Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature Request - Support AWS Single Sign On Profiles #24

Open
vikas027 opened this issue Feb 15, 2021 · 0 comments
Open

Feature Request - Support AWS Single Sign On Profiles #24

vikas027 opened this issue Feb 15, 2021 · 0 comments

Comments

@vikas027
Copy link

Environment

❯ terraform version
Terraform v0.14.6
+ provider mycorp/sspinc/credstash v0.5.0
+ provider registry.terraform.io/hashicorp/aws v3.28.0
+ provider registry.terraform.io/hashicorp/null v3.0.0

Problem

AWS Single Sign On (SSO) uses AWS CLI v2 and stores profiles in directory ~/.aws/sso and refer them here ~/.aws/config. It does not uses file ~/.aws/credentials

The credstash terraform provider expects the profile in ~/.aws/credentials and if not configured throws below error.

Error: NoCredentialProviders: no valid providers in chain. Deprecated.
        For verbose messaging see aws.Config.CredentialsChainVerboseErrors

It would be good if it can also read profiles configured in ~/.aws/config which can also refer to credentials in ~/.aws/sso directory.

Workaround

The current workaround is to get the AWS temp keys and store it as a profile in ~/.aws/credentials

Possibly Related
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@vikas027