hadoop-tools/hadoop-aws/src/main/java/org/apache/hadoop/fs/s3a/auth/IAMInstanceCredentialsProvider.java - hadoop - Git at Google

 /*
  * Licensed to the Apache Software Foundation (ASF) under one
  * or more contributor license agreements.  See the NOTICE file
  * distributed with this work for additional information
  * regarding copyright ownership.  The ASF licenses this file
  * to you under the Apache License, Version 2.0 (the
  * "License"); you may not use this file except in compliance
  * with the License.  You may obtain a copy of the License at
  *
  *     http://www.apache.org/licenses/LICENSE-2.0
  *
  * Unless required by applicable law or agreed to in writing, software
  * distributed under the License is distributed on an "AS IS" BASIS,
  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  * See the License for the specific language governing permissions and
  * limitations under the License.
  */

 package org.apache.hadoop.fs.s3a.auth;

 import java.io.Closeable;
 import java.io.IOException;

 import com.amazonaws.AmazonClientException;
 import com.amazonaws.auth.AWSCredentials;
 import com.amazonaws.auth.AWSCredentialsProvider;
 import com.amazonaws.auth.EC2ContainerCredentialsProviderWrapper;

 import org.apache.hadoop.classification.InterfaceAudience;
 import org.apache.hadoop.classification.InterfaceStability;

 /**
  * This is an IAM credential provider which wraps
  * an {@code EC2ContainerCredentialsProviderWrapper}
  * to provide credentials when the S3A connector is instantiated on AWS EC2
  * or the AWS container services.
  * <p>
  * When it fails to authenticate, it raises a
  * {@link NoAwsCredentialsException} which can be recognized by retry handlers
  * as a non-recoverable failure.
  * <p>
  * It is implicitly public; marked evolving as we can change its semantics.
  *
  * @deprecated This class will be replaced by one that implements AWS SDK V2's AwsCredentialProvider
  * as part of upgrading S3A to SDK V2. See HADOOP-18073.
  */
 @InterfaceAudience.Public
 @InterfaceStability.Evolving
 @Deprecated
 public class IAMInstanceCredentialsProvider
     implements AWSCredentialsProvider, Closeable {

   private final AWSCredentialsProvider provider =
       new EC2ContainerCredentialsProviderWrapper();

   public IAMInstanceCredentialsProvider() {
   }

   /**
    * Ask for the credentials.
    * Failure invariably means "you aren't running in an EC2 VM or AWS container".
    * @return the credentials
    * @throws NoAwsCredentialsException on auth failure to indicate non-recoverable.
    */
   @Override
   public AWSCredentials getCredentials() {
     try {
       return provider.getCredentials();
     } catch (AmazonClientException e) {
       throw new NoAwsCredentialsException("IAMInstanceCredentialsProvider",
           e.getMessage(),
           e);
     }
   }

   @Override
   public void refresh() {
     provider.refresh();
   }

   @Override
   public void close() throws IOException {
     // no-op.
   }
 }
	/*
	* Licensed to the Apache Software Foundation (ASF) under one
	* or more contributor license agreements. See the NOTICE file
	* distributed with this work for additional information
	* regarding copyright ownership. The ASF licenses this file
	* to you under the Apache License, Version 2.0 (the
	* "License"); you may not use this file except in compliance
	* with the License. You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	package org.apache.hadoop.fs.s3a.auth;

	import java.io.Closeable;
	import java.io.IOException;

	import com.amazonaws.AmazonClientException;
	import com.amazonaws.auth.AWSCredentials;
	import com.amazonaws.auth.AWSCredentialsProvider;
	import com.amazonaws.auth.EC2ContainerCredentialsProviderWrapper;

	import org.apache.hadoop.classification.InterfaceAudience;
	import org.apache.hadoop.classification.InterfaceStability;

	/**
	* This is an IAM credential provider which wraps
	* an {@code EC2ContainerCredentialsProviderWrapper}
	* to provide credentials when the S3A connector is instantiated on AWS EC2
	* or the AWS container services.
	* <p>
	* When it fails to authenticate, it raises a
	* {@link NoAwsCredentialsException} which can be recognized by retry handlers
	* as a non-recoverable failure.
	* <p>
	* It is implicitly public; marked evolving as we can change its semantics.
	*
	* @deprecated This class will be replaced by one that implements AWS SDK V2's AwsCredentialProvider
	* as part of upgrading S3A to SDK V2. See HADOOP-18073.
	*/
	@InterfaceAudience.Public
	@InterfaceStability.Evolving
	@Deprecated
	public class IAMInstanceCredentialsProvider
	implements AWSCredentialsProvider, Closeable {

	private final AWSCredentialsProvider provider =
	new EC2ContainerCredentialsProviderWrapper();

	public IAMInstanceCredentialsProvider() {
	}

	/**
	* Ask for the credentials.
	* Failure invariably means "you aren't running in an EC2 VM or AWS container".
	* @return the credentials
	* @throws NoAwsCredentialsException on auth failure to indicate non-recoverable.
	*/
	@Override
	public AWSCredentials getCredentials() {
	try {
	return provider.getCredentials();
	} catch (AmazonClientException e) {
	throw new NoAwsCredentialsException("IAMInstanceCredentialsProvider",
	e.getMessage(),
	e);
	}
	}

	@Override
	public void refresh() {
	provider.refresh();
	}

	@Override
	public void close() throws IOException {
	// no-op.
	}
	}