-
Notifications
You must be signed in to change notification settings - Fork 4.9k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Provide more ways to set AWS credentials in Functionbeat #23344
Provide more ways to set AWS credentials in Functionbeat #23344
Conversation
Pinging @elastic/agent (Team:Agent) |
5719971
to
80b3a6e
Compare
💚 Build Succeeded
Expand to view the summary
Build stats
Test stats 🧪
Steps errorsExpand to view the steps failures
|
Test | Results |
---|---|
Failed | 0 |
Passed | 5602 |
Skipped | 396 |
Total | 5998 |
80b3a6e
to
85fe0bd
Compare
Some tests need adjustment. |
05c6938
to
6019970
Compare
6019970
to
7f1ed12
Compare
f7cdcd5
to
b6f0335
Compare
b6f0335
to
43e0ef7
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good to me, not sure why doc is not happy though:
12:32:16 INFO:build_docs:asciidoctor: ERROR: config-options-aws.asciidoc: line 219: include file not found: /tmp/docsbuild/eSoev3Xy72/beats/x-pack/libbeat/docs/aws-credentials-config.asciidoc
Wow, this was a fun doc build error to try and hunt down. I think you're seeing this issue because no file named You're including |
Pushed a partial fix in dd080ba. From here, we'll merge elastic/docs#2035, |
@elasticmachine, run elasticsearch-ci/docs |
New error:
|
@elasticmachine, run elasticsearch-ci/docs |
This PR makes credential settings when deploying Lambdas to AWS more flexible. New options are introduced: 1. `access_key_id`, `secret_access_key` and/or `session_token` for tokens ```yaml functionbeat.provider.aws.access_key_id: '${AWS_ACCESS_KEY_ID:""}' functionbeat.provider.aws.secret_access_key: '${AWS_SECRET_ACCESS_KEY:""}' functionbeat.provider.aws.session_token: '${AWS_SESSION_TOKEN:""}' ``` 2. `role_arn` for assuming IAM roles ```yaml functionbeat.provider.aws.role_arn: arn:aws:iam::123456789012:role/test-fnb ``` 3. `credential_profile_name` and/or `shared_credential_file` for credential files ```yaml functionbeat.provider.aws.credential_profile_name: fnb-aws functionbeat.provider.aws.shared_credential_file: /etc/functionbeat/aws_credentials ``` Credential configuration becomes more flexible and follows the same pattern as in Filebeat and Metricbeat. Based on elastic#17658 Closes elastic#12464 Co-authored-by: Brandon Morelli <[email protected]> (cherry picked from commit 5e6558b)
…3386) This PR makes credential settings when deploying Lambdas to AWS more flexible. New options are introduced: 1. `access_key_id`, `secret_access_key` and/or `session_token` for tokens ```yaml functionbeat.provider.aws.access_key_id: '${AWS_ACCESS_KEY_ID:""}' functionbeat.provider.aws.secret_access_key: '${AWS_SECRET_ACCESS_KEY:""}' functionbeat.provider.aws.session_token: '${AWS_SESSION_TOKEN:""}' ``` 2. `role_arn` for assuming IAM roles ```yaml functionbeat.provider.aws.role_arn: arn:aws:iam::123456789012:role/test-fnb ``` 3. `credential_profile_name` and/or `shared_credential_file` for credential files ```yaml functionbeat.provider.aws.credential_profile_name: fnb-aws functionbeat.provider.aws.shared_credential_file: /etc/functionbeat/aws_credentials ``` Credential configuration becomes more flexible and follows the same pattern as in Filebeat and Metricbeat. Based on #17658 Closes #12464 Co-authored-by: Brandon Morelli <[email protected]> (cherry picked from commit 5e6558b)
What does this PR do?
This PR makes credential settings when deploying Lambdas to AWS more flexible. New options are introduced:
access_key_id
,secret_access_key
and/orsession_token
for tokensrole_arn
for assuming IAM rolescredential_profile_name
and/orshared_credential_file
for credential filesWhy is it important?
Credential configuration becomes more flexible and follows the same pattern as in Filebeat and Metricbeat.
Checklist
- [ ] I have commented my code, particularly in hard-to-understand areas- [ ] I have added tests that prove my fix is effective or that my feature worksCHANGELOG.next.asciidoc
orCHANGELOG-developer.next.asciidoc
.Related issues
Based on #17658
Closes #12464