mmgaggle commented on issue #32: URL: https://github.com/apache/polaris/issues/32#issuecomment-2420566771
@mjf-89 It would be more powerful if the engine sent the GetObject requests to the catalog, and the catalog signed them using its own credential, or using a credential is generates (ie you might want it to AssumeRole before signing for tracking purposes). This method would lend to what I discussed above, which is only signing requests that include ranges that correspond with particular columns. If you did a pre-signed url for an object, then you wouldn't be able to do column level access control, and if someone were to snoop on the engine to catalog traffic they would have access to the object. A signed request has protection against replay attacks. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
