Skip to content

aws_credentials: make IRSA authoritative in credentials chain #11256

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Draft
edsiper wants to merge 1 commit into
base: master
Choose a base branch
from
Draft

aws_credentials: make IRSA authoritative in credentials chain #11256

edsiper wants to merge 1 commit into from
+24 −2

Conversation

@edsiper
Copy link
Member

@edsiper edsiper commented Dec 4, 2025

Fixes #11255

  • Added explicit constants for IRSA environment variables to clarify detection of pod-level AWS authentication settings.

  • Updated the standard AWS credential chain to treat IRSA as authoritative, failing fast if the EKS provider cannot initialize and skipping ECS/EC2 fallbacks when IRSA is configured.

Fluent Bit is licensed under Apache 2.0, by submitting this pull request I understand that this code will be released under the terms of that license.

@edsiper
aws_credentials: make IRSA authoritative in credentials chain
af15441 
- Added explicit constants for IRSA environment variables to clarify detection
  of pod-level AWS authentication settings.

- Updated the standard AWS credential chain to treat IRSA as authoritative,
  failing fast if the EKS provider cannot initialize and skipping ECS/EC2
  fallbacks when IRSA is configured.

Signed-off-by: Eduardo Silva <[email protected]>
@coderabbitai
Copy link

coderabbitai bot commented Dec 4, 2025

Important

Review skipped

Draft detected.

Please check the settings in the CodeRabbit UI or the .coderabbit.yaml file in this repository. To trigger a single review, invoke the @coderabbitai review command.

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

✨ Finishing touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Post copyable unit tests in a comment
  • Commit unit tests in branch aws-irsa-issue

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands and usage tips.

@edsiper edsiper mentioned this pull request Dec 4, 2025
Open
@edsiper
Copy link
Member Author

edsiper commented Dec 5, 2025

@codex review

@chatgpt-codex-connector
Copy link

chatgpt-codex-connector bot commented Dec 5, 2025

Codex Review: Didn't find any major issues. Bravo.

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

  • Open a pull request for review
  • Mark a draft as ready
  • Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

docs-required

Projects

None yet

Milestone

No milestone

2 participants

@edsiper