Dynamic Credentials for AWS Firehose/Kinesis support

Question

Dynamic Credentials for AWS Firehose/Kinesis support

Closed this issue 4 years ago · 0 comments

The USDOT SDC environment is moving from the public AWS cloud to the private USDOT ECS cloud. A new restriction (based on ECS) requires moving from static credentials (stored in the .env file) for Firehose/Kinesis connections to dynamic (time limited) credentials. To support this the SDC is providing a Python script that needs to be run (or could be used for sample code if it works better to port to Java) that generates the dynamic credentials. This script is available from Tony English. The request is to update the jpo-s3-deposit code (https://github.com/usdot-jpo-ode/jpo-s3-deposit/blob/010e221cf96cbf0ebfe9bea9c1bcf5d9d24549f1/src/main/java/us/dot/its/jpo/ode/aws/depositor/AwsDepositor.java) to support dynamic credentials.