I’m working on deploying CoreOS on EC2 and ran into a size issue with the user_data. Fortunately, Ignition supports remote configs! However, in the interest of security and auditing I’m working on the minimal permissions required to by Ignition to pull remote configs.
I am assuming, and going to test today, the following permissions:
Are there any specific permissions needed for Ignition to pull remote configs from S3? I’m making the assumption that the S3 URL is converted into an HTTP request?