CircleCI Ideas

Support for AWS STS role assumption when pulling images from ECR

I want to be able to specify a role for the credentials. And then have CircleCI assume the sts role before trying to access the image repo, something like this

 

container_config: &common_config
docker:
- image: acc_id.dkr.ecr.eu-west-1.amazonaws.com/some_repo/some_image:some_tag
aws_auth:
aws_access_key_id: $AWS_ACCESS_KEY_ID
aws_secret_access_key: $AWS_SECRET_ACCESS_KEY
aws_sts_role: arn:aws:iam::acc_id:role/Administrator

 

This would greatly help us since we are moving to a central user account without any services running

  • Avatar32.5fb70cce7410889e661286fd7f1897de Guest
  • Aug 14 2019
  • New
  • Attach files