[Feature Request] Resource Level Policies for API Gateway
The CBDE team is investigating how to put authentication in front of out Docker Registry. Ideally we would use the same system to authenticate people and EC2 instances. We would like to leverage IAM to achieve this.
Our goal is to create a short lived token dispenser that responds to version 4 signed requests with a token containing:
- the ARN of the caller