StackOverflow2013

Note that there are some explanatory texts on larger screens.

plurals

PO
primarykey
Id
17280269
data
AcceptedAnswerId
0
AnswerCount
0
ClosedDate
CommentCount
1
CommunityOwnedDate
CreationDate
2013-06-24T16:22:18.053
FavoriteCount
0
LastActivityDate
2013-06-24T16:22:18.053
LastEditDate
LastEditorUserId
0
OwnerUserId
1347554
ParentId
640838
PostTypeId
2
Score
10
ViewCount
0
LastEditorDisplayName
text
Body
The best way is to use <a href="http://docs.aws.amazon.com/AWSEC2/latest/UserGuide/UsingIAM.html#UsingIAMrolesWithAmazonEC2Instances">instance profiles</a>. The basic idea is: <ul> <li>Create an instance profile</li> <li>Create a new IAM role</li> <li>Assign a policy to the previously created role, for example: { "Statement": [ { "Sid": "Stmt1369049349504", "Action": "sqs:", "Effect": "Allow", "Resource": "" } ] }</li> <li>Associate the role and instance profile together.</li> <li>When you start a new EC2 instance, make sure you provide the instance profile name.</li> </ul> If all works well, and the library you use to connect to AWS services from within your EC2 instance supports retrieving the credentials from the instance meta-data, your code will be able to use the AWS services. A complete example taken from the boto-user mailing list: First, you have to create a JSON policy document that represents what services and resources the IAM role should have access to. for example, this policy grants all S3 actions for the bucket "my_bucket". You can use whatever policy is appropriate for your application. <pre><code>BUCKET_POLICY = """{ "Statement":[{ "Effect":"Allow", "Action":["s3:*"], "Resource":["arn:aws:s3:::my_bucket"]}]}""" </code></pre> Next, you need to create an Instance Profile in IAM. <pre><code>import boto c = boto.connect_iam() instance_profile = c.create_instance_profile('myinstanceprofile') </code></pre> Once you have the instance profile, you need to create the role, add the role to the instance profile and associate the policy with the role. <pre><code>role = c.create_role('myrole') c.add_role_to_instance_profile('myinstanceprofile', 'myrole') c.put_role_policy('myrole', 'mypolicy', BUCKET_POLICY) </code></pre> Now, you can use that instance profile when you launch an instance: <pre><code>ec2 = boto.connect_ec2() ec2.run_instances('ami-xxxxxxx', ..., instance_profile_name='myinstanceprofile') </code></pre>
Tags
Title
singulars
PostAcceptedAnswerId
1. This table or related slice is empty.
PostParentId
1. POWhat's the best method for passing AWS credentials as user data to an EC2 instance?
 singulars
 PostTypePostTypeId
 PTQuestion
PostTypePostTypeId
1. PTAnswer
UserLastEditorUserId
1. This table or related slice is empty.
UserOwnerUserId
1. USandres.riancho
plurals
PostLinksPostIdRelatedPostId
1. This table or related slice is empty.
PostLinksRelatedPostIdPostId
1. This table or related slice is empty.
PostsAcceptedAnswerId
1. This table or related slice is empty.
PostsParentIdCreationDate
1. This table or related slice is empty.
VotesPostIdCreationDate
1. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
2. VO
 singulars
 PostPostId
 PO
 UserUserId
 This table or related slice is empty.
 VoteTypeVoteTypeId
 VTUpMod
CommentsPostId
1. COIsn't boto a python module created to make easy API access to AWS? How would you do this in a language independant manner, i.e. in a cloud template?
 singulars
 PostPostId
 PO
 UserUserId
 USSammaye

Querying!

Guidance

A row detail

Detail views are divided into sections. All the information in the data section comes from columns in the selected row. The other sections display data from other, related rows.

Related data can be related in a to-one or a to-many fashion. Captions of data related in a to-many fashion link to a list view showing a filtered view of the table.

Try moving around until you find a non-empty to-many entry and click on the label to get to one. You can move back to the root by clicking on the database name in the header.