Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

✨ #131: Support AWS Bedrock #141

Merged
merged 14 commits into from
Feb 16, 2024
Merged

✨ #131: Support AWS Bedrock #141

merged 14 commits into from
Feb 16, 2024

Conversation

mkrueger12
Copy link
Contributor

@codecov Codecov
Copy link

codecov bot commented Feb 12, 2024
edited
Loading

Codecov Report

Attention: 55 lines in your changes are missing coverage. Please review.

Comparison is base (671c156) 71.31% compared to head (7ecc786) 70.56%.
Report is 1 commits behind head on develop.

Files Patch % Lines
pkg/providers/bedrock/chat.go 50.64% 37 Missing and 1 partial ⚠️
pkg/providers/bedrock/config.go 57.14% 12 Missing ⚠️
pkg/providers/bedrock/client.go 84.37% 4 Missing and 1 partial ⚠️
Additional details and impacted files 
@@             Coverage Diff             @@
##           develop     #141      +/-   ##
===========================================
- Coverage    71.31%   70.56%   -0.76%     
===========================================
  Files           34       37       +3     
  Lines         1684     1821     +137     
===========================================
+ Hits          1201     1285      +84     
- Misses         418      469      +51     
- Partials        65       67       +2

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

@mkrueger12 mkrueger12 marked this pull request as ready for review February 12, 2024 17:26
roma-glushko
roma-glushko reviewed Feb 12, 2024
View reviewed changes
pkg/providers/bedrock/chat.go Outdated
}

cfg, _ := config.LoadDefaultConfig(ctx,
config.WithCredentialsProvider(credentials.NewStaticCredentialsProvider(c.config.AccessKey, c.config.SecretKey, "")),
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

AWS is full of magic ways to authenticate 😌 I just want to make sure this override won't prevent it from using other authentication approaches like one based on ARN annotation added on the k8s service account resource level (https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html). This is likely to be a production way to give Glide access to Titan.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Should I implement this?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@mkrueger12 normally AWS SDK comes with support for all of these. But I would double check this override doen't break these other authentication approaches.

Because the problem with these Access/Secret keys is that it gets expired in 6-12h, so it cannot be really used for setups other than local testing.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Do access keys expire that fast if they are attached to an IAM role? I am showing keys that are still active after 3 days.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@roma-glushko So I just tested this and the Access & secret keys are still live. We can go a different auth route but this way does work. Let me know what you think.

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

That's good to know. Maybe that's how people operate if they want to use Bedrock while their infra is outside of AWS (e.g. Azure or GCP).

I will try to inspect a pod that has ARN configured to its service account to see what AWS mounts there additionally to make sure you are with that usecase.

@roma-glushko roma-glushko changed the title #131: Support AWS Bedrock ✨ #131: Support AWS Bedrock Feb 13, 2024
@mkrueger12 mkrueger12 merged commit 5c3f208 into develop Feb 16, 2024
8 checks passed
@mkrueger12 mkrueger12 deleted the 131-bedrock branch February 16, 2024 03:50
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@roma-glushko roma-glushko roma-glushko left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@mkrueger12 @roma-glushko