Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AWS stemcell build should not require specific envvars #26

Closed
jmcarp opened this issue Jan 9, 2018 · 3 comments
Closed

AWS stemcell build should not require specific envvars #26

jmcarp opened this issue Jan 9, 2018 · 3 comments

Comments

@jmcarp
Copy link

jmcarp commented Jan 9, 2018

The AWS stemcell build task requires environment variables specific to IAM user access and doesn't support alternative forms of AWS authentication, including instance profiles and STS tokens. Rather than expecting a specific authentication method, the AWS task should delegate authentication to the SDK. This may be as simple as replacing

    client = S3::Client.new(
      aws_access_key_id: aws_access_key_id,
      aws_secret_access_key: aws_secret_access_key,
      aws_region: aws_region
    )

with

    client = S3::Client.new

cc @wjwoodson
@cf-gitbot
Copy link

We have created an issue in Pivotal Tracker to manage this:

https://www.pivotaltracker.com/story/show/154181967

The labels on this github issue will be updated when the story is started.

@xtreme-sameer-vohra
Copy link

Thanks for reporting this @jmcarp, we'll take a look

@xtreme-sameer-vohra
Copy link

Hi @jmcarp,
You should be able to use instance profiles to authenticate now. Unfortunately, we had trouble getting STS tokens to work.

Thanks for the suggestion.
Sameer

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@xtreme-sameer-vohra @jmcarp @cf-gitbot