You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: website/docs/getting-started/install-qovery/aws/cluster-managed-by-qovery/create-credentials.md
+52-1Lines changed: 52 additions & 1 deletion
Original file line number
Diff line number
Diff line change
@@ -1,8 +1,12 @@
1
1
---
2
-
last_modified_on: "2025-03-06"
2
+
last_modified_on: "2025-03-31"
3
3
title: "Create Credentials"
4
4
description: "Generate AWS credentials for Qovery"
5
5
---
6
+
7
+
import Tabs from '@theme/Tabs';
8
+
import TabItem from '@theme/TabItem';
9
+
6
10
import Steps from '@site/src/components/Steps';
7
11
import Alert from '@site/src/components/Alert';
8
12
import Assumptions from '@site/src/components/Assumptions';
@@ -25,6 +29,50 @@ This guide will help you to create your Amazon Web Services (AWS) credentials fo
25
29
26
30
## Generate AWS credentials
27
31
32
+
We support two authentication methods for AWS: Assume Role via STS and Static Credentials (Access Key & Secret Access Key).
33
+
34
+
For security reasons, we strongly recommend using Assume Role via STS. Static credentials are long-lived and more exposed to leaks, while Assume Role provides short-lived, automatically refreshed credentials with granular access control, reducing security risks.
35
+
36
+
<Tabs
37
+
centered={true}
38
+
className={"rounded"}
39
+
defaultValue={"Assume role via STS (preferred)"}
40
+
placeholder="Select your credentials"
41
+
select={false}
42
+
size={null}
43
+
values={[{"group":"Credentials","label":"Assume role via STS (preferred)","value":"Assume role via STS (preferred)"},{"group":"Credentials","label":"Static credentials","value":"Static credentials"}]}>
44
+
45
+
<TabItemvalue="Assume role via STS (preferred)">
46
+
47
+
<StepsheadingDepth={3}>
48
+
<ol>
49
+
50
+
<li>
51
+
52
+
[Connect to your AWS console](https://console.aws.amazon.com). Make sure you are connected to the right AWS account.
53
+
54
+
</li>
55
+
56
+
<li>
57
+
58
+
Execute the following [Cloudformation stack](https://console.aws.amazon.com/cloudformation/home?#/stacks/quickcreate?templateURL=https%3A%2F%2Fs3.amazonaws.com%2Fcloudformation-qovery-role-creation%2Ftemplate.json&stackName=qovery-role-creation
59
+
) and retrieve the role ARN from the `Outputs`section.
60
+
61
+
It will create a role for Qovery and grant assume role permissions.
62
+
63
+
</li>
64
+
65
+
<li>
66
+
67
+
Insert the role ARN in Qovery and provide a credentials name to identify this role.
68
+
69
+
</li>
70
+
</ol>
71
+
</Steps>
72
+
</TabItem>
73
+
74
+
<TabItemvalue="Static credentials">
75
+
28
76
<StepsheadingDepth={3}>
29
77
<ol>
30
78
@@ -163,6 +211,9 @@ You can now save the `access key id` and `secret access key`
163
211
</Steps>
164
212
165
213
Well done!! You now have your AWS `access key id` and `secret access key` and your permissions are setups; It is time to connect Qovery to your AWS account.
Copy file name to clipboardExpand all lines: website/docs/getting-started/install-qovery/aws/cluster-managed-by-qovery/create-credentials.md.erb
+47Lines changed: 47 additions & 0 deletions
Original file line number
Diff line number
Diff line change
@@ -16,6 +16,50 @@ This guide will help you to create your Amazon Web Services (AWS) credentials fo
16
16
17
17
## Generate AWS credentials
18
18
19
+
We support two authentication methods for AWS: Assume Role via STS and Static Credentials (Access Key & Secret Access Key).
20
+
21
+
For security reasons, we strongly recommend using Assume Role via STS. Static credentials are long-lived and more exposed to leaks, while Assume Role provides short-lived, automatically refreshed credentials with granular access control, reducing security risks.
22
+
23
+
<Tabs
24
+
centered={true}
25
+
className={"rounded"}
26
+
defaultValue={"Assume role via STS (preferred)"}
27
+
placeholder="Select your credentials"
28
+
select={false}
29
+
size={null}
30
+
values={[{"group":"Credentials","label":"Assume role via STS (preferred)","value":"Assume role via STS (preferred)"},{"group":"Credentials","label":"Static credentials","value":"Static credentials"}]}>
31
+
32
+
<TabItemvalue="Assume role via STS (preferred)">
33
+
34
+
<StepsheadingDepth={3}>
35
+
<ol>
36
+
37
+
<li>
38
+
39
+
[Connect to your AWS console](https://console.aws.amazon.com). Make sure you are connected to the right AWS account.
40
+
41
+
</li>
42
+
43
+
<li>
44
+
45
+
Execute the following [Cloudformation stack](https://console.aws.amazon.com/cloudformation/home?#/stacks/quickcreate?templateURL=https%3A%2F%2Fs3.amazonaws.com%2Fcloudformation-qovery-role-creation%2Ftemplate.json&stackName=qovery-role-creation
46
+
) and retrieve the role ARN from the `Outputs`section.
47
+
48
+
It will create a role for Qovery and grant assume role permissions.
49
+
50
+
</li>
51
+
52
+
<li>
53
+
54
+
Insert the role ARN in Qovery and provide a credentials name to identify this role.
55
+
56
+
</li>
57
+
</ol>
58
+
</Steps>
59
+
</TabItem>
60
+
61
+
<TabItemvalue="Static credentials">
62
+
19
63
<StepsheadingDepth={3}>
20
64
<ol>
21
65
@@ -154,6 +198,9 @@ You can now save the `access key id` and `secret access key`
154
198
</Steps>
155
199
156
200
Well done!! You now have your AWS `access key id` and `secret access key` and your permissions are setups; It is time to connect Qovery to your AWS account.
0 commit comments