Open nholmes3 opened 2 years ago
If you are interested in working on this issue, please leave a comment below and we will be happy to assign the issue to you. If this is the first time you are contributing a Pull Request to Cube.js, please check our contribution guidelines. You can also post any questions while contributing in the #contributors channel in the Cube.js Slack.
Right now it doesn't appear that the Cube API or Refresh Worker is capable of using AWS Instance Metadata to authenticate with AWS. However, the Cube Store containers already have this capability.
From a security and configuration management perspective, Role Based Access is greatly preferred over passing in long-term access credentials to the containers with environment variables. Is this already on the road map?
This would be very useful when using the
CUBEJS_DB_EXPORT_BUCKET
configuration.