update docs

Author: morford-brex

docs/pages/product/configuration/data-sources/snowflake.mdx

@@ -134,10 +134,11 @@ Storage][google-cloud-storage] for export bucket functionality.
 <InfoBox>
 
 Ensure the AWS credentials are correctly configured in IAM to allow reads and
-writes to the export bucket in S3 if you are not using storage integration.
-If you are using storage integration then you still need to configure access keys
-for Cube Store to be able to read from the export bucket.
-It's possible to authenticate with IAM roles instead of access keys for Cube Store.
+writes to the export bucket in S3. You can authenticate using:
+
+- **IAM user credentials** - Explicit AWS access keys and secrets
+- **Storage integration** - Snowflake-managed AWS integration (may still require credentials for Cube Store)
+- **IAM roles** - Use execution environment roles (IRSA, instance profiles) for both Snowflake and Cube Store
 
 </InfoBox>
 
@@ -163,14 +164,21 @@ CUBEJS_DB_EXPORT_BUCKET_AWS_SECRET=<AWS_SECRET>
 CUBEJS_DB_EXPORT_BUCKET_AWS_REGION=<AWS_REGION>
 ```
 
-Using Storage Integration to write to export bocket and IAM role to read from Cube Store:
+Using Storage Integration to write to export bucket and IAM role to read from Cube Store:
 ```dotenv
 CUBEJS_DB_EXPORT_BUCKET_TYPE=s3
 CUBEJS_DB_EXPORT_BUCKET=my.bucket.on.s3
 CUBEJS_DB_EXPORT_INTEGRATION=aws_int
 CUBEJS_DB_EXPORT_BUCKET_AWS_REGION=<AWS_REGION>
 ```
 
+Using IAM roles for both Snowflake and Cube Store (no credentials required):
+```dotenv
+CUBEJS_DB_EXPORT_BUCKET_TYPE=s3
+CUBEJS_DB_EXPORT_BUCKET=my.bucket.on.s3
+CUBEJS_DB_EXPORT_BUCKET_AWS_REGION=<AWS_REGION>
+```
+
 
 #### Google Cloud Storage