Home > Software design >  AWS key and secret for Docker R script using feather deployed in ECR
AWS key and secret for Docker R script using feather deployed in ECR

Time:12-23

So on my local machine something like this work fine:

library(arrow)
library(aws.s3)

Sys.setenv(
    "AWS_ACCESS_KEY_ID" = Sys.getenv("awsaccesskey"),
    "AWS_SECRET_ACCESS_KEY" = Sys.getenv("awssecret"),
    "AWS_DEFAULT_REGION" = "eu-west-2"
)

feather_data <- s3read_using(read_feather, bucket = "amazingbucket", object = "somefile.feather")

If I wrap this into a docker image, and I want to avoid hardcoding AWS_ACCESS_KEY_ID AWS_SECRET_ACCESS_KEY, which come here from Windows environment variables, how does ECR get this information?

CodePudding user response:

When you run this in AWS there is a notion of IAM role you can attach to your execution environment. If you are running your container, say, on ECS, you will attach to your task an IAM role. If you are running your container in EKS you will use this method.

The long story short is that AWS will inject those value dynamically (and it will rotate the temp creds) and the AWS SDK will be able to source that information automatically.

Page link:https//www.codepudding.com/Softwaredesign/237813.html

Prev:How is S3 bucket name being derived in CloudFormation?
Next:Python tkinter: address buttons by using a list
  • Related

About Us:  Contact Us      Terms of Service       Privacy Policy

Copyright © 2010-2023,Powered By CodePudding