Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add RemoteS3ConnectionProvider plugin implementations #191

Open
wants to merge 2 commits into
base: feat/refactor-remote
Choose a base branch
from
Open

Add RemoteS3ConnectionProvider plugin implementations #191

wants to merge 2 commits into from

Conversation

mosiac1
Copy link
Contributor

@mosiac1 mosiac1 commented Apr 1, 2025
edited
Loading

Depends on #190

@mosiac1
Refactor CredentialsController, add RemoteConnection plugin
00c4af6 
This PR moves to a more dynamic approach to resolving remote credentials, where the whole Request object can be used to determine the endpoint it should be proxied to, the remote credentials to use and STS mechanism.

RemoteS3ConnectionProvider returns remote credentials, optional STS role and optional RemoteS3Facade configs (used to provide and endpoint but also change the path-style if needed). It takes as arguments the ParsedRequest, Identity and SigningMetadata.

The request flow with this change goes:

Client request to aws-proxy -> CredentialsProvider to get emulated secret key and Identity -> SecurityFacade -> S3RequestRewriter -> RemoteS3ConnectionProvider to get remote credentials, role and remote configs -> (Optional) Assume Remote Role -> Sing request to remote -> Send request to remote
@cla-bot cla-bot bot added the cla-signed label Apr 1, 2025
@mosiac1 mosiac1 force-pushed the feat/refactor/plugin-impls branch 2 times, most recently from ed98183 to bc398e6 Compare April 2, 2025 12:55
@mosiac1 mosiac1 force-pushed the feat/refactor/plugin-impls branch from bc398e6 to 801e9a1 Compare April 2, 2025 14:31
@mosiac1 mosiac1 force-pushed the feat/refactor-remote branch from 00c4af6 to abd2f9d Compare April 2, 2025 14:40
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
cla-signed
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@mosiac1