Manage Frameworks
Frameworks API reference guide
The frameworks resource allows you to create and manage classification frameworks. System-created frameworks cannot be edited, so create a clone to make any adjustments.
Endpoints
Method | Endpoint | Description |
---|---|---|
GET | Gets all the frameworks | |
POST | Creates a new framework | |
DELETE | Deletes a framework | |
GET | Gets the framework with the given framework ID | |
PUT | Updates a framework | |
POST | Clones a framework | |
GET | Gets all versions of the framework with the given framework ID |
GET
/frameworks
GET
/frameworks
Get all the frameworks in Immuta.
Response
The response returns all the frameworks in Immuta. See the framework reference section for details about the response schema.
POST
/frameworks
POST
/frameworks
Create a new framework. This example creates a framework that will tag all columns in a data source with the tag "HR Framework . Internal Employee Data" when a single column within the data source has the tag "Employee Name". Then subscription and data policies can be built to only allow HR to access this sensitive employee data.
Rule limit
Frameworks can have a maximum of 50 rules.
Body parameters
The request accepts a JSON or YAML payload. See the framework payload description for parameter details.
Response
The response returns the framework that was created. See the framework reference section for details about the response schema.
DELETE
/frameworks/{frameworkId}
DELETE
/frameworks/{frameworkId}
Deletes the framework you specify in the request.
Request parameter
Parameter | Description | Required or optional |
---|---|---|
id | The unique identifier of the framework. | Required |
Response
The response returns a 204
response code if the request was successful.
GET
/frameworks/{frameworkId}
GET
/frameworks/{frameworkId}
Gets the framework you specify in the request.
Request parameter
Parameter | Description | Required or optional |
---|---|---|
id | The unique identifier of the framework. | Required |
Response
The response returns the framework specified in the request. See the framework reference section for details about the response schema.
PUT
/frameworks/{frameworkId}
PUT
/frameworks/{frameworkId}
Update a framework. This example updates a framework to be inactive.
Request parameter
Parameter | Description | Required or optional |
---|---|---|
id | The unique identifier of the framework. | Required |
Body parameters
The request accepts a JSON or YAML payload. See the framework payload description for parameter options; partial updates are supported.
Response
The response returns the framework that was updated. See the framework reference section for details about the response schema.
POST
/frameworks/{frameworkId}/clone
POST
/frameworks/{frameworkId}/clone
Clone a framework from an existing framework.
Request parameter
Parameter | Description | Required or optional |
---|---|---|
id | The unique identifier of the framework. | Required |
Response
The response returns the framework that was created as a clone. See the framework reference section for details about the response schema.
GET
/frameworks/{frameworkId}/versions
GET
/frameworks/{frameworkId}/versions
Gets every version of the framework you specify in the request.
Request parameter
Parameter | Description | Required or optional |
---|---|---|
id | The unique identifier of the framework. | Required |
Response
The response returns a copy of every version of the framework specified in the request. See the framework reference section for details about the response schema.
Framework payload
The framework payload is used when creating or updating a framework. See the parameters below.
Parameter | Description | Required or optional | Default values | Accepted values |
---|---|---|---|---|
shortName | The short, human-readable name for the framework. | Required | - | - |
name | The official, human-readable name for the framework. | Required | - | - |
description | A description of the framework. | Required | - | - |
tags | The tags used in the framework and the sensitivity attached to them. Each tag used must have a tags object. See the tags object description for child parameters. | Required | - | - |
rules | The rules used to apply the tags in the framework. See the rules object description for child parameters. | Required | - | - |
active | When | Required | - |
|
Tags object
The tags object specifies the tags created for and used in the framework. It includes metadata for the tags, like sensitivity and descriptions. The table below outlines its child parameters.
Parameter | Description | Required or optional | Default values | Accepted values |
---|---|---|---|---|
name | The fully rendered name of the tag, including any parent tags. | Required | - | - |
source | The catalog the tag is from. | Required | - |
|
description | A description of the classification tag. | Required | - | - |
sensitivities | The sensitivity assigned to the tag. This sensitivity can drive the Detect dashboards and monitors. | Optional |
| - |
sensitivities.dimension | The type of sensitivity assigned to the tag. | Required if adding sensitivities | - |
|
sensitivities.sensitivity | The sensitivity assigned to the tag. | Required if adding sensitivities | - |
|
Rules object
The rules object specifies the rules used in the framework. The table below outlines its child parameters.
Parameter | Description | Required or optional | Default values | Accepted values |
---|---|---|---|---|
name | The short, human-readable name for the rule. | Required | - | - |
classificationTag | The tag to apply to the data source based on the criteria. | Required | - | - |
classificationTag.name | The name of the tag to apply. | Required | - | - |
classificationTag.source | The catalog the tag is from. | Required | - |
|
columnTags | The criteria for applying tags. Tags will be applied to a column when these tags are found on the same column. | Optional |
| - |
columnTags.name | The name of the column tag. When matched, the classification tag will be applied to the same column. | Required if using columnTags criteria | - | - |
columnTags.source | The catalog the column tag is from. | Required if using columnTags criteria | - |
|
neighborColumnTags | The criteria for applying tags. Tags will be applied to all columns within a data source if this tag is found already applied to any column within the data source. | Optional |
| - |
neighborColumnTags.name | The name of the neighboring column tag. When matched, the classification tag will be applied to all columns within that data source. | Required if using neighborColumnTags criteria | - | - |
neighborColumnTags.source | The catalog the neighboring column tag is from. | Required if using neighborColumnTags criteria | - |
|
tableTags | The criteria for applying tags. Tags will be applied to all columns in a data source when this tag is found applied to the data source. | Optional |
| - |
tableTags.name | The name of the data source tag. When matched, the classification tag will be applied to all columns within that data source. | Required if using tableTags criteria | - | - |
tableTags.source | The catalog the data source tag is from. | Required if using tableTags criteria | - |
|
Framework reference
The framework reference is the response for many /frameworks
requests. See the parameters described below.
Parameter | Description |
---|---|
id | The Immuta-assigned unique ID for the framework. |
version | The Immuta-assigned unique ID for the version of this framework. This can be useful when auditing the changes to frameworks. |
shortName | The short, human-readable name for the framework. |
name | The official, human-readable name for the framework. |
description | A description of the framework. |
createdBy | The unique ID of the user who created the framework. |
createdAt | A timestamp of when the framework was created. |
tags | The tags used in the framework and the sensitivity attached to them. See the tags object description for child parameters. |
rules | The rules used to apply the tags in the framework. See the rules object description for child parameters. |
active | If |
Last updated