adoroszlai commented on PR #3629:
URL: https://github.com/apache/ozone/pull/3629#issuecomment-1197739599
Thanks @xBis7 for the steps in `ozonesecure` env. Note that passing the
`-e` parameter to `ozone s3 getsecret` makes it print credentials in a format
suitable for shell:
```bash
$ ozone s3 getsecret -h
Usage: ozone s3 getsecret [-ehV] [--om-service-id=<omServiceID>]
[-u=<username>]
Returns S3 secret for a user
-e Print out variables together with 'export' prefix, to use
it
from 'eval $(ozone s3 getsecret)'
...
$ ozone s3 getsecret -e
export AWS_ACCESS_KEY_ID='testuser/[email protected]'
export AWS_SECRET_ACCESS_KEY='...'
```
This way we can void copy-paste:
```bash
kinit -kt /etc/security/keytabs/testuser.keytab testuser/[email protected]
eval $(ozone s3 getsecret -e)
ozone freon s3bg ...
```
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
