Override InstanceRole in TowerForge
acknowledged
W
Weekly Elk
Currently TowerForge creates 3 roles (in AWS):
- InstanceRole
- ExecutionRole
- ServiceRole
It is possible to override the
ExecutionRole
by setting the "Batch execution role" in the TowerForge GUI. It is not possible to override the InstanceRole
or ServiceRole
, however. It would be useful for us to be able to override the
InstanceRole
(in our case to limit the KMS permissions provided in the default InstanceRole
), and provide a custom one to use instead of TowerForge creating one.
Rob Newman
acknowledged