TrueCloudLab/restic
16
0
Fork 2
Code Issues Pull requests 1 Projects Releases Packages Wiki Activity Actions

s3: prevent repeated credential queries with anonymous authentication

Browse source
This commit is contained in:
Michael Eischer 2024-07-07 11:31:04 +02:00
parent be98402ac6
commit a2a2401a68
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
internal/backend/s3/s3.go
View file

@ -132,6 +132,9 @@ func getCredentials(cfg Config) (*credentials.Credentials, error) {
if c.SignerType == credentials.SignatureAnonymous {
debug.Log("using anonymous access for %#v", cfg.Endpoint)
// short circuit credentials resolution when using anonymous access
// otherwise the IAM provider would continuously try to (unsuccessfully) retrieve new credentials
creds = credentials.New(&credentials.Static{})
}
roleArn := os.Getenv("RESTIC_AWS_ASSUME_ROLE_ARN")