Feat/kinesis binding vmware go kcl v2 latest #4082
Conversation
sicoyle
left a comment
sicoyle
left a comment
There was a problem hiding this comment.
thank you for your contribution to the Dapr project 🙌 - few comments :)
bindings/aws/kinesis/kinesis.go
Outdated
| closed atomic.Bool | ||
| closeCh chan struct{} | ||
| wg sync.WaitGroup | ||
| applicationName string |
There was a problem hiding this comment.
can you please share some insights on why the additional field here?
There was a problem hiding this comment.
can you please share some insights on why the additional field here?
applicationName is required for KCL (Kinesis Client Library) worker configuration in shared throughput mode. It identifies the consumer application and is used for DynamoDB table naming and checkpointing.
Without applicationName we were facing an error.
There was a problem hiding this comment.
I'd move this field next to consumerMode. And the comment is not necessary if you ask me, I'd remove it for consistency, but feel free to keep if you think it's useful :)
There was a problem hiding this comment.
I'd move this field next to
consumerMode. And the comment is not necessary if you ask me, I'd remove it for consistency, but feel free to keep if you think it's useful :)
Done
common/authentication/aws/client.go
Outdated
| v1Creds, err := c.Credentials.Get() | ||
| if err != nil { | ||
| return nil |
There was a problem hiding this comment.
why are we ignoring the err here? If we are updating to use v2 then can you make the v2 creds provider be the default and if err then maybe try the v1 and then err from there? but pls reference the other aws components to see the auth flow so we can ensure that we standardize on this for when using v2 sdks.
There was a problem hiding this comment.
why are we ignoring the err here? If we are updating to use v2 then can you make the v2 creds provider be the default and if err then maybe try the v1 and then err from there? but pls reference the other aws components to see the auth flow so we can ensure that we standardize on this for when using v2 sdks.
Done please verify this.
|
The git history of this PR seems odd, lots of those commits are unrelated. Do you mind cleaning it up so it only contains commits related to this change? |
Signed-off-by: swatimodi-scout <[email protected]>
Signed-off-by: devendrapohekar-scout <[email protected]>
swatimodi-scout
force-pushed
the
feat/kinesis-binding-vmware-go-kcl-v2-latest
branch
from
e6bc920 to
cabcec5
Compare
@acroca Thanks for the feedback! I’ve cleaned up the branch history — the PR now contains only the relevant commit for this change. Please let me know if anything else needs adjustment. |
Signed-off-by: swatimodi-scout <[email protected]>
bindings/aws/kinesis/kinesis.go
Outdated
| closed atomic.Bool | ||
| closeCh chan struct{} | ||
| wg sync.WaitGroup | ||
| applicationName string |
There was a problem hiding this comment.
I'd move this field next to consumerMode. And the comment is not necessary if you ask me, I'd remove it for consistency, but feel free to keep if you think it's useful :)
common/authentication/aws/client.go
Outdated
| /** | ||
| * If the error is not nil, do not proceed to the next step | ||
| * as it may cause a nil pointer error on stream.StreamDescription.StreamARN. | ||
| */ |
There was a problem hiding this comment.
I think the comment is not necessary
There was a problem hiding this comment.
I think the comment is not necessary
Done
common/authentication/aws/client.go
Outdated
| kclConfig := config.NewKinesisClientLibConfigWithCredential(applicationName, stream, region, "", v2Config.Credentials) | ||
| return kclConfig | ||
| } | ||
| // Fallback to v1 credentials if v2 fails |
There was a problem hiding this comment.
In which cases would v2 fail, but v1 work?
There was a problem hiding this comment.
In which cases would v2 fail, but v1 work?
Good question! You're right to point that out. Looking at this more carefully, the v2 fallback to v1 scenario is actually quite rare and adds unnecessary complexity.
In practice, both v1 and v2 SDKs use the same underlying credential sources (env vars, credential files, IAM roles, etc.), so if v2 fails to load credentials, v1 would likely fail for the same reason.
Since we already have validated v1 credentials from the established session, I've simplified this to directly use those credentials and convert them to v2 format for KCL compatibility. This is more reliable and removes the redundant credential resolution logic.
Updated the code to use the existing session credentials directly - much cleaner approach! 👍
Co-authored-by: Albert Callarisa <[email protected]> Signed-off-by: swatimodi-scout <[email protected]>
Co-authored-by: Albert Callarisa <[email protected]> Signed-off-by: swatimodi-scout <[email protected]>
Signed-off-by: swatimodi-scout <[email protected]>
common/authentication/aws/client.go
Outdated
| v1Creds, err := c.Credentials.Get() | ||
| if err != nil { | ||
| return nil | ||
| } | ||
| v2Creds := v2creds.NewStaticCredentialsProvider(v1Creds.AccessKeyID, v1Creds.SecretAccessKey, v1Creds.SessionToken) |
There was a problem hiding this comment.
It feels wrong to have both v1 and v2 living together. Can't we migrate completely to v2?
There was a problem hiding this comment.
It feels wrong to have both v1 and v2 living together. Can't we migrate completely to v2?
Done please review it.
There was a problem hiding this comment.
I don't think this works, it's not wired up to the refresh at all.
I think it was better before, but the conversion from v1 credentials to v2 should be done in the KinesisClients.New, which is called in the refresh operations.
This way, you can convert all kinesis to v2 and only do the v1->v2 in the New right?
There was a problem hiding this comment.
thansks @swatimodi-scout! What if you fully migrate the aws client to v2? you do not need to migrate all other components, it would be something similar to this PR that @mikeee is working on.
There was a problem hiding this comment.
thansks @swatimodi-scout! What if you fully migrate the aws client to v2? you do not need to migrate all other components, it would be something similar to this PR that @mikeee is working on.
@javier-aliaga Yes, that makes sense. However, we’re not migrating the entire AWS SDK version at this stage — my current change focuses only on updating vmware-go-kcl to vmware-go-kcl-v2.
Would you prefer that I continue implementing the AWS SDK v2 changes for Kinesis within this same PR, or should I move that work to a separate PR?
There was a problem hiding this comment.
I don't think this works, it's not wired up to the refresh at all. I think it was better before, but the conversion from v1 credentials to v2 should be done in the
KinesisClients.New, which is called in the refresh operations. This way, you can convert all kinesis to v2 and only do the v1->v2 in theNewright?
@acroca I updated in KinesisClients.New. It is working i checked in local. Let me know if i need to revert back to previous version where we were supporting both v1 and v2.
There was a problem hiding this comment.
I think you can do it in the same PR as changing to aws-sdk-v2 is related to update the vmware-go-kcl-v2
There was a problem hiding this comment.
I think you can do it in the same PR as changing to aws-sdk-v2 is related to update the vmware-go-kcl-v2
@javier-aliaga Please review the code.
Signed-off-by: swatimodi-scout <[email protected]>
swatimodi-scout
force-pushed
the
feat/kinesis-binding-vmware-go-kcl-v2-latest
branch
from
01bf923 to
45d9390
Compare
Signed-off-by: swatimodi-scout <[email protected]> Signed-off-by: rideshnath-scout <[email protected]>
Signed-off-by: rideshnath-scout <[email protected]>
rideshnath-scout
force-pushed
the
feat/kinesis-binding-vmware-go-kcl-v2-latest
branch
from
2c85b67 to
9dafc6d
Compare
6 participants
Description
This PR includes two key improvements to the AWS Kinesis input binding:
These changes improve stability and maintainability of the Kinesis input binding, ensuring compatibility with LocalStack and future AWS SDK updates.
Issue reference
We strive to have all PR being opened based on an issue, where the problem or feature have been discussed prior to implementation.
Please reference the issue this PR will close: #[3980, 3985]
Checklist
Please make sure you've completed the relevant tasks for this PR, out of the following list:
Note: We expect contributors to open a corresponding documentation PR in the dapr/docs repository. As the implementer, you are the best person to document your work! Implementation PRs will not be merged until the documentation PR is opened and ready for review.