Description
While configuring the Iceberg sink connector in Iggy Connectors, I noticed that the configuration currently requires explicitly providing storage credentials:
store_access_key_id = "admin"
store_secret_access_key = "password"
If these fields are not provided, the connector fails during initialization with an error such as:
Failed to parse configuration for sink connector with ID: 1.
missing field `store_access_key_id`
Logs:
ERROR connector: connector_target="iggy_connector_sdk::sink" Failed to parse configuration for sink connector with ID: 1. missing field `store_access_key_id`
ERROR iggy_connectors::sink: Plugin initialization failed (ID: 1)
ERROR iggy_connectors::sink: Failed to initialize sink container with name: Iceberg sink (iceberg)
In many production environments (e.g., AWS, Kubernetes), it is considered best practice to avoid static access keys and instead rely on the default credential provider chain, such as:
- IAM roles
- Instance profiles
- Workload identity
- Environment credentials
Suggested Improvement
Add support for using the default credential provider chain for storage authentication.
Component
Connectors
Description
While configuring the Iceberg sink connector in Iggy Connectors, I noticed that the configuration currently requires explicitly providing storage credentials:
If these fields are not provided, the connector fails during initialization with an error such as:
Logs:
In many production environments (e.g., AWS, Kubernetes), it is considered best practice to avoid static access keys and instead rely on the default credential provider chain, such as:
Suggested Improvement
Add support for using the default credential provider chain for storage authentication.
Component
Connectors