Open benjamin-asdf opened 2 years ago
We're looking into this. We have a few possible ways to handle this case, and need to figure out which solves the problem in the most general way without breaking things or introducing new dependencies. Please stand by.
@benjamin-asdf when I run your example with a dummy profile configured, I get this:
{:cognitect.anomalies/category :cognitect.anomalies/fault,
:cognitect.anomalies/message
"HTTP protocol violation: Authentication challenge without WWW-Authenticate header",
,,,}
Is that the validation err you get?
(aws/invoke
(aws/client {:api :sso})
{:op :GetRoleCredentials
:request {:accessToken "fo"
:roleName "role"
:accountId "id"}})
;; without dummy
;; with dummy ~/.aws/credentials
[default]
aws_secret_access_key = _
aws_access_key_id = _
aws_session_token = _
{:cognitect.anomalies/category :cognitect.anomalies/fault, :cognitect.anomalies/message "HTTP protocol violation: Authentication challenge without WWW-Authenticate header", :cognitect.http-client/throwable #error {
:cause "HTTP protocol violation: Authentication challenge without WWW-Authenticate header"
,,,
yea seems to be the same @dchelimsky
Dependencies
e.g.
Repro
It fails too early in this case. Sso should be a specail case where it doesn't look for creds because the use case is that you fetch exactly those creds.
workaround:
configure a default profile (with keys)
set system props to some dummy values etc.