redbox icon indicating copy to clipboard operation
redbox copied to clipboard
verified publisher icon i-dot-ai

[AWS SUPPORT] Support AWS Task Roles for S3 Access without Explicit AWS Keys

Open tom1322s opened this issue 1 year ago • 1 comments

Description: The current implementation for creating an S3 client in the settings.py file explicitly requires AWS access keys, as seen in settings.py:

This approach is not optimal when running within AWS environments such as ECS tasks with IAM roles that have the necessary S3 permissions. In these scenarios, AWS automatically manages the credentials, eliminating the need to explicitly provide AWS access keys.

Proposed Solution: Remove the explicit requirement for AWS access keys in the S3 client creation logic. Allow the AWS SDK to automatically manage credentials when the application is running in an AWS environment with IAM roles.

tom1322s avatar Jul 11 '24 06:07 tom1322s

These settings are optional - can we just not set them in whatever .env is in use in these environments, or is there more to it?

brunns avatar Jul 17 '24 07:07 brunns