Use local aws credentials in local act run

[aldegoeij]

Is it somehow possible to read the credentials from my local ~/.aws/ directory and use them in the workflow run?

It is the same logic as used in e.g. docker by adding -v $HOME/.aws:/root/.aws to docker run command. Processes in the docker container now use the local credentials as base credentials for role assume.

This way within the workflow the base credentials are the base credentials of my local aws configuration. Currently I need to copy paste Access Key Id, Secret Access Key and Session Token into a .secrets file for act to pickup?

Is there any way to pass e.g. custom docker commands?

[rahb3rt]

I am sure you could pass them in via secrets function?

Something like act -s AWS_SECRETE=$(cat ~/.aws/config) and so on would that not work? @aldegoeij

[github-actions]

Issue is stale and will be closed in 14 days unless there is new activity

[vcolanoKH]

Finagling @rahb3rt's answer a bit I got this working with

act pull_request \
 --env AWS_ACCESS_KEY_ID=$(aws configure get default.aws_access_key_id) \
 --env AWS_SECRET_ACCESS_KEY=$(aws configure get default.aws_secret_access_key) \
 --env AWS_SESSION_TOKEN=$(aws configure get default.aws_session_token

Sources:

• https://stackoverflow.com/a/40852848/2121777
• https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-envvars.html

[rdettai]

for reference, what i ended up doing:

• calling command
  act --env CREDS_FILE="$(shell cat ~/.aws/credentials | base64 -w 0)"

• new step

      - name: "Write AWS credentials file"
        if: ${{ env.ACT }}
        description: "When running locally with `act`, load AWS credentials"
        run: |
          mkdir ~/.aws
          echo $CREDS_FILE | base64 -d > ~/.aws/credentials

As you can see, I am encoding with base64 to avoid all escaping/newline issues.

[furkantektas]

Alternative to @rdettai's solution, you can pass the credentials via env-file parameter like this:

act pull_request --env-file <(aws configure export-credentials --format env)