Join GitHub today
GitHub is home to over 40 million developers working together to host and review code, manage projects, and build software together.Sign up
Support passing in a credential-helper-cmd #5164
We have a situation where we assume a role in another account from where
We can't use assumption directly in C7N - There are situations where we want
This adds a new binary argument, which specifies a commnand to invoke
We have a situation where we assume a role in another account from where the command is run, and want to allow using credentials for said account. We can't use assumption directly in C7N - There are situations where we want our additional capabilitys - and passing in credentials as environment variables doesn't include refreshability. This adds a new binary argument, which specifies a commnand to invoke - allowing us to implement custom, refreshable auth using a command line program.
Could you clarify the inability to assume using c7n builtin support for that re
We generally don't add one off deployment hacks, while I appreciate this was done in a general way, its unclear why it would be useful to any other user. There's also the notion that this would need to be stripped for lambda configuration since we upload cli flags by default there.