[#MCOL-4386] IAM Role on EC2 instances

[MCOL-4386] IAM Role on EC2 instances Created: 2020-11-10 Updated: 2021-04-19 Resolved: 2021-02-27
Status:	Closed
Project:	MariaDB ColumnStore
Component/s:	Storage Manager
Affects Version/s:	5.4.3
Fix Version/s:	5.5.2

Type:

Bug

Priority:

Blocker

Reporter:

Ben Thompson (Inactive)

Assignee:

Todd Stoffel (Inactive)

Resolution:

Fixed

Votes:

Labels:

None

Environment:

EC2 instances

Issue Links:

Relates
relates to	~~MCOL-3976~~	Amazon S3 needs to support use of IAM...	Closed

Sprint:

2021-1, 2021-2, 2021-3, 2021-4

Description

https://docs.aws.amazon.com/IAM/latest/UserGuide/id_roles_use_switch-role-ec2.html#roles-usingrole-ec2instance-roles

The StorageManager application must obtain its credentials from the local EC2 instance metadata service – not the AWS Security Token Service (STS)

The implementation in ~~MCOL-3976~~ did not provide this functionality. This requires modifications to StorageManager such that it can detect if running on EC2 instance and collect temporary credentials for the specified role-name via the EC2 instance metadata

Comments

Comment by Todd Stoffel (Inactive) [ 2021-02-27 ]

https://mariadb.com/kb/en/using-s3-on-aws-with-iam-role/

Generated at Thu Feb 08 02:49:57 UTC 2024 using Jira 8.20.16#820016-sha1:9d11dbea5f4be3d4cc21f03a88dd11d8c8687422.

[MCOL-4386] IAM Role on EC2 instances Created: 2020-11-10 Updated: 2021-04-19 Resolved: 2021-02-27