Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

s3: Respect SignatureV2 flag for all credential providers #3496

Merged
merged 2 commits into from
Nov 25, 2020
Merged

s3: Respect SignatureV2 flag for all credential providers #3496

merged 2 commits into from
Nov 25, 2020

Conversation

simonswine
Copy link
Contributor

  • I added CHANGELOG entry for this change.
  • Change is not relevant to the end user.

Changes

Thanos currently only supports V2 signatures when the credentials are statically specified in its configuration. This change supports using signature V2 on other credential sources, too.

Verification

The object storage appliance is not fully compatible with S3V4 signatures and we are able to run it statically configured with V2.

As we need to roll over the used accessKey/secretKey regularly we would like to be able to configure it via the &credentials.IAM{} chain.

@simonswine simonswine force-pushed the support-v2-signatures branch 2 times, most recently from 149127c to a320463 Compare November 23, 2020 16:43
bwplotka
bwplotka approved these changes Nov 23, 2020
View reviewed changes
Copy link
Member

@bwplotka bwplotka left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some style nits only. Thanks! 💪 LGTM otherwise.

pkg/objstore/s3/s3.go Show resolved Hide resolved
pkg/objstore/s3/s3.go Outdated Show resolved Hide resolved
pkg/objstore/s3/s3.go Outdated Show resolved Hide resolved
pkg/objstore/s3/s3.go Outdated Show resolved Hide resolved
@simonswine
s3: Respect SignatureV2 flag for all credential providers
c335eb7 
Thanos currently only supports V2 signatures when the credentials are
statically specified in its configuration. This change supports
requesting signature V2 on other credential sources.

Signed-off-by: Christian Simon <[email protected]>
@simonswine
Fix docs drift
f3faf74 
Signed-off-by: Christian Simon <[email protected]>
bwplotka
bwplotka approved these changes Nov 25, 2020
View reviewed changes
Copy link
Member

@bwplotka bwplotka left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💪 Thanks!

LGTM

@bwplotka bwplotka merged commit e728bb1 into thanos-io:master Nov 25, 2020
@simonswine simonswine mentioned this pull request Nov 25, 2020
Merged
3 tasks
Oghenebrume50 pushed a commit to Oghenebrume50/thanos that referenced this pull request Dec 7, 2020
@simonswine @Oghenebrume50
s3: Respect SignatureV2 flag for all credential providers (thanos-io#…
fa6e57c 
…3496)

* s3: Respect SignatureV2 flag for all credential providers

Thanos currently only supports V2 signatures when the credentials are
statically specified in its configuration. This change supports
requesting signature V2 on other credential sources.

Signed-off-by: Christian Simon <[email protected]>

* Fix docs drift

Signed-off-by: Christian Simon <[email protected]>
Signed-off-by: Oghenebrume50 <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@bwplotka bwplotka bwplotka approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@simonswine @bwplotka