Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

eks use aws web identity token for SQS queue #8437

Open
prabodh1194 opened this issue Feb 2, 2025 · 2 comments
Open

eks use aws web identity token for SQS queue #8437

prabodh1194 opened this issue Feb 2, 2025 · 2 comments

Comments

@prabodh1194
Copy link

Hi,

I have an EKS cluster and I want to create a SQS integration source on this. The docs suggest that I configure AWS secrets for auth purpose. However, my other pods actually use the service account based auth wherein EKS automounts a web identity token on my pod and then all AWS services use those by default.

How can I configure the IntegrationSource in a similar manner?

Thank you.
@christophd
Copy link

Hi, there is the option to set

  • CAMEL_KAMELET_AWS_SQS_SOURCE_USE_DEFAULT_CREDENTIALS_PROVIDER=true

in combination with

  • CAMEL_KAMELET_AWS_SQS_SOURCE_USE_SESSION_CREDENTIALS=true

The SQS client should expect to use session credentials then. This is useful in situation in which the user needs to assume an IAM role for doing operations in SQS.

You can then set

  • CAMEL_KAMELET_AWS_SQS_SOURCE_SESSION_TOKEN=<the_sessionToken>

via secretRefValue for instance.

Is this something you are looking for?

@prabodh1194
Copy link
Author

hmm. looking good. i'll need to try using this.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@christophd @prabodh1194