Skip to content

Commit

Permalink
feat(redshift): add support for assuming an iam role for redshift (#132)
Browse files Browse the repository at this point in the history
  • Loading branch information
@achettyiitr
achettyiitr authored Jul 22, 2024
1 parent ec10cc4 commit 180a706
Show file tree
Hide file tree
Showing 9 changed files with 397 additions and 276 deletions.
1 change: 1 addition & 0 deletions .github/workflows/test.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -55,6 +55,7 @@ jobs:
env:
REDSHIFT_TEST_ENVIRONMENT_CREDENTIALS: ${{ secrets.REDSHIFT_TEST_ENVIRONMENT_CREDENTIALS }}
REDSHIFT_DATA_TEST_ENVIRONMENT_CREDENTIALS: ${{ secrets.REDSHIFT_DATA_TEST_ENVIRONMENT_CREDENTIALS }}
REDSHIFT_DATA_TEST_ENVIRONMENT_ROLE_ARN_CREDENTIALS: ${{ secrets.REDSHIFT_DATA_TEST_ENVIRONMENT_ROLE_ARN_CREDENTIALS }}
SNOWFLAKE_TEST_ENVIRONMENT_CREDENTIALS: ${{ secrets.SNOWFLAKE_TEST_ENVIRONMENT_CREDENTIALS }}
BIGQUERY_TEST_ENVIRONMENT_CREDENTIALS: ${{ secrets.BIGQUERY_TEST_ENVIRONMENT_CREDENTIALS }}
DATABRICKS_TEST_ENVIRONMENT_CREDENTIALS: ${{ secrets.DATABRICKS_TEST_ENVIRONMENT_CREDENTIALS }}
Expand Down
2 changes: 1 addition & 1 deletion go.mod
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,6 +10,7 @@ require (
github.com/aws/aws-sdk-go-v2/config v1.27.27
github.com/aws/aws-sdk-go-v2/credentials v1.17.27
github.com/aws/aws-sdk-go-v2/service/redshiftdata v1.27.3
github.com/aws/aws-sdk-go-v2/service/sts v1.30.3
github.com/databricks/databricks-sql-go v1.5.7
github.com/dlclark/regexp2 v1.11.2
github.com/gliderlabs/ssh v0.3.7
Expand Down Expand Up @@ -66,7 +67,6 @@ require (
github.com/aws/aws-sdk-go-v2/service/s3 v1.53.1 // indirect
github.com/aws/aws-sdk-go-v2/service/sso v1.22.4 // indirect
github.com/aws/aws-sdk-go-v2/service/ssooidc v1.26.4 // indirect
github.com/aws/aws-sdk-go-v2/service/sts v1.30.3 // indirect
github.com/aws/smithy-go v1.20.3 // indirect
github.com/cenkalti/backoff/v4 v4.3.0 // indirect
github.com/containerd/continuity v0.4.3 // indirect
Expand Down
4 changes: 4 additions & 0 deletions sqlconnect/internal/redshift/config.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -30,6 +30,10 @@ type Config struct {
SecretAccessKey string `json:"secretAccessKey"`
SessionToken string `json:"sessionToken"`

RoleARN string `json:"roleARN"`
ExternalID string `json:"externalID"`
RoleARNExpiry time.Duration `json:"roleARNExpiry"` // default: 15m

Timeout time.Duration `json:"timeout"` // default: no timeout
MinPolling time.Duration `json:"minPolling"` // default: 10ms
MaxPolling time.Duration `json:"maxPolling"` // default: 5s
Expand Down
3 changes: 3 additions & 0 deletions sqlconnect/internal/redshift/db.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -123,6 +123,9 @@ func newRedshiftDataDB(credentialsJSON json.RawMessage) (*sql.DB, error) {
SharedConfigProfile: config.SharedConfigProfile,
SecretAccessKey: config.SecretAccessKey,
SessionToken: config.SessionToken,
RoleARN: config.RoleARN,
ExternalID: config.ExternalID,
RoleARNExpiry: config.RoleARNExpiry,
Timeout: config.Timeout,
MinPolling: config.MinPolling,
MaxPolling: config.MaxPolling,
Expand Down
6 changes: 5 additions & 1 deletion sqlconnect/internal/redshift/driver/connector.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,11 @@ type redshiftDataConnector struct {
}

func (c *redshiftDataConnector) Connect(ctx context.Context) (driver.Conn, error) {
client, err := newRedshiftDataClient(ctx, c.cfg, c.cfg.LoadOpts()...)
loadOpts, err := c.cfg.LoadOpts(ctx)
if err != nil {
return nil, err
}
client, err := newRedshiftDataClient(ctx, c.cfg, loadOpts...)
if err != nil {
return nil, err
}
Expand Down
Loading

0 comments on commit 180a706

Please sign in to comment.