Skip to content

Add UserInfo in S3 Requests sent via Dataserver

This feature enables logging of the privacera-username trying to access the S3 data via Privacera Dataserver in AWS Cloudwatch logs. You can see theprivacerar-usernameas a request parameter{privacera-user: callingUser}` in the AWS CloudWatch Logs for that particular resource which the callingUser is trying to access.

Refer sample value which will be seen in AWS Cloudwatch logs.

Note: This feature is currently supported for the following:

Steps#

  1. If you are updating an existing S3 application:

    1. Go to Settings > Applications > S3, and click the pen icon to edit properties.

    2. Click the toggle button of a service you wish to enable.

    3. In the the ADVANCED tab, add the following custom property.

      dataserver.aws.request.include.userinfo=true 
      
    4. Click Save.

  2. Else, if you are connecting to a new AWS S3 Databricks connection, see Create S3 application.

    After creating S3 application.

    1. In the BASIC tab, provide Access Key, Secret Key, or an IAM Role. For more information, see Create S3 application.

    2. In the the ADVANCED tab, add the following custom property.

      dataserver.aws.request.include.userinfo=true
      
    3. Click Save


Last update: February 22, 2022