FEATURE: Add support for credential_source=Environment in SharedConfig #3283
Conversation
- Implements missing Environment credential source documented in AWS CLI docs - Returns Credentials object using AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, AWS_SESSION_TOKEN - Includes comprehensive test coverage - All existing tests pass (2315 examples, 0 failures)
|
Hi! Thank you for your contribution. I will be taking a look. |
|
Hey, thanks for opening a PR. I agree that we should support this and I may make some changes to this PR as well. |
|
cool cool. thanks. I'm open to any feedback/help. seemed like too simple a fix but those are the best kinds I guess. |
|
wow, thanks to y'all as well for helping me get this merged in so fast. One question I had was on this comment:
I am trying to use this on a self-hosted, non ec2 metal server and was seeing the same error when trying to use I see the other 2 options for the case are for ec2 instances but it seems like this should work elsewhere fwict. |
|
You're correct, |
3 participants
Implement missing
credential_source = Environmentsupport in Ruby SDKProblem
The AWS CLI documentation clearly states that
credential_sourcesupports three values:Environment– Specifies that the AWS CLI is to retrieve source credentials from environment variablesEc2InstanceMetadata– Specifies that the AWS CLI is to use the IAM role attached to the EC2 instance profileEcsContainer– Specifies that the AWS CLI is to use the IAM role attached to the ECS containerHowever, the Ruby SDK only implemented the latter two, causing
InvalidCredentialSourceErrorwhen users try to use the documentedEnvironmentoption.Solution
This adds the missing
Environmentcase inSharedConfig#credentials_from_sourcethat retrieves credentials from:AWS_ACCESS_KEY_IDAWS_SECRET_ACCESS_KEYAWS_SESSION_TOKENThis matches the documented AWS CLI behavior.
Testing
Environmentcredential sourceImpact
Fixes a gap where documented AWS credential functionality throws
InvalidCredentialSourceErrorin the Ruby SDK.