Connecting Your Spacelift Stack to Your AWS Account

Last updated: November 10, 2024

Overview

Spacelift enables secure connections between your stack and AWS account by configuring a cloud integration. This integration allows Spacelift to assume an IAM role within your AWS account, generating temporary credentials for safe access.

Setting Up AWS Cloud Integration

To connect your Spacelift stack to your AWS account, follow the instructions in Spacelift's AWS integration documentation. This setup allows Spacelift to assume an IAM role within your AWS account, granting temporary access for runs and tasks.

Important Notes

⚠ Case Sensitivity in Account Name
When configuring the trust policy, ensure the AWS account name is case-sensitive. Using incorrect capitalization can lead to the following error:
“could not attach the AWS integration: you need to configure the trust relationship section in your AWS account.”

⚠ STS Activation in the Target Region
Ensure that AWS Security Token Service (STS) is activated in the eu-west-1 region for your target account. If STS is not enabled, you may encounter an error related to STS not being active in the specified region.

Connecting via Terraform

You can also set up the connection through the AWS Terraform provider, using the assume_role configuration.

Refer to the AWS Terraform provider documentation for more details.

Summary

With these configurations and important notes in mind, you can connect your Spacelift stack to your AWS account securely. For detailed setup steps, refer to the Spacelift documentation on AWS integration. If you encounter issues or need further assistance, please contact Spacelift Support.