First of all, thank you very much for making AWSume!
I have a use-case which may be relevant to others: when using AWSume to switch roles to another account based on previous IAM User keys, I would like AWSume to make use of the role_session_name provided inside my ~/.aws/config file by default (if any).
This would be very relevant for Auditing purposes.
I have a use-case where every IAM User has to set its own email in the role_session_name field, so the user issuing AWS CLI and Terraform calls can be easily spotted in CloudTrail.
For example, in the following aws-cli configuration:
If I don't specify the flag --session-name every time I want to switch to another account's Role, AWSume will set the role_session_name as the name of the profile itself (e.g. my_iam_role_on_another_account, in this case):
Hello,
First of all, thank you very much for making AWSume!
I have a use-case which may be relevant to others: when using AWSume to
switch roles
to another account based on previous IAM User keys, I would like AWSume to make use of therole_session_name
provided inside my~/.aws/config
file by default (if any).This would be very relevant for Auditing purposes.
I have a use-case where every IAM User has to set its own email in the
role_session_name
field, so the user issuing AWS CLI and Terraform calls can be easily spotted in CloudTrail.For example, in the following
aws-cli
configuration:If I don't specify the flag
--session-name
every time I want to switch to another account's Role, AWSume will set therole_session_name
as the name of the profile itself (e.g.my_iam_role_on_another_account
, in this case):What I would like AWSume to do by default, is to use the
role_session_name
parameter by default, if no--session-name
flag is set:Thank you!