In [1]:
import requests
import os
import json
import base64
from dotenv import load_dotenv
from rich import print

# Read environment variables from .env file
load_dotenv()

client_id = os.getenv("CLIENT_ID")
client_secret = os.getenv("CLIENT_SECRET")
account_id = os.getenv("ACCOUNT_ID")


url = f"https://accounts.azuredatabricks.net/oidc/accounts/{account_id}/v1/token"

# Use form data instead of string payload
payload = {
    'grant_type': 'client_credentials',
    'scope': 'all-apis'
}

# Encode credentials for Basic authentication
credentials = f"{client_id}:{client_secret}"
encoded_credentials = base64.b64encode(credentials.encode()).decode()

headers = {
    'Authorization': f'Basic {encoded_credentials}'
}

# Send as form data (requests will automatically set Content-Type to application/x-www-form-urlencoded)
response = requests.post(url, headers=headers, data=payload)


# Extract the token from the response
if response.status_code == 200:
    try:
        token_data = response.json()
        created_at_utc = token_data.get('created_at')  # Assuming created_at is already in UTC format
        access_token = token_data.get('access_token')
        token_expiry = token_data.get('expires_in')
        print(f"\nAccess Token: {access_token}")
        print(f"Token Expiry (seconds): {token_expiry}")
        print(f"Token Created At (UTC): {token_data}")
        
        # Optionally save token to environment or file
        # os.environ['DATABRICKS_TOKEN'] = access_token
    except json.JSONDecodeError as e:
        print(f"\nJSON Decode Error: {e}")
        print(f"Raw response: {response.text}")  # First 500 chars
else:
    print(f"\nError: {response.status_code}")
    print(f"Response: {response.text}")  # First 500 chars

In [2]:
from databricks.sdk import WorkspaceClient

w = WorkspaceClient(
  host  = 'https://adb-2329622552520735.15.azuredatabricks.net/',
  token = access_token
)

# List all recipients
all_recipients = w.recipients.list()

for recipient in all_recipients:
    print(recipient)

In [None]:
## D2D recipient

import time
from databricks.sdk import WorkspaceClient
from databricks.sdk.service.sharing import AuthenticationType
#https://databricks-sdk-py.readthedocs.io/en/stable/workspace/sharing/recipients.html

w = WorkspaceClient(
  host  = 'https://adb-2329622552520735.15.azuredatabricks.net/',
  token = access_token
)

sharing_code = None


created = w.recipients.create(
    name=f"sdk-client-{time.time_ns()}", 
    data_recipient_global_metastore_id="aws:us-west-2:a5895d0c-1436-4d8c-90eb-5a03b0f621fd",
    comment="This is recipient for delta sharing activity",
    authentication_type=AuthenticationType.DATABRICKS,
    sharing_code=sharing_code
)

# Display recipient details
print(f"Name: {created.name}")
print(f"Activation URL: {created.activation_url}")
print(f"Region: {created.region}")
print(f"Sharing Code: {created.sharing_code}")
print(f"Tokens: {created.tokens}")
print(f"Updated At: {created.updated_at}")

In [7]:
import time
from databricks.sdk import WorkspaceClient
from databricks.sdk.service.sharing import AuthenticationType
#https://databricks-sdk-py.readthedocs.io/en/stable/workspace/sharing/recipients.html

w = WorkspaceClient(
  host  = 'https://adb-2329622552520735.15.azuredatabricks.net/',
  token = access_token
)


w.recipients.delete(name="testing_pam")

NotFound: Recipient 'testing_pam' does not exist.

In [45]:
# D2O (Databricks to Open) - Token-based recipient

import time
from databricks.sdk import WorkspaceClient
from databricks.sdk.service.sharing import AuthenticationType, IpAccessList

w = WorkspaceClient(
  host='https://adb-2329622552520735.15.azuredatabricks.net/',
  token=access_token
)

created = w.recipients.create(
    name=f"pam-client-{time.time_ns()}", 
    comment="This is recipient for delta sharing activity",
    authentication_type=AuthenticationType.TOKEN,
    ip_access_list=IpAccessList(allowed_ip_addresses=["0.0.0.0/0", "212.212.3.0/24"])
)

# Display recipient details
print(f"Name: {created.name}")
print(f"Activation URL: {created.activation_url}")
print(f"Region: {created.region}")
print(f"Sharing Code: {created.sharing_code}")
print(f"Tokens: {created.tokens}")
print(f"Updated At: {created.updated_at}")

In [49]:
## rotate token

import time
from databricks.sdk import WorkspaceClient
from databricks.sdk.service.sharing import AuthenticationType, IpAccessList

w = WorkspaceClient(
  host='https://adb-2329622552520735.15.azuredatabricks.net/',
  token=access_token
)

created = w.recipients.rotate_token(name="pam-client-1764805388466627073", existing_token_expire_in_seconds=0)

print(f"Name: {created.name}")
print(f"Activation URL: {created.activation_url}")
print(f"Region: {created.region}")
print(f"Sharing Code: {created.sharing_code}")
print(f"Tokens: {created.tokens}")
print(f"Updated At: {created.updated_at}")

In [52]:
import time
from databricks.sdk import WorkspaceClient
from databricks.sdk.service.sharing import AuthenticationType, IpAccessList

w = WorkspaceClient(
  host='https://adb-2329622552520735.15.azuredatabricks.net/',
  token=access_token
)

ip_access_list=IpAccessList(allowed_ip_addresses=["1.1.1.2/0"])



w.recipients.update(name="pam-client-1764805388466627073", 
                    comment=f"sdk-{time.time_ns()}",
                    ip_access_list=ip_access_list)



RecipientInfo(activated=None, activation_url=None, authentication_type=<AuthenticationType.TOKEN: 'TOKEN'>, cloud=None, comment='sdk-1764808574404699743', created_at=1764805389927, created_by='e04058ec-8264-440d-a49d-25b31ac1b9ca', data_recipient_global_metastore_id=None, expiration_time=None, ip_access_list=IpAccessList(allowed_ip_addresses=['1.1.1.2/0']), metastore_id=None, name='pam-client-1764805388466627073', owner='e04058ec-8264-440d-a49d-25b31ac1b9ca', properties_kvpairs=SecurablePropertiesKvPairs(properties={'databricks.name': 'pam-client-1764805388466627073'}), region=None, sharing_code=None, tokens=[RecipientTokenInfo(activation_url=None, created_at=1764806140511, created_by='e04058ec-8264-440d-a49d-25b31ac1b9ca', expiration_time=1772582140513, id='cc639cb1-6326-4195-8e94-d1774f525c02', updated_at=1764806140513, updated_by='e04058ec-8264-440d-a49d-25b31ac1b9ca')], updated_at=1764808575183, updated_by='e04058ec-8264-440d-a49d-25b31ac1b9ca')

In [55]:
from databricks.sdk import WorkspaceClient

w = WorkspaceClient(
  host='https://adb-2329622552520735.15.azuredatabricks.net/',
  token=access_token
)

# List all recipients
all_recipients = w.recipients.list()

for recipient in all_recipients:
    print(recipient)