-
Notifications
You must be signed in to change notification settings - Fork 330
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
support for aws_session_token #535
Comments
Hi, |
It looks like there are two asks here, neither of which gsutil supports at the moment:
[1] https://stackoverflow.com/questions/51353850/configure-gsutil-boto-file-to-use-aws-sts-assume-role |
The last answer is from Aug 2018. Is there any update since then? |
These features would rely on us extending or decoupling from the old deprecated Likely this would be explored after we figure out and implement a path away from Likewise, gsutil is transitioning maintainers, which may mean reprioritizing goals depending on the new owner's priorities and roadmap. In short, we will definitely keep you updated on this! We have not forgotten you. 🙂 Edit [2022-04-21]: I'm not on the gsutil team anymore, but the team should still be tracking this issue! |
Any updates on this feature? |
+1 - It would be extremely useful to be able to sync from S3 (with an STS Assumed Role) to GCS using gsutil. |
Hi, are there any updates on supporting the With the ubiquity of using assumed roles nowadays, the s3 support in gsutil is crippled without this. Update: I fixed this by setting the |
Hi, I'm using gsutil v. 4.3.1 and there isn't any apparent support for the AWS_SESSION_TOKEN, which is a required configuration setting when working with AWS pre-signed URLs.
Use case: I'm trying to upload an object from a GCP bucket (in my account) to S3. I have been provided with an AWS pre-signed URL and corresponding credentials that include
I have tested with these variables in the .boto file, and even in different tests as environment variables, and the response I get is "403 AccessDenied" when running my cp command that is of the form
gsutil cp gs://mybucket/obj s3://s3bucket/obj
Things work fine when not using a pre-signed URL.
After lots of testing, I wanted to verify that the AWS_SESSION_TOKEN is not supported, and to request for such support.
Thanks,
-Nathan
The text was updated successfully, but these errors were encountered: