Support for AWS EKS Pod Identity

XMLWordPrintableJSON

    • Needed
    • Hide

      Summary of necessary driver changes

      •  

      Commits for syncing spec/prose tests
      (and/or refer to an existing language POC if needed)

      •  

      Context for other referenced/linked tickets

      •  
      Show
      Summary of necessary driver changes   Commits for syncing spec/prose tests (and/or refer to an existing language POC if needed)   Context for other referenced/linked tickets  
    • $i18n.getText("admin.common.words.hide")
      Key Status/Resolution FixVersion
      CDRIVER-6021 Blocked
      CXX-3295 Blocked
      CSHARP-5599 Blocked
      GODRIVER-3571 Blocked
      JAVA-5883 Blocked
      NODE-6958 Blocked
      MOTOR-1464 Duplicate
      PYTHON-5398 In Code Review
      PHPLIB-1684 Blocked
      RUBY-3673 Blocked
      RUST-2225 Blocked
      $i18n.getText("admin.common.words.show")
      #scriptField, #scriptField *{ border: 1px solid black; } #scriptField{ border-collapse: collapse; } #scriptField td { text-align: center; /* Center-align text in table cells */ } #scriptField td.key { text-align: left; /* Left-align text in the Key column */ } #scriptField a { text-decoration: none; /* Remove underlines from links */ border: none; /* Remove border from links */ } /* Add green background color to cells with FixVersion */ #scriptField td.hasFixVersion { background-color: #00FF00; /* Green color code */ } #scriptField td.willNotDo { background-color: #FF0000; /* Red color code */ } /* Center-align the first row headers */ #scriptField th { text-align: center; } Key Status/Resolution FixVersion CDRIVER-6021 Blocked CXX-3295 Blocked CSHARP-5599 Blocked GODRIVER-3571 Blocked JAVA-5883 Blocked NODE-6958 Blocked MOTOR-1464 Duplicate PYTHON-5398 In Code Review PHPLIB-1684 Blocked RUBY-3673 Blocked RUST-2225 Blocked

      Summary

      In late Nov 2023, AWS introduced EKS Pod Identity, a way to simplify how cluster admins can configure Kubernetes applications to obtain AWS IAM permissions. Though we support EKS authentication today (see DRIVERS-1746), this newer authentication mechanism is not supported. This ticket covers adding support for EKS Pod Identity into our drivers.

      Motivation

      Who is the affected end user?

      Customers with Amazon EKS clusters who wish to adopt this new feature.

      How does this affect the end user?

      They are unable to use EKS Pod Identity in a supported way.

      How likely is it that this problem or use case will occur?

      Main path? Edge case?

      If the problem does occur, what are the consequences and how severe are they?

      Minor annoyance at a log message? Performance concern? Outage/unavailability? Failover can't complete?

      Is this issue urgent?

      Does this ticket have a required timeline? What is it?

      Is this ticket required by a downstream team?

      Needed by e.g. Atlas, Shell, Compass?

      Is this ticket only for tests?

      No.

      Acceptance Criteria

      What specific requirements must be met to consider the design phase complete?

            Assignee:
            Steve Silvester
            Reporter:
            Ashni Mehta (Inactive)
            Jib Adegunloye Jib Adegunloye
            Votes:
            1 Vote for this issue
            Watchers:
            9 Start watching this issue

              Created:
              Updated: