Anuj Modi created HADOOP-19660:
----------------------------------
Summary: ABFS: Proposed Enhancement in
WorkloadIdentityTokenProvider
Key: HADOOP-19660
URL: https://issues.apache.org/jira/browse/HADOOP-19660
Project: Hadoop Common
Issue Type: Sub-task
Components: fs/azure
Affects Versions: 3.4.1, 3.5.0
Reporter: Anuj Modi
Externally Reported Enhancement:
*Current Limitation*
The current WorkloadIdentityTokenProvider implementation works well for
file-based token scenarios, but it's tightly coupled to file system operations
and cannot be easily extended for alternative token sources
{*}Use Case{*}: *Kubernetes TokenRequest API*
In modern Kubernetes environments, the recommended approach is to use the
TokenRequest API to generate short-lived, on-demand service account tokens
rather than relying on projected volume mounts.
*Proposed Enhancement*
I propose modifying WorkloadIdentityTokenProvider to accept a Supplier for
token retrieval instead of being hardcoded to file operations:
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
