From 4e79c3ef1998eaf07f2d48b63c18bf027031b40e Mon Sep 17 00:00:00 2001
From: Andrew Titmuss <iandrewt@icloud.com>
Date: Fri, 28 Jun 2024 22:37:42 +1000
Subject: [PATCH 1/3] administration: aws-credentials: add EKS Pod Identities

Signed-off-by: Andrew Titmuss <iandrewt@icloud.com>
---
 administration/aws-credentials.md | 9 +++++++--
 1 file changed, 7 insertions(+), 2 deletions(-)

diff --git a/administration/aws-credentials.md b/administration/aws-credentials.md
index c59b48445..b1673a5e7 100644
--- a/administration/aws-credentials.md
+++ b/administration/aws-credentials.md
@@ -27,12 +27,17 @@ At this time, no other settings are supported.
 Fetches credentials via a signed web identity token for a Kubernetes service account.
 See https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html.
 
-## 4. ECS HTTP Credentials Endpoint
+## 4. EKS Pod Identities (HTTP Credentials)
+
+Fetches credentials via an agent that runs on the EKS node.
+See https://docs.aws.amazon.com/eks/latest/userguide/pod-identities.html.
+
+## 5. ECS HTTP Credentials Endpoint
 
 Fetches credentials for the ECS task's role.
 See https://docs.aws.amazon.com/AmazonECS/latest/userguide/task-iam-roles.html.
 
-## 5. EC2 Instance Profile Credentials (IMDS)
+## 6. EC2 Instance Profile Credentials (IMDS)
 
 Fetches credentials for the EC2 instance profile's role.
 See https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-roles-for-amazon-ec2.html.

From 05c7e3da16fbd31441160a30c1f2e37125dfbd42 Mon Sep 17 00:00:00 2001
From: Andrew Titmuss <iandrewt@icloud.com>
Date: Fri, 28 Jun 2024 22:38:18 +1000
Subject: [PATCH 2/3] summary: add administration/aws-credentials

Signed-off-by: Andrew Titmuss <iandrewt@icloud.com>
---
 SUMMARY.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/SUMMARY.md b/SUMMARY.md
index 11c377b7f..31698c69f 100644
--- a/SUMMARY.md
+++ b/SUMMARY.md
@@ -60,6 +60,7 @@
     * [Configuration File](administration/configuring-fluent-bit/yaml/configuration-file.md)
   * [Unit Sizes](administration/configuring-fluent-bit/unit-sizes.md)
   * [Multiline Parsing](administration/configuring-fluent-bit/multiline-parsing.md)
+* [AWS Credentials](administration/aws-credentials.md)
 * [Transport Security](administration/transport-security.md)
 * [Buffering & Storage](administration/buffering-and-storage.md)
 * [Backpressure](administration/backpressure.md)

From 97136d4608a7023873e0847c73bd4f46541af80b Mon Sep 17 00:00:00 2001
From: Andrew Titmuss <iandrewt@icloud.com>
Date: Mon, 1 Jul 2024 21:30:47 +1000
Subject: [PATCH 3/3] administration: aws-credentials: relabel all bare URLs

Signed-off-by: Andrew Titmuss <iandrewt@icloud.com>
---
 administration/aws-credentials.md | 24 ++++++++++++++----------
 1 file changed, 14 insertions(+), 10 deletions(-)

diff --git a/administration/aws-credentials.md b/administration/aws-credentials.md
index b1673a5e7..403bf16dc 100644
--- a/administration/aws-credentials.md
+++ b/administration/aws-credentials.md
@@ -11,34 +11,38 @@ Uses the `AWS_ACCESS_KEY_ID` and `AWS_SECRET_ACCESS_KEY` (and optionally `AWS_SE
 
 ## 2. Shared Configuration and Credentials Files
 
-Reads the shared config file at `$AWS_CONFIG_FILE` (or `$HOME/.aws/config`) and the shared credentials file at `$AWS_SHARED_CREDENTIALS_FILE` (or `$HOME/.aws/credentials`) to fetch the credentials for the profile named `$AWS_PROFILE` or `$AWS_DEFAULT_PROFILE` (or "default"). See https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-files.html.
+Reads the shared config file at `$AWS_CONFIG_FILE` (or `$HOME/.aws/config`) and the shared credentials file at `$AWS_SHARED_CREDENTIALS_FILE` (or `$HOME/.aws/credentials`) to fetch the credentials for the profile named `$AWS_PROFILE` or `$AWS_DEFAULT_PROFILE` (or "default"). For more information, see [Configuration and credential file settings](https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-files.html) in the AWS CLI User Guide.
 
 The shared settings will be evaluated in the following order.
 
 Setting|File|Description
 ---|---|---
-`credential_process`|config| See https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-sourcing-external.html.<br/>Supported on Linux only.
+`credential_process`|config| See [Source credentials with an external process](https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-sourcing-external.html) in the AWS CLI User Guide.<br/>Supported on Linux only.
 `aws_access_key_id`<br/>`aws_secret_access_key`<br/>*`aws_session_token`*|credentials|Access key ID and secret key to use to authenticate.<br/>The session token must be set for temporary credentials.
 
 At this time, no other settings are supported.
 
 ## 3. EKS Web Identity Token (OIDC)
 
-Fetches credentials via a signed web identity token for a Kubernetes service account.
-See https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html.
+Fetches credentials using a signed web identity token for a Kubernetes service account. For more information, see
+[IAM Roles for Service Accounts](https://docs.aws.amazon.com/eks/latest/userguide/iam-roles-for-service-accounts.html)
+in the Amazon EKS User Guide.
 
 ## 4. EKS Pod Identities (HTTP Credentials)
 
-Fetches credentials via an agent that runs on the EKS node.
-See https://docs.aws.amazon.com/eks/latest/userguide/pod-identities.html.
+Fetches credentials using an agent running on the EKS node. For more information, see
+[EKS Pod Identities](https://docs.aws.amazon.com/eks/latest/userguide/pod-identities.html)
+in the Amazon EKS User Guide.
 
 ## 5. ECS HTTP Credentials Endpoint
 
-Fetches credentials for the ECS task's role.
-See https://docs.aws.amazon.com/AmazonECS/latest/userguide/task-iam-roles.html.
+Fetches credentials for the ECS task's role. For more information, see
+[Task IAM Roles](https://docs.aws.amazon.com/AmazonECS/latest/userguide/task-iam-roles.html)
+in the Amazon ECS User Guide.
 
 ## 6. EC2 Instance Profile Credentials (IMDS)
 
-Fetches credentials for the EC2 instance profile's role.
-See https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-roles-for-amazon-ec2.html.
+Fetches credentials for the EC2 instance profile's role. For more information, see
+[IAM Roles for Amazon EC2](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/iam-roles-for-amazon-ec2.html)
+in the Amazon EC2 User Guide.
 As of Fluent Bit version 1.8.8, IMDSv2 is used by default and IMDSv1 may be disabled. Prior versions of Fluent Bit require enabling IMDSv1 on EC2.
\ No newline at end of file