Access lazy tbl after assumed role session expired?

[willshen99]

The credentials from STS assume role has a duration. Moreover, if using role chaining (using one role to assume a different role), AWS cap the duration at 1 hr. link.

In our use case, we are using AWS SageMaker with a role, then within an R session, we assume a second role to access Athena. However, after 1 hour, the connection expires. To refresh the credentials and restore the connection, I need to re-run assume_role and DBI::dbConnect. While this works to create new tables or queries using the refreshed credentials, I cannot reference any lazy tbl objects that were created using the expired connection, even after refreshing the connection and credentials. As I inspect the lazy tbl object, the ptr in con is unchanged and still pointing to the connection expired.

Is there a workaround for this?

Reprex

library(RAthena)
library(DBI)
library(dbplyr)

crd <- RAthena::assume_role(role_arn = "arn:aws:sts::123456789012:assumed-role/role_name/role_session_name"
    set_env = FALSE,
    duration = 3600L # the maximum 
)

con <- DBI::dbConnect(
    RAthena::athena(), 
    aws_access_key_id=crd$AccessKeyId,
    aws_secret_access_key=crd$SecretAccessKey,
    aws_session_token=crd$SessionToken
)

my_iris <- tbl(con, sql("SELECT * FROM iris"))
my_iris

# after 1 hr
# Refresh credentials and connection
crd <- RAthena::assume_role(role_arn = "arn:aws:sts::123456789012:assumed-role/role_name/role_session_name"
    set_env = FALSE,
    duration = 3600L # the maximum 
)

con <- DBI::dbConnect(
    RAthena::athena(), 
    aws_access_key_id=crd$AccessKeyId,
    aws_secret_access_key=crd$SecretAccessKey,
    aws_session_token=crd$SessionToken
)

# this works
my_iris_new <- tbl(con, sql("SELECT * FROM iris"))
my_iris_new

# this doesn't work
my_iris # credentials expired error

[DyfanJones]

Hmm interesting, for the current implementation I don't think so as tbl doesn't create a reference link to the con object.