Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

s3: Respect SignatureV2 flag for all credential providers #3496

Merged
merged 2 commits into from
Nov 25, 2020

Conversation

simonswine
Copy link
Contributor

  • I added CHANGELOG entry for this change.
  • Change is not relevant to the end user.

Changes

Thanos currently only supports V2 signatures when the credentials are statically specified in its configuration. This change supports using signature V2 on other credential sources, too.

Verification

The object storage appliance is not fully compatible with S3V4 signatures and we are able to run it statically configured with V2.

As we need to roll over the used accessKey/secretKey regularly we would like to be able to configure it via the &credentials.IAM{} chain.

@simonswine simonswine force-pushed the support-v2-signatures branch 2 times, most recently from 149127c to a320463 Compare November 23, 2020 16:43
Copy link
Member

@bwplotka bwplotka left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Some style nits only. Thanks! 💪 LGTM otherwise.

pkg/objstore/s3/s3.go Show resolved Hide resolved
pkg/objstore/s3/s3.go Outdated Show resolved Hide resolved
pkg/objstore/s3/s3.go Outdated Show resolved Hide resolved
pkg/objstore/s3/s3.go Outdated Show resolved Hide resolved
Thanos currently only supports V2 signatures when the credentials are
statically specified in its configuration. This change supports
requesting signature V2 on other credential sources.

Signed-off-by: Christian Simon <simon@swine.de>
Signed-off-by: Christian Simon <simon@swine.de>
Copy link
Member

@bwplotka bwplotka left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💪 Thanks!

LGTM

@bwplotka bwplotka merged commit e728bb1 into thanos-io:master Nov 25, 2020
Oghenebrume50 pushed a commit to Oghenebrume50/thanos that referenced this pull request Dec 7, 2020
…3496)

* s3: Respect SignatureV2 flag for all credential providers

Thanos currently only supports V2 signatures when the credentials are
statically specified in its configuration. This change supports
requesting signature V2 on other credential sources.

Signed-off-by: Christian Simon <simon@swine.de>

* Fix docs drift

Signed-off-by: Christian Simon <simon@swine.de>
Signed-off-by: Oghenebrume50 <raphlbrume@gmail.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants