Skip to content

Support auth using AssumeRoleWithWebIdentity for non-AWS S3-compatible implementations #7010

Open
@Muon

Description

Is your feature request related to a problem or challenge? Please describe what you are trying to do.

We're using object_store for S3 access. We're trying to get OIDC auth working in our application and want to have automated tests of that using MinIO as an S3-compatible backend. However, object_store hardcodes the STS endpoint URL to https://sts.{region}.amazonaws.com.

Describe the solution you'd like

I'd like to be able to configure the STS endpoint URL when I build the client.

Describe alternatives you've considered

I've considered hacking around it using a hosts entry and a proxy, but that would fail HTTPS certificate validation.

Additional context

Activity

added
enhancementAny new improvement worthy of a entry in the changelog
on Jan 23, 2025
tustvold

tustvold commented on Jan 23, 2025

@tustvold
Contributor

I don't see any issue with making this configurable

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Assignees

No one assigned

    Labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions

      Support auth using AssumeRoleWithWebIdentity for non-AWS S3-compatible implementations · Issue #7010 · apache/arrow-rs