Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

AWS Batch setup instructions do not allow access to intermediate artifacts in s3://nextstrain-data/ bucket #170

Open
sacundim opened this issue Apr 10, 2022 · 1 comment
Labels
documentation Improvements or additions to documentation

Comments

@sacundim
Copy link

The current version of the instructions for setting up AWS Batch instructs people to create three IAM policies, but none of the three grants s3:ListBucket and s3:GetObject access to the s3://nextstrain-data/ bucket that the ncov Open build uses for intermediate GenBank artifacts. This means that people who attempt to run a build on Batch modeled after that one will experience errors like I did in this ticket:

For an example IAM policy that grants access to that bucket, see:

@sacundim sacundim added the documentation Improvements or additions to documentation label Apr 10, 2022
@tsibley
Copy link
Member

tsibley commented Apr 26, 2022

Agreed we should adjust the example policy in those instructions to grant to nextstrain-data and add explanation of why/when its useful, noting that it's technically optional. Not all Batch setups will need it, but we will be extending other core pathogen builds to use a similar input data file pattern so good to include it earlier than later.

Background context here is that the example policy in these instructions long predates the ncov build and its data files on s3://nextstrain-data. The policy also doesn't assume any particular build is being run, but since the ncov build and its input data is so widely-used it'd still be good to add grant/mention now.

@victorlin victorlin moved this from New to Backlog in Nextstrain planning (archived) Apr 27, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
documentation Improvements or additions to documentation
Projects
No open projects
Status: Backlog
Development

No branches or pull requests

2 participants