Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Published by Scroll Versions from space DEV and version r0682

...

AWS Mode

SystemUser
Credential Provider

 

 
Default One system-wide key/secret combo is inserted in the platform for useEach user provides key/secret combo. 
 

Config:

Code Block
"aws.credentialProvider": "default",
"aws.mode": "system",
"aws.s3.key": <key>,
"aws.s3.secret": <secret>, 

Config:

Code Block
"aws.credentialProvider": "default",
"aws.mode": "user", 

User: Configure Your Access to S3

Instance Platform uses EC2 instance roles.Users provide EC2 instance roles. 
 

Config:

Code Block
"aws.credentialProvider": "instance",
"aws.mode": "system",

 Config:

Code Block
"aws.credentialProvider": "instance",
"aws.mode": "user",
Temporary

Temporary credentials are issued based on per-user IAM roles.

Per-user authentication when using IAM role.
 

Config:

Code Block
"aws.credentialProvider": "temporary",
"aws.mode": "system",
"aws.systemIAMRole": "<IAMRole">,

Config:

Code Block
"aws.credentialProvider": "instancetemporary",
"aws.mode": "user",

 

AWS Auth Mode

...

ModeConfigurationDescription
system
Code Block
"aws.mode": "system",

Access to AWS resources is managed through a single, system account. The account that you specify is based on the credential provider selected below.

  • The instance credential provider ignores this setting.

See below.

user
Code Block
"aws.mode": "user",

Authentication must be specified for individual users.

Info

NOTE: Creation and use of custom dictionaries is not supported in user mode.


Tip

Tip: In AWS user mode,

D s item
itemadministrators
can manage S3 access for users through the Admin Settings page. See Manage Users.

...