Skip to content

Azure: Fix azure expires at prefix for the credentials refresh #2633

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Sep 19, 2025
Merged

Azure: Fix azure expires at prefix for the credentials refresh #2633

merged 3 commits into from
Sep 19, 2025

Conversation

@singhpk234
Copy link
Contributor

@singhpk234 singhpk234 commented Sep 19, 2025
edited
Loading

About the change

For the credential refresh endpoint for the ADLS its expected the expiration time should be sent with the prefix of AZURE_SAS_TOKEN_EXPIRES_AT_MS_PREFIX which presently Polaris doesn't sends as the course of that the CredentialProvider responsible for the refresh fails the assertion here https://github.com/apache/iceberg/blob/main/azure/src/main/java/org/apache/iceberg/azure/adlsv2/VendedAdlsCredentialProvider.java#L123
and hence not making it usable.

P.S I think we should also use constants for iceberg SDK in the StorageAccessProperty, but this is an orthogonal discussion for now.

Testing

Add a small UT

@singhpk234 singhpk234 requested a review from dimas-b September 19, 2025 17:16
@github-project-automation github-project-automation bot moved this to PRs In Progress in Basic Kanban Board Sep 19, 2025
dimas-b
dimas-b reviewed Sep 19, 2025
View reviewed changes
Copy link
Contributor

@dimas-b dimas-b left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for catching this, @singhpk234 !

dimas-b
dimas-b previously approved these changes Sep 19, 2025
View reviewed changes
@github-project-automation github-project-automation bot moved this from PRs In Progress to Ready to merge in Basic Kanban Board Sep 19, 2025
dimas-b
dimas-b reviewed Sep 19, 2025
View reviewed changes
Copy link
Contributor

@dimas-b dimas-b left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Could you also add a note to CHANGELOG.md?

@singhpk234
Copy link
Contributor Author

singhpk234 commented Sep 19, 2025

ACK, seems like we haven't frozen the CHANGELOG for 1.1, i put a PR for this here

will add the CHANGELOG for this bug fix on the unreleased section so we can use this in prep of 1.2.

@sfc-gh-prsingh sfc-gh-prsingh force-pushed the feature/fix-azure-expires-at branch from 2d3e463 to a9e7d43 Compare September 19, 2025 22:41
@singhpk234 singhpk234 requested a review from dimas-b September 19, 2025 22:41
@singhpk234 singhpk234 merged commit 7f5fb06 into apache:main Sep 19, 2025
14 checks passed
@github-project-automation github-project-automation bot moved this from Ready to merge to Done in Basic Kanban Board Sep 19, 2025
@singhpk234 singhpk234 deleted the feature/fix-azure-expires-at branch September 19, 2025 23:53
@singhpk234
Copy link
Contributor Author

singhpk234 commented Sep 19, 2025

Thank you @dimas-b !

@PhillHenry PhillHenry mentioned this pull request Oct 13, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dimas-b dimas-b dimas-b approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@singhpk234 @dimas-b