Skip to content

Credentials configuration

AWS credentials are required to access and manage your Route 53 hosted zone.

Note

The credentials section is optional. If it is not set, ddns-route53 uses the AWS SDK default credential chain. This includes AWS environment variables, the shared AWS config files (~/.aws/credentials and ~/.aws/config), and IAM roles such as EC2 instance roles, ECS task roles, or IRSA in Kubernetes.

credentials:
  accessKeyID: "ABCDEFGHIJKLMNO123456"
  secretAccessKey: "abcdefgh123456IJKLMN+OPQRS7890+ABCDEFGH"

accessKeyID

AWS access key ID.

Config file

credentials:
  accessKeyID: "ABCDEFGHIJKLMNO123456"

Environment variables

  • DDNSR53_CREDENTIALS_ACCESSKEYID
  • AWS_ACCESS_KEY_ID (through AWS env provider)
  • AWS_ACCESS_KEY (through AWS env provider)

accessKeyIDFile

Use the contents of a secret file as the AWS access key ID if accessKeyID is not defined.

Config file

credentials:
  accessKeyIDFile: /run/secrets/akid

Environment variables

  • DDNSR53_CREDENTIALS_ACCESSKEYIDFILE

secretAccessKey

AWS secret access key.

Config file

credentials:
  secretAccessKey: "abcdefgh123456IJKLMN+OPQRS7890+ABCDEFGH"

Environment variables

  • DDNSR53_CREDENTIALS_SECRETACCESSKEY
  • AWS_SECRET_ACCESS_KEY (through AWS env provider)
  • AWS_SECRET_KEY (through AWS env provider)

secretAccessKeyFile

Use the contents of a secret file as the AWS secret access key if secretAccessKey is not defined.

Config file

credentials:
  secretAccessKeyFile: /run/secrets/sak

Environment variables

  • DDNSR53_CREDENTIALS_SECRETACCESSKEYFILE