Garret Cook
12/01/2023, 5:05 PMflyte-binary
I've added this to my values.yaml:
configuration:
inline:
webhook:
secretManagerType: "AWS"
Where do I put the AWS service account credentials? And may I specify different credentials on different project/environment combinations?
I'd expect to have to put a list of credentials in somewhere, like this for each project/environment:
"AWS_ACCESS_KEY_ID": "some-value"
"AWS_SECRET_ACCESS_KEY": "some-value",
"AWS_DEFAULT_REGION": "some-value"
Thank you for taking a look.Samhita Alla
Garret Cook
12/04/2023, 4:18 PMDavid Espejo (he/him)
12/04/2023, 5:34 PMWhere do I put the AWS service account credentials? And may I specify different credentials on different project/environment combinations?This is possible but typically we'd use IRSA. For example. in this section of the FTHW tutorial, the chart is indicating an IAM role per domain. It could very well be a different role per domain/project
Garret Cook
12/04/2023, 7:50 PMThis graphic in the guide▾
David Espejo (he/him)
12/04/2023, 9:08 PMkube2iam
to do IRSA.
Have you tried adding the env vars under
inline:
plugins:
k8s:
e
default-env-vars:
- AWS_ACCESS_KEY_ID: "value"
- AWS_SECRET_ACCESS_KEY: "value"
- AWS_DEFAULT_REGION: "value
?Garret Cook
12/04/2023, 9:10 PMDavid Espejo (he/him)
12/04/2023, 10:21 PM