jleben opened a new issue, #45603:
URL: https://github.com/apache/arrow/issues/45603

   ### Describe the bug, including details regarding any error messages, 
version, and platform.
   
   I am trying to use 
[parrow.fs.S3FileSystem](https://arrow.apache.org/docs/python/generated/pyarrow.fs.FileSystem.html)
 in a pod running on AWS EKS. The cluster is configured so that the pod assumes 
an IAM role via Pod Identity Association. I would like to give an instance of 
S3FileSystem permanent access to AWS through this IAM role - rather than access 
using temporary credentials that will expire. I have not found any way to do so.
   
   When simply instantiating with no arguments as in `S3FileSystem()`, it has 
no access to AWS (receives ACCESS_DENIED on `get_file_info` for example).
   
   Trying to pass the IAM role that's part of the Pod Identity Association to 
S3FileSystem using `S3FileSystem(role_arn=...)`, I still get ACCESS_DENIED.
   
   I am able to give S3FileSytem access however by passing `access_key, 
secret_key, session_token` that I obtain from `boto3` - however those 
credentials will eventually expire. Instead, I am looking to give permanent 
access to a single S3FileSystem instance.
   
   ### Component(s)
   
   Python


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: issues-unsubscr...@arrow.apache.org.apache.org

For queries about this service, please contact Infrastructure at:
us...@infra.apache.org

Reply via email to