dennishuo commented on code in PR #1026:
URL: https://github.com/apache/polaris/pull/1026#discussion_r1964494532
##########
spec/polaris-management-service.yml:
##########
@@ -850,9 +850,92 @@ components:
- $ref: "#/components/schemas/Catalog"
Review Comment:
Eventually, StorageConfig *might* become more optional. However, this is
actually an important design point about whether we're willing to return the
remote catalog's subscoped creds.
At least *some* of the known use cases explicitly want Polaris to be the one
responsible for access control and credential vending, while the remote catalog
does not perform credential vending. So we want the ability for Polaris to
mix-in vended credentials.
Returning the remote catalog's vended credentials will probably need to be
configurable. For most real use cases we'd probably want some formal protocol
for declaring the "on-behalf-of delegation chain"; e.g. the ConnectionConfig
contains a "system identity" but we'd want a way to declare the identity of the
calling Principal in the request to the remote catalog.
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
