Release notes -- v2.208.1075 (since v2.208.1070)
Highlights
EL-5058: Enhances AWS S3 connector to support default or on demand Server Side Encryption
- Amazon S3 connector enhancements
- Supports Server Side Encryption (SSE) for
SSE-S3
,SSE-KMS
andSSE-C
- Introducing a new endpoint
/encryption
with PUT, GET and DELETE.
PUT /encryption:
Upserts the default encryption strategy and can be updated between AES256 and aws:kmsGET /encryption:
Retrieves the current default encryption strategy configured.DELETE /encryption:
Removes the default encryption strategy.
On the other hand, users who don't want to configure default encryption strategy or want to use AWS offered SSE-C can use the request header newly configured for
/files
and/folders
endpoint to encrypt their data at rest.To understand how the headers work
- https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingServerSideEncryption.html
- https://docs.aws.amazon.com/AmazonS3/latest/dev/UsingKMSEncryption.html
- https://docs.aws.amazon.com/AmazonS3/latest/dev/ServerSideEncryptionCustomerKeys.html
EL-5122 Snowflake: Bulk upload is uploading Header files to the Snowflake table
- Resolved header names appending to data in snowflake