fivetran-ashokborra commented on PR #1424: URL: https://github.com/apache/polaris/pull/1424#issuecomment-3051474161
> @fivetran-ashokborra Thanks for working on this. I wanted to see if this is still being actively pursued? We are interested in support the bucket keys in credential vending i.e. when vending paths on a particular bucket, identity the bucket key and based on the read or write operation offer the required actions on the key. > > This is the high level flow: > > * Enable Bucket KMS Vending at a catalog level > * For each of the read and write paths during credential vending do the following: > > * Identify the list of unique buckets > * For each bucket identify the bucket key if configured > > * Include KMS Read privileges in case of a read path > * Include KMS Write privileges in case of a write path > > This can be beyond the option of defining KMS Keys to be vended at a catalog level. Yes, I'm working on this. I was caught up with some other things last week. We can enhance this and make the changes with FeatureConfiguration at the table level. Let's connect offline on the next steps. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: issues-unsubscr...@polaris.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
