refactor!: introduce storage options accessor #5728
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Contributor
Code ReviewP0: Compilation Error in TestsThe tests in New signatures: pub fn from_provider(provider: Arc<dyn StorageOptionsProvider>) -> Self
pub fn from_provider_with_initial(
provider: Arc<dyn StorageOptionsProvider>,
initial_options: HashMap<String, String>,
) -> SelfTest calls still have extra Duration argument: // These calls have 2 or 3 args, but should have 1 or 2
DynamicStorageOptionsCredentialProvider::from_provider(
mock.clone(),
Duration::from_secs(300), // <- Should be removed
);
DynamicStorageOptionsCredentialProvider::from_provider_with_initial(
mock.clone(),
Duration::from_secs(300), // <- Should be removed
initial_options,
);Similarly, Please verify this builds and tests pass before merging. P1: Breaking API Change Without Migration PathThe PR removes Consider adding a migration note to the release notes or emitting a warning if users try to use the old parameter name. Minor: Test CoverageThe new |
jackye1995
changed the title
Codecov Report❌ Patch coverage is 📢 Thoughts on this report? Let us know! |
- Fix s3_test.rs to use storage_options_accessor instead of storage_options - Fix formatting in python/src/file.rs 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
Xuanwo
approved these changes
Jan 16, 2026
hamersaw
reviewed
Jan 16, 2026
| /// | ||
| /// The returned accessor will always return the provided options. | ||
| /// This is useful when credentials don't expire or are managed externally. | ||
| pub fn static_options(options: HashMap<String, String>) -> Self { |
Contributor
There was a problem hiding this comment.
does with_static_options give more uniformity re: naming?
Renamed StorageOptionsAccessor::static_options() to with_static_options() for naming consistency with with_provider() and with_initial_and_provider(). 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
jackye1995
added a commit
to jackye1995/lance
that referenced
this pull request
Jan 20, 2026
Same as lance-format#5547, but that one is too hard to rebase at this moment. For easier integration with distributed engines, we want a way to get `dataset.latest_storage_options()` through the initial static storage options + the dynamic storage options provider. However, current implementation pushes this logic down to AWS. This PR lifts the logic up into a component `StorageOptionsAccessor`, so that we can invoke it at dataset level, and also just wrap it as a CredentialsProvider for AWS. We also make `ObjectStoreParams` now hold a `StorageOptionsAccessor` instead of just the `storage_options` map. For user API, we continue to let them input storage options and storage options provider, `StorageOptionsAccessor` is used only internally. We also remove a few features added that turned out to be unnecessary in the whole credentials vending code path: 1. ignore_namespace_storage_options: this just never turns out to be possible to be set to true, I was overthinking in the beginning, so remove related code. 2. s3_credentials_refresh_offset_seconds: we overloaded this feature to set credentials refresh lead time for the storage options provider-based AWS credentials provider. But this is now not fitting the framework since the feature will be applicable to gcp and azure as well. Note that I removed all the related code in python and java. Although s3_credentials_refresh_offset exists for a long time, there was not really a way to set it in python and java. I added it for storage options provider only, but now it is no longer needed. Note that recently I added credentials vending server side support in DirectoryNamespace for all 3 clouds. So we can now provide a generic solution to vend credentials and test everything end to end for GCP and Azure. However this PR still keeps the feature in AWS, we will do another PR to add GCP and Azure support officially --------- Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
Merged
jackye1995
added a commit
to jackye1995/lance
that referenced
this pull request
Jan 20, 2026
Same as lance-format#5547, but that one is too hard to rebase at this moment. For easier integration with distributed engines, we want a way to get `dataset.latest_storage_options()` through the initial static storage options + the dynamic storage options provider. However, current implementation pushes this logic down to AWS. This PR lifts the logic up into a component `StorageOptionsAccessor`, so that we can invoke it at dataset level, and also just wrap it as a CredentialsProvider for AWS. We also make `ObjectStoreParams` now hold a `StorageOptionsAccessor` instead of just the `storage_options` map. For user API, we continue to let them input storage options and storage options provider, `StorageOptionsAccessor` is used only internally. We also remove a few features added that turned out to be unnecessary in the whole credentials vending code path: 1. ignore_namespace_storage_options: this just never turns out to be possible to be set to true, I was overthinking in the beginning, so remove related code. 2. s3_credentials_refresh_offset_seconds: we overloaded this feature to set credentials refresh lead time for the storage options provider-based AWS credentials provider. But this is now not fitting the framework since the feature will be applicable to gcp and azure as well. Note that I removed all the related code in python and java. Although s3_credentials_refresh_offset exists for a long time, there was not really a way to set it in python and java. I added it for storage options provider only, but now it is no longer needed. Note that recently I added credentials vending server side support in DirectoryNamespace for all 3 clouds. So we can now provide a generic solution to vend credentials and test everything end to end for GCP and Azure. However this PR still keeps the feature in AWS, we will do another PR to add GCP and Azure support officially --------- Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
jackye1995
added a commit
to jackye1995/lance
that referenced
this pull request
Jan 21, 2026
Same as lance-format#5547, but that one is too hard to rebase at this moment. For easier integration with distributed engines, we want a way to get `dataset.latest_storage_options()` through the initial static storage options + the dynamic storage options provider. However, current implementation pushes this logic down to AWS. This PR lifts the logic up into a component `StorageOptionsAccessor`, so that we can invoke it at dataset level, and also just wrap it as a CredentialsProvider for AWS. We also make `ObjectStoreParams` now hold a `StorageOptionsAccessor` instead of just the `storage_options` map. For user API, we continue to let them input storage options and storage options provider, `StorageOptionsAccessor` is used only internally. We also remove a few features added that turned out to be unnecessary in the whole credentials vending code path: 1. ignore_namespace_storage_options: this just never turns out to be possible to be set to true, I was overthinking in the beginning, so remove related code. 2. s3_credentials_refresh_offset_seconds: we overloaded this feature to set credentials refresh lead time for the storage options provider-based AWS credentials provider. But this is now not fitting the framework since the feature will be applicable to gcp and azure as well. Note that I removed all the related code in python and java. Although s3_credentials_refresh_offset exists for a long time, there was not really a way to set it in python and java. I added it for storage options provider only, but now it is no longer needed. Note that recently I added credentials vending server side support in DirectoryNamespace for all 3 clouds. So we can now provide a generic solution to vend credentials and test everything end to end for GCP and Azure. However this PR still keeps the feature in AWS, we will do another PR to add GCP and Azure support officially --------- Co-authored-by: Claude Opus 4.5 <noreply@anthropic.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Same as #5547, but that one is too hard to rebase at this moment.
For easier integration with distributed engines, we want a way to get
dataset.latest_storage_options()through the initial static storage options + the dynamic storage options provider.However, current implementation pushes this logic down to AWS. This PR lifts the logic up into a component
StorageOptionsAccessor, so that we can invoke it at dataset level, and also just wrap it as a CredentialsProvider for AWS. We also makeObjectStoreParamsnow hold aStorageOptionsAccessorinstead of just thestorage_optionsmap.For user API, we continue to let them input storage options and storage options provider,
StorageOptionsAccessoris used only internally.We also remove a few features added that turned out to be unnecessary in the whole credentials vending code path:
Note that recently I added credentials vending server side support in DirectoryNamespace for all 3 clouds. So we can now provide a generic solution to vend credentials and test everything end to end for GCP and Azure. However this PR still keeps the feature in AWS, we will do another PR to add GCP and Azure support officially