Major S3DirectBatchHandler cannot be used solely with a AWS ID and secret. Is use of use IAM instance roles optional? If it is optional, the batch handler needs to be able to start without a roleArn definition. See attached server.log with entry
2019-04-10T12:30:38,968 ERROR [ComponentManager] Component service:org.nuxeo.ecm.automation.server.BatchManager notification of application started failed: Missing configuration property: roleArn org.nuxeo.ecm.core.api.NuxeoException: Missing configuration property: roleArn
See also attached showconf.txt with nuxeo.s3storage.* properties.
Prior to 10.10 this class could get temp credentials rather than assumeRole https://github.com/nuxeo/nuxeo/blob/9.10/addons/nuxeo-core-binarymanager-cloud/nuxeo-core-binarymanager-s3/src/main/java/org/nuxeo/ecm/core/storage/sql/S3DirectBatchHandler.java#L193
If IAM instance roles are optional, it should be possible to either get temp creds or assume role.
