brash-piano-42461
09/21/2023, 6:02 PMbroad-monitor-993
09/21/2023, 6:05 PMflytekit.Secret
configuration it should workbrash-piano-42461
09/21/2023, 6:08 PMbrash-piano-42461
09/21/2023, 6:09 PMbrash-piano-42461
09/21/2023, 6:09 PMkubectl create secret generic aws-credentials \
--from-literal=AWS_ACCESS_KEY_ID=your-access-key-id \
--from-literal=AWS_SECRET_ACCESS_KEY=your-secret-access-key
freezing-airport-6809
brash-piano-42461
09/21/2023, 6:10 PMbrash-piano-42461
09/21/2023, 6:11 PMbroad-monitor-993
09/21/2023, 6:17 PM@task(secret_requests=[
Secret(
group="aws-credentials",
key="AWS_ACCESS_KEY_ID",
),
Secret(
group="aws-credentials",
key="AWS_SECRET_ACCESS_KEY",
),
])
brash-piano-42461
09/21/2023, 6:17 PMbroad-monitor-993
09/21/2023, 6:18 PMbrash-piano-42461
09/21/2023, 6:18 PMbroad-monitor-993
09/21/2023, 6:20 PMbrash-piano-42461
09/21/2023, 6:28 PMUnable to locate credentials
brash-piano-42461
09/21/2023, 6:29 PM@task(task_config=ray_config,
requests=Resources(mem="2Gi", cpu="1"),
container_image=custom_image,
secret_requests=[
Secret(
group="aws-credentials",
key="AWS_ACCESS_KEY_ID",
),
Secret(
group="aws-credentials",
key="AWS_SECRET_ACCESS_KEY",
),
])
broad-monitor-993
09/21/2023, 6:36 PM@task(...)
def my_task(...):
os.environ["AWS_ACCESS_KEY_ID"] = secret_manager.get("aws-credentials", "AWS_ACCESS_KEY_ID")
os.environ["AWS_SECRET_ACCESS_KEY"] = secret_manager.get("aws-credentials", "AWS_SECRET_ACCESS_KEY")
There’s a PR to make this more convenientbrash-piano-42461
09/21/2023, 6:38 PMsc = SecretsManager()
os.environ["AWS_ACCESS_KEY_ID"] = sc.get("aws-credentials", "AWS_ACCESS_KEY_ID")
os.environ["AWS_SECRET_ACCESS_KEY"] = sc.get("aws-credentials", "AWS_SECRET_ACCESS_KEY")
brash-piano-42461
09/21/2023, 6:39 PMbrash-piano-42461
09/21/2023, 6:42 PMMessage:
Unable to find secret for key AWS_ACCESS_KEY_ID in group aws-credentials in Env Var:_FSEC_AWS-CREDENTIALS_AWS_ACCESS_KEY_ID and FilePath: /etc/secrets/aws-credentials/aws_access_key_id
brash-piano-42461
09/21/2023, 6:42 PMbroad-monitor-993
09/21/2023, 6:54 PMglamorous-carpet-83516
09/21/2023, 8:12 PMglamorous-carpet-83516
09/21/2023, 8:12 PMbroad-monitor-993
09/21/2023, 9:52 PMbrash-piano-42461
09/22/2023, 4:30 AMbrash-piano-42461
09/22/2023, 5:11 AM@task(task_config=ray_config,
requests=Resources(mem="2Gi", cpu="1"),
container_image=custom_image)
def fn():
sc = SecretsManager()
os.environ["AWS_ACCESS_KEY_ID"] = sc.get("aws-credentials", "AWS_ACCESS_KEY_ID")
os.environ["AWS_SECRET_ACCESS_KEY"] = sc.get("aws-credentials", "AWS_SECRET_ACCESS_KEY")