Before you proceed with the DIGIT Deployment on AWS
Prerequisites
Install AWS CLI on your local machine so that you can use aws cli commands to provision and manage the cloud resources on your account.
Install AWS IAM Authenticator that helps you authenticate your connection from your local machine so that you should be able to deploy DIGIT services.
Get AWS access:
Public Users
You need to singup for the AWS account if you do not already have one. Use this link to get started
Use the AWS IAM Usercredentials provided for the Terraform (Infra-as-code) to connect with your AWS account and provision the cloud resources.
You'll get a Secret Access Key and Access Key ID. Save them safely.
Open the terminal and Run the following command you have already installed the AWS CLI and you have the credentials saved. (Provide the credentials and you can leave the region and output format as blank)
aws configure --profile digit-quickstart-poc
AWS Access Key ID []:<Your access key>
AWS Secret Access Key []:<Your secret key>
Default region name []: ap-south-1
Default output format []: text
The above will create the following file In your machine as /Users/<your username>/.aws/credentials
eGov folks can request for the internal AWS account access using the following Instructions. Please note that the access is timebound, if you are trying you need to complete within 2 hours of time. If it goes beyond few hours you may need to get the latest session token from the below URL.
You need to have a eGov email account setup
In chrome you should have logged in with your eGov google account and you are in the browser profile which is set to eGov official gSuite account
Then use the following url to access your AWS access
Now you should be able to get your aws access key , secret and session token from the link "command-line-access", just follow the remaining instructions depending on your OS.
Run the below commands on a terminal/command prompt
aws configure --profile digit-quickstart-poc
aws configure --profile digit-quickstart-poc set aws_session_token <add_your_session_token>
export AWS_PROFILE=digit-quickstart-poc
Now, your AWS account setup is done and you can execute aws cli commands to confirm
Optionally, you can choose the "management console" option to login to AWS Console UI and explore the various services without creating anything.
NOTE:
By default, you will get read-only access (you are not allowed for provisioning the resources in the eGov AWS account). To get the admin access contact Karthik (karthik.d@egovernments.org).
AWS Session Tokens have 24 hours of time span, Once the time span is over Session Tokens will expire. You can get the new credentials from the above aws url.
When you have the command-line-access configured, everything is set for you to proceed with the terraform to provision the DIGIT Infra-as-code.