Use your private S3 bucket as Yum package repository, without having credentials in configuration files or managing them manually.
This Yum plugin uses Amazon Identity and Access Management (IAM) feature allowing EC2 instances to assume roles with permissions, which allows applications inside those instances to access a constantly automatically (by AWS) rotated/temporary credentials.
- Private S3 buckets as Yum repositories
- No public exposure of access credentials
- You can fine-grain permissions for this plugin using IAM roles (e.g. only "s3:GetObject" actions on bucket)
- Very lightweight: plugin itself & configuration file.
Try it yourself and give feedback: https://github.com/seporaitis/yum-s3-iam