Channels
announcements
blockers_for_windward
career-opportunities
celebrations
cuddle-corner
data-discussion
data-events
dev
events
general
help
iceberg-integration
lakefs-for-beginners
lakefs-hubspot-cloud-registration-email-automation
lakefs-releases
lakefs-suggestions
lakefs-twitter
linen-dev
memes-and-banter
say-hello
stackoverflow
test
Title
a
Alexander Reinthal
03/11/2023, 10:43 PMHi team,
I am trying configure lakefs with azure blob storage using storage access key
sudo docker run \
--name lakefs \
-p 80:8000 \
-e LAKEFS_DATABASE_TYPE="postgres" \
-e LAKEFS_DATABASE_POSTGRES_CONNECTION_STRING=$LAKEFS_DATABASE_POSTGRES_CONNECTION_STRING \
-e LAKEFS_AUTH_ENCRYPT_SECRET_KEY=$LAKEFS_AUTH_ENCRYPT_SECRET_KEY \
-e LAKEFS_BLOCKSTORE_TYPE="azure" \
-e LAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCOUNT=$LAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCOUNT \
-e LAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCESS_KEY=$LAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCESS_KEY \time="2023-03-11T22:41:44Z" level=error msg="failed to get azure blob from container &{%!s(*generated.ContainerClient=&{<https://lakefs11673f4e.blob.core.windows.net/mds> {[0x1400120 0xc008045c00 0xc0080b01c0 0xc008077770 0xc00804ff38 0x13ffda0 0x13ffaa0 {0xc000159350}]}}) %!s(*exported.SharedKeyCredential=<nil>)} key &{%!s(*generated.BlobClient=&{<https://lakefs11673f4e.blob.core.windows.net/mds/dummy> {[0x1400120 0xc008045c00 0xc0080b01c0 0xc008077770 0xc00804ff38 0x13ffda0 0x13ffaa0 {0xc000159350}]}}) %!s(*generated.BlockBlobClient=&{<https://lakefs11673f4e.blob.core.windows.net/mds/dummy> {[0x1400120 0xc008045c00 0xc0080b01c0 0xc008077770 0xc00804ff38 0x13ffda0 0x13ffaa0 {0xc000159350}]}}) %!s(*exported.SharedKeyCredential=<nil>)}" func="pkg/logging.(*logrusEntryWrapper).Errorf" file="build/pkg/logging/logger.go:262" error="DefaultAzureCredential: failed to acquire a token.\nAttempted credentials:\n\tEnvironmentCredential: missing environment variable AZURE_TENANT_ID\n\tManagedIdentityCredential: no default identity is assigned to this resource\n\tAzureCLICredential: Azure CLI not found on path" host=68.219.229.172 method=POST operation_id=CreateRepository path=/api/v1/repositories request_id=94bca5e0-f1e3-49e0-ab44-20313230bbdf service_name=rest_api user=alextime="2023-03-11T22:41:44Z" level=warning msg="Could not access storage namespace" func="pkg/api.(*Controller).CreateRepository" file="build/pkg/api/controller.go:1406" error="DefaultAzureCredential: failed to acquire a token.\nAttempted credentials:\n\tEnvironmentCredential: missing environment variable AZURE_TENANT_ID\n\tManagedIdentityCredential: no default identity is assigned to this resource\n\tAzureCLICredential: Azure CLI not found on path" reason=unknown service=api_gateway storage_namespace="<https://lakefs11673f4e.blob.core.windows.net/mds>"g
Guy Hardonag
03/11/2023, 11:00 PMHi @Alexander Reinthal ,
It seems like there is an issue with the credentials, can you please validate the storage account you provided in the environment variable is the same as the one in the created repository and that you can acceit with the provided secret key?
a
Alexander Reinthal
03/11/2023, 11:01 PMimport os
import os, uuid
from azure.identity import DefaultAzureCredential
from azure.storage.blob import BlobServiceClient, BlobClient, ContainerClient
# Create a local directory to hold blob data
local_path = "./data"
os.mkdir(local_path)
# Create a file in the local data directory to upload and download
local_file_name = str(uuid.uuid4()) + ".txt"
upload_file_path = os.path.join(local_path, local_file_name)
# Write text to the file
file = open(file=upload_file_path, mode='w')
file.write("Hello, World!")
file.close()
blob_service_client = BlobServiceClient(os.environ["LAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCOUNT"], credential=os.environ["LAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCESS_KEY"])
# Create a blob client using the local file name as the name for the blob
blob_client = blob_service_client.get_blob_client(container='mds', blob=local_file_name)
print("\nUploading to Azure Storage as blob:\n\t" + local_file_name)
# Upload the created file
with open(file=upload_file_path, mode="rb") as data:
blob_client.upload_blob(data)I did verify best I could.
I’ll triple check ¯\_(ツ)_/¯
g
Guy Hardonag
03/11/2023, 11:08 PMLooks like a good verification :), are you running the python code inside the docker container? If not you can also try to exec into the docker machine and check that environment variables are as expected. I will try to reproduce your case and get back to you tomorrow
:lakefs: 1
a
Alexander Reinthal
03/11/2023, 11:16 PMI didnt execute in the docker environment cuz it doesnt have python but I checked, and the environment variables are present inside docker aswell,
sudo docker exec -it lakefs sh
~ $ env
LAKEFS_BLOCKSTORE_TYPE=azure
LAKEFS_DATABASE_TYPE=postgres
HOSTNAME=22de2fd23000
SHLVL=1
HOME=/home/lakefs
LAKEFS_DATABASE_POSTGRES_CONNECTION_STRING=<postgres://madonna>:<REDACTED>@siversky-server.postgres.database.azure.com/postgres?sslmode=require
TERM=xterm
PATH=/app:/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
LAKEFS_AUTH_ENCRYPT_SECRET_KEY=<REDACTED>
LAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCOUNT=<https://lakefs11673f4e.blob.core.windows.net/>
PWD=/home/lakefs
LAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCESS_KEY=<REDACTED>g
Guy Hardonag
03/11/2023, 11:18 PMI understand, thanks!
I will check it out and get back to you
❤️ 1
a
Alexander Reinthal
03/11/2023, 11:57 PMimage.png
g
Guy Hardonag
03/12/2023, 5:45 PMHi @Alexander Reinthal,
LAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCOUNTLAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCOUNT=lakefs11673f4eSorry I missed that at first 😞
🥰 1
a
Alexander Reinthal
03/12/2023, 8:53 PMomg that worked! I was really close to solving it on my own. I was trying
LAKEFS_BLOCKSTORE_AZURE_STORAGE_ACCOUNT=<http://lakefs11673f4e.blob.core.windows.net|lakefs11673f4e.blob.core.windows.net>g
Guy Hardonag
03/12/2023, 8:58 PMHappy it worked 🤗 !!!
Enjoy, if you need anything else we’re here
:lakefs: 1
I will also go over the documentation, see if we can make it more clear