support unathenticated public bucket browsing

[phanirithvij]

I am trying to browse a publicly accessible bucket nix-releases for nixos.org https://releases.nixos.org, hosted by aws.

I followed what this project does here, https://github.com/samestep/npc/blob/ab05345d0c833759e388d9c2e343a919ecc70c53/src/main.rs#L437C14-L437C28

Which when patching stu by adding no_credentials() in src/client.rs config_loader. I was able to access the bucket. stu -b nix-releases -r eu-west-1

Is there any way to skip providing credentials from environment vars etc. to avoid patching the source code like I did above?

[lusingander]

Thank you for reporting this. I hadn't thought about how to handle public buckets until now.

It seems that the aws cli has an option called --no-sign-request, so it might be a good idea to use no_credentials when this is specified in stu as well.