Open asvinours opened 1 year ago
Additionally, assume_role_with_web_identity
is not supported either. I am currently working around this by generating a ~/.aws/config
file.
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for raising this issue.
Describe the solution you'd like
Add support for extra assume-role attributes for S3 remote_state backend.
Right now it looks like terragrunt supports
role_arn
,external_id
andsession_name
but not the session duration, the session policy nor the session tags attributes.terraform s3 backend documentation: https://developer.hashicorp.com/terraform/language/settings/backends/s3#assume-role-configuration
Describe alternatives you've considered
One alternative is to not use the terragrunt
remote_state
block and use agenerate
block and generate a terraform file for the backend configuration. Although doing this takes away the automatic deployment of the S3 bucket and dynamoDB table.