Skip to content
This repository has been archived by the owner on Mar 13, 2020. It is now read-only.

Assume Role Support

Pre-release
Pre-release
Compare
Choose a tag to compare
@waltaro waltaro released this 30 Sep 04:41
· 10 commits to master since this release
v0.1.23-beta
dc8205f
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Changes

  • Add CONNECTION_DATA_ROLE_KEY constant
  • Add CONNECTION_DATA_FUNCTION_KEY constant
  • Add CONNECTION_DATA_TENANT_KEY constant
  • Add AWS_SERVICE_LAMBDA constant
  • Add AWS_SERVICE_S3 constant
  • Add sts client to AWSLambdaDataSource
  • Add __assume_role(...) method
    • Returns credentials from response
  • Add __get_aws_client(...) method
  • Add __refresh_aws_clients_if_expired(...) method
  • Reformat code

Notes

Assume Role

The following clients will now be instantiated with AWS credentials:

  • Lambda
  • S3

If the clients are nearing their expiration date (~5 minutes), we will re-assume the role for a fresh set of credentials and update the clients accordingly.

AWS Lambda Connection String

Now expects role=arn:aws:iam:{accountId}:role/{roleName}

Assets 2
Loading