carnal0wnage
commented
6 years ago LOL it did...as soon as i needed to test stuff legitimately and it had a session token...
we decided to handle this by rm'ing the config.py, using a .env file locally that mimics the aws credentials file.
magic happens here:
os.environ['AWS_SHARED_CREDENTIALS_FILE'] = '.env'
the above will overwrite the env varioables and boto3 now picks up the creds
https://github.com/carnal0wnage/weirdAAL/commit/bb73d460d55de42e6892c25b7d2b4da57993903a
cc @cktricky
none of the code handles session tokens... this might bite me in the ass later.
most likely need to add the session=None in some places. will be required to do any assume role stuff then to use the creds it spits out