Skip to content
This repository has been archived by the owner on Jan 19, 2022. It is now read-only.

Detect region based on ~/.aws/config #120

Closed
kennyk65 opened this issue Dec 9, 2015 · 4 comments
Closed

Detect region based on ~/.aws/config #120

kennyk65 opened this issue Dec 9, 2015 · 4 comments
Assignees
@maciejwalkowiak
Labels
component: core An issue related to core functionality - credentials, region resolution status: in-progress An issue that being worked on type: enhancement A general enhancement

Comments

@kennyk65
Copy link

kennyk65 commented Dec 9, 2015

When running local tests, or anytime running outside of an EC2 instance, it would be terrific if Spring Cloud AWS would detect that I'm not on an EC2 instance (because there is no instance metadata) and fall back to region selection based on ~/.aws/config. That way, I can manage my local region selection via the CLI / eclipse plugin and the setting is automatically respected by Spring Cloud AWS.
@aemruli aemruli added the type: feature A new feature label Jul 15, 2016
@aemruli aemruli added this to the 1.2.0 milestone Jul 15, 2016
@codefromthecrypt
Copy link

I think this is what @sethp-jive was looking for, too. Basically to inherit CLI env. right? openzipkin/zipkin#1302 (comment)

@sethp-jive
Copy link

Indeed – the trouble is that there's an awful lot of behavior baked into the DefaultAwsRegionProviderChain (and far more baked into the DefaultAWSCredentialsProviderChain). I'm not an expert on how spring cloud likes to take its configuration, but in AWS-land a hard-coded access key and secret id are just the beginning.

The others allow dynamic role-switching based on some initial profile, which involves an online call to the STS service to get dynamic credentials. This flow is often required for certain organizations, as a common pattern is to partition AWS accounts and STS is the only way to get from the account where the user is provisioned to where the resources live. Unfortunately, as is the way of all things broadly consumed, everyone's got a slightly different way into the same broad idea – and while they're not perfect, the default provider chains do at least capture some of the more common behavior.

@spencergibb spencergibb modified the milestones: 1.2.0.M1, 1.2.0 Jan 26, 2017
@spencergibb spencergibb modified the milestones: 1.2.0, Backlog Apr 6, 2017
@kennyk65
Copy link
Author

kennyk65 commented Aug 8, 2019

The AWS SDK for Java resolves region using a straightforward chain. So does Spring Cloud AWS, but it's not the same chain.

See https://github.com/aws/aws-sdk-java/blob/master/aws-java-sdk-core/src/main/java/com/amazonaws/regions/DefaultAwsRegionProviderChain.java . The order is 1) Environment variable 2) System Property 3) Profile (that's the .aws/config file), and 4) instance metadata. This behavior is becoming consistent with the non-Java SDKs too.

But Spring's chain appears to ignore the environment variable, system property, and profile, charging straight to the instance metadata. This causes a fatal error when running locally, which makes the entire framework hard to use: one must begin by hard-coding a region in a Spring-specific, non-AWS-native way (i.e. setting cloud.aws.region.static)

@maciejwalkowiak
Copy link
Contributor

maciejwalkowiak commented May 29, 2020
edited
Loading

I agree with @kennyk65. Spring Cloud AWS should follow same chain as DefaultAwsRegionProviderChain for region resolution.

As an opt-in feature we can add it to 2.2.3. It will work in a same it has been done for credentials:

cloud.aws.region.useDefaultAwsRegionChain=true

@maciejwalkowiak maciejwalkowiak modified the milestones: Backlog, 2.3 May 29, 2020
@maciejwalkowiak maciejwalkowiak added component: core An issue related to core functionality - credentials, region resolution type: enhancement A general enhancement and removed type: feature A new feature labels May 30, 2020
@maciejwalkowiak maciejwalkowiak self-assigned this May 31, 2020
@maciejwalkowiak maciejwalkowiak added the status: in-progress An issue that being worked on label May 31, 2020
maciejwalkowiak added a commit to maciejwalkowiak/spring-cloud-aws that referenced this issue May 31, 2020
@maciejwalkowiak
Add option to use default AWS region provider chain.
3796667 
Fixes spring-atticgh-553
Fixes spring-atticgh-120
Closes spring-atticgh-559
maciejwalkowiak added a commit to maciejwalkowiak/spring-cloud-aws that referenced this issue May 31, 2020
@maciejwalkowiak
Add option to use default AWS region provider chain.
ca67ca6 
Fixes spring-atticgh-553
Fixes spring-atticgh-120
Closes spring-atticgh-559
maciejwalkowiak added a commit to maciejwalkowiak/spring-cloud-aws that referenced this issue May 31, 2020
@maciejwalkowiak
Add option to use default AWS region provider chain.
b486611 
Fixes spring-atticgh-553
Fixes spring-atticgh-120
Closes spring-atticgh-559
@maciejwalkowiak maciejwalkowiak mentioned this issue May 31, 2020
Closed
maciejwalkowiak added a commit that referenced this issue May 31, 2020
@maciejwalkowiak
Add option to use default AWS region provider chain.
546406f 
Fixes gh-553
Fixes gh-120
Closes gh-559
Closes gh-560
@maciejwalkowiak maciejwalkowiak removed this from the 2.3 milestone Jun 1, 2020
tmnuwan12 pushed a commit to tmnuwan12/spring-cloud-aws that referenced this issue Jun 7, 2020
@maciejwalkowiak @tmnuwan12
Add option to use default AWS region provider chain.
a066008 
Fixes spring-atticgh-553
Fixes spring-atticgh-120
Closes spring-atticgh-559
Closes spring-atticgh-560
maciejwalkowiak added a commit to maciejwalkowiak/spring-cloud-aws that referenced this issue Oct 15, 2020
@maciejwalkowiak
Add option to use default AWS region provider chain.
da5e057 
Fixes spring-atticgh-553
Fixes spring-atticgh-120
Closes spring-atticgh-559
Closes spring-atticgh-560
maciejwalkowiak added a commit to maciejwalkowiak/spring-cloud-aws that referenced this issue Oct 15, 2020
@maciejwalkowiak
Add option to use default AWS region provider chain.
3860a9c 
Fixes spring-atticgh-553
Fixes spring-atticgh-120
Closes spring-atticgh-559
Closes spring-atticgh-560
maciejwalkowiak added a commit to maciejwalkowiak/spring-cloud-aws that referenced this issue Oct 15, 2020
@maciejwalkowiak
Add option to use default AWS region provider chain.
4703bc0 
Fixes spring-attic#553
Fixes spring-attic#120
Closes spring-attic#559
Closes spring-attic#560
maciejwalkowiak added a commit to maciejwalkowiak/spring-cloud-aws that referenced this issue Oct 15, 2020
@maciejwalkowiak
Add option to use default AWS region provider chain.
ae389f3 
Fixes spring-attic#553
Fixes spring-attic#120
Closes spring-attic#559
Closes spring-attic#560
juho9000 pushed a commit to juho9000/spring-cloud-aws that referenced this issue Apr 29, 2021
@maciejwalkowiak
Add option to use default AWS region provider chain.
938f92a 
Fixes spring-attic/spring-cloud-aws#553
Fixes spring-attic/spring-cloud-aws#120
Closes spring-attic/spring-cloud-aws#559
Closes spring-attic/spring-cloud-aws#560
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees

@maciejwalkowiak maciejwalkowiak

Labels
component: core An issue related to core functionality - credentials, region resolution status: in-progress An issue that being worked on type: enhancement A general enhancement
Milestone
No milestone
Development

No branches or pull requests
6 participants
@codefromthecrypt @aemruli @spencergibb @maciejwalkowiak @kennyk65 @sethp-jive