aws:download content document to support tokenInfo from cross account ssm parameter

aws / amazon-ssm-agent

An agent to enable remote management of your EC2 instances, on-premises servers, or virtual machines (VMs).

https://aws.amazon.com/systems-manager/

Apache License 2.0

1.03k stars 323 forks source link

aws:download content document to support tokenInfo from cross account ssm parameter #563

Open spongenee opened 2 months ago

spongenee commented 2 months ago

I would like to run command from multiple accounts within the organization. Instead of creating a github token parameter in each account, I would like to only create one in the management account and share it across the organization.

Right now, secure-string-token in "tokenInfo":"{{ssm-secure:secure-string-token}}" is the name of parameter within the same account, I would like it to should support arn as well so that we can get the parameter as a shared resource from another account.

spongenee commented 2 months ago

https://github.com/aws/amazon-ssm-agent/blob/da9a3363e1d1a04cc69e7aba71bd33844a376eac/agent/ssm/ssmparameterresolver/ssm.go

This will be the file to modify