@ -88,6 +88,12 @@ func addAwsCredentials(ci *controllerapi.CacheOptionsEntry) {
if ci . Type != "s3" {
if ci . Type != "s3" {
return
return
}
}
_ , okAccessKeyID := ci . Attrs [ "access_key_id" ]
_ , okSecretAccessKey := ci . Attrs [ "secret_access_key" ]
// If the user provides access_key_id, secret_access_key, do not override the session token.
if okAccessKeyID && okSecretAccessKey {
return
}
ctx := context . TODO ( )
ctx := context . TODO ( )
awsConfig , err := awsconfig . LoadDefaultConfig ( ctx )
awsConfig , err := awsconfig . LoadDefaultConfig ( ctx )
if err != nil {
if err != nil {
@ -97,10 +103,10 @@ func addAwsCredentials(ci *controllerapi.CacheOptionsEntry) {
if err != nil {
if err != nil {
return
return
}
}
if _ , ok := ci . Attrs [ "access_key_id" ] ; ! ok && credentials . AccessKeyID != "" {
if ! okAccessKeyID && credentials . AccessKeyID != "" {
ci . Attrs [ "access_key_id" ] = credentials . AccessKeyID
ci . Attrs [ "access_key_id" ] = credentials . AccessKeyID
}
}
if _ , ok := ci . Attrs [ "secret_access_key" ] ; ! ok && credentials . SecretAccessKey != "" {
if ! okSecretAccessKey && credentials . SecretAccessKey != "" {
ci . Attrs [ "secret_access_key" ] = credentials . SecretAccessKey
ci . Attrs [ "secret_access_key" ] = credentials . SecretAccessKey
}
}
if _ , ok := ci . Attrs [ "session_token" ] ; ! ok && credentials . SessionToken != "" {
if _ , ok := ci . Attrs [ "session_token" ] ; ! ok && credentials . SessionToken != "" {