Add support to disable S3 Express session auth #3433
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
A new generated diff is ready to view.
A new doc preview is ready to view. |
This commit addresses #3421 (comment)
|
A new generated diff is ready to view.
A new doc preview is ready to view. |
rcoh
reviewed
Feb 21, 2024
...dk-codegen/src/main/kotlin/software/amazon/smithy/rustsdk/customize/s3/S3ExpressDecorator.kt
Outdated
Show resolved
Hide resolved
jdisanti
reviewed
Feb 21, 2024
This commit addresses #3433 (comment)
This commit addresses #3433 (comment)
|
A new generated diff is ready to view.
A new doc preview is ready to view. |
This commit addresses #3433 (comment)
|
A new generated diff is ready to view.
A new doc preview is ready to view. |
jdisanti
reviewed
Feb 26, 2024
jdisanti
reviewed
Feb 27, 2024
jdisanti
approved these changes
Feb 27, 2024
|
A new generated diff is ready to view.
A new doc preview is ready to view. |
1 task
github-merge-queue bot
pushed a commit
that referenced
this pull request
Mar 11, 2024
## Motivation and Context Allows the Rust SDK to use [S3 Express One Zone](https://aws.amazon.com/s3/storage-classes/express-one-zone/) ## Description The PR adds the said S3-specific functionality to the Rust SDK. The code changes have already been reviewed by previous sub PRs, but it's worth going through them again as a whole: - #3386 - #3388 - #3390 - #3432 - #3433 - #3459 - #3457 - #3462 In addition to the PRs above, commit eebe8af increases the canary lambda's memory size to 512MB from 128MB (also makes it configurable through a command line arg for `canary-runner`). By default, lambda's allowed memory size is 128MB but with the addition of `canary-wasm` in main, canary lambda's memory usage will be 152MB, causing the lambda to be killed by a signal during runtime. The commit addresses that issue. ## Testing - Unit tests in [aws/rust-runtime/aws-inlineable/src/s3_express.rs](https://github.com/smithy-lang/smithy-rs/blob/7f8c28b7038372927ec6196eff88384452f908dd/aws/rust-runtime/aws-inlineable/src/s3_express.rs) - Integration tests in [aws/sdk/integration-tests/s3/tests/express.rs](https://github.com/smithy-lang/smithy-rs/blob/7f8c28b7038372927ec6196eff88384452f908dd/aws/sdk/integration-tests/s3/tests/express.rs) - Canary in smithy-rs#3462 ## Checklist <!--- If a checkbox below is not applicable, then please DELETE it rather than leaving it unchecked --> - [x] I have updated `CHANGELOG.next.toml` if I made changes to the AWS SDK, generated SDK code, or SDK runtime crates ---- _By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice._ --------- Co-authored-by: John DiSanti <[email protected]> Co-authored-by: AWS SDK Rust Bot <[email protected]> Co-authored-by: AWS SDK Rust Bot <[email protected]> Co-authored-by: Zelda Hessler <[email protected]> Co-authored-by: Russell Cohen <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Motivation and Context
Adds the ability to disable S3 Express session auth (causing it to use a regular sigv4 session auth instead).
Description
S3 Express One Zone is an opt out feature, and there are three ways to disable it (with the order of precedence as listed):
disable_s3_express_session_authmethod on an S3 clientAWS_S3_DISABLE_EXPRESS_SESSION_AUTHs3_disable_express_session_auth(won't be supported until Support service specific configs appearing in the general section of a profile file awslabs/aws-sdk-rust#1073 is addressed)If one of the places is set to true/false, then the subsequent places with lower precedence will not be considered.
Something to be aware of when setting the disable option through the environment variable. The environment variable is only checked during a client construction, meaning that if a customer sets it after the client has been created the SDK will not take the environment variable value into account, i.e. the following snippet will NOT disable the S3 Express session auth:
Testing
Added unit tests for
S3ExpressRuntimePluginand integration tests for verifying disabling S3 Express session auth.By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.