-
Notifications
You must be signed in to change notification settings - Fork 196
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Default credentials from environment variables in Docker image #799
Comments
Hi @rvanlaak, is the problem related to elasticmq in any way? |
@micossow the PHP SDK actually does nicely connect, and the messages actually do nicely get published and consumed. I've tried to leave these details at the actual outcome section. The part that is related to ElasticMQ would be related to it's Docker image, and whether it would be possible to let it respect default credentials via env vars. In the meanwhile I've learned that connecting to ElasticMQ through any kind of credential pair will work, so please don't consider the above a bug, but more as an enhancement to become more 12 Factor app compliant. |
Ok, so answering your suggestions:
|
Ok, I'll rewrite the TS to remove anything regarding credentials. The focus would be to allow configuring credentials based on environment variables. Edit: done. |
@micossow curious to see the PR via which this ticket was marked as completed, can you possibly reference it here? |
When working with the Docker image locally, that allows configuring any sort of key / secret on the client's DSN value.
When not configuring any client, the SQS default policy is to then connect to IAM to retrieve credentials / profile to determine region / credentials. The following notices then will get logged by common loggers (Symfony in this example):
Findings
But, when connecting without key/secret credentials in the DSN, the logs will retrieve records of not being able to access 169.254.169.254, which is an on EC2 internally mapped service that is not accessible during local development. This IAM server typically will not be accessible when doing local development.
Suggested changes
The text was updated successfully, but these errors were encountered: