A quick follow-up on the longer post about RDS IAM token access for MySQL. Aurora is similar with one small-but-not-obvious difference. The instructions at https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.IAMDBAuth.IAMPolicy.html regarding the IAM policy talk about instances and clusters. For Aurora it looks like you need to reference the cluster id (cluster-...) and not the instance id.
In the language of the MySQL post the "rds_id" is the "Resource ID" from the Aurora cluster and not from any instance. This is true even for single-instance clusters.
The same issues with mysql-connector-python vs pymysql exist for Aurora. So far pymysql has worked fine.
