You working in the media industry and you have created a web application where users will be able to upload
photos they create to your website. This web application must be able to call the S3 API in order to be able to
function. Where should you store your API credentials whilst maintaining the maximum level of security.
Save the API credentials to your php files.
Don’t save your API credentials. Instead create a role in IAM and assign this role to an EC2 instance when
you first create it.
Save your API credentials in a public Github repository.
Pass API credentials to the instance using instance userdata.