Mapping File

Protegrity Serverless provides an additional method for mapping UDF function names to operations and security policy elements through a JSON mapping file. This method is recommended when either custom naming conventions are needed or element names do not conform to Redshift’s function naming validation rules. Here is an example.

The mapping file must be provided in the same S3 bucket as policy export: AWS_POLICY_S3_BUCKET

{
  "myudf_unp_city":
    {
      "Operation": "unprotect",
      "Element": "deCity”
    },
  "myudf_pro_dob": {
      "Operation": "protect",
      "Element": "deBirthdate"
    },
    ...
}

The example mapping above would cause Protegrity Serverless to perform an unprotect on the deCity security element for the requests made from the myudf_unp_city UDF function within Redshift.

Note

The prefix pty is reserved for the method described in Function Naming Convention. The Policy Agent must be triggered to load the load the mapping files.

Feedback

Was this page helpful?

Last modified : January 21, 2026