From b19ce831ff73f1b92ef196fc1d4a17f3cdf1c860 Mon Sep 17 00:00:00 2001
From: baarkerlounger <5101747+baarkerlounger@users.noreply.github.com>
Date: Thu, 10 Feb 2022 13:42:49 +0000
Subject: [PATCH] Infra documentation (#290)

* Add external access S3 bucket service key creation

* Indentation
---
 infrastructure_setup.md | 10 ++++++++++
 1 file changed, 10 insertions(+)

diff --git a/infrastructure_setup.md b/infrastructure_setup.md
index 1f7d7b422..6aaff92d9 100644
--- a/infrastructure_setup.md
+++ b/infrastructure_setup.md
@@ -21,6 +21,11 @@
 
   `cf bind-service dluhc-core-staging dluhc-core-staging-export-bucket -c '{"permissions": "read-write"}'`
 
+6. Create a service keys for accessing the S3 bucket from outside Gov PaaS:\
+  `cf create-service-key dluhc-core-staging-import-bucket data-import -c '{"allow_external_access": true}'`
+
+  `cf create-service-key dluhc-core-staging-export-bucket data-export -c '{"allow_external_access": true, "permissions": "read-only"}'`
+
 
 # Production
 
@@ -44,3 +49,8 @@
   `cf bind-service dluhc-core-production dluhc-core-production-import-bucket -c '{"permissions": "read-only"}'`
 
   `cf bind-service dluhc-core-production dluhc-core-production-export-bucket -c '{"permissions": "read-write"}'`
+
+6. Create a service keys for accessing the S3 bucket from outside Gov PaaS:\
+  `cf create-service-key dluhc-core-production-import-bucket data-import -c '{"allow_external_access": true}'`
+
+  `cf create-service-key dluhc-core-production-export-bucket data-export -c '{"allow_external_access": true, "permissions": "read-only"}'`