Allow cached temp credentials to be deleted

Created on 17 April 2025, about 2 months ago

Problem/Motivation

During a long drush-running job (that sends emails via SES) the temporary credentials expire. The amazon_ses module catches that and re-creates a new SesV2 client, which in theory obtains new temporary credentials. In practice it seems to re-use the credentials in the key/value store, even though they *should* have expired at that point.

That is because the keyvalue.expire get() call sues REQUEST_TIME, which never changes during even a multi-hur drush run.

Steps to reproduce

Send out a *lot* of notification emails, see errors after an hour :-)

Proposed resolution

Add a method to allow the temp credentials to be dropped form the key/value store, so that they get refreshed even if REQUEST_TIME is <<<< now().

Remaining tasks

Draw the rest of the owl.

API changes

A new function in the ProfileInterface.

✨ Feature request

Status

Active

Version

2.0

Component

Code

Created by

🇦🇺Australia cafuego

Live updates comments and jobs are added and updated live.

Merge Requests

!15Allow cached temp credentials to be deleted
Open
🇦🇺Australia cafuego
updated about 2 months ago

Comments & Activities

Issue created by @cafuego
Merge request !15[#3519631] Add a deleteTemporaryCredentials() function, so cached credentials... → (Open) created by cafuego
Comment about 2 months ago →
🇦🇺Australia cafuego
Oh, except I have no way to call that new method from an AwsClientFactory, I think. So it's not actually useful.

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024