add AWS IAM policy as requirement to integrate with AWS SQS (#58)

Signed-off-by: Sandor Szücs <sandor.szuecs@zalando.de>
This commit is contained in:
Sandor Szücs
2019-05-17 11:07:18 +02:00
committed by GitHub
parent ffff8c2040
commit 9a234cbdac

View File

@ -266,6 +266,30 @@ instead of a total sum.
The AWS collector allows scaling based on external metrics exposed by AWS The AWS collector allows scaling based on external metrics exposed by AWS
services e.g. SQS queue lengths. services e.g. SQS queue lengths.
### AWS IAM role
To integrate with AWS, the controller needs to run on nodes with
access to AWS API. Additionally the controller have to have a role
with the following policy to get all required data from AWS:
```yaml
PolicyDocument:
Statement:
- Action: 'sqs:GetQueueUrl'
Effect: Allow
Resource: '*'
- Action: 'sqs:GetQueueAttributes'
Effect: Allow
Resource: '*'
- Action: 'sqs:ListQueues'
Effect: Allow
Resource: '*'
- Action: 'sqs:ListQueueTags'
Effect: Allow
Resource: '*'
Version: 2012-10-17
```
### Supported metrics ### Supported metrics
| Metric | Description | Type | | Metric | Description | Type |