Upgrade: Python
The Data Productivity Cloud includes a Python Script component, but also offers several other options for performing tasks that would require a Python Script in Matillion ETL. This includes native components such as Print Variables, which gives you a simple way to perform a task that would have required a script in Matillion ETL. You also have the option to run your Python scripts within your Snowflake environment, benefiting from scalable Snowflake compute resources, additional library support, and database connectivity.
The Python Script component itself works differently in the Data Productivity Cloud because there is no underlying virtual machine. The component requires a Hybrid SaaS deployment, and you need to bear the following in mind:
- Python scripts can't assume there is a filesystem that will persist after the script completes. Unlike Matillion ETL, which runs on a Linux VM with a persistent disk, Data Productivity Cloud agents are made up of multiple containers. There is no guarantee that the process that writes the file runs on the same container as the later process that consumes it.
- Data Productivity Cloud agents have much lower CPU and memory resources than Matillion ETL VMs—they're not designed for any compute-intensive operations, thus, large scripts may run very slowly or cause the agent to become unstable.
-
Only Python 3 is available in the Data Productivity Cloud. If you have a component that uses the Python 2 or Jython interpreters, the migration tool will warn you that Python 3 is the only option, and you may need to update your scripts to be compatible with Python 3.
-
Third party packages can't be installed with
piporapt, as the file system on the agent is immutable. There is a mechanism to supply packages via Amazon S3 or Azure Blob, but it has some limitations. Read Loading additional Python libraries for details.
Note
The version of Python currently used by the Data Productivity Cloud is 3.10. If you are migrating a version of Python later than this, you should use the Python Pushdown component instead (available in Snowflake projects only).
Upgrade path
Our recommendations for migration of Python Script components are (in order of preference):
- Replace with native components where possible. The Data Productivity Cloud has new components that will natively perform some of the common tasks Python scripts were used for in Matillion ETL, such as Print Variables, with more coming soon (Move File, Delete File, Send Email with Attachment, for example).
-
In a Snowflake project, consider refactoring the pipeline to use the Python Pushdown component. Advantages of this component over the Python Script component are:
- Runs on scalable Snowflake warehouses.
- Direct access to Snowflake database connections.
- Designed for heavy data processing, including
pandas. - Full access to Data Productivity Cloud variables.
- Many packages accessible by default.
- Can be secured with network access control.
However, when choosing to use Python Pushdown, consider the following:
- May require some Python code refactoring.
- Some initial setup of your Snowflake account will be required.
- Some initial configuration of network access will be required.
- This feature is only available in Snowflake projects.
-
Use the Python Script component. This option can be low friction, but has some limitations:
- The script may need to be refactored so it doesn't rely on a filesystem.
- Available for Hybrid SaaS deployments only.
-
Only Python 3 is supported.
- Components with Python 2 scripts will migrate successfully, but the scripts may need to be made compatible with Python 3 before they will run. See below, and also read Porting Python 2 Code to Python 3 in the Python documentation for further details.
- Components with Jython scripts will have to be replaced with the Python Pushdown component (available in Snowflake projects only).
-
Use the Bash Pushdown component to run a Python script on your own Linux machine via Bash. Advantages of this approach are:
- You can set the CPU and memory on the Linux VM as needed.
- You can install any packages or third-party applications you need on the Linux VM.
However, when choosing to use Bash Pushdown, consider the following:
- You need to set up, secure, update, and manage the Linux machine yourself.
- You need network access from the Data Productivity Cloud agent to the compute source.
Upgrading Python 2 scripts to Python 3
The Data Productivity Cloud supports Python 3 only. If you have a Python 2 script in your Matillion ETL job, you can choose to have it automatically converted to Python 3 during migration.
When converting a Python 2 script to Python 3, the migration tool uses the 2to3 utility that's part of the standard Python library. This tool can handle many of the more common changes between Python 2 and Python 3, but you may need to make additional manual changes to the script to ensure it works as expected. Read the Python documentation for more details.
When you import a Python 2 script to the Data Productivity Cloud, the migration report will identify it in the Manual refactor section and alert you that an upgrade is needed.
To perform the script upgrade:
- Click Edit preferences in the Importing files panel.
- Toggle Convert Python 2.x to 3 to On. The default setting for this option is Off, meaning that no scripts will be converted unless you explicitly enable it.
- Click Apply & re-run.
- If you again examine the migration report, it will now show "Your Python script has been auto-converted using the 2to3 tool."
- Click Import to complete the import process, and continue as described in Import to the Data Productivity Cloud.
After conversion, both the original and the converted versions of the scripts are stored in the Data Productivity Cloud branch. In the branch's Files panel, navigate to the .matillion → migration → <migration date> → <pipeline name> folder. There you will find two versions of each converted script, labelled _before and _after. This allows you to compare the two versions and see what changes were made during the conversion, but only the _after version is used in the migrated pipeline component. You can delete the _before version when you no longer need it for verification purposes.
Warning
Matillion can't guarantee the converted script will work as expected. You should always review the converted script and test it thoroughly.
Using automatic variables in a Python script
The Data Productivity Cloud doesn't support directly accessing automatic variables through the Python Script component.
If you require this functionality, you can use an Update Scalar component to write the values to user-defined variables, which can then be passed to the script.
Upgrading Jython scripts that use the cursor object
Python in the Data Productivity Cloud does not provide a method to obtain a cursor object, as Jython in Matillion ETL does. If you have a Jython script that accesses the target cloud data warehouse via a cursor, you have a number of options for refactoring the job to run as a Data Productivity Cloud pipeline.
Recommended best practice is to refactor the pipelines to use Query Result to Grid, Query Result to Scalar or SQL Script components in the Data Productivity Cloud instead of a Python script. However, this may require considerable refactoring work during the migration, and you may prefer to use one of the following instead:
- In the Python Pushdown component (available in Snowflake projects only), you can use the
session.sqlfunction to replicate thecontext.cursor()function from Matillion ETL. This method is described in detail below. - In the Python Script component (available in Hybrid SaaS deployments only), you can add a block of code to the start of the script to replicate the
context.cursor()function from Matillion ETL. This method is described in detail below.
Python Pushdown method
Note
The Python Pushdown component is available on Snowflake only.
In Jython scripts in Matillion ETL, you could use the context object to access a database cursor. For example:
cursor = context.cursor()
cursor.execute('select count(*) from mytable')
rowcount = cursor.fetchone()[0]
This allows the Jython script to query the database directly from within the script, and then use the query results within the same script. This functionality is not available within Python 3 used by the Data Productivity Cloud, but it can be replicated using the session.sql function and .collect() method, as follows:
rows = session.sql('select count(*) as "ROW_COUNT" from mytable').collect()
rowcount = rows[0].ROW_COUNT
The session.sql function runs the query, and the .collect() method saves the result in the rows list variable local to the script. Other types of query, such as create, can also be used within the session.sql function.
Python Script method
Note
- The method requires the Python Script component. Because of this, it will only work in a Hybrid SaaS deployment, as the Python Script component is not available on Full SaaS deployments.
- The method uses the agent's cloud credentials to access either AWS Secrets Manager or Azure Key Vault.
- We recommend creating the necessary variables for this method as project variables.
The exact method depends on your cloud platform and cloud data warehouse, as described in the following sections.
Snowflake on AWS, using a private key
Create and define the following project variables:
| Variable | Description |
|---|---|
| snowflake_account | The Snowflake account. Read Specify data warehouse credentials for details. |
| snowflake_username | The Snowflake username. Read Specify data warehouse credentials for details. |
| snowflake_role | The Snowflake role. Read Select data warehouse defaults for details. |
| snowflake_warehouse | The Snowflake warehouse. Read Specify data warehouse credentials for details. |
| snowflake_database | The Snowflake database. Read Specify data warehouse credentials for details. |
| snowflake_schema | The Snowflake schema. Read Specify data warehouse credentials for details. |
| snowflake_private_key_secret_name | The name of the secret in AWS Secrets Manager containing the Snowflake private key. |
Add the following code to the top of your Python script:
################### cursor setup ###################
import boto3
import json
import re
import snowflake.connector
def extract_key_content(key_string):
pattern = r'-----BEGIN PRIVATE KEY-----\s*(.*?)\s*-----END PRIVATE KEY-----'
match = re.search(pattern, key_string, re.DOTALL)
if match:
return match.group(1).replace('\n', '').replace(' ', '')
return None
def dpc_cursor():
client = boto3.client('secretsmanager')
secret_value_response = client.get_secret_value(SecretId=snowflake_private_key_secret_name)
snowflake_private_key = extract_key_content(secret_value_response['SecretString'])
connection = conn = snowflake.connector.connect(
account=snowflake_account,
user=snowflake_username,
private_key=snowflake_private_key,
role=snowflake_role,
warehouse=snowflake_warehouse,
database=snowflake_database,
schema=snowflake_schema
)
return connection.cursor()
context.cursor = dpc_cursor
################### end of cursor setup ###################
Snowflake on Azure, using a private key
When the agent is installed on Azure, there are two Python packages that need to be added to the agent. Add the following custom Python packages, using the instructions found in Installing Python libraries.
- azure_identity
- azure-keyvault-secrets
Create and define the following project variables:
| Variable | Description |
|---|---|
| snowflake_account | The Snowflake account. Read Specify data warehouse credentials for details. |
| snowflake_username | The Snowflake username. Read Specify data warehouse credentials for details. |
| snowflake_role | The Snowflake role. Read Select data warehouse defaults for details. |
| snowflake_warehouse | The Snowflake warehouse. Read Specify data warehouse credentials for details. |
| snowflake_database | The Snowflake database. Read Specify data warehouse credentials for details. |
| snowflake_schema | The Snowflake schema. Read Specify data warehouse credentials for details. |
| azure_key_vault_url | The URL of an Azure Key Vault that contains the secret for the private key. |
| snowflake_private_key_secret_name | The name of the secret in Azure Key Vault containing the Snowflake private key. |
Add the following code to the top of your Python script:
################### cursor setup ###################
from azure.identity import ManagedIdentityCredential
from azure.keyvault.secrets import SecretClient
import re
import snowflake.connector
def extract_key_content(key_string):
pattern = r'-----BEGIN PRIVATE KEY-----\s*(.*?)\s*-----END PRIVATE KEY-----'
match = re.search(pattern, key_string, re.DOTALL)
if match:
return match.group(1).replace('\n', '').replace(' ', '')
return None
def dpc_cursor():
client_id = os.environ["AZURE_CLIENT_ID"]
credential = ManagedIdentityCredential(client_id=client_id)
key_vault_client = SecretClient(
vault_url=azure_key_vault_url,
credential=credential
)
key_vault_secret = key_vault_client.get_secret(snowflake_private_key_secret_name)
snowflake_private_key = extract_key_content(key_vault_secret.value)
connection = conn = snowflake.connector.connect(
account=snowflake_account,
user=snowflake_username,
private_key=snowflake_private_key,
role=snowflake_role,
warehouse=snowflake_warehouse,
database=snowflake_database,
schema=snowflake_schema
)
return connection.cursor()
context.cursor = dpc_cursor
################### end of cursor setup ###################
Databricks on AWS, using a personal access token
Create and define the following project variables:
| Variable | Description |
|---|---|
| databricks_server_hostname | The server hostname value for your cluster or SQL warehouse. For more details, read the Databricks documentation. |
| databricks_http_path | The HTTP path value for your cluster or SQL warehouse. For more details, read the Databricks documentation. |
| databricks_pat_secret_name | The name of the secret in AWS Secrets Manager containing the Databricks personal access token. |
| databricks_pat_secret_key | The key within the secret identified by databricks_pat_secret_name that has the personal access token as its value. |
Add the following code to the top of your Python script:
################### cursor setup ###################
import boto3
from databricks import sql as dbks_sql
import json
def dpc_cursor():
client = boto3.client('secretsmanager')
secret_value_response = client.get_secret_value(SecretId=databricks_pat_secret_name)
secret_dictionary = json.loads(secret_value_response['SecretString'])
access_token = secret_dictionary[databricks_pat_secret_key]
connection = dbks_sql.connect(
server_hostname=databricks_server_hostname,
http_path=databricks_http_path,
access_token=access_token,
)
return connection.cursor()
context.cursor = dpc_cursor
################### end of cursor setup ###################
Databricks on Azure, using a personal access token
When the agent is installed on Azure, there are two Python packages that need to be added to the agent. Add the following custom Python packages, using the instructions found in Installing Python libraries.
- azure_identity
- azure-keyvault-secrets
Create and define the following project variables:
| Variable | Description |
|---|---|
| databricks_server_hostname | The server hostname value for your cluster or SQL warehouse. For more details, read the Databricks documentation. |
| databricks_http_path | The HTTP path value for your cluster or SQL warehouse. For more details, read the Databricks documentation. |
| azure_key_vault_url | The URL of an Azure Key Vault that contains the Databricks personal access token. |
| databricks_pat_secret_name | The name of the secret in the Azure Key Vault that contains the personal access token. |
Add the following code to the top of your Python script:
################### cursor setup ###################
from azure.identity import ManagedIdentityCredential
from azure.keyvault.secrets import SecretClient
from databricks import sql as dbks_sql
def dpc_cursor():
client_id = os.environ["AZURE_CLIENT_ID"]
credential = ManagedIdentityCredential(client_id=client_id)
key_vault_client = SecretClient(
vault_url=azure_key_vault_url,
credential=credential
)
key_vault_secret = key_vault_client.get_secret(databricks_pat_secret_name)
access_token = key_vault_secret.value
connection = dbks_sql.connect(
server_hostname=databricks_server_hostname,
http_path=databricks_http_path,
access_token=access_token,
)
return connection.cursor()
context.cursor = dpc_cursor
################### end of cursor setup ###################
Redshift on AWS, using username and password
Create and define the following project variables:
| Variable | Description |
|---|---|
| redshift_endpoint | The Redshift endpoint. Read Specify data warehouse credentials for details. |
| redshift_database | The Redshift database. Read Specify data warehouse credentials for details. |
| redshift_port | The Redshift port. Read Specify data warehouse credentials for details. |
| redshift_username | The Redshift username. Read Specify data warehouse credentials for details. |
| redshift_password_secret_name | The name of the secret in AWS Secrets Manager containing the Redshift password. |
| redshift_password_secret_key | The key within the secret identified by redshift_password_secret_name that has the Redshift password as its value. |
Add the following code to the top of your Python script:
################### cursor setup ###################
import boto3
import json
import redshift_connector
def dpc_cursor():
client = boto3.client('secretsmanager')
secret_value_response = client.get_secret_value(SecretId=redshift_password_secret_name)
secret_dictionary = json.loads(secret_value_response['SecretString'])
redshift_password = secret_dictionary[redshift_password_secret_key]
connection = redshift_connector.connect(
host=redshift_endpoint,
database=redshift_database,
port=redshift_port,
user=redshift_username,
password=redshift_password
)
return connection.cursor()
context.cursor = dpc_cursor
################### end of cursor setup ###################
Upgrading Jython scripts that use grid variables
The handling of grid variables in Python scripts in the Data Productivity Cloud is different than how Jython scripts in Matillion ETL handle them. You need to be aware of this and make appropriate changes when converting any Jython scripts into Python as part of a migration to the Data Productivity Cloud.
In a Data Productivity Cloud Python script, modifying list data retrieved from a grid variable can unexpectedly alter the data source for subsequent reads within the same script. This is an expected effect of Python's standard behavior of handling lists as mutable objects passed by reference, meaning changes can affect the original structure. To ensure modifications are isolated, you should create an independent copy of the list (for example, using copy.deepcopy()) before altering it in the Python script.
The differences in behavior can be summarized as follows:
- Jython in Matillion ETL:
context.getGridVariable()returns a new (shallow) copy of the list object each time it is called. Assigning this to a variable creates another reference to that new copy. Therefore, modifying the local variable (copy_list) doesn't affect subsequent retrievals of the grid variable. - Python in the Data Productivity Cloud:
context.getGridVariable()returns a reference to the same underlying object representation upon subsequent calls within the script. Simple assignment (copy_list = ...) creates another reference pointing to that exact same object. Consequently, modifying the list via any reference (such ascopy_list) changes the single object, and subsequent retrievals read that change.
Therefore, it is crucial to follow Python 3 standard practice in Data Productivity Cloud Python scripts and use copy.deepcopy() (or appropriate alternatives like list comprehensions for nested structures) when you intend to modify retrieved grid variable data without side effects, whereas you may not have done this in your Matillion ETL Jython scripts.