grafana/pkg at 08bdf00c50e9385502fcacc60da93bbe2cb152cc - grafana - AI0 SCM

opensource/grafana

mirror of https://github.com/grafana/grafana.git synced 2026-03-13 15:29:48 +08:00

Files

History

Kevin Yu 08bdf00c50 Plugins: Forward AWS SDK credential chain env vars to external AWS plugins (#119772 )

Plugins: Forward AWS SDK credential chain env vars to external plugins

Fixes broken AWS authentication (assume role, SigV4) for external plugins
(Redshift, Athena, Amazon Prometheus, OpenSearch) in Grafana 12.4.0.

In v12.4.0, commit f041563df3 changed plugin env var handling so external
plugins no longer receive host environment variables by default. This breaks
the AWS SDK credential chain in container environments (EKS IRSA, ECS Fargate)
which rely on vars like AWS_ROLE_ARN, AWS_WEB_IDENTITY_TOKEN_FILE, and
AWS_CONTAINER_CREDENTIALS_RELATIVE_URI.

Forward 8 critical AWS SDK credential chain env vars from the host to plugins
already in [aws] forward_settings_to_plugins. This is scoped to trusted AWS
plugins only, more targeted than PR #118870's global approach.

Includes test coverage for forwarding, non-forwarding, and selective env var
filtering.

Fixes #119235, #119603, opensearch-datasource#1012

2026-03-12 09:34:08 -07:00

..

Go: Update to 1.25.8 (#119692 )

2026-03-06 10:27:09 +01:00

Datagrid: remove flag and backend code (#119555 )

2026-03-12 08:47:21 -04:00

Folders: Remove with full path annotation from k8s api (#119998 )

2026-03-10 18:26:53 -06:00

Testdata: Add query to testdata execution (#119612 )

2026-03-06 06:25:24 +00:00

OBO tokens: add GetAccessToken and update ext_jwt (#119452 )

2026-03-09 22:06:02 -07:00

Go: Update to 1.25.8 (#119692 )

2026-03-06 10:27:09 +01:00

…

…

Secrets: Improve performance of DEK consolidation (#119352 )

2026-03-10 12:33:12 -04:00

Go: Update to 1.25.8 (#119692 )

2026-03-06 10:27:09 +01:00

Chore: Update grafana-plugin-sdk-go to v0.289.0 (#118553 )

2026-02-20 15:40:11 +03:00

…

…

Update go-mysql-server fork synced with upstream, security fixes applied, and CGo disabled (#119243 )

2026-03-03 13:57:44 -05:00

Chore: Adding schemads (#119634 )

2026-03-05 17:44:45 -05:00

Chore: Upgrade app-sdk to 0.50.1 (#117292 )

2026-02-10 13:55:07 +03:00

ifaces/gcsifaces

…

OBO tokens: add GetAccessToken and update ext_jwt (#119452 )

2026-03-09 22:06:02 -07:00

Dashboard: Add matcher scope to schema (#119684 )

2026-03-11 17:49:13 +00:00

Auth: Fix token refresh when using Entra ID OAuth with workload_identity (federated credentials) (#114172 )

2026-02-23 14:38:58 +01:00

Chore: Use a faster gzip middleware library (#118975 )

2026-02-26 05:55:32 +00:00

mocks/mock_gcsifaces

…

…

Unified: extract backend creation from server (#117177 )

2026-02-17 13:59:21 +01:00

Provisioning: Add job operation metrics (#120147 )

2026-03-12 12:56:36 +00:00

OBO tokens: add GetAccessToken and update ext_jwt (#119452 )

2026-03-09 22:06:02 -07:00

Go: Update to 1.25.8 (#119692 )

2026-03-06 10:27:09 +01:00

Provisioning: export jobs wired with folder metadata creation (#119588 )

2026-03-12 16:41:58 +01:00

Go: Update to 1.25.8 (#119692 )

2026-03-06 10:27:09 +01:00

IAM: Add users filtering and improved RBAC mapper for users API (#119100 )

2026-03-12 13:42:22 +01:00

Plugins: Forward AWS SDK credential chain env vars to external AWS plugins (#119772 )

2026-03-12 09:34:08 -07:00

Authz: reduce reconciler memory by streaming diff computation (#120115 )

2026-03-12 13:59:24 +00:00

Notifier: fix channelNotifier emitting events out of RV order (#120171 )

2026-03-12 13:44:12 +01:00

Provisioning: export jobs wired with folder metadata creation (#119588 )

2026-03-12 16:41:58 +01:00

Influx: Add downstream error source for failing requests (#119933 )

2026-03-10 14:24:57 +00:00

CI: Remove CGO from our vocabulary (#119205 )

2026-02-27 13:02:21 +01:00

[chore] Update go to v1.26.0, and the golangci-lint action to v9 (#118436 )

2026-02-19 15:04:35 +01:00

README.md

…

ruleguard.rules.go

…

README.md

This directory contains the code for the Grafana backend.

The contributor documentation for Grafana's backend is in /contribute/backend/README.md.