Skip to content
Flow Like logo Flow Like Docs

AWS Provider Node

Data/Providers

AWS Provider

Build an AWS credential struct. Supports explicit access keys, named profiles, EC2 instance metadata, EKS web identity (IRSA), STS AssumeRole and the default environment chain. Emits an AwsProvider that any AWS-aware node (S3, Athena, Bedrock, ...) can consume.

data_aws_providerdata
Inputs7
Outputs2
Security exposure3/10
Packagedata

Ratings

Scores range from 0 to 10. Higher values mean more impact, exposure, or operational weight.

SecurityAttack surface and exposure impact.
3/10High
PrivacyPotential sensitivity of processed data.
5/10Medium
PerformanceRuntime or resource pressure.
0/10High
GovernancePolicy, audit, or compliance impact.
2/10High
ReliabilityOperational stability considerations.
1/10High
CostExternal or compute cost impact.
0/10High

Input Pins

7

Input

Execution
exec_in

Trigger execution

Auth Mode

String
auth_mode

How to authenticate: 'access_key' (static keys), 'environment' (default chain: env vars / shared config), 'profile' (~/.aws/credentials profile), 'instance_metadata' (EC2 IMDS), 'web_identity' (EKS IRSA / OIDC token file), 'assume_role' (STS AssumeRole)

Default access_key
access_keyenvironmentprofileinstance_metadataweb_identityassume_role

Region

String
region

AWS region (e.g. 'us-east-1', 'eu-west-1')

Default us-east-1

Endpoint URL

String
endpoint_url

Override endpoint URL for S3-compatible services (LocalStack, MinIO, Cloudflare R2, ...). Leave empty for real AWS.

Access Key ID

String
access_key_id

AWS access key ID (used when auth_mode is 'access_key')

Sensitive

Secret Access Key

String
secret_access_key

AWS secret access key (used when auth_mode is 'access_key')

Sensitive

Session Token

String
session_token

Optional STS session token (used when auth_mode is 'access_key')

Sensitive

Output Pins

2

Done

Execution
exec_out

Provider built

Provider

Struct
provider

AWS provider with authentication

AwsProviderAwsProvider13 fields
auth_modestringrequired
regionstringrequired
endpoint_urlstring | null

Optional override endpoint (S3-compatible services, LocalStack, ...).

access_key_idstring | null
secret_access_keystring | null
session_tokenstring | null
profile_namestring | null
web_identity_token_filestring | null
web_identity_role_arnstring | null
role_session_namestring | null
assume_role_arnstring | null
assume_role_external_idstring | null
assume_role_session_namestring | null
Schema enforced

Node Info

Internal name
data_aws_provider
Category
Data/Providers