Details
-
Improvement
-
Status: Resolved
-
Minor
-
Resolution: Fixed
-
2.7.2
-
None
-
Adds support to S3AFileSystem for reading AWS credentials from environment variables.
Description
Unlike the DefaultAWSCredentialsProviderChain in the AWS SDK, the AWSCredentialsProviderChain constructed by S3AFileSystem does not include an EnvironmentVariableCredentialsProvider instance. This prevents users from supplying AWS credentials in the environment variables AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY, which is the only alternative in some scenarios.
In my scenario, I need to access S3 from within a test running in a CI environment that does not support IAM roles but does allow me to supply encrypted environment variables. Thus, the only secure approach I can use is to supply my AWS credentials in environment variables (plaintext configuration files are out of the question).
Attachments
Attachments
Issue Links
- is depended upon by
-
-
- Resolved
-
- is duplicated by
-
-
- Resolved
-
- relates to
-
HADOOP-12548 Read s3a creds from a Credential Provider
-
- Resolved
-
-
-
- Resolved
-