[GitHub] [hadoop] virajjasani commented on pull request #4705: HADOOP-18373. IOStatisticsContext tuning

Thu, 04 Aug 2022 16:08:59 -0700 


virajjasani commented on PR #4705:
URL: https://github.com/apache/hadoop/pull/4705#issuecomment-1205862908

   For `ITestS3ATemporaryCredentials` test, I have provides these configs:
   1. test.fs.s3a.name
   2. fs.contract.test.fs.s3a
   3. test.sts.endpoint
   4. fs.s3a.endpoint
   5. fs.s3a.assumed.role.sts.endpoint
   6. fs.s3a.assumed.role.sts.endpoint.region
   7. fs.s3a.aws.credentials.provider (value: 
`org.apache.hadoop.fs.s3a.TemporaryAWSCredentialsProvider`)
   8. fs.s3a.session.token
   9. fs.s3a.access.key
   10. fs.s3a.secret.key
   
   However, 4 tests fail with:
   ```
   java.nio.file.AccessDeniedException: : request session credentials: 
com.amazonaws.services.securitytoken.model.AWSSecurityTokenServiceException: 
The security token included in the request is invalid. (Service: 
AWSSecurityTokenService; Status Code: 403; Error Code: InvalidClientTokenId; 
Request ID: 04bfbc37-dfb3-4984-b8f7-8785dd3fe172; Proxy: 
null):InvalidClientTokenId
        at 
org.apache.hadoop.fs.s3a.S3AUtils.translateException(S3AUtils.java:247)
        at org.apache.hadoop.fs.s3a.Invoker.once(Invoker.java:124)
        at org.apache.hadoop.fs.s3a.Invoker.lambda$retry$4(Invoker.java:376)
        at org.apache.hadoop.fs.s3a.Invoker.retryUntranslated(Invoker.java:468)
        at org.apache.hadoop.fs.s3a.Invoker.retry(Invoker.java:372)
        at org.apache.hadoop.fs.s3a.Invoker.retry(Invoker.java:347)
        at 
org.apache.hadoop.fs.s3a.auth.STSClientFactory$STSClient.requestSessionCredentials(STSClientFactory.java:202)
        at 
org.apache.hadoop.fs.s3a.auth.MarshalledCredentialBinding.requestSessionCredentials(MarshalledCredentialBinding.java:212)
        at 
org.apache.hadoop.fs.s3a.S3ATestUtils.requestSessionCredentials(S3ATestUtils.java:663)
        at 
org.apache.hadoop.fs.s3a.S3ATestUtils.requestSessionCredentials(S3ATestUtils.java:644)
        at 
org.apache.hadoop.fs.s3a.ITestS3ATemporaryCredentials.testInvalidSTSBinding(ITestS3ATemporaryCredentials.java:258)
   
   ```
   
   This doesn't seem relevant to the patch but wondering what I am missing in 
the configs. I have tried to follow everything from the S3A docs.
   
   @mehakmeet @steveloughran 


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to