Open c-thiel opened 1 month ago
You are right, we should use oauth2
prefix in the future.
Did trino implement oauth2.server-uri
parameters? I didn't have seen this parameters in their doc.
@Smith-Cruise no, trino is also missing the parameter currently but an issue is also open: https://github.com/trinodb/trino/issues/23086
This issue could probably be implemented together with https://github.com/StarRocks/starrocks/issues/50518
Enhancement
Recent changes in Iceberg REST deprecated the oauth2 endpoint as part of the REST spec. Instead, the OAuth2 endpoint of the IdP should be used.
Extract from the updated spec:
It would be great to make the oauth2 server uri configurable by adding a
iceberg.catalog.oauth2.server-uri
configuration for the Iceberg Rest Catalog.While on it, it might make sense to also rename the credential configuration property from
iceberg.catalog.credential
toiceberg.catalog.oauth2.credential
as oauth2 might not be the only auth mechanism in the future. trino, presto and spark all use a nestedoauth2
prefix, which might be a good orientation. They are also more precise in naming the propertiesiceberg.rest.xxx.xxx
, as iceberg also supports other catalogs than rest.