Replies: 5 comments 4 replies
-
Thank you for the suggestion. We will evaluate this for the roadmap. |
Beta Was this translation helpful? Give feedback.
-
There is also already a discussion directly in pgjdbc about extensible authentication mechanisms. But so far this is not yet available in the base driver. But I still think something fully AWS IAM specific in this JDBC driver would be great to have. |
Beta Was this translation helpful? Give feedback.
-
Glad to see this was in a September commit. Will this be released to Maven soon? This would be very useful. |
Beta Was this translation helpful? Give feedback.
-
@hsuamz So are you guys happy with our implementation? We are implementing this in a vacuum so it would be good to get feedback from someone who will actually use it. |
Beta Was this translation helpful? Give feedback.
-
@hsuamz Glad to hear it is usable. I'm considering this a proof of concept at this point. Which may be subject to change. Let me know if we need to change anything. Cheers, |
Beta Was this translation helpful? Give feedback.
-
Currently the Aurora documentation only covers IAM role based authentication via a couple of programmatic steps using the AWS SDK.
Most often you would like to be able to configure database access via a connection string only.
It would be great to have IAM based authentication already integrated into this AWS provided JDBC driver.
There is an existing open source implementation for that purpose:
https://github.com/magJ/iam-jdbc-driver
Another inspiration is the MariaDB JDBC driver, that actually integrates it natively:
https://mariadb.com/kb/en/mariadb-connector-j-250-release-notes/#aws-iam
If IAM based authentication is possible, I guess the Secrets Manager workaround would not be needed additionally.
Beta Was this translation helpful? Give feedback.
All reactions