Closed CrescentFresh closed 2 years ago
The credential process is intended to be a backstop for AWS SDKs that don't support AWS SSO credentials; they'll ignore the sso configuration fields but pick up the credential process. I'm not sure what's remaining on the list of SDKs without support. The JS SDK v2 was one of the last holdouts and it recently got support. boto3 has had support for a long time. I have not updated the README here since moving the functionality to aws-sso-util. I should do an inventory and update the README in both places for what SDK versions map to AWS SSO support.
Ah ok. The aws-sso-util docs do have a verification example using the JS SDK: https://github.com/benkehoe/aws-sso-util/blob/master/docs/credential-process.md that get what I'm after. This has helped a lot, thanks.
As far as I know, there isn't a great way to verify that an SDK is using a particular credential provider. So you'd want to pick a version of the SDK that you know doesn't work with AWS SSO—but why would you want to do that?
The project readme includes these finlal instructions to verify that the
credential_process
configuration worked:However I've found the expected output is achieved without setting
credential_process
at all:Is there a test that verifies the correctness of the configuration?
Context: I'm trying to demo to my team a before/after.