Update aws-batch.mdx External ID for Cloud#1511
Conversation
DRAFT improve external ID Signed-off-by: MichaelTansiniSeqera <michael.tansini@seqera.io>
✅ Deploy Preview for seqera-docs ready!
To edit notification comments on pull requests, go to your Netlify project configuration. |
Signed-off-by: MichaelTansiniSeqera <michael.tansini@seqera.io>
Signed-off-by: MichaelTansiniSeqera <michael.tansini@seqera.io>
Signed-off-by: MichaelTansiniSeqera <michael.tansini@seqera.io>
Signed-off-by: MichaelTansiniSeqera <michael.tansini@seqera.io>
Signed-off-by: MichaelTansiniSeqera <michael.tansini@seqera.io>
Signed-off-by: MichaelTansiniSeqera <michael.tansini@seqera.io>
Signed-off-by: MichaelTansiniSeqera <michael.tansini@seqera.io>
Signed-off-by: MichaelTansiniSeqera <michael.tansini@seqera.io>
Signed-off-by: MichaelTansiniSeqera <michael.tansini@seqera.io>
|
Adding reviewers, specifically @munishchouhan for correctness and @gwright99 for technical clarity |
stefanoboriero
left a comment
There was a problem hiding this comment.
We have 3 ways AWS credentials can be defined:
- With AWS user access keys
- With an AWS role and AWS user access keys to be used to assume the role (so the role is still assumed by the customer AWS user)
- With an AWS role and externalID + trust policy for the role to be assumed by Seqera jump role
This change effectively removes the documentation of option number 2, driving people who want to user an AWS role towards the externalID option: I wanted to check if this is intentional. Feels a bit off removing documentation for something that is still supported by Platform and not deprecated AFAIK
@stefanoboriero no we should still include this but perhaps put it within its own section to make clear it's a hybrid role - I will amend. |
DRAFT improve external ID