Add AWS assume-role helper

author: Mike Crute <crutem@amazon.com> 2019-02-13 10:31:13 -0800
committer: Mike Crute <crutem@amazon.com> 2019-02-13 10:38:32 -0800
commit: fb8d5b66e7bf4f4efa95a8aad7fe180a9ad54677 (patch)
tree: 6a7ee12751bf4fa315946fabe9be7258b1f060fd /bin
parent: fd3238e0bdc8eed0683374cb633019a21c904440 (diff)
download: dotfiles-fb8d5b66e7bf4f4efa95a8aad7fe180a9ad54677.tar.bz2
dotfiles-fb8d5b66e7bf4f4efa95a8aad7fe180a9ad54677.tar.xz
dotfiles-fb8d5b66e7bf4f4efa95a8aad7fe180a9ad54677.zip
1 files changed, 19 insertions, 0 deletions
diff --git a/bin/aws-assume-role.sh b/bin/aws-assume-role.sh
new file mode 100755
index 0000000..ae41160
--- /dev/null
+++ b/bin/aws-assume-role.sh
@@ -0,0 +1,19 @@
+#!/bin/bash
+set -eo pipefail
+if [ -z "$1" ]; then
+    echo "usage: $0 <role arn>"
+    exit 1
+fi
+ROLE="$1"
+unset AWS_ACCESS_KEY_ID AWS_SECRET_ACCESS_KEY AWS_SESSION_TOKEN
+echo "Assuming '$ROLE' as '$USER' with profile '${AWS_PROFILE:-default}'..." >&2
+creds=( $(aws sts assume-role --role-arn $ROLE --role-session-name $USER --query 'Credentials.[AccessKeyId,SecretAccessKey,SessionToken]' | tr -d ',') )
+echo export AWS_ACCESS_KEY_ID="${creds[1]}"
+echo export AWS_SECRET_ACCESS_KEY="${creds[2]}"
+echo export AWS_SESSION_TOKEN="${creds[3]}"
author	Mike Crute <crutem@amazon.com>	2019-02-13 10:31:13 -0800
committer	Mike Crute <crutem@amazon.com>	2019-02-13 10:38:32 -0800
commit	fb8d5b66e7bf4f4efa95a8aad7fe180a9ad54677 (patch)
tree	6a7ee12751bf4fa315946fabe9be7258b1f060fd /bin
parent	fd3238e0bdc8eed0683374cb633019a21c904440 (diff)
download	dotfiles-fb8d5b66e7bf4f4efa95a8aad7fe180a9ad54677.tar.bz2 dotfiles-fb8d5b66e7bf4f4efa95a8aad7fe180a9ad54677.tar.xz dotfiles-fb8d5b66e7bf4f4efa95a8aad7fe180a9ad54677.zip

diff --git a/bin/aws-assume-role.sh b/bin/aws-assume-role.sh new file mode 100755 index 0000000..ae41160 --- /dev/null +++ b/bin/aws-assume-role.sh
@@ -0,0 +1,19 @@
	1	#!/bin/bash
	2
	3	set -eo pipefail
	4
	5	if [ -z "$1" ]; then
	6	echo "usage: $0 <role arn>"
	7	exit 1
	8	fi
	9
	10	ROLE="$1"
	11
	12	unset AWS_ACCESS_KEY_ID AWS_SECRET_ACCESS_KEY AWS_SESSION_TOKEN
	13
	14	echo "Assuming '$ROLE' as '$USER' with profile '${AWS_PROFILE:-default}'..." >&2
	15	creds=( $(aws sts assume-role --role-arn $ROLE --role-session-name $USER --query 'Credentials.[AccessKeyId,SecretAccessKey,SessionToken]' \| tr -d ',') )
	16
	17	echo export AWS_ACCESS_KEY_ID="${creds[1]}"
	18	echo export AWS_SECRET_ACCESS_KEY="${creds[2]}"
	19	echo export AWS_SESSION_TOKEN="${creds[3]}"