search

newrelic-experimental / newrelic-snowflake-integration

New Relic integration with Snowflake to monitor query performance, logins, potential security incidents, optimise warehouse and cloud credit costs, capture any data stored in Snowflake for real-time alerting and reporting
Apache License 2.0
13 stars 17 forks source link

Add Support For Snowflake Key Pair Authentication. #5

Open SivaInapakolla opened 3 years ago

SivaInapakolla commented 3 years ago

[NOTE]: The existing newrelic integration works only with basic authentication (i.e. username and password).

Summary

[NOTE]: # Please modify the integration to support Keypair authentication which is the most enhanced authentication security method to connect to Snowflake while using service accounts.

Desired Behavior

The integration should be able to connect to Snowflake using key pair authentication.

Possible Solution

Snowflake documentation describes how key pair authentication can be used for nodejs.

https://docs.snowflake.com/en/user-guide/nodejs-driver-use.html#label-nodejs-key-pair-authentication

Additional context

Key pair authentication is our infosec approved method to use for service accounts to connect to Snowflake.

danifitz commented 3 years ago

Thanks for raising this request @SivaInapakolla we will look into implementing key pair authentication. In your case, where do you store the key? Is it on the same host or would you be using some key storage solution like AWS KMS or Vault?

SivaInapakolla commented 3 years ago

@danifitz in Hashicorp Vault.

danifitz commented 3 years ago

@SivaInapakolla Hey, which version of Vault are you using? I want to make sure I implement the correct API version! Sorry for the delay I am just getting some time to implement this.

SivaInapakolla commented 3 years ago

@danifitz - Sorry for the delay, at this point we're on Vault 1.2.1.