search

NASA-PDS / nucleus

Nucleus is a software platform used to create workflows for the Planetary Data (PDS).
https://nasa-pds.github.io/nucleus
Apache License 2.0
0 stars 0 forks source link

Read harvest auth credentials from AWS secret manager #100

Closed ramesh-maddegoda closed 2 weeks ago

ramesh-maddegoda commented 1 month ago

💡 Description

Currently harvest tool is reading auth credentials to connect OpenSearch from a configuration file in file system. Nucleus uses a dockerized version of harvest too. It is required to implement a way to read these harvest auth credentials from AWS Secret Manager.

⚔️ Parent Epic / Related Tickets

No response

jordanpadams commented 3 weeks ago

Status: Issues trying to access secrets manager. Potential issue with security boundary.

ramesh-maddegoda commented 2 weeks ago

I was able to implement this by reading Opensearch credentials from AWS secret manager and create a credential file inside the temporary docker container to be used by harvest.

The changes were added to the pull request https://github.com/NASA-PDS/nucleus/pull/98