Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- become() {
- SUPERUSER_ROLE_ARN="insert default role arn here"
- role_arn=${role_arn:=$SUPERUSER_ROLE_ARN}
- tmp_credentials_file=$(mktemp /tmp/deploy-credentials.json.XXX)
- aws sts assume-role --role-arn "${role_arn}" \
- --role-session-name "$(whoami)-$(date +'%Y%m%d%H%M%S')" --output json | jq -r ".Credentials" > "$tmp_credentials_file"
- export AWS_ACCESS_KEY_ID="$(jq -r ".AccessKeyId" < ${tmp_credentials_file})"
- export AWS_SECRET_ACCESS_KEY="$(jq -r ".SecretAccessKey" < ${tmp_credentials_file})"
- export AWS_SESSION_TOKEN="$(jq -r ".SessionToken" < ${tmp_credentials_file})"
- export AWS_SECURITY_TOKEN="$(jq -r ".SessionToken" < ${tmp_credentials_file})"
- rm "$tmp_credentials_file"
- }
- unbecome() {
- unset AWS_ACCESS_KEY_ID AWS_SECRET_ACCESS_KEY AWS_SECURITY_TOKEN AWS_SESSION_TOKEN
- }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement