PLAIN password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_USERNAME</code> - A plaintext username used to authenticate with the "SCRAM-SHA-512" mechanism.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_PASSWORD</code> - A plaintext password used to authenticate with the "SCRAM-SHA-512" mechanism.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_SASL_SCRAM_PASSWORD</code> - The encrypted version of the Kafka SASL SCRAM password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_SECRETS_ARN</code> - The Amazon Resource Name of a secret in Amazon Web Services Secrets Manager.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_KEYTAB</code> - The S3 location of a Kerberos <code>keytab</code> file. A keytab stores long-term keys for one or more principals. For more information, see <a href="https://web.mit.edu/kerberos/krb5-latest/doc/basic/keytab_def.html">MIT Kerberos Documentation: Keytab</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_KRB5_CONF</code> - The S3 location of a Kerberos <code>krb5.conf</code> file. A krb5.conf stores Kerberos configuration information, such as the location of the KDC server. For more information, see <a href="https://web.mit.edu/kerberos/krb5-1.12/doc/admin/conf_files/krb5_conf.html">MIT Kerberos Documentation: krb5.conf</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_SERVICE</code> - The Kerberos service name, as set with <code>sasl.kerberos.service.name</code> in your <a href="https://kafka.apache.org/documentation/#brokerconfigs_sasl.kerberos.service.name">Kafka Configuration</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_PRINCIPAL</code> - The name of the Kerberos princial used by Glue. For more information, see <a href="https://kafka.apache.org/documentation/#security_sasl_kerberos_clientconfig">Kafka Documentation: Configuring Kafka Brokers</a>.</p></li>
    /// <li>
    /// <p><code>ROLE_ARN</code> - The role to be used for running queries.</p></li>
    /// <li>
    /// <p><code>REGION</code> - The Amazon Web Services Region where queries will be run.</p></li>
    /// <li>
    /// <p><code>WORKGROUP_NAME</code> - The name of an Amazon Redshift serverless workgroup or Amazon Athena workgroup in which queries will run.</p></li>
    /// <li>
    /// <p><code>CLUSTER_IDENTIFIER</code> - The cluster identifier of an Amazon Redshift cluster in which queries will run.</p></li>
    /// <li>
    /// <p><code>DATABASE</code> - The Amazon Redshift database that you are connecting to.</p></li>
    /// </ul>
    pub connection_properties: ::std::option::Option<::std::collections::HashMap<crate::types::ConnectionPropertyKey, ::std::string::String>>,
    /// <p>Connection properties specific to the Spark compute environment.</p>
    pub spark_properties: ::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>>,
    /// <p>Connection properties specific to the Athena compute environment.</p>
    pub athena_properties: ::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>>,
    /// <p>Connection properties specific to the Python compute environment.</p>
    pub python_properties: ::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>>,
    /// <p>The physical connection requirements, such as virtual private cloud (VPC) and <code>SecurityGroup</code>, that are needed to make this connection successfully.</p>
    pub physical_connection_requirements: ::std::option::Option<crate::types::PhysicalConnectionRequirements>,
    /// <p>The timestamp of the time that this connection definition was created.</p>
    pub creation_time: ::std::option::Option<::aws_smithy_types::DateTime>,
    /// <p>The timestamp of the last time the connection definition was updated.</p>
    pub last_updated_time: ::std::option::Option<::aws_smithy_types::DateTime>,
    /// <p>The user, group, or role that last updated this connection definition.</p>
    pub last_updated_by: ::std::option::Option<::std::string::String>,
    /// <p>The status of the connection. Can be one of: <code>READY</code>, <code>IN_PROGRESS</code>, or <code>FAILED</code>.</p>
    pub status: ::std::option::Option<crate::types::ConnectionStatus>,
    /// <p>The reason for the connection status.</p>
    pub status_reason: ::std::option::Option<::std::string::String>,
    /// <p>A timestamp of the time this connection was last validated.</p>
    pub last_connection_validation_time: ::std::option::Option<::aws_smithy_types::DateTime>,
    /// <p>The authentication properties of the connection.</p>
    pub authentication_configuration: ::std::option::Option<crate::types::AuthenticationConfiguration>,
    /// <p>The version of the connection schema for this connection. Version 2 supports properties for specific compute environments.</p>
    pub connection_schema_version: ::std::option::Option<i32>,
    /// <p>A list of compute environments compatible with the connection.</p>
    pub compatible_compute_environments: ::std::option::Option<::std::vec::Vec<crate::types::ComputeEnvironment>>,
}
impl Connection {
    /// <p>The name of the connection definition.</p>
    pub fn name(&self) -> ::std::option::Option<&str> {
        self.name.as_deref()
    }
    /// <p>The description of the connection.</p>
    pub fn description(&self) -> ::std::option::Option<&str> {
        self.description.as_deref()
    }
    /// <p>The type of the connection. Currently, SFTP is not supported.</p>
    pub fn connection_type(&self) -> ::std::option::Option<&crate::types::ConnectionType> {
        self.connection_type.as_ref()
    }
    /// <p>A list of criteria that can be used in selecting this connection.</p>
    ///
    /// If no value was sent for this field, a default will be set. If you want to determine if no value was sent, use `.match_criteria.is_none()`.
    pub fn match_criteria(&self) -> &[::std::string::String] {
        self.match_criteria.as_deref().unwrap_or_default()
    }
    /// <p>These key-value pairs define parameters for the connection when using the version 1 Connection schema:</p>
    /// <ul>
    /// <li>
    /// <p><code>HOST</code> - The host URI: either the fully qualified domain name (FQDN) or the IPv4 address of the database host.</p></li>
    /// <li>
    /// <p><code>PORT</code> - The port number, between 1024 and 65535, of the port on which the database host is listening for database connections.</p></li>
    /// <li>
    /// <p><code>USER_NAME</code> - The name under which to log in to the database. The value string for <code>USER_NAME</code> is "<code>USERNAME</code>".</p></li>
    /// <li>
    /// <p><code>PASSWORD</code> - A password, if one is used, for the user name.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_PASSWORD</code> - When you enable connection password protection by setting <code>ConnectionPasswordEncryption</code> in the Data Catalog encryption settings, this field stores the encrypted password.</p></li>
    /// <li>
    /// <p><code>JDBC_DRIVER_JAR_URI</code> - The Amazon Simple Storage Service (Amazon S3) path of the JAR file that contains the JDBC driver to use.</p></li>
    /// <li>
    /// <p><code>JDBC_DRIVER_CLASS_NAME</code> - The class name of the JDBC driver to use.</p></li>
    /// <li>
    /// <p><code>JDBC_ENGINE</code> - The name of the JDBC engine to use.</p></li>
    /// <li>
    /// <p><code>JDBC_ENGINE_VERSION</code> - The version of the JDBC engine to use.</p></li>
    /// <li>
    /// <p><code>CONFIG_FILES</code> - (Reserved for future use.)</p></li>
    /// <li>
    /// <p><code>INSTANCE_ID</code> - The instance ID to use.</p></li>
    /// <li>
    /// <p><code>JDBC_CONNECTION_URL</code> - The URL for connecting to a JDBC data source.</p></li>
    /// <li>
    /// <p><code>JDBC_ENFORCE_SSL</code> - A case-insensitive Boolean string (true, false) specifying whether Secure Sockets Layer (SSL) with hostname matching is enforced for the JDBC connection on the client. The default is false.</p></li>
    /// <li>
    /// <p><code>CUSTOM_JDBC_CERT</code> - An Amazon S3 location specifying the customer's root certificate. Glue uses this root certificate to validate the customer’s certificate when connecting to the customer database. Glue only handles X.509 certificates. The certificate provided must be DER-encoded and supplied in Base64 encoding PEM format.</p></li>
    /// <li>
    /// <p><code>SKIP_CUSTOM_JDBC_CERT_VALIDATION</code> - By default, this is <code>false</code>. Glue validates the Signature algorithm and Subject Public Key Algorithm for the customer certificate. The only permitted algorithms for the Signature algorithm are SHA256withRSA, SHA384withRSA or SHA512withRSA. For the Subject Public Key Algorithm, the key length must be at least 2048. You can set the value of this property to <code>true</code> to skip Glue’s validation of the customer certificate.</p></li>
    /// <li>
    /// <p><code>CUSTOM_JDBC_CERT_STRING</code> - A custom JDBC certificate string which is used for domain match or distinguished name match to prevent a man-in-the-middle attack. In Oracle database, this is used as the <code>SSL_SERVER_CERT_DN</code>; in Microsoft SQL Server, this is used as the <code>hostNameInCertificate</code>.</p></li>
    /// <li>
    /// <p><code>CONNECTION_URL</code> - The URL for connecting to a general (non-JDBC) data source.</p></li>
    /// <li>
    /// <p><code>SECRET_ID</code> - The secret ID used for the secret manager of credentials.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_URL</code> - The connector URL for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_TYPE</code> - The connector type for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_CLASS_NAME</code> - The connector class name for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>KAFKA_BOOTSTRAP_SERVERS</code> - A comma-separated list of host and port pairs that are the addresses of the Apache Kafka brokers in a Kafka cluster to which a Kafka client will connect to and bootstrap itself.</p></li>
    /// <li>
    /// <p><code>KAFKA_SSL_ENABLED</code> - Whether to enable or disable SSL on an Apache Kafka connection. Default value is "true".</p></li>
    /// <li>
    /// <p><code>KAFKA_CUSTOM_CERT</code> - The Amazon S3 URL for the private CA cert file (.pem format). The default is an empty string.</p></li>
    /// <li>
    /// <p><code>KAFKA_SKIP_CUSTOM_CERT_VALIDATION</code> - Whether to skip the validation of the CA cert file or not. Glue validates for three algorithms: SHA256withRSA, SHA384withRSA and SHA512withRSA. Default value is "false".</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEYSTORE</code> - The Amazon S3 location of the client keystore file for Kafka client side authentication (Optional).</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEYSTORE_PASSWORD</code> - The password to access the provided keystore (Optional).</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEY_PASSWORD</code> - A keystore can consist of multiple keys, so this is the password to access the client key to be used with the Kafka server side key (Optional).</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_CLIENT_KEYSTORE_PASSWORD</code> - The encrypted version of the Kafka client keystore password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_CLIENT_KEY_PASSWORD</code> - The encrypted version of the Kafka client key password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_MECHANISM</code> - <code>"SCRAM-SHA-512"</code>, <code>"GSSAPI"</code>, <code>"AWS_MSK_IAM"</code>, or <code>"PLAIN"</code>. These are the supported <a href="https://www.iana.org/assignments/sasl-mechanisms/sasl-mechanisms.xhtml">SASL Mechanisms</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_PLAIN_USERNAME</code> - A plaintext username used to authenticate with the "PLAIN" mechanism.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_PLAIN_PASSWORD</code> - A plaintext password used to authenticate with the "PLAIN" mechanism.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_SASL_PLAIN_PASSWORD</code> - The encrypted version of the Kafka SASL PLAIN password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_USERNAME</code> - A plaintext username used to authenticate with the "SCRAM-SHA-512" mechanism.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_PASSWORD</code> - A plaintext password used to authenticate with the "SCRAM-SHA-512" mechanism.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_SASL_SCRAM_PASSWORD</code> - The encrypted version of the Kafka SASL SCRAM password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_SECRETS_ARN</code> - The Amazon Resource Name of a secret in Amazon Web Services Secrets Manager.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_KEYTAB</code> - The S3 location of a Kerberos <code>keytab</code> file. A keytab stores long-term keys for one or more principals. For more information, see <a href="https://web.mit.edu/kerberos/krb5-latest/doc/basic/keytab_def.html">MIT Kerberos Documentation: Keytab</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_KRB5_CONF</code> - The S3 location of a Kerberos <code>krb5.conf</code> file. A krb5.conf stores Kerberos configuration information, such as the location of the KDC server. For more information, see <a href="https://web.mit.edu/kerberos/krb5-1.12/doc/admin/conf_files/krb5_conf.html">MIT Kerberos Documentation: krb5.conf</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_SERVICE</code> - The Kerberos service name, as set with <code>sasl.kerberos.service.name</code> in your <a href="https://kafka.apache.org/documentation/#brokerconfigs_sasl.kerberos.service.name">Kafka Configuration</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_PRINCIPAL</code> - The name of the Kerberos princial used by Glue. For more information, see <a href="https://kafka.apache.org/documentation/#security_sasl_kerberos_clientconfig">Kafka Documentation: Configuring Kafka Brokers</a>.</p></li>
    /// <li>
    /// <p><code>ROLE_ARN</code> - The role to be used for running queries.</p></li>
    /// <li>
    /// <p><code>REGION</code> - The Amazon Web Services Region where queries will be run.</p></li>
    /// <li>
    /// <p><code>WORKGROUP_NAME</code> - The name of an Amazon Redshift serverless workgroup or Amazon Athena workgroup in which queries will run.</p></li>
    /// <li>
    /// <p><code>CLUSTER_IDENTIFIER</code> - The cluster identifier of an Amazon Redshift cluster in which queries will run.</p></li>
    /// <li>
    /// <p><code>DATABASE</code> - The Amazon Redshift database that you are connecting to.</p></li>
    /// </ul>
    pub fn connection_properties(
        &self,
    ) -> ::std::option::Option<&::std::collections::HashMap<crate::types::ConnectionPropertyKey, ::std::string::String>> {
        self.connection_properties.as_ref()
    }
    /// <p>Connection properties specific to the Spark compute environment.</p>
    pub fn spark_properties(&self) -> ::std::option::Option<&::std::collections::HashMap<::std::string::String, ::std::string::String>> {
        self.spark_properties.as_ref()
    }
    /// <p>Connection properties specific to the Athena compute environment.</p>
    pub fn athena_properties(&self) -> ::std::option::Option<&::std::collections::HashMap<::std::string::String, ::std::string::String>> {
        self.athena_properties.as_ref()
    }
    /// <p>Connection properties specific to the Python compute environment.</p>
    pub fn python_properties(&self) -> ::std::option::Option<&::std::collections::HashMap<::std::string::String, ::std::string::String>> {
        self.python_properties.as_ref()
    }
    /// <p>The physical connection requirements, such as virtual private cloud (VPC) and <code>SecurityGroup</code>, that are needed to make this connection successfully.</p>
    pub fn physical_connection_requirements(&self) -> ::std::option::Option<&crate::types::PhysicalConnectionRequirements> {
        self.physical_connection_requirements.as_ref()
    }
    /// <p>The timestamp of the time that this connection definition was created.</p>
    pub fn creation_time(&self) -> ::std::option::Option<&::aws_smithy_types::DateTime> {
        self.creation_time.as_ref()
    }
    /// <p>The timestamp of the last time the connection definition was updated.</p>
    pub fn last_updated_time(&self) -> ::std::option::Option<&::aws_smithy_types::DateTime> {
        self.last_updated_time.as_ref()
    }
    /// <p>The user, group, or role that last updated this connection definition.</p>
    pub fn last_updated_by(&self) -> ::std::option::Option<&str> {
        self.last_updated_by.as_deref()
    }
    /// <p>The status of the connection. Can be one of: <code>READY</code>, <code>IN_PROGRESS</code>, or <code>FAILED</code>.</p>
    pub fn status(&self) -> ::std::option::Option<&crate::types::ConnectionStatus> {
        self.status.as_ref()
    }
    /// <p>The reason for the connection status.</p>
    pub fn status_reason(&self) -> ::std::option::Option<&str> {
        self.status_reason.as_deref()
    }
    /// <p>A timestamp of the time this connection was last validated.</p>
    pub fn last_connection_validation_time(&self) -> ::std::option::Option<&::aws_smithy_types::DateTime> {
        self.last_connection_validation_time.as_ref()
    }
    /// <p>The authentication properties of the connection.</p>
    pub fn authentication_configuration(&self) -> ::std::option::Option<&crate::types::AuthenticationConfiguration> {
        self.authentication_configuration.as_ref()
    }
    /// <p>The version of the connection schema for this connection. Version 2 supports properties for specific compute environments.</p>
    pub fn connection_schema_version(&self) -> ::std::option::Option<i32> {
        self.connection_schema_version
    }
    /// <p>A list of compute environments compatible with the connection.</p>
    ///
    /// If no value was sent for this field, a default will be set. If you want to determine if no value was sent, use `.compatible_compute_environments.is_none()`.
    pub fn compatible_compute_environments(&self) -> &[crate::types::ComputeEnvironment] {
        self.compatible_compute_environments.as_deref().unwrap_or_default()
    }
}
impl Connection {
    /// Creates a new builder-style object to manufacture [`Connection`](crate::types::Connection).
    pub fn builder() -> crate::types::builders::ConnectionBuilder {
        crate::types::builders::ConnectionBuilder::default()
    }
}

/// A builder for [`Connection`](crate::types::Connection).
#[derive(::std::clone::Clone, ::std::cmp::PartialEq, ::std::default::Default, ::std::fmt::Debug)]
#[non_exhaustive]
pub struct ConnectionBuilder {
    pub(crate) name: ::std::option::Option<::std::string::String>,
    pub(crate) description: ::std::option::Option<::std::string::String>,
    pub(crate) connection_type: ::std::option::Option<crate::types::ConnectionType>,
    pub(crate) match_criteria: ::std::option::Option<::std::vec::Vec<::std::string::String>>,
    pub(crate) connection_properties: ::std::option::Option<::std::collections::HashMap<crate::types::ConnectionPropertyKey, ::std::string::String>>,
    pub(crate) spark_properties: ::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>>,
    pub(crate) athena_properties: ::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>>,
    pub(crate) python_properties: ::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>>,
    pub(crate) physical_connection_requirements: ::std::option::Option<crate::types::PhysicalConnectionRequirements>,
    pub(crate) creation_time: ::std::option::Option<::aws_smithy_types::DateTime>,
    pub(crate) last_updated_time: ::std::option::Option<::aws_smithy_types::DateTime>,
    pub(crate) last_updated_by: ::std::option::Option<::std::string::String>,
    pub(crate) status: ::std::option::Option<crate::types::ConnectionStatus>,
    pub(crate) status_reason: ::std::option::Option<::std::string::String>,
    pub(crate) last_connection_validation_time: ::std::option::Option<::aws_smithy_types::DateTime>,
    pub(crate) authentication_configuration: ::std::option::Option<crate::types::AuthenticationConfiguration>,
    pub(crate) connection_schema_version: ::std::option::Option<i32>,
    pub(crate) compatible_compute_environments: ::std::option::Option<::std::vec::Vec<crate::types::ComputeEnvironment>>,
}
impl ConnectionBuilder {
    /// <p>The name of the connection definition.</p>
    pub fn name(mut self, input: impl ::std::convert::Into<::std::string::String>) -> Self {
        self.name = ::std::option::Option::Some(input.into());
        self
    }
    /// <p>The name of the connection definition.</p>
    pub fn set_name(mut self, input: ::std::option::Option<::std::string::String>) -> Self {
        self.name = input;
        self
    }
    /// <p>The name of the connection definition.</p>
    pub fn get_name(&self) -> &::std::option::Option<::std::string::String> {
        &self.name
    }
    /// <p>The description of the connection.</p>
    pub fn description(mut self, input: impl ::std::convert::Into<::std::string::String>) -> Self {
        self.description = ::std::option::Option::Some(input.into());
        self
    }
    /// <p>The description of the connection.</p>
    pub fn set_description(mut self, input: ::std::option::Option<::std::string::String>) -> Self {
        self.description = input;
        self
    }
    /// <p>The description of the connection.</p>
    pub fn get_description(&self) -> &::std::option::Option<::std::string::String> {
        &self.description
    }
    /// <p>The type of the connection. Currently, SFTP is not supported.</p>
    pub fn connection_type(mut self, input: crate::types::ConnectionType) -> Self {
        self.connection_type = ::std::option::Option::Some(input);
        self
    }
    /// <p>The type of the connection. Currently, SFTP is not supported.</p>
    pub fn set_connection_type(mut self, input: ::std::option::Option<crate::types::ConnectionType>) -> Self {
        self.connection_type = input;
        self
    }
    /// <p>The type of the connection. Currently, SFTP is not supported.</p>
    pub fn get_connection_type(&self) -> &::std::option::Option<crate::types::ConnectionType> {
        &self.connection_type
    }
    /// Appends an item to `match_criteria`.
    ///
    /// To override the contents of this collection use [`set_match_criteria`](Self::set_match_criteria).
    ///
    /// <p>A list of criteria that can be used in selecting this connection.</p>
    pub fn match_criteria(mut self, input: impl ::std::convert::Into<::std::string::String>) -> Self {
        let mut v = self.match_criteria.unwrap_or_default();
        v.push(input.into());
        self.match_criteria = ::std::option::Option::Some(v);
        self
    }
    /// <p>A list of criteria that can be used in selecting this connection.</p>
    pub fn set_match_criteria(mut self, input: ::std::option::Option<::std::vec::Vec<::std::string::String>>) -> Self {
        self.match_criteria = input;
        self
    }
    /// <p>A list of criteria that can be used in selecting this connection.</p>
    pub fn get_match_criteria(&self) -> &::std::option::Option<::std::vec::Vec<::std::string::String>> {
        &self.match_criteria
    }
    /// Adds a key-value pair to `connection_properties`.
    ///
    /// To override the contents of this collection use [`set_connection_properties`](Self::set_connection_properties).
    ///
    /// <p>These key-value pairs define parameters for the connection when using the version 1 Connection schema:</p>
    /// <ul>
    /// <li>
    /// <p><code>HOST</code> - The host URI: either the fully qualified domain name (FQDN) or the IPv4 address of the database host.</p></li>
    /// <li>
    /// <p><code>PORT</code> - The port number, between 1024 and 65535, of the port on which the database host is listening for database connections.</p></li>
    /// <li>
    /// <p><code>USER_NAME</code> - The name under which to log in to the database. The value string for <code>USER_NAME</code> is "<code>USERNAME</code>".</p></li>
    /// <li>
    /// <p><code>PASSWORD</code> - A password, if one is used, for the user name.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_PASSWORD</code> - When you enable connection password protection by setting <code>ConnectionPasswordEncryption</code> in the Data Catalog encryption settings, this field stores the encrypted password.</p></li>
    /// <li>
    /// <p><code>JDBC_DRIVER_JAR_URI</code> - The Amazon Simple Storage Service (Amazon S3) path of the JAR file that contains the JDBC driver to use.</p></li>
    /// <li>
    /// <p><code>JDBC_DRIVER_CLASS_NAME</code> - The class name of the JDBC driver to use.</p></li>
    /// <li>
    /// <p><code>JDBC_ENGINE</code> - The name of the JDBC engine to use.</p></li>
    /// <li>
    /// <p><code>JDBC_ENGINE_VERSION</code> - The version of the JDBC engine to use.</p></li>
    /// <li>
    /// <p><code>CONFIG_FILES</code> - (Reserved for future use.)</p></li>
    /// <li>
    /// <p><code>INSTANCE_ID</code> - The instance ID to use.</p></li>
    /// <li>
    /// <p><code>JDBC_CONNECTION_URL</code> - The URL for connecting to a JDBC data source.</p></li>
    /// <li>
    /// <p><code>JDBC_ENFORCE_SSL</code> - A case-insensitive Boolean string (true, false) specifying whether Secure Sockets Layer (SSL) with hostname matching is enforced for the JDBC connection on the client. The default is false.</p></li>
    /// <li>
    /// <p><code>CUSTOM_JDBC_CERT</code> - An Amazon S3 location specifying the customer's root certificate. Glue uses this root certificate to validate the customer’s certificate when connecting to the customer database. Glue only handles X.509 certificates. The certificate provided must be DER-encoded and supplied in Base64 encoding PEM format.</p></li>
    /// <li>
    /// <p><code>SKIP_CUSTOM_JDBC_CERT_VALIDATION</code> - By default, this is <code>false</code>. Glue validates the Signature algorithm and Subject Public Key Algorithm for the customer certificate. The only permitted algorithms for the Signature algorithm are SHA256withRSA, SHA384withRSA or SHA512withRSA. For the Subject Public Key Algorithm, the key length must be at least 2048. You can set the value of this property to <code>true</code> to skip Glue’s validation of the customer certificate.</p></li>
    /// <li>
    /// <p><code>CUSTOM_JDBC_CERT_STRING</code> - A custom JDBC certificate string which is used for domain match or distinguished name match to prevent a man-in-the-middle attack. In Oracle database, this is used as the <code>SSL_SERVER_CERT_DN</code>; in Microsoft SQL Server, this is used as the <code>hostNameInCertificate</code>.</p></li>
    /// <li>
    /// <p><code>CONNECTION_URL</code> - The URL for connecting to a general (non-JDBC) data source.</p></li>
    /// <li>
    /// <p><code>SECRET_ID</code> - The secret ID used for the secret manager of credentials.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_URL</code> - The connector URL for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_TYPE</code> - The connector type for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_CLASS_NAME</code> - The connector class name for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>KAFKA_BOOTSTRAP_SERVERS</code> - A comma-separated list of host and port pairs that are the addresses of the Apache Kafka brokers in a Kafka cluster to which a Kafka client will connect to and bootstrap itself.</p></li>
    /// <li>
    /// <p><code>KAFKA_SSL_ENABLED</code> - Whether to enable or disable SSL on an Apache Kafka connection. Default value is "true".</p></li>
    /// <li>
    /// <p><code>KAFKA_CUSTOM_CERT</code> - The Amazon S3 URL for the private CA cert file (.pem format). The default is an empty string.</p></li>
    /// <li>
    /// <p><code>KAFKA_SKIP_CUSTOM_CERT_VALIDATION</code> - Whether to skip the validation of the CA cert file or not. Glue validates for three algorithms: SHA256withRSA, SHA384withRSA and SHA512withRSA. Default value is "false".</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEYSTORE</code> - The Amazon S3 location of the client keystore file for Kafka client side authentication (Optional).</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEYSTORE_PASSWORD</code> - The password to access the provided keystore (Optional).</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEY_PASSWORD</code> - A keystore can consist of multiple keys, so this is the password to access the client key to be used with the Kafka server side key (Optional).</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_CLIENT_KEYSTORE_PASSWORD</code> - The encrypted version of the Kafka client keystore password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_CLIENT_KEY_PASSWORD</code> - The encrypted version of the Kafka client key password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_MECHANISM</code> - <code>"SCRAM-SHA-512"</code>, <code>"GSSAPI"</code>, <code>"AWS_MSK_IAM"</code>, or <code>"PLAIN"</code>. These are the supported <a href="https://www.iana.org/assignments/sasl-mechanisms/sasl-mechanisms.xhtml">SASL Mechanisms</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_PLAIN_USERNAME</code> - A plaintext username used to authenticate with the "PLAIN" mechanism.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_PLAIN_PASSWORD</code> - A plaintext password used to authenticate with the "PLAIN" mechanism.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_SASL_PLAIN_PASSWORD</code> - The encrypted version of the Kafka SASL PLAIN password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_USERNAME</code> - A plaintext username used to authenticate with the "SCRAM-SHA-512" mechanism.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_PASSWORD</code> - A plaintext password used to authenticate with the "SCRAM-SHA-512" mechanism.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_SASL_SCRAM_PASSWORD</code> - The encrypted version of the Kafka SASL SCRAM password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_SECRETS_ARN</code> - The Amazon Resource Name of a secret in Amazon Web Services Secrets Manager.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_KEYTAB</code> - The S3 location of a Kerberos <code>keytab</code> file. A keytab stores long-term keys for one or more principals. For more information, see <a href="https://web.mit.edu/kerberos/krb5-latest/doc/basic/keytab_def.html">MIT Kerberos Documentation: Keytab</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_KRB5_CONF</code> - The S3 location of a Kerberos <code>krb5.conf</code> file. A krb5.conf stores Kerberos configuration information, such as the location of the KDC server. For more information, see <a href="https://web.mit.edu/kerberos/krb5-1.12/doc/admin/conf_files/krb5_conf.html">MIT Kerberos Documentation: krb5.conf</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_SERVICE</code> - The Kerberos service name, as set with <code>sasl.kerberos.service.name</code> in your <a href="https://kafka.apache.org/documentation/#brokerconfigs_sasl.kerberos.service.name">Kafka Configuration</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_PRINCIPAL</code> - The name of the Kerberos princial used by Glue. For more information, see <a href="https://kafka.apache.org/documentation/#security_sasl_kerberos_clientconfig">Kafka Documentation: Configuring Kafka Brokers</a>.</p></li>
    /// <li>
    /// <p><code>ROLE_ARN</code> - The role to be used for running queries.</p></li>
    /// <li>
    /// <p><code>REGION</code> - The Amazon Web Services Region where queries will be run.</p></li>
    /// <li>
    /// <p><code>WORKGROUP_NAME</code> - The name of an Amazon Redshift serverless workgroup or Amazon Athena workgroup in which queries will run.</p></li>
    /// <li>
    /// <p><code>CLUSTER_IDENTIFIER</code> - The cluster identifier of an Amazon Redshift cluster in which queries will run.</p></li>
    /// <li>
    /// <p><code>DATABASE</code> - The Amazon Redshift database that you are connecting to.</p></li>
    /// </ul>
    pub fn connection_properties(mut self, k: crate::types::ConnectionPropertyKey, v: impl ::std::convert::Into<::std::string::String>) -> Self {
        let mut hash_map = self.connection_properties.unwrap_or_default();
        hash_map.insert(k, v.into());
        self.connection_properties = ::std::option::Option::Some(hash_map);
        self
    }
    /// <p>These key-value pairs define parameters for the connection when using the version 1 Connection schema:</p>
    /// <ul>
    /// <li>
    /// <p><code>HOST</code> - The host URI: either the fully qualified domain name (FQDN) or the IPv4 address of the database host.</p></li>
    /// <li>
    /// <p><code>PORT</code> - The port number, between 1024 and 65535, of the port on which the database host is listening for database connections.</p></li>
    /// <li>
    /// <p><code>USER_NAME</code> - The name under which to log in to the database. The value string for <code>USER_NAME</code> is "<code>USERNAME</code>".</p></li>
    /// <li>
    /// <p><code>PASSWORD</code> - A password, if one is used, for the user name.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_PASSWORD</code> - When you enable connection password protection by setting <code>ConnectionPasswordEncryption</code> in the Data Catalog encryption settings, this field stores the encrypted password.</p></li>
    /// <li>
    /// <p><code>JDBC_DRIVER_JAR_URI</code> - The Amazon Simple Storage Service (Amazon S3) path of the JAR file that contains the JDBC driver to use.</p></li>
    /// <li>
    /// <p><code>JDBC_DRIVER_CLASS_NAME</code> - The class name of the JDBC driver to use.</p></li>
    /// <li>
    /// <p><code>JDBC_ENGINE</code> - The name of the JDBC engine to use.</p></li>
    /// <li>
    /// <p><code>JDBC_ENGINE_VERSION</code> - The version of the JDBC engine to use.</p></li>
    /// <li>
    /// <p><code>CONFIG_FILES</code> - (Reserved for future use.)</p></li>
    /// <li>
    /// <p><code>INSTANCE_ID</code> - The instance ID to use.</p></li>
    /// <li>
    /// <p><code>JDBC_CONNECTION_URL</code> - The URL for connecting to a JDBC data source.</p></li>
    /// <li>
    /// <p><code>JDBC_ENFORCE_SSL</code> - A case-insensitive Boolean string (true, false) specifying whether Secure Sockets Layer (SSL) with hostname matching is enforced for the JDBC connection on the client. The default is false.</p></li>
    /// <li>
    /// <p><code>CUSTOM_JDBC_CERT</code> - An Amazon S3 location specifying the customer's root certificate. Glue uses this root certificate to validate the customer’s certificate when connecting to the customer database. Glue only handles X.509 certificates. The certificate provided must be DER-encoded and supplied in Base64 encoding PEM format.</p></li>
    /// <li>
    /// <p><code>SKIP_CUSTOM_JDBC_CERT_VALIDATION</code> - By default, this is <code>false</code>. Glue validates the Signature algorithm and Subject Public Key Algorithm for the customer certificate. The only permitted algorithms for the Signature algorithm are SHA256withRSA, SHA384withRSA or SHA512withRSA. For the Subject Public Key Algorithm, the key length must be at least 2048. You can set the value of this property to <code>true</code> to skip Glue’s validation of the customer certificate.</p></li>
    /// <li>
    /// <p><code>CUSTOM_JDBC_CERT_STRING</code> - A custom JDBC certificate string which is used for domain match or distinguished name match to prevent a man-in-the-middle attack. In Oracle database, this is used as the <code>SSL_SERVER_CERT_DN</code>; in Microsoft SQL Server, this is used as the <code>hostNameInCertificate</code>.</p></li>
    /// <li>
    /// <p><code>CONNECTION_URL</code> - The URL for connecting to a general (non-JDBC) data source.</p></li>
    /// <li>
    /// <p><code>SECRET_ID</code> - The secret ID used for the secret manager of credentials.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_URL</code> - The connector URL for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_TYPE</code> - The connector type for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_CLASS_NAME</code> - The connector class name for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>KAFKA_BOOTSTRAP_SERVERS</code> - A comma-separated list of host and port pairs that are the addresses of the Apache Kafka brokers in a Kafka cluster to which a Kafka client will connect to and bootstrap itself.</p></li>
    /// <li>
    /// <p><code>KAFKA_SSL_ENABLED</code> - Whether to enable or disable SSL on an Apache Kafka connection. Default value is "true".</p></li>
    /// <li>
    /// <p><code>KAFKA_CUSTOM_CERT</code> - The Amazon S3 URL for the private CA cert file (.pem format). The default is an empty string.</p></li>
    /// <li>
    /// <p><code>KAFKA_SKIP_CUSTOM_CERT_VALIDATION</code> - Whether to skip the validation of the CA cert file or not. Glue validates for three algorithms: SHA256withRSA, SHA384withRSA and SHA512withRSA. Default value is "false".</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEYSTORE</code> - The Amazon S3 location of the client keystore file for Kafka client side authentication (Optional).</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEYSTORE_PASSWORD</code> - The password to access the provided keystore (Optional).</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEY_PASSWORD</code> - A keystore can consist of multiple keys, so this is the password to access the client key to be used with the Kafka server side key (Optional).</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_CLIENT_KEYSTORE_PASSWORD</code> - The encrypted version of the Kafka client keystore password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_CLIENT_KEY_PASSWORD</code> - The encrypted version of the Kafka client key password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_MECHANISM</code> - <code>"SCRAM-SHA-512"</code>, <code>"GSSAPI"</code>, <code>"AWS_MSK_IAM"</code>, or <code>"PLAIN"</code>. These are the supported <a href="https://www.iana.org/assignments/sasl-mechanisms/sasl-mechanisms.xhtml">SASL Mechanisms</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_PLAIN_USERNAME</code> - A plaintext username used to authenticate with the "PLAIN" mechanism.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_PLAIN_PASSWORD</code> - A plaintext password used to authenticate with the "PLAIN" mechanism.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_SASL_PLAIN_PASSWORD</code> - The encrypted version of the Kafka SASL PLAIN password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_USERNAME</code> - A plaintext username used to authenticate with the "SCRAM-SHA-512" mechanism.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_PASSWORD</code> - A plaintext password used to authenticate with the "SCRAM-SHA-512" mechanism.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_SASL_SCRAM_PASSWORD</code> - The encrypted version of the Kafka SASL SCRAM password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_SECRETS_ARN</code> - The Amazon Resource Name of a secret in Amazon Web Services Secrets Manager.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_KEYTAB</code> - The S3 location of a Kerberos <code>keytab</code> file. A keytab stores long-term keys for one or more principals. For more information, see <a href="https://web.mit.edu/kerberos/krb5-latest/doc/basic/keytab_def.html">MIT Kerberos Documentation: Keytab</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_KRB5_CONF</code> - The S3 location of a Kerberos <code>krb5.conf</code> file. A krb5.conf stores Kerberos configuration information, such as the location of the KDC server. For more information, see <a href="https://web.mit.edu/kerberos/krb5-1.12/doc/admin/conf_files/krb5_conf.html">MIT Kerberos Documentation: krb5.conf</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_SERVICE</code> - The Kerberos service name, as set with <code>sasl.kerberos.service.name</code> in your <a href="https://kafka.apache.org/documentation/#brokerconfigs_sasl.kerberos.service.name">Kafka Configuration</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_PRINCIPAL</code> - The name of the Kerberos princial used by Glue. For more information, see <a href="https://kafka.apache.org/documentation/#security_sasl_kerberos_clientconfig">Kafka Documentation: Configuring Kafka Brokers</a>.</p></li>
    /// <li>
    /// <p><code>ROLE_ARN</code> - The role to be used for running queries.</p></li>
    /// <li>
    /// <p><code>REGION</code> - The Amazon Web Services Region where queries will be run.</p></li>
    /// <li>
    /// <p><code>WORKGROUP_NAME</code> - The name of an Amazon Redshift serverless workgroup or Amazon Athena workgroup in which queries will run.</p></li>
    /// <li>
    /// <p><code>CLUSTER_IDENTIFIER</code> - The cluster identifier of an Amazon Redshift cluster in which queries will run.</p></li>
    /// <li>
    /// <p><code>DATABASE</code> - The Amazon Redshift database that you are connecting to.</p></li>
    /// </ul>
    pub fn set_connection_properties(
        mut self,
        input: ::std::option::Option<::std::collections::HashMap<crate::types::ConnectionPropertyKey, ::std::string::String>>,
    ) -> Self {
        self.connection_properties = input;
        self
    }
    /// <p>These key-value pairs define parameters for the connection when using the version 1 Connection schema:</p>
    /// <ul>
    /// <li>
    /// <p><code>HOST</code> - The host URI: either the fully qualified domain name (FQDN) or the IPv4 address of the database host.</p></li>
    /// <li>
    /// <p><code>PORT</code> - The port number, between 1024 and 65535, of the port on which the database host is listening for database connections.</p></li>
    /// <li>
    /// <p><code>USER_NAME</code> - The name under which to log in to the database. The value string for <code>USER_NAME</code> is "<code>USERNAME</code>".</p></li>
    /// <li>
    /// <p><code>PASSWORD</code> - A password, if one is used, for the user name.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_PASSWORD</code> - When you enable connection password protection by setting <code>ConnectionPasswordEncryption</code> in the Data Catalog encryption settings, this field stores the encrypted password.</p></li>
    /// <li>
    /// <p><code>JDBC_DRIVER_JAR_URI</code> - The Amazon Simple Storage Service (Amazon S3) path of the JAR file that contains the JDBC driver to use.</p></li>
    /// <li>
    /// <p><code>JDBC_DRIVER_CLASS_NAME</code> - The class name of the JDBC driver to use.</p></li>
    /// <li>
    /// <p><code>JDBC_ENGINE</code> - The name of the JDBC engine to use.</p></li>
    /// <li>
    /// <p><code>JDBC_ENGINE_VERSION</code> - The version of the JDBC engine to use.</p></li>
    /// <li>
    /// <p><code>CONFIG_FILES</code> - (Reserved for future use.)</p></li>
    /// <li>
    /// <p><code>INSTANCE_ID</code> - The instance ID to use.</p></li>
    /// <li>
    /// <p><code>JDBC_CONNECTION_URL</code> - The URL for connecting to a JDBC data source.</p></li>
    /// <li>
    /// <p><code>JDBC_ENFORCE_SSL</code> - A case-insensitive Boolean string (true, false) specifying whether Secure Sockets Layer (SSL) with hostname matching is enforced for the JDBC connection on the client. The default is false.</p></li>
    /// <li>
    /// <p><code>CUSTOM_JDBC_CERT</code> - An Amazon S3 location specifying the customer's root certificate. Glue uses this root certificate to validate the customer’s certificate when connecting to the customer database. Glue only handles X.509 certificates. The certificate provided must be DER-encoded and supplied in Base64 encoding PEM format.</p></li>
    /// <li>
    /// <p><code>SKIP_CUSTOM_JDBC_CERT_VALIDATION</code> - By default, this is <code>false</code>. Glue validates the Signature algorithm and Subject Public Key Algorithm for the customer certificate. The only permitted algorithms for the Signature algorithm are SHA256withRSA, SHA384withRSA or SHA512withRSA. For the Subject Public Key Algorithm, the key length must be at least 2048. You can set the value of this property to <code>true</code> to skip Glue’s validation of the customer certificate.</p></li>
    /// <li>
    /// <p><code>CUSTOM_JDBC_CERT_STRING</code> - A custom JDBC certificate string which is used for domain match or distinguished name match to prevent a man-in-the-middle attack. In Oracle database, this is used as the <code>SSL_SERVER_CERT_DN</code>; in Microsoft SQL Server, this is used as the <code>hostNameInCertificate</code>.</p></li>
    /// <li>
    /// <p><code>CONNECTION_URL</code> - The URL for connecting to a general (non-JDBC) data source.</p></li>
    /// <li>
    /// <p><code>SECRET_ID</code> - The secret ID used for the secret manager of credentials.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_URL</code> - The connector URL for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_TYPE</code> - The connector type for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>CONNECTOR_CLASS_NAME</code> - The connector class name for a MARKETPLACE or CUSTOM connection.</p></li>
    /// <li>
    /// <p><code>KAFKA_BOOTSTRAP_SERVERS</code> - A comma-separated list of host and port pairs that are the addresses of the Apache Kafka brokers in a Kafka cluster to which a Kafka client will connect to and bootstrap itself.</p></li>
    /// <li>
    /// <p><code>KAFKA_SSL_ENABLED</code> - Whether to enable or disable SSL on an Apache Kafka connection. Default value is "true".</p></li>
    /// <li>
    /// <p><code>KAFKA_CUSTOM_CERT</code> - The Amazon S3 URL for the private CA cert file (.pem format). The default is an empty string.</p></li>
    /// <li>
    /// <p><code>KAFKA_SKIP_CUSTOM_CERT_VALIDATION</code> - Whether to skip the validation of the CA cert file or not. Glue validates for three algorithms: SHA256withRSA, SHA384withRSA and SHA512withRSA. Default value is "false".</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEYSTORE</code> - The Amazon S3 location of the client keystore file for Kafka client side authentication (Optional).</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEYSTORE_PASSWORD</code> - The password to access the provided keystore (Optional).</p></li>
    /// <li>
    /// <p><code>KAFKA_CLIENT_KEY_PASSWORD</code> - A keystore can consist of multiple keys, so this is the password to access the client key to be used with the Kafka server side key (Optional).</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_CLIENT_KEYSTORE_PASSWORD</code> - The encrypted version of the Kafka client keystore password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_CLIENT_KEY_PASSWORD</code> - The encrypted version of the Kafka client key password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_MECHANISM</code> - <code>"SCRAM-SHA-512"</code>, <code>"GSSAPI"</code>, <code>"AWS_MSK_IAM"</code>, or <code>"PLAIN"</code>. These are the supported <a href="https://www.iana.org/assignments/sasl-mechanisms/sasl-mechanisms.xhtml">SASL Mechanisms</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_PLAIN_USERNAME</code> - A plaintext username used to authenticate with the "PLAIN" mechanism.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_PLAIN_PASSWORD</code> - A plaintext password used to authenticate with the "PLAIN" mechanism.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_SASL_PLAIN_PASSWORD</code> - The encrypted version of the Kafka SASL PLAIN password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_USERNAME</code> - A plaintext username used to authenticate with the "SCRAM-SHA-512" mechanism.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_PASSWORD</code> - A plaintext password used to authenticate with the "SCRAM-SHA-512" mechanism.</p></li>
    /// <li>
    /// <p><code>ENCRYPTED_KAFKA_SASL_SCRAM_PASSWORD</code> - The encrypted version of the Kafka SASL SCRAM password (if the user has the Glue encrypt passwords setting selected).</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_SCRAM_SECRETS_ARN</code> - The Amazon Resource Name of a secret in Amazon Web Services Secrets Manager.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_KEYTAB</code> - The S3 location of a Kerberos <code>keytab</code> file. A keytab stores long-term keys for one or more principals. For more information, see <a href="https://web.mit.edu/kerberos/krb5-latest/doc/basic/keytab_def.html">MIT Kerberos Documentation: Keytab</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_KRB5_CONF</code> - The S3 location of a Kerberos <code>krb5.conf</code> file. A krb5.conf stores Kerberos configuration information, such as the location of the KDC server. For more information, see <a href="https://web.mit.edu/kerberos/krb5-1.12/doc/admin/conf_files/krb5_conf.html">MIT Kerberos Documentation: krb5.conf</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_SERVICE</code> - The Kerberos service name, as set with <code>sasl.kerberos.service.name</code> in your <a href="https://kafka.apache.org/documentation/#brokerconfigs_sasl.kerberos.service.name">Kafka Configuration</a>.</p></li>
    /// <li>
    /// <p><code>KAFKA_SASL_GSSAPI_PRINCIPAL</code> - The name of the Kerberos princial used by Glue. For more information, see <a href="https://kafka.apache.org/documentation/#security_sasl_kerberos_clientconfig">Kafka Documentation: Configuring Kafka Brokers</a>.</p></li>
    /// <li>
    /// <p><code>ROLE_ARN</code> - The role to be used for running queries.</p></li>
    /// <li>
    /// <p><code>REGION</code> - The Amazon Web Services Region where queries will be run.</p></li>
    /// <li>
    /// <p><code>WORKGROUP_NAME</code> - The name of an Amazon Redshift serverless workgroup or Amazon Athena workgroup in which queries will run.</p></li>
    /// <li>
    /// <p><code>CLUSTER_IDENTIFIER</code> - The cluster identifier of an Amazon Redshift cluster in which queries will run.</p></li>
    /// <li>
    /// <p><code>DATABASE</code> - The Amazon Redshift database that you are connecting to.</p></li>
    /// </ul>
    pub fn get_connection_properties(
        &self,
    ) -> &::std::option::Option<::std::collections::HashMap<crate::types::ConnectionPropertyKey, ::std::string::String>> {
        &self.connection_properties
    }
    /// Adds a key-value pair to `spark_properties`.
    ///
    /// To override the contents of this collection use [`set_spark_properties`](Self::set_spark_properties).
    ///
    /// <p>Connection properties specific to the Spark compute environment.</p>
    pub fn spark_properties(
        mut self,
        k: impl ::std::convert::Into<::std::string::String>,
        v: impl ::std::convert::Into<::std::string::String>,
    ) -> Self {
        let mut hash_map = self.spark_properties.unwrap_or_default();
        hash_map.insert(k.into(), v.into());
        self.spark_properties = ::std::option::Option::Some(hash_map);
        self
    }
    /// <p>Connection properties specific to the Spark compute environment.</p>
    pub fn set_spark_properties(
        mut self,
        input: ::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>>,
    ) -> Self {
        self.spark_properties = input;
        self
    }
    /// <p>Connection properties specific to the Spark compute environment.</p>
    pub fn get_spark_properties(&self) -> &::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>> {
        &self.spark_properties
    }
    /// Adds a key-value pair to `athena_properties`.
    ///
    /// To override the contents of this collection use [`set_athena_properties`](Self::set_athena_properties).
    ///
    /// <p>Connection properties specific to the Athena compute environment.</p>
    pub fn athena_properties(
        mut self,
        k: impl ::std::convert::Into<::std::string::String>,
        v: impl ::std::convert::Into<::std::string::String>,
    ) -> Self {
        let mut hash_map = self.athena_properties.unwrap_or_default();
        hash_map.insert(k.into(), v.into());
        self.athena_properties = ::std::option::Option::Some(hash_map);
        self
    }
    /// <p>Connection properties specific to the Athena compute environment.</p>
    pub fn set_athena_properties(
        mut self,
        input: ::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>>,
    ) -> Self {
        self.athena_properties = input;
        self
    }
    /// <p>Connection properties specific to the Athena compute environment.</p>
    pub fn get_athena_properties(&self) -> &::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>> {
        &self.athena_properties
    }
    /// Adds a key-value pair to `python_properties`.
    ///
    /// To override the contents of this collection use [`set_python_properties`](Self::set_python_properties).
    ///
    /// <p>Connection properties specific to the Python compute environment.</p>
    pub fn python_properties(
        mut self,
        k: impl ::std::convert::Into<::std::string::String>,
        v: impl ::std::convert::Into<::std::string::String>,
    ) -> Self {
        let mut hash_map = self.python_properties.unwrap_or_default();
        hash_map.insert(k.into(), v.into());
        self.python_properties = ::std::option::Option::Some(hash_map);
        self
    }
    /// <p>Connection properties specific to the Python compute environment.</p>
    pub fn set_python_properties(
        mut self,
        input: ::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>>,
    ) -> Self {
        self.python_properties = input;
        self
    }
    /// <p>Connection properties specific to the Python compute environment.</p>
    pub fn get_python_properties(&self) -> &::std::option::Option<::std::collections::HashMap<::std::string::String, ::std::string::String>> {
        &self.python_properties
    }
    /// <p>The physical connection requirements, such as virtual private cloud (VPC) and <code>SecurityGroup</code>, that are needed to make this connection successfully.</p>
    pub fn physical_connection_requirements(mut self, input: crate::types::PhysicalConnectionRequirements) -> Self {
        self.physical_connection_requirements = ::std::option::Option::Some(input);
        self
    }
    /// <p>The physical connection requirements, such as virtual private cloud (VPC) and <code>SecurityGroup</code>, that are needed to make this connection successfully.</p>
    pub fn set_physical_connection_requirements(mut self, input: ::std::option::Option<crate::types::PhysicalConnectionRequirements>) -> Self {
        self.physical_connection_requirements = input;
        self
    }
    /// <p>The physical connection requirements, such as virtual private cloud (VPC) and <code>SecurityGroup</code>, that are needed to make this connection successfully.</p>
    pub fn get_physical_connection_requirements(&self) -> &::std::option::Option<crate::types::PhysicalConnectionRequirements> {
        &self.physical_connection_requirements
    }
    /// <p>The timestamp of the time that this connection definition was created.</p>
    pub fn creation_time(mut self, input: ::aws_smithy_types::DateTime) -> Self {
        self.creation_time = ::std::option::Option::Some(input);
        self
    }
    /// <p>The timestamp of the time that this connection definition was created.</p>
    pub fn set_creation_time(mut self, input: ::std::option::Option<::aws_smithy_types::DateTime>) -> Self {
        self.creation_time = input;
        self
    }
    /// <p>The timestamp of the time that this connection definition was created.</p>
    pub fn get_creation_time(&self) -> &::std::option::Option<::aws_smithy_types::DateTime> {
        &self.creation_time
    }
    /// <p>The timestamp of the last time the connection definition was updated.</p>
    pub fn last_updated_time(mut self, input: ::aws_smithy_types::DateTime) -> Self {
        self.last_updated_time = ::std::option::Option::Some(input);
        self
    }
    /// <p>The timestamp of the last time the connection definition was updated.</p>
    pub fn set_last_updated_time(mut self, input: ::std::option::Option<::aws_smithy_types::DateTime>) -> Self {
        self.last_updated_time = input;
        self
    }
    /// <p>The timestamp of the last time the connection definition was updated.</p>
    pub fn get_last_updated_time(&self) -> &::std::option::Option<::aws_smithy_types::DateTime> {
        &self.last_updated_time
    }
    /// <p>The user, group, or role that last updated this connection definition.</p>
    pub fn last_updated_by(mut self, input: impl ::std::convert::Into<::std::string::String>) -> Self {
        self.last_updated_by = ::std::option::Option::Some(input.into());
        self
    }
    /// <p>The user, group, or role that last updated this connection definition.</p>
    pub fn set_last_updated_by(mut self, input: ::std::option::Option<::std::string::String>) -> Self {
        self.last_updated_by = input;
        self
    }
    /// <p>The user, group, or role that last updated this connection definition.</p>
    pub fn get_last_updated_by(&self) -> &::std::option::Option<::std::string::String> {
        &self.last_updated_by
    }
    /// <p>The status of the connection. Can be one of: <code>READY</code>, <code>IN_PROGRESS</code>, or <code>FAILED</code>.</p>
    pub fn status(mut self, input: crate::types::ConnectionStatus) -> Self {
        self.status = ::std::option::Option::Some(input);
        self
    }
    /// <p>The status of the connection. Can be one of: <code>READY</code>, <code>IN_PROGRESS</code>, or <code>FAILED</code>.</p>
    pub fn set_status(mut self, input: ::std::option::Option<crate::types::ConnectionStatus>) -> Self {
        self.status = input;
        self
    }
    /// <p>The status of the connection. Can be one of: <code>READY</code>, <code>IN_PROGRESS</code>, or <code>FAILED</code>.</p>
    pub fn get_status(&self) -> &::std::option::Option<crate::types::ConnectionStatus> {
        &self.status
    }
    /// <p>The reason for the connection status.</p>
    pub fn status_reason(mut self, input: impl ::std::convert::Into<::std::string::String>) -> Self {
        self.status_reason = ::std::option::Option::Some(input.into());
        self
    }
    /// <p>The reason for the connection status.</p>
    pub fn set_status_reason(mut self, input: ::std::option::Option<::std::string::String>) -> Self {
        self.status_reason = input;
        self
    }
    /// <p>The reason for the connection status.</p>
    pub fn get_status_reason(&self) -> &::std::option::Option<::std::string::String> {
        &self.status_reason
    }
    /// <p>A timestamp of the time this connection was last validated.</p>
    pub fn last_connection_validation_time(mut self, input: ::aws_smithy_types::DateTime) -> Self {
        self.last_connection_validation_time = ::std::option::Option::Some(input);
        self
    }
    /// <p>A timestamp of the time this connection was last validated.</p>
    pub fn set_last_connection_validation_time(mut self, input: ::std::option::Option<::aws_smithy_types::DateTime>) -> Self {
        self.last_connection_validation_time = input;
        self
    }
    /// <p>A timestamp of the time this connection was last validated.</p>
    pub fn get_last_connection_validation_time(&self) -> &::std::option::Option<::aws_smithy_types::DateTime> {
        &self.last_connection_validation_time
    }
    /// <p>The authentication properties of the connection.</p>
    pub fn authentication_configuration(mut self, input: crate::types::AuthenticationConfiguration) -> Self {
        self.authentication_configuration = ::std::option::Option::Some(input);
        self
    }
    /// <p>The authentication properties of the connection.</p>
    pub fn set_authentication_configuration(mut self, input: ::std::option::Option<crate::types::AuthenticationConfiguration>) -> Self {
        self.authentication_configuration = input;
        self
    }
    /// <p>The authentication properties of the connection.</p>
    pub fn get_authentication_configuration(&self) -> &::std::option::Option<crate::types::AuthenticationConfiguration> {
        &self.authentication_configuration
    }
    /// <p>The version of the connection schema for this connection. Version 2 supports properties for specific compute environments.</p>
    pub fn connection_schema_version(mut self, input: i32) -> Self {
        self.connection_schema_version = ::std::option::Option::Some(input);
        self
    }
    /// <p>The version of the connection schema for this connection. Version 2 supports properties for specific compute environments.</p>
    pub fn set_connection_schema_version(mut self, input: ::std::option::Option<i32>) -> Self {
        self.connection_schema_version = input;
        self
    }
    /// <p>The version of the connection schema for this connection. Version 2 supports properties for specific compute environments.</p>
    pub fn get_connection_schema_version(&self) -> &::std::option::Option<i32> {
        &self.connection_schema_version
    }
    /// Appends an item to `compatible_compute_environments`.
    ///
    /// To override the contents of this collection use [`set_compatible_compute_environments`](Self::set_compatible_compute_environments).
    ///
    /// <p>A list of compute environments compatible with the connection.</p>
    pub fn compatible_compute_environments(mut self, input: crate::types::ComputeEnvironment) -> Self {
        let mut v = self.compatible_compute_environments.unwrap_or_default();
        v.push(input);
        self.compatible_compute_environments = ::std::option::Option::Some(v);
        self
    }
    /// <p>A list of compute environments compatible with the connection.</p>
    pub fn set_compatible_compute_environments(mut self, input: ::std::option::Option<::std::vec::Vec<crate::types::ComputeEnvironment>>) -> Self {
        self.compatible_compute_environments = input;
        self
    }
    /// <p>A list of compute environments compatible with the connection.</p>
    pub fn get_compatible_compute_environments(&self) -> &::std::option::Option<::std::vec::Vec<crate::types::ComputeEnvironment>> {
        &self.compatible_compute_environments
    }
    /// Consumes the builder and constructs a [`Connection`](crate::types::Connection).
    pub fn build(self) -> crate::types::Connection {
        crate::types::Connection {
            name: self.name,
            description: self.description,
            connection_type: self.connection_type,
            match_criteria: self.match_criteria,
            connection_properties: self.connection_properties,
            spark_properties: self.spark_properties,
            athena_properties: self.athena_properties,
            python_properties: self.python_properties,
            physical_connection_requirements: self.physical_connection_requirements,
            creation_time: self.creation_time,
            last_updated_time: self.last_updated_time,
            last_updated_by: self.last_updated_by,
            status: self.status,
            status_reason: self.status_reason,
            last_connection_validation_time: self.last_connection_validation_time,
            authentication_configuration: self.authentication_configuration,
            connection_schema_version: self.connection_schema_version,
            compatible_compute_environments: self.compatible_compute_environments,
        }
    }
}