1 回答
- 最新
- 投票最多
- 评论最多
0
I am just working on a container that ran into exactly the same issue. I made an assume role and added the credentials directly to the invocation of a third party lib. In the moment where the credentials timed out, all calls failed.
I found this merge request https://github.com/boto/botocore/pull/1313!
Now, I created a profile with the EcsContainer source:
[profile crossaccount]
role_arn="${CROSS_ACCOUNT_ROLE_ARN}"
credential_source=EcsContainer
I pass this profile to the 3rd party lib instead. Under the hood, this profile is registered in the credentials provider chain which solves the issue.
Best regards
已回答 5 年前