geyanggang opened a new pull request, #10317: URL: https://github.com/apache/gravitino/pull/10317
### What changes were proposed in this pull request? Wrap GCS OAuth2 access tokens in a google.auth.credentials.Credentials object before passing to gcsfs.GCSFileSystem. The new gcsfs version (2026.2.0) requires Credentials objects instead of raw token strings. Changes: Created StaticCredentials class implementing google.auth.credentials.Credentials interface Properly converts token string and expiry time to Credentials object Uses google.auth._helpers.utcnow() for consistent time comparison ### Why are the changes needed? The gcsfs library was upgraded from 2024.3.1 to 2026.2.0 in commit https://github.com/datastrato/gravitino-internal/commit/79e37271216ebed689b1b4ea592adb12d6173170. The new version changed the token parameter handling and no longer accepts raw OAuth2 token strings. It now requires google.auth.credentials.Credentials objects. Without this fix, all GCS credential-based tests fail with "Provided token is either not valid, or expired" error, breaking the credential vending feature for GCS storage. Fix: #10315 ### Does this PR introduce _any_ user-facing change? No. ### How was this patch tested? The CI can pass. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
