bc-server – service config AWS
This is a configuration service that connects to an Amazon AWS DynamoDB NoSQL key value database.
Environment variables
| BEYONDCRON_CONFIG_SERVICE | AWS |
| AWS_ACCESS_KEY_ID | AWS access key ID. |
| AWS_SECRET_ACCESS_KEY | AWS access key secret. If the secret is in the format file:filename, then the secret will be read from filename. |
| AWS_REGION | AWS region. |
| AWS_TABLE_CONFIG | Name of the DynamoDB table to use. |
AWS Permissions
The account associated with AWS_ACCESS_KEY_ID requires the following AWS permissions:
Actions:
- dynamodb:CreateTable – if you wish to allow BeyondCron to create AWS_TABLE_CONFIG if it does not exist.
- dynamodb:DescribeTable
- dynamodb:Scan
- dynamodb:GetItem
- dynamodb:PutItem
- dynamodb:UpdateItem
Resources:
- arn:aws:dynamodb:AWS_REGION:account-id:table/AWS_TABLE_CONFIG
DynamoDB table
This service requires the following table:
| Table | Partition key | Required permissions |
|---|---|---|
| aws.table.current | name (String) | Read/Write |
If the AWS_ACCESS_KEY_ID account has permission, BeyondCron will create this table if it does not already exist.
Examples
Set up AWS.
$ export AWS_ACCESS_KEY_ID=AKIA…
$ export AWS_SECRET_ACCESS_KEY=Gh7bn3D…
$ export AWS_REGION=us-west-1
$ export AWS_TABLE_CONFIG=beyondcron-config-example
$ export BEYONDCRON_CONFIG_SERVICE=AWS
$ /opt/bc-server/bin/bc-server
…
Set up AWS with the secret being read from a file.
$ export AWS_ACCESS_KEY_ID=AKIA…
$ export AWS_SECRET_ACCESS_KEY=file:/home/bc-daemon/.aws/beydoncron.secret
$ export AWS_REGION=us-west-1
$ export AWS_TABLE_CONFIG=beyondcron-config-example
$ export BEYONDCRON_CONFIG_SERVICE=AWS
$ /opt/bc-server/bin/bc-server
…
See also
Reference
- Amazon AWS DynamoDB