[HYRAX-1732] Add SignedUrlCache and cache contents of s3credential endpoints#1183
[HYRAX-1732] Add SignedUrlCache and cache contents of s3credential endpoints#1183hannahilea wants to merge 108 commits intomasterfrom
Conversation
|
Opening this for review but it should NOT be merged until the next PR is ready to go (and tested on SIT)---don't want to add unnecessary steps to the service chain until it actually buys us the win! |
|
There is a fair amount of code added; probably the easiest way to understand it is to start by reading through the test page, since that is fairly comprehensive (I think). |
…P/bes into hr/HYRAX-1732-TEA-party-3
|
Ran build on SIT, request failed as a 403. We (successfully?) "request s3 credentials from TEA" After that, we fail with a "URL is not on the Allowed Hosts list and is not a known trusted URL" error. The url does have signing params in it, however, so I suspect that this is a problem with our initial set-up some how. Next step: see if we can recreate this locally. |
|
See my DM in Slack |
|
|
|
3 participants
Description
This is a big step toward HYRAX-1732, but does not yet implement the signing itself---end-users will still receive effective urls created via service chaining. This PR adds the main plumbing to set us up for self-signing in the next PR.Includes the self-signing; will close HYRAX-1732 when tested/merged.Tasks