Support use of IAM Roles

[vladistan]

Some organizations require use of IAM roles and temp credentials.

It would be nice if this plugin supported it. Here is more info:

http://docs.aws.amazon.com/java-sdk/latest/developer-guide/prog-services-sts.html

[ashwanthkumar]

We have support for IAM Roles through an environment variable called AWS_USE_IAM_ROLE. Would help in your use-case?
Ref - http://oss.indix.com/gocd-s3-artifacts/required_environment_variables.html

[vladistan]

Yes I saw that it in the code. My case is bit different, I have some nodes running outside of AWS they do have AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY configured, but this is not enough.

To obtain correct credentials the client first has to create STSAssumeRoleSessionCredentialsProvider using configured role ARN. And then pass this new credential provider to the constructor of AmazonS3Client

[ashwanthkumar]

Ah sorry, I missed the STS part in the first comment. That's something we don't support today. It should be easy to add though. Would you be interested in taking a stab at it? I guess we can get the roleArn and roleName through environment variables.

[vladistan]

Possibly, I am super busy these days. So if anybody else wants to take a stab at this they are more than welcome to do so. I will try to find some time next month for this otherwise.