feature request: s3 access via short-lived tokens #56
Comments
|
@menzenski hmm this does utilize boto3 under the hood. If you set those env variables it might "just work" give it a shot and we could document it! |
|
I think we have a heavy hand here you're probably right. If you dropped https://github.com/MeltanoLabs/tap-universal-file/blob/main/tap_universal_file/files.py#L189-L197 it might "just work" and we could handle s3 auth better so it seems. Fyi @sebastianswms |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
We run Meltano in Kubernetes with AWS EKS and our jobs run with a Kubernetes ServiceAccount mapped to an AWS IAM role with S3 access. Currently, we use
tap-spreadsheets-anywhereto extract CSV data from AWS S3 using short-lived tokens viasts:AssumeRole(AWS_WEB_IDENTITY_TOKEN_FILEandAWS_ROLE_SESSION_NAMEenvironment variables).In
tap-spreadsheets-anywherethe tap just usesboto3and this behavior is provided out-of-the-box. I'm interested to try thistap-universal-fileextractor but it seems to only allow long-lived access key and secret credentials for S3.The text was updated successfully, but these errors were encountered: