Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enable AWS ENV VAR key auth #9

Merged
merged 1 commit into from
Feb 14, 2024
Merged

Enable AWS ENV VAR key auth #9

merged 1 commit into from
Feb 14, 2024

Conversation

ArangoGutierrez
Copy link
Collaborator

@ArangoGutierrez ArangoGutierrez commented Feb 13, 2024
edited
Loading

Before this PR, this project was only taking into account the region in the config file.
This PR fixes that by moving to (in descending order) :

  • ENV AWS_REGION
  • Config file

The aws config file is not taken into account by design. The idea is to be used by a GitHub action or manual testing.

@ArangoGutierrez ArangoGutierrez self-assigned this Feb 13, 2024
elezar
elezar reviewed Feb 13, 2024
View reviewed changes
pkg/provider/aws/aws.go Outdated
@@ -83,7 +83,7 @@ type Client struct {

func New(log *logger.FunLogger, env v1alpha1.Environment, cacheFile string) (*Client, error) {
// Create an AWS session and configure the EC2 client
cfg, err := config.LoadDefaultConfig(context.TODO(), config.WithRegion(env.Spec.Region))
cfg, err := config.LoadDefaultConfig(context.TODO())
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Does this mechanism not work to set these options?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

with that set, it default to config file first, then env vars.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't quite understand. There are three ways to set the AWS region here.

  1. The config file as defined in this project.
  2. The AWS config file.
  3. The AWS_REGION environment variable.

In what order to we want to apply them? Why is the region special compared to other environment variables?

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

before this PR, this project was only taking into account the region in the config file.
This PR fixes that by moving to

  • ENV AWS_REGION
  • Config file
    aws config file is not taken into account, since the idea is to be used by a github action or manual testing.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ok, but it isn't required to call os.Setenv("AWS_REGION") to do this? Would something like the following:

region := env.Spec.Region
if envRegion := os.Getenv("AWS_REGION"); envRegion != "" {
    region = envRegion
}
cfg, err := config.LoadDefaultConfig(context.TODO(), config.WithRegion(region))

not be more explicit, and not assume that the os env is being read?

Note that if we take this further and resolve a "merged" spec where we load env.Spec from file, then we only ever need to pass around env.Spec.

Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the suggestion, change added

elezar
elezar reviewed Feb 13, 2024
View reviewed changes
cmd/dryrun/dryrun.go Outdated Show resolved Hide resolved
@ArangoGutierrez
Enable AWS ENV VAR key auth
8d9ac35 
Signed-off-by: Carlos Eduardo Arango Gutierrez <eduardoa@nvidia.com>
elezar
elezar approved these changes Feb 14, 2024
View reviewed changes
Copy link
Member

@elezar elezar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks @ArangoGutierrez

I think this looks good now. It may be good to consider how to handle envvars that override options in the config spec more generally at some point (like we do in the device plugin or GFD perhaps?), but that's not a blocker for this PR.

@ArangoGutierrez ArangoGutierrez merged commit a7bd07b into main Feb 14, 2024
2 checks passed
@ArangoGutierrez ArangoGutierrez deleted the sshUser branch February 15, 2024 10:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@elezar elezar elezar approved these changes

@tariq1890 tariq1890 Awaiting requested review from tariq1890 tariq1890 is a code owner

@cdesiniotis cdesiniotis Awaiting requested review from cdesiniotis cdesiniotis is a code owner

Assignees

@ArangoGutierrez ArangoGutierrez

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@ArangoGutierrez @elezar