search

warpstreamlabs / bento

Fancy stream processing made operationally mundane. This repository is a fork of the original project before the license was changed.
https://warpstreamlabs.github.io/bento/
Other
1.06k stars 71 forks source link

Feature Request: Add Support for IAM Authentication with AWS RDS (PostgreSQL) #127

Open adrianhaj opened 1 month ago

adrianhaj commented 1 month ago

Description:

As a user, I would like to be able to connect to an AWS RDS instance (PostgreSQL) for reading and writing data using IAM roles instead of providing a username and password. This would enhance security and streamline authentication by leveraging AWS IAM.

Context:

Currently, authentication to the RDS instance requires specifying a database username and password. However, AWS provides a more secure alternative by using IAM database authentication, allowing users to connect to RDS instances using temporary authentication tokens. This feature would allow users to authenticate using IAM roles without needing to manage database credentials manually.

References:

AWS Documentation: Using IAM Database Authentication with PostgreSQL

Proposed Solution:

Integrate IAM-based authentication for AWS RDS (PostgreSQL) into the project by utilizing the Go code example provided by AWS. This would allow users to authenticate with IAM roles and simplify the connection process for RDS interactions.

jem-davies commented 1 month ago

https://github.com/warpstreamlabs/bento/pull/135

jem-davies commented 1 month ago

Added the ability to read the username + password from a secret for postgres DSN ... Will look further into doing the IAM authentication too soon.