Update GATK AWS phone-home configuration

-Switch to using new GSA AWS account for storage of phone home data -Use DNS-compliant bucket names, as per Amazon's best practices -Encrypt publicly-distributed version of credentials. Grant only PutObject permission, and only for the relevant buckets. -Store non-distributed credentials in private/GATKLogs/newAWSAccountCredentials for now -- need to integrate with existing python/shell scripts later to get the log downloading working with the new account
2013-08-21 12:39:30 -04:00 · 2013-08-21 12:39:30 -04:00 · 9fbb4920d0
parent e1174a582d
commit 9fbb4920d0
3 changed files with 5 additions and 5 deletions
--- a/public/java/src/org/broadinstitute/sting/gatk/phonehome/GATKRunReport.java
+++ b/public/java/src/org/broadinstitute/sting/gatk/phonehome/GATKRunReport.java
@ -71,10 +71,10 @@ import java.util.zip.GZIPOutputStream;
 * @since 2010
 */
 public class GATKRunReport {
-    protected static final String REPORT_BUCKET_NAME = "GATK_Run_Reports";
-    protected static final String TEST_REPORT_BUCKET_NAME = "GATK_Run_Reports_Test";
-    protected final static String AWS_ACCESS_KEY_MD5 = "43433e5488d60788042ed5de3dcf9b0a";
-    protected final static String AWS_SECRET_KEY_MD5 = "0aa28b227ecacbdc9d2d5e8d82b10d32";
+    protected static final String REPORT_BUCKET_NAME = "broad.gsa.gatk.run.reports";
+    protected static final String TEST_REPORT_BUCKET_NAME = "broad.gsa.gatk.run.reports.test";
+    protected final static String AWS_ACCESS_KEY_MD5 = "34d4a26eb2062b3f06e833b28f9a38c6";
+    protected final static String AWS_SECRET_KEY_MD5 = "83f2332eec99ef1d7425d5dc5d4b514a";

    private static final DateFormat DATE_FORMAT = new SimpleDateFormat("yyyy/MM/dd HH.mm.ss");

@ -525,7 +525,7 @@ public class GATKRunReport {
                        }
                        break;
                    case NORMAL:
-                        // IAM GATK user credentials -- only right is to PutObject into GATK_Run_Report bucket
+                        // IAM GATK user credentials -- only right is to PutObject into broad.gsa.gatk.run.reports bucket
                        final S3Service s3Service = initializeAWSService(getAWSUploadAccessKey(), getAWSUploadSecretKey());

                        // Create an S3Object based on a file, with Content-Length set automatically and
--- a/public/java/src/org/broadinstitute/sting/gatk/phonehome/resources/GATK_AWS_access.key
+++ b/public/java/src/org/broadinstitute/sting/gatk/phonehome/resources/GATK_AWS_access.key
--- a/public/java/src/org/broadinstitute/sting/gatk/phonehome/resources/GATK_AWS_secret.key
+++ b/public/java/src/org/broadinstitute/sting/gatk/phonehome/resources/GATK_AWS_secret.key