If WebIdentityTokenFile is empty, try to assume the role using pre-existing creds as documented in the provider above
Comments
This PR was created to identify a solution for hashicorp/terraform-provider-boundary#62
Please do not report that you don't like the naming, the comments, etc. This is me pointing out the problem and asking you to implement this however you see fit. Please take this PR and implement it according to your own guidelines.
As I mentioned on Discuss, we'll be making a cross-team effort to get this reviewed and solidified for inclusion. I wanted to comment here as well for accountability and visibility as well. :)
How it is today
The AWS SDK supports role assumption without a web token but stdlib doesn't currently use it https://github.com/aws/aws-sdk-go/blob/main/aws/credentials/stscreds/assume_role_provider.go
What this PR changes
If
WebIdentityTokenFile
is empty, try to assume the role using pre-existing creds as documented in the provider aboveComments
This PR was created to identify a solution for hashicorp/terraform-provider-boundary#62
Please do not report that you don't like the naming, the comments, etc. This is me pointing out the problem and asking you to implement this however you see fit. Please take this PR and implement it according to your own guidelines.