Refactor AWSSigV4 auth to support different AWSCredentialProviders #1389

vamsi-amazon · 2023-03-03T01:17:26Z

Description

Refactored sigv4auth support to use credential Providers.

Check List

New functionality includes testing.
- All tests pass, including unit test, integration test and doctest
New functionality has been documented.
- New functionality has javadoc added
- New functionality has user manual doc added
Commits are signed per the DCO using --signoff

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
For more information on following Developer Certificate of Origin and signing off your commits, please check here.

codecov-commenter · 2023-03-03T01:51:02Z

Codecov Report

Merging #1389 (56b32fa) into 2.x (a32bcbe) will increase coverage by 0.00%.
The diff coverage is 100.00%.

📣 This organization is not using Codecov’s GitHub App Integration. We recommend you install it so Codecov can continue to function properly for your repositories. Learn more

@@            Coverage Diff            @@
##                2.x    #1389   +/-   ##
=========================================
  Coverage     98.38%   98.38%           
- Complexity     3698     3699    +1     
=========================================
  Files           345      345           
  Lines          9113     9119    +6     
  Branches        585      586    +1     
=========================================
+ Hits           8966     8972    +6     
  Misses          142      142           
  Partials          5        5

Flag	Coverage Δ
sql-engine	`98.38% <100.00%> (+<0.01%)`	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

Impacted Files	Coverage Δ
...etheus/authinterceptors/AwsSigningInterceptor.java	`100.00% <100.00%> (ø)`
...l/prometheus/storage/PrometheusStorageFactory.java	`100.00% <100.00%> (ø)`

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

Yury-Fridlyand · 2023-03-03T02:09:55Z

...heus/src/main/java/org/opensearch/sql/prometheus/authinterceptors/AwsSigningInterceptor.java

+    LOG.info(awsCredentialsProvider.getClass());
+    LOG.info("Access Key: {}", awsCredentials.getAWSAccessKeyId());
+    LOG.info("Secret Key: {}", awsCredentials.getAWSSecretKey());


Are you sure that you want to log your passwords as plain text?

Thanks for pointing out...I was splitting a big PR and left these lines.

Signed-off-by: Vamsi Manohar <reddyvam@amazon.com>

…1389) * Refactor AWSSigV4 auth to support different AWSCredentialProviders Signed-off-by: Vamsi Manohar <reddyvam@amazon.com> * Added unit tests for sts assume role credentials provider Signed-off-by: Vamsi Manohar <reddyvam@amazon.com> --------- Signed-off-by: Vamsi Manohar <reddyvam@amazon.com> (cherry picked from commit 8583fd1)

…1389) (#1396) * Refactor AWSSigV4 auth to support different AWSCredentialProviders Signed-off-by: Vamsi Manohar <reddyvam@amazon.com> * Added unit tests for sts assume role credentials provider Signed-off-by: Vamsi Manohar <reddyvam@amazon.com> --------- Signed-off-by: Vamsi Manohar <reddyvam@amazon.com> (cherry picked from commit 8583fd1) Co-authored-by: vamsi-amazon <reddyvam@amazon.com>

…pensearch-project#1389) (opensearch-project#1396) * Refactor AWSSigV4 auth to support different AWSCredentialProviders Signed-off-by: Vamsi Manohar <reddyvam@amazon.com> * Added unit tests for sts assume role credentials provider Signed-off-by: Vamsi Manohar <reddyvam@amazon.com> --------- Signed-off-by: Vamsi Manohar <reddyvam@amazon.com> (cherry picked from commit 8583fd1) Co-authored-by: vamsi-amazon <reddyvam@amazon.com> Signed-off-by: Matthew Wells <matthew.wells@improving.com>

vamsi-amazon requested a review from a team as a code owner March 3, 2023 01:17

anirudha previously approved these changes Mar 3, 2023

View reviewed changes

kavithacm previously approved these changes Mar 3, 2023

View reviewed changes

Yury-Fridlyand reviewed Mar 3, 2023

View reviewed changes

vamsi-amazon dismissed stale reviews from kavithacm and anirudha via a34ceec March 3, 2023 02:25

vamsi-amazon force-pushed the refactor-sigv4-auth branch 2 times, most recently from a34ceec to a8dcece Compare March 3, 2023 02:28

Refactor AWSSigV4 auth to support different AWSCredentialProviders

93a82a8

Signed-off-by: Vamsi Manohar <reddyvam@amazon.com>

vamsi-amazon force-pushed the refactor-sigv4-auth branch from a8dcece to 93a82a8 Compare March 3, 2023 02:35

vamsi-amazon self-assigned this Mar 3, 2023

vamsi-amazon added backport main maintenance Improves code quality, but not the product labels Mar 3, 2023

Added unit tests for sts assume role credentials provider

56b32fa

Signed-off-by: Vamsi Manohar <reddyvam@amazon.com>

rupal-bq approved these changes Mar 3, 2023

View reviewed changes

penghuo approved these changes Mar 3, 2023

View reviewed changes

vamsi-amazon merged commit 8583fd1 into opensearch-project:2.x Mar 3, 2023

opensearch-trigger-bot bot mentioned this pull request Mar 3, 2023

[Backport main] Refactor AWSSigV4 auth to support different AWSCredentialProviders #1396

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Refactor AWSSigV4 auth to support different AWSCredentialProviders #1389

Refactor AWSSigV4 auth to support different AWSCredentialProviders #1389

vamsi-amazon commented Mar 3, 2023 •

edited

codecov-commenter commented Mar 3, 2023 •

edited

Yury-Fridlyand Mar 3, 2023

vamsi-amazon Mar 3, 2023

Refactor AWSSigV4 auth to support different AWSCredentialProviders #1389

Refactor AWSSigV4 auth to support different AWSCredentialProviders #1389

Conversation

vamsi-amazon commented Mar 3, 2023 • edited

Description

Check List

codecov-commenter commented Mar 3, 2023 • edited

Codecov Report

Yury-Fridlyand Mar 3, 2023

Choose a reason for hiding this comment

vamsi-amazon Mar 3, 2023

Choose a reason for hiding this comment

vamsi-amazon commented Mar 3, 2023 •

edited

codecov-commenter commented Mar 3, 2023 •

edited