def assume_role(self, region, profile):
# assume role
global connect_args
if six.PY3:
aws_creds = configparser.ConfigParser()
aws_config = configparser.ConfigParser()
else:
aws_creds = configparser.SafeConfigParser()
aws_config = configparser.SafeConfigParser()
aws_creds.read(os.path.expanduser("~/.aws/credentials"))
aws_config.read(os.path.expanduser("~/.aws/config"))
source_profile = self.get_option(aws_config, profile, 'source_profile')
arn = self.get_option(aws_config, profile, 'role_arn')
aws_access_key = self.get_option(aws_creds, source_profile, 'aws_access_key_id')
aws_secret_key = self.get_option(aws_creds, source_profile, 'aws_secret_access_key')
session_name = "role_session_name_" + self.boto_profile
sts_conn = sts.STSConnection(aws_access_key, aws_secret_key)
assume_role = sts_conn.assume_role(role_arn=arn, role_session_name=session_name)
connect_args['aws_access_key_id'] = assume_role.credentials.access_key
connect_args['aws_secret_access_key'] = assume_role.credentials.secret_key
connect_args['security_token'] = assume_role.credentials.session_token
ec2_mod.py 文件源码
python
阅读 24
收藏 0
点赞 0
评论 0
评论列表
文章目录
