Kalyan R
I think, one way to do this, is to support specific "Deny" rules. But, this is not going to be user friendly at scale. Given, blocking access per entity per...
Yeah. I agree with that.
@gopidesupavan and I connected last week to replicate the issue. But the problem is only happening on my local setup. I am testing this out on a fresh EC2 instance...
@sachinbct , can you please share more details about your env/setup?
@sachinbct , I think this is only happening on deployments on AWS. And, the fix needs to be done in botocore: https://github.com/boto/botocore/pull/3140 . I verified this fix and its working...
@eladkal, That makes sense. But this case still needs to be handled on the Airflow side as well since we want a way to track the job. I have a...
If we agree on an approach, I can work on this one. So far, I like the idea of the task key being passed by the user. If user doesn't...
> Another idea I have @rawwar is to check if we can compute a hash of the task ID built using the current combination of DAG ID task ID instead...
@hardeybisey , Yes. You can also refer to PR https://github.com/apache/airflow/pull/43106.
@tanujdargan , I created a new user with the "Viewer" role, and when I log in, I still see 403 errors with your changes: 