Snowflake connector for MuleSoft using Azure Oauth Client Credentials

00:00

oil welcome to this mules of video in

00:03

this video we are going to see what are

00:05

the options available for connecting

00:07

mulesoft into snowflake

00:09

so since it is a machine to machine

00:12

communication we are going to use client

00:14

credential

00:15

or pattern

00:17

so snowflake has provided to a couple of

00:19

the links one is to create

00:23

applicator applications in azure

00:26

which I have executed here

00:28

so

00:30

so you can actually

00:33

provision applications for user on

00:36

behalf of the user you can procure a

00:38

token for behalf of the user or the

00:41

client itself so we are going to use it

00:42

for client credential meaning mission to

00:44

Mission it is for client so

00:48

I am going to implement this one in

00:49

Azure for example go to application

00:52

registration

00:53

new registration

00:55

once you have this one you can add

00:59

application

01:01

ID URI to it so this this URLs we have

01:05

given us

01:07

to create two applications but I have

01:08

done it in a single application so in

01:11

first initial thing is go to

01:13

applicationization click on new

01:15

registration Snowflake and created that

01:18

one so I'll go to eBay permission

01:21

so before that you need to go here and

01:23

set this application ID URI this random

01:26

it creates itself and it's a random

01:29

create ID

01:31

then

01:32

you need to add app role

01:34

this is the approach

01:37

you can use online with generator and

01:40

I'll prepare this one and put in yours

01:42

this is explained here here

01:46

so once you set the application URI

01:50

then go to manages add this you add this

01:53

role and create an another application

01:56

you don't have to

01:57

this is just best practice if you want

01:59

to just play around with your

02:00

application is enough and add a role to

02:04

this new new application that you have

02:06

created

02:07

then

02:09

this is just trying to client security

02:11

creation before that once you create a

02:14

second application you won't go to the

02:21

API add a scope the scope is coming from

02:25

the other previous application that you

02:27

have created in azure

02:29

so once you have that let me show you

02:31

that how it looks like in here once you

02:33

add this role go back to the AP

02:35

permission add a permission

02:41

since we have one application it's

02:42

showing the same application again it's

02:44

Snowflake and I have this system admin

02:47

role here

02:48

that is what we have added here so

02:50

that's why this system admin and this

02:53

value is coming over

02:55

to the Token that we generate so once

02:58

you do that go to

03:00

heavy permissions and make sure that

03:02

this is all banned that means it's both

03:05

are approved by the Admin right

03:08

then this is the time to create a token

03:12

and see what's inside right so go to

03:15

client ID and secret put everything it's

03:17

decline through the chills okay

03:21

button then you would get hit open make

03:25

sure the token is having

03:27

this value in it the roles that you have

03:30

right then you can make sure that until

03:33

now you're good

03:35

so once you've done this

03:39

information

03:40

Grant the permission it's all saying the

03:43

same thing go to end point and create

03:46

take the token URL and like this you can

03:49

make a call right and procure the token

03:51

once you procreate the token

03:53

switch over to this URL

03:56

from here this is both this is common

03:58

for both using plantar and children user

04:02

username and password

04:05

so we're coming to this page and say

04:09

this is what I have said here

04:16

I'm talking

04:20

so this is this is the role that that I

04:24

was talking about once you generate the

04:26

token you can put an objective I want to

04:28

see it

04:30

after that you need to create a system a

04:32

security integration with the snowflake

04:34

here I have my domain demo account which

04:38

is free I have created a

04:41

by providing few results from you I

04:44

officially from here

04:46

so this is nothing but Nashua you can

04:49

message it from here we sure

04:51

this is

04:53

goes there there's no click sorry it's

04:56

just not flick and the jwtu are a token

04:59

you should take it from azure

05:02

endpoints

05:06

take the alternative configuration

05:12

that gives you the URL the jws URI

05:17

this UI you should take it as private

05:20

into snowflake right that is what this

05:23

this URL is and then you need to provide

05:26

the mapping climax sub and that's this

05:29

audience list is nothing but this is

05:32

coming from the APA permissions

05:35

sorry The Xpose API and copy this

05:38

so I think we are ready then create this

05:41

one you will get the security

05:43

integration created now we need to

05:46

provide the role uh record for this one

05:50

and then

05:52

using the same token you can verify it

05:54

from Snowflake using

05:57

system verify external work token

06:00

once you do that you will have a

06:03

username extractor

06:04

which you would need here so this is

06:06

explained and uh

06:08

in here once you create the integration

06:12

system security integration then you

06:15

would see it as failing because you

06:17

would need you would need SUV

06:20

once you execute that one

06:23

verify the token you will get the

06:26

or you once you end up okay this is what

06:28

you have so system verify external token

06:31

this will pass you this username after

06:33

that you need to create a username this

06:35

user in

06:37

the snowflake the system is not click

06:39

account where it goes I have is viewed

06:42

it here

06:44

user the ID that I have extracted from

06:48

this should become the username

06:51

and the password can be anything

06:55

and the login as well the same ID

06:59

and once you create that the

07:02

so you this should be successful as well

07:04

right then

07:07

go to go back to the link

07:12

then you're done you will be able to

07:15

procure this token and use it and in

07:18

this topic right so for that I'm going

07:21

to create a Java client program then I

07:25

will convert them into a

07:27

new soft connector right so mulesoft

07:30

does have a connector list of huge

07:34

connectors or connecting with snowflake

07:36

but it is useless because

07:38

it's not supporting jdbc is not oauth

07:41

right so we are Keen to use that one so

07:44

username and password we are not going

07:46

to provide it instead we want to provide

07:50

this is my minimum viable product so of

07:53

this connector we are going to provide

07:55

planetarium secret instead of username

07:57

and password right so the username which

08:00

this one you have seen it that that we

08:02

have cleared here

08:04

right this is coming from the token this

08:06

never changes even if you create n

08:08

number of tokens

08:09

that

08:12

climb is going to be the same all the

08:14

time so once you've created

08:17

you can create a number of

08:20

yeah so say this would be same cc87 that

08:24

the once you create the username you can

08:25

use it for the number of application

08:29

and that is goes here the client ID

08:31

which I have used it in

08:33

yeah three seven

08:35

so and on the client Secret

08:38

scope

08:39

scope is the same I'm going to give it

08:42

in the browser then it's a client finish

08:44

then

08:47

this is my account name and from this

08:50

coming from straight snowflake you can

08:52

go to

08:54

it's an application

08:57

account you can copy it here

09:02

over here

09:04

and then the default Warehouse name

09:06

compute w h

09:11

and this is this one and my database is

09:14

API

09:15

km1

09:22

demo one

09:23

API testing tables and I have a table

09:25

for demo

09:28

so

09:30

we will run this one go to worksheet and

09:32

open it and

09:34

run

09:36

demo right good sky

09:41

it has 15 rows

09:43

and

09:45

again this is

09:47

this is not needed

09:51

so we are going to create one let me

09:53

show this demo

09:55

and then I'll go to the code as well

09:58

so mules are provided one this country

10:01

is useless Finance because we are using

10:03

jdbc one supporter so that's why I have

10:07

created this Custom Custom connector and

10:10

mule 4 right let me run this program and

10:13

see what it what it gets to us I mean

10:16

otherwise let me debug the time

10:20

I didn't care

10:23

I want to save this one

10:26

okay so

10:28

save this guy

10:32

so the trick to when you create a custom

10:35

committer you

10:38

generate the sources as well attach the

10:41

sources and better debug it so that

10:43

would be easiest thing I have attached

10:45

my by clicking the class I have attached

10:48

the source code as well

10:51

then

10:52

of course I have a good breakpoint

10:55

that goes straight to that

10:59

okay I'm not reloading

11:05

let's see what I heard

11:10

and so

11:13

so I have breakpoint here

11:15

between so first what I'm doing is in

11:18

this connector I'm going to get the

11:21

token which is this this part right so

11:24

let me go to that one

11:27

step four step forward so I'm adding

11:30

length to control ID that you provided

11:33

in the connector then

11:35

I'm taking a parameter again generating

11:38

the token so token is this one then then

11:40

from the token I'm extracting

11:42

the odds token

11:45

which is this one

11:47

this works

11:55

exactly the same

11:57

this will also have this right now a

12:00

role that we have added then I'm

12:02

procuring a connection using the

12:04

clientele

12:08

once I have it I'm going to create the

12:11

statement first I'll use the I'll

12:13

execute use database command and that's

12:16

schema

12:17

after that I'm going to execute this

12:20

query which is coming straight from

12:25

sorry

12:27

straight from the goal let me show you

12:29

that

12:31

particularly

12:32

so here I have the selection from demo

12:37

that is coming to here

12:39

so it's just about this guys then see

12:42

how many rows now right now I'm

12:44

returning them as a string uh I'm

12:47

creating this scenario and create

12:48

returning as a string but I'm going to

12:50

change it into byte array so that it

12:53

will be

12:54

will be quite equivalent to

12:57

mules are given one but once mail sort

13:00

is supporting this connect this way of

13:01

connecting snowflake I think that's a

13:03

way going forward right because many

13:05

people will use that then the news I've

13:07

got the bugs closed so that is reliable

13:10

but right now this is the only shot we

13:12

have if we are using otherwise you can

13:14

use wrist based authentication if you

13:17

don't prefer the connector

13:19

if you don't prefer the hunter right so

13:21

let me

13:22

inflates it it reads all it reads all

13:25

the things and

13:26

it drove right to the Intel

13:32

yes okay let's keep running because

13:46

so this transform component tool is it's

13:50

convert them into a Json is because it's

13:52

just it's right now this component is

13:54

threatening string

13:59

right so permission to machine

14:01

communication this is the

14:04

let me stop it

14:09

see this transform component has got

14:11

something just this one here 15 areas

14:15

then

14:16

go through this

14:22

you can be working then fix the code

14:24

this is going to be in a GitHub burn one

14:27

to one and that's fine

14:29

okay I will check in there

14:36

I will add it here so I can get that

14:43

and it repeats things because it's a

14:45

scheduler so here you see it

14:48

you have all the rows

14:51

my fingers

15:05

and start by every second but uh

15:08

see so it runs perfectly so now I'm

15:11

going to go through this

15:12

uh the code where we came

15:16

the code is this one so

15:21

this is pump file where I have added

15:24

attached sources so let's let's create

15:26

the jar and there we can attach your

15:28

source and debug it

15:30

and you would need a snowflake provided

15:33

jar file

15:35

and this is to support Json and this is

15:39

for login

15:40

now I'm going to this operation straight

15:41

away

15:42

this is where I have

15:45

all the operations is scheduled so the

15:47

execute query that you see it in here

15:49

this is very pretty simple now I have

15:52

not

15:53

changed icons as well so execute query

15:56

that is coming from here so that's

15:59

expecting a connection but connection

16:01

contributes in this here so where is

16:03

this connection configuration this is

16:05

actually if you press F12

16:10

so this connection having a

16:13

configuration as well so this

16:14

configuration you should go and see it

16:16

which is this one so here I have all the

16:19

listed username client ID Secret

16:24

this one is 90 weeks if it's called

16:27

account where else

16:29

so I have but I don't see it and

16:31

database

16:32

everywhere right so now

16:42

in the

16:45

in this place that will become

16:47

the connected level kind of creation so

16:49

you would you would want to give

16:51

a SQL text here I would need I would

16:55

make it I'll do it now later so this is

16:59

the what client this client is actually

17:02

is this file I am making a HTTP

17:04

connection and preparing the token that

17:06

you have seen it while debugging right

17:08

so we are adding this details

17:13

running this do post is actually making

17:16

HTTP call for this I haven't text

17:19

analyzed it but I have text analyze it

17:21

if I want to use it so that it will come

17:23

in the connection

17:24

celebration itself so

17:26

then what I'm doing is I'm once I

17:28

prepare the token extract the out token

17:31

from there then I use use database and

17:33

use schema from

17:35

from the config I'm getting schema

17:39

once I do that I execute okay get the

17:42

results here and convert them into Json

17:44

and return them as finely as a string

17:46

bit which is which should be a wide

17:48

array

17:50

which I'm gonna work further this is

17:52

just 10 MBP for me

17:54

yeah

17:56

okay

17:58

so this I'm going to check in as I said

18:00

like in GitHub you can see it

18:04

and so if you are using Azure as your

18:07

what provider

18:09

external load provider and mulesoft and

18:12

snowflake

18:13

this is uh

18:17

I have shown almost everything

18:26

and that's it thank you very much for

18:30

your time