[RTFACT-20682] Upgrade AWS SDK to support using service account IAM roles - JFrog JIRA

XML

Word

Printable

Details

Type: Improvement
Status: Done
Resolution: Done
Affects Version/s: None
Fix Version/s: 7.8.1
Component/s: None
Labels:
None

Description

A couple of months ago, AWS launched a new feature for granting IAM roles to kubernetes service accounts, instead of granting an IAM role to an EC2 machine or using an open source project like kube2iam to grant the IAM role to the pod.

Amazon released this guide on how to set up service account IAM roles - https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html, and in order to support that, the client version needs to be at least 1.11.623 - https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts-minimum-sdk.html. The version we have in Artifactory now is 1.11.496:

<dependency>
    <groupId>com.amazonaws</groupId>
    <artifactId>aws-java-sdk-s3</artifactId>
    <version>1.11.496</version>
    <exclusions>
        <exclusion>
            <groupId>commons-logging</groupId>
            <artifactId>commons-logging</artifactId>
        </exclusion>
    </exclusions>
</dependency>

Attachments

Issue Links

duplicates

RTFACT-23678 AWS assume role mechanism

Closed

is contained in

RTFACT-21129 Support binary provider configuration for S3 without eventual

Done

Activity

People

Assignee:: Nadav Yogev

Reporter:: Daniel Ezer (Inactive)

Votes:: 7 Vote for this issue

Watchers:: 9 Start watching this issue

Dates

Created:: 21/Nov/19 8:39 AM

Updated:: 30/Jun/21 10:15 AM

Resolved:: 13/Aug/20 11:10 AM

Sync Status

Connection: RTFACT Sync

RTMID-20682 -
SYNCHRONIZED

Last Sync Date: