[request] Ability to specify creds at the request level #696
Labels
Comments
DanielBauman88
added
feature-request
|
Hey @DanielBauman88, thanks for submitting this issue. We'll add it to our backlog. @jmklix Can you follow up on whether we should add a copy of this issue to the cross-SDK issues repo? |
|
This is complete—You can use |
|
Comments on closed issues are hard for our team to see. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the feature
Currently the AWS SDKs do not allow for creds to be specified at the request level, only at the client level.
Use Case
There are many valid use-cases where a web service might want to make requests with different creds. A good example is a web service interacting with customer resources. Amazon recommends a pattern where the web service can use creds to isolate permissions to resources owned by the customer making the call (talk, iam feature helping with federated creds).
The SDK clients handle tcp connection pooling which provides better performance and fewer higher-percentile spikes than you get if you create a new client and new TCP connections on every call.
Proposed Solution
It would be a benefit to SDK customers to support this use-case in the SDK by providing a mechanism to override the creds provider on a per-request basis so that customers using a federated connection model aren't hurt by needing to create a new sdk each time they want to change creds.
Other Information
I'm asking this question in the aws-sdk-rust repo because the SDK I want this for is Rust, but this applies to the AWS SDKs more generally. As far as I know no sdk in any language supports a documented interface for this, but it can be achieved in some languages with looser controls like javascript.
Acknowledgements
A note for the community
Community Note
The text was updated successfully, but these errors were encountered: