Details

    • Sub-task
    • Status: Resolved
    • Major
    • Resolution: Fixed
    • 3.0.0
    • 3.1.0
    • fs/s3
    • None

    Description

      Add the ability to use assumed roles in S3A

      • Add a property fs.s3a.assumed.role.arn for the ARN of the assumed role
      • add a new provider which grabs that and other properties and then creates a STSAssumeRoleSessionCredentialsProvider from it.
      • This also needs to support building up its own list of aws credential providers, from a different property; make the changes to S3AUtils for that
      • Tests
      • docs
      • and have the AwsProviderList forward closeable to it.
      • Get picked up automatically by DDB/s3guard

      Attachments

        1. HADOOP-15141-001.patch
          30 kB
          Steve Loughran
        2. HADOOP-15141-002.patch
          50 kB
          Steve Loughran
        3. HADOOP-15141-003.patch
          67 kB
          Steve Loughran
        4. HADOOP-15141-004.patch
          87 kB
          Steve Loughran
        5. HADOOP-15141-005.patch
          87 kB
          Steve Loughran
        6. HADOOP-15141-006.patch
          88 kB
          Aaron Fabbri

        Issue Links

          Activity

            People

              stevel@apache.org Steve Loughran
              stevel@apache.org Steve Loughran
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: