Channels
announcements
blockers_for_windward
career-opportunities
celebrations
cuddle-corner
data-discussion
data-events
dev
events
general
help
iceberg-integration
lakefs-for-beginners
lakefs-hubspot-cloud-registration-email-automation
lakefs-releases
lakefs-suggestions
lakefs-twitter
linen-dev
memes-and-banter
say-hello
stackoverflow
test
Title
y
Yoni Augarten
10/05/2022, 2:07 PMHey @Kevin Vasko, which access key and secret key are you referring to?
k
Kevin Vasko
10/05/2022, 2:09 PMto access lakeFS. So for example, if i create a user or they use their LDAP credentials and use python to access lakeFS instead of hard coding credentials in the code in clear text, what are the options?
y
Yoni Augarten
10/05/2022, 2:13 PMThanks for the details, @Kevin Vasko. It is a question of how your application is deployed and how you manage secrets in it. For example, if you're running on AWS, they can come from AWS Secrets Manager. If you're running in Kubernetes, they can come from Kubernetes secrets.
k
Kevin Vasko
10/05/2022, 2:14 PMCan you point me to how that’s done with say the python lakefs_client package? Is there a way of pulling it from credentials file maybe?
y
Yoni Augarten
10/05/2022, 2:15 PMYou should handle lakeFS credentials as you would any other set of credentials in your app (e.g. database password, API keys of third party services, access tokens, etc.)
There is currently no built in way to pull them from a file. Most users choose to pass the credentials to the code using environment variables.
k
Kevin Vasko
10/05/2022, 2:17 PMGot it.
Yeah, that’s i’ve never found the perfect solution for this either haha. It always seem like an “after thought”.
y
Yoni Augarten
10/05/2022, 2:20 PMI agree, handling sensitive information is always scary😛
b
Barak Amar
10/05/2022, 3:07 PMOne way to load them. managing secrets, depends a lot on the environment you are running in.