S3连接是否可以单独使用角色配置？

发布于 2025-02-03 02:50:04 字数 677 浏览 2 评论 0原文

Kubernetes（EKS）上的Alluxio支持没有AWS AccessKey和SecretKey的S3连接？ S3连接是否可以单独使用角色配置？我们使用S3作为底层存储层在EKS上安装Alluxio。当配置完成如下（使用AWS aceess键和秘密）时，Alluxio群集正在使用S3存储运行，


ALLUXIO_JAVA_OPTS: |--
Dalluxio.master.hostname=alluxio-master-0 -
Dalluxio.master.journal.type=UFS -
Dalluxio.master.journal.folder=/journal -
Dalluxio.security.stale.channel.purge.interval=365d -
Dalluxio.master.mount.table.root.ufs=s3://cubixalluxiodata/ -
Dalluxio.master.mount.table.root.option.aws.accessKeyId=AxxxxxxxxxxxxO -
Dalluxio.master.mount.table.root.option.aws.secretKey=DxxxxxxxxxxxxD*

但是我们正在寻找用于配置Alluxio的S3存储的方法，而无需AccessKey/SecretKey。但是仅具有基于ARN的角色身份验证。请提出有关方法的可能性。

原文

Alluxio on kubernetes(EKS) supports s3 connection without aws accessKey and secretKey? Is the s3 connection configurable with role arn alone?
We are installing Alluxio on EKS using s3 as a underlaying storage layer. Alluxio cluster is up and running with s3 storage when configurations are done like below (Using aws aceess key and secret)


ALLUXIO_JAVA_OPTS: |--
Dalluxio.master.hostname=alluxio-master-0 -
Dalluxio.master.journal.type=UFS -
Dalluxio.master.journal.folder=/journal -
Dalluxio.security.stale.channel.purge.interval=365d -
Dalluxio.master.mount.table.root.ufs=s3://cubixalluxiodata/ -
Dalluxio.master.mount.table.root.option.aws.accessKeyId=AxxxxxxxxxxxxO -
Dalluxio.master.mount.table.root.option.aws.secretKey=DxxxxxxxxxxxxD*

However we are looking for approach to configure s3 storage for alluxio without accessKey/secretKey. But with a role arn based authentication alone. Please suggest on possibility of the approach.

分享到QQ

分享到微博