AWS s3 module and IAM-role-based access control

Markus_Klems · January 27, 2015, 5:15pm

Hi,

it seems like the s3 module (http://docs.ansible.com/s3_module.html) does not support a “security_token” parameter (like the ec2 module http://docs.ansible.com/ec2_module.html). This would be desirable, for example, for the following use case:

Launch an EC2 instance with IAM role that gives access to s3 bucket
Download software packages or other files from s3 bucket that is restricted to the IAM role onto the EC2 instance.

Right now it seems like this is not possible because the security_token parameter cannot be specified (or only with a workaround).

My questions:
a) Am I missing something or misunderstanding the concept of IAM role based access to s3?
b) If not, is it possible to accomplish steps 1 and 2 as described above with the ansible s3 module?
c) If it is not possible, can you add a security_token parameter to the s3 module?

Thanks a lot,

Markus

Ankit_Jindal · June 29, 2015, 6:33am

I have successfully setup ec2 instance on aws with database but I am unable to connect aws s3 instance with ec2 instance.

Can you please help me out in this??

Topic		Replies	Views
How to authorise an EC2 instance for S3 access Ansible Project aws	8	0	June 19, 2015
AWS IAM Roles Ansible Project aws	0	1	October 14, 2014
cloudformation module support for AWS Security Token Ansible Developer aws	6	0	December 25, 2014
security token for ec2* modules Ansible Project aws	4	0	February 21, 2014
Minimum IAM permissions required for S3 module Ansible Project	0	0	September 9, 2014

AWS s3 module and IAM-role-based access control

Related topics