Expected behavior:
AWS web console session duration should match user's session TTL, when App Service is deployed using IAM role as service account (IRSA).
Current behavior:
Due to AWS's role chaining limitation, AWS federation session is maxed at 1hr when the host of the App Services uses "temporary" credentials
Bug details:
Teleport version: v14
Recreation steps: Deploy App Service using IRSA, setup AWS access, open Web Console from Teleport web app
Expected behavior: AWS web console session duration should match user's session TTL, when App Service is deployed using IAM role as service account (IRSA).
Current behavior: Due to AWS's role chaining limitation, AWS federation session is maxed at 1hr when the host of the App Services uses "temporary" credentials
Bug details:
Current Workaround: Move App Service to an EC2