Authentication from config (#177)

* Using Azure credentials from config * Bug fixes * Restoring exps file * use config file for credentials management * formatting
skyplane-project · Mar 3, 2022 · f513789 · f513789
1 parent 7a27c30
commit f513789
Show file tree

Hide file tree

Showing 2 changed files with 13 additions and 15 deletions.
diff --git a/skylark/compute/server.py b/skylark/compute/server.py
@@ -4,8 +4,8 @@
 from enum import Enum, auto
 from pathlib import Path
 from typing import Dict
-
 import requests
+from skylark import config_file
 from skylark.utils import logger
 from skylark.compute.utils import make_dozzle_command, make_sysctl_tcp_tuning_command
 from skylark.utils.utils import PathLike, Timer, retry_backoff, wait_for
@@ -209,16 +209,12 @@ def check_stderr(tup):
 
         # read AWS config file to get credentials
         # TODO: Integrate this with updated skylark config file
-        docker_envs = ""
-        try:
-            config = configparser.RawConfigParser()
-            config.read(os.path.expanduser("~/.aws/credentials"))
-            aws_access_key_id = config.get("default", "aws_access_key_id")
-            aws_secret_access_key = config.get("default", "aws_secret_access_key")
-            docker_envs += f" -e AWS_ACCESS_KEY_ID='{aws_access_key_id}'"
-            docker_envs += f" -e AWS_SECRET_ACCESS_KEY='{aws_secret_access_key}'"
-        except Exception as e:
-            logger.error(f"Failed to read AWS credentials locally {e}")
+        # copy config file
+        config = config_file.read_text()[:-2] + "}"
+        config = json.dumps(config)  # Convert to JSON string and remove trailing comma/new-line
+        self.run_command(f'mkdir -p /opt; echo "{config}" | sudo tee /opt/{config_file.name} > /dev/null')
+
+        docker_envs = ""  # If needed, add environment variables to docker command
 
         with Timer(f"{desc_prefix}: Docker pull"):
             docker_out, docker_err = self.run_command(f"sudo docker pull {gateway_docker_image}")
@@ -228,6 +224,7 @@ def check_stderr(tup):
             f"-d --rm --log-driver=local --log-opt max-file=16 --ipc=host --network=host --ulimit nofile={1024 * 1024} {docker_envs}"
         )
         docker_run_flags += " --mount type=tmpfs,dst=/skylark,tmpfs-size=$(($(free -b  | head -n2 | tail -n1 | awk '{print $2}')/2))"
+        docker_run_flags += f" -v /opt/{config_file.name}:/pkg/data/{config_file.name}"
         gateway_daemon_cmd = f"python -u /pkg/skylark/gateway/gateway_daemon.py --chunk-dir /skylark/chunks --outgoing-ports '{json.dumps(outgoing_ports)}' --region {self.region_tag}"
         docker_launch_cmd = f"sudo docker run {docker_run_flags} --name skylark_gateway {gateway_docker_image} {gateway_daemon_cmd}"
         start_out, start_err = self.run_command(docker_launch_cmd)

diff --git a/skylark/obj_store/s3_interface.py b/skylark/obj_store/s3_interface.py
@@ -10,6 +10,7 @@
 from awscrt.s3 import S3Client, S3RequestTlsMode, S3RequestType
 
 from skylark.compute.aws.aws_server import AWSServer
+from skylark.config import load_config
 from skylark.obj_store.object_store_interface import NoSuchObjectException, ObjectStoreInterface, ObjectStoreObject
 
 
@@ -33,10 +34,10 @@ def __init__(self, aws_region, bucket_name, use_tls=True, part_size=None, throug
         event_loop_group = EventLoopGroup(num_threads=num_threads, cpu_group=None)
         host_resolver = DefaultHostResolver(event_loop_group)
         bootstrap = ClientBootstrap(event_loop_group, host_resolver)
-
-        # get aws auth info for docker envs
-        aws_access_key_id = os.getenv("AWS_ACCESS_KEY_ID", None)
-        aws_secret_access_key = os.getenv("AWS_SECRET_ACCESS_KEY", None)
+        # Authenticate
+        config = load_config()
+        aws_access_key_id = config["aws_access_key_id"]
+        aws_secret_access_key = config["aws_secret_access_key"]
         if aws_access_key_id and aws_secret_access_key:
             credential_provider = AwsCredentialsProvider.new_static(aws_access_key_id, aws_secret_access_key)
         else:  # use default