assume-role-with-web-identity with boto3
Question
Is there an equivalent way to execute the below command using boto3?
$ aws sts assume-role-with-web-identity \
--role-arn $AWS_ROLE_ARN \
--role-session-name mh9test \
--web-identity-token file://$AWS_WEB_IDENTITY_TOKEN_FILE \
--duration-seconds 1000 > /tmp/irp-cred.txt
$ export AWS_ACCESS_KEY_ID="$(cat /tmp/irp-cred.txt | jq -r ".Credentials.AccessKeyId")"
$ export AWS_SECRET_ACCESS_KEY="$(cat /tmp/irp-cred.txt | jq -r ".Credentials.SecretAccessKey")"
$ export AWS_SESSION_TOKEN="$(cat /tmp/irp-cred.txt | jq -r ".Credentials.SessionToken")"
$ rm /tmp/irp-cred.txt
1 answers
solution1
1 ACCPTED 2020-03-19 06:32:22
There is assume_role_with_web_identity with the following syntax:
response = client.assume_role_with_web_identity(
RoleArn='string',
RoleSessionName='string',
WebIdentityToken='string',
ProviderId='string',
PolicyArns=[
{
'arn': 'string'
},
],
Policy='string',
DurationSeconds=123
)
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.
Related Question
AWS assume role not working as expected with boto3
Boto3 Assume Role locally as ECS task will Do for testing purposes
How to mock in python unit tests aws-assume-role-lib and boto3 libraries?
boto3 support for role_arn
How to troubleshoot boto3 role assumption
python boto3 error: Not authorized to perform assumed role on resource
List inline policies attached to a role using boto3
Access denied when assuming role as IAM user via boto3
Role assumption errors with boto3, aws workdocs, and Lambda execution with python
python boto3 attach/replace IAM role to ec2
Related Tags