Gallery
  • Introduction to Gallery
  • Getting Started
    • Link Your Cloud Provider
    • Create a Template
    • Build an Environment
  • Cloud Integrations
    • AWS
    • GCP
    • Other Cloud Providers
  • Gallery CLI
    • Setup
      • Installation
      • Authentication
  • Build System
    • Overview
    • Project Builds
      • Build Jobs
      • Build Stages
      • .gallery-deploy.yml Docs
    • Terraform
      • Variables
      • Mapping URLs/Configs
      • Using Cached Services
  • Cached Services
    • Overview
    • Defining Cached Services
  • Examples
    • Flask Elastic Beanstalk Quickstart
  • Resources
    • Environments
      • Managing your Environments
      • Environment Teardown
      • Environment Settings
Powered by GitBook
On this page
  • Setup
  • Terraform Notes

Was this helpful?

  1. Cloud Integrations

AWS

PreviousBuild an EnvironmentNextGCP

Last updated 3 years ago

Was this helpful?

Setup

Setting up the AWS integration requires two steps. First, you must create a service account to use with Gallery. Then, you can copy the API Key and Secret for the service account to Gallery to complete the integration process.

Creating the Service Account

  • Go to the section of the AWS management console.

  • Go to the Users tab, and click "Add Users"

  • Make sure to enable programmatic access when you create your user

  • Add the permissions required for Gallery to spin up and tear down the resources that are used in your environment. It is good practice to use the minimal policy set for the new service account.

Build Information

The following environment variables are automatically filled in by Gallery:

  • AWS_ACCESS_KEY_ID: The AWS access key

  • AWS_SECRET_ACCESS_KEY: The AWS secret key

No files are automatically injected into the build container as part of the build process.

Terraform Notes

When using terraform, make sure to indicate the region of the AWS resources, but you do not have to indicate the credentials in provider block. Your provider block, then, should look something like provider "aws" { region = "us-east-2" }

IAM
The Users tab of the AWS console
The Add user form with programmatic access enabled