search

OHDSI / WhiteRabbit

WhiteRabbit is a small application that can be used to analyse the structure and contents of a database as preparation for designing an ETL. It comes with RabbitInAHat, an application for interactive design of an ETL to the OMOP Common Data Model with the help of the the scan report generated by White Rabbit.
http://ohdsi.github.io/WhiteRabbit
Apache License 2.0
178 stars 88 forks source link

AWS IAM Auth option #336

Open smartin-arch opened 2 years ago

smartin-arch commented 2 years ago

Is your feature request related to a problem? Please describe. Requesting the addition AWS IAM auth method(s) for WhiteRabbit - possibly useful in other areas of the OHDSI stack.

Describe the solution you'd like Many organizations have adopted AWS for DB storage as well as AWS IAM authentication. This method leverages AWS SSO for session access and removes the need for named user access. Several applications have added AWS IAM as an access method (JetBrains tools like DataGrip, PyCharm...)

https://aws.amazon.com/iam/

AWS Identity and Access Management (IAM) provides fine-grained access control across all of AWS. With IAM, you can specify who can access which services and resources, and under which conditions. With IAM policies, you manage permissions to your workforce and systems to ensure least-privilege permissions.

Describe alternatives you've considered Presently options I've used are: 1) Export to CSV (still an issue for highly sensitive data) 2) Request temporary named user credentials from the AWS Admins (Policy deviation) 3) Replicate tables in a new environment with named user credentials

Additional context Several applications have added AWS IAM as an access method (JetBrains tools like DataGrip, PyCharm...) https://plugins.jetbrains.com/plugin/11349-aws-toolkit