From ed103b065fdd04256b0d7c09d509708f1a84a2ae Mon Sep 17 00:00:00 2001
From: baarkerlounger <db@slothlife.xyz>
Date: Wed, 9 Feb 2022 17:39:29 +0000
Subject: [PATCH] Add external access S3 bucket service key creation

---
 infrastructure_setup.md | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/infrastructure_setup.md b/infrastructure_setup.md
index 1f7d7b422..adfce99e8 100644
--- a/infrastructure_setup.md
+++ b/infrastructure_setup.md
@@ -21,6 +21,11 @@
 
   `cf bind-service dluhc-core-staging dluhc-core-staging-export-bucket -c '{"permissions": "read-write"}'`
 
+6. Create a service keys for accessing the S3 bucket from outside Gov PaaS:\
+  `cf create-service-key dluhc-core-staging-import-bucket data-import -c '{"allow_external_access": true}'`
+
+  `cf create-service-key dluhc-core-staging-export-bucket data-export -c '{"allow_external_access": true, "permissions": "read-only"}'`
+
 
 # Production
 
@@ -44,3 +49,8 @@
   `cf bind-service dluhc-core-production dluhc-core-production-import-bucket -c '{"permissions": "read-only"}'`
 
   `cf bind-service dluhc-core-production dluhc-core-production-export-bucket -c '{"permissions": "read-write"}'`
+
+  6. Create a service keys for accessing the S3 bucket from outside Gov PaaS:\
+    `cf create-service-key dluhc-core-production-import-bucket data-import -c '{"allow_external_access": true}'`
+
+    `cf create-service-key dluhc-core-production-export-bucket data-export -c '{"allow_external_access": true, "permissions": "read-only"}'`