aws-role 0.1.0

Sign up to get free protection for your applications and to get access to all the features.
Files changed (13) hide show
  1. data/.gitignore +11 -0
  2. data/.rspec +3 -0
  3. data/.travis.yml +5 -0
  4. data/Gemfile +7 -0
  5. data/Gemfile.lock +574 -0
  6. data/README.md +73 -0
  7. data/Rakefile +6 -0
  8. data/aws-role.gemspec +29 -0
  9. data/bin/aws-role +5 -0
  10. data/lib/aws/role.rb +5 -0
  11. data/lib/aws/role/assume.rb +95 -0
  12. data/lib/aws/role/version.rb +3 -0
  13. metadata +138 -0
data/.gitignore ADDED
@@ -0,0 +1,11 @@
1
+ /.bundle/
2
+ /.yardoc
3
+ /_yardoc/
4
+ /coverage/
5
+ /doc/
6
+ /pkg/
7
+ /spec/reports/
8
+ /tmp/
9
+
10
+ # rspec failure tracking
11
+ .rspec_status
data/.rspec ADDED
@@ -0,0 +1,3 @@
1
+ --format documentation
2
+ --color
3
+ --require spec_helper
data/.travis.yml ADDED
@@ -0,0 +1,5 @@
1
+ sudo: false
2
+ language: ruby
3
+ rvm:
4
+ - 2.3.1
5
+ before_install: gem install bundler -v 1.16.1
data/Gemfile ADDED
@@ -0,0 +1,7 @@
1
+ source "https://rubygems.org"
2
+
3
+ git_source(:github) {|repo_name| "https://github.com/#{repo_name}" }
4
+
5
+ # Specify your gem's dependencies in aws-role.gemspec
6
+ gemspec
7
+
data/Gemfile.lock ADDED
@@ -0,0 +1,574 @@
1
+ PATH
2
+ remote: .
3
+ specs:
4
+ aws-role (0.1.0)
5
+ aws-sdk (~> 3.0.1)
6
+ clamp (~> 1.2.1)
7
+
8
+ GEM
9
+ remote: https://rubygems.org/
10
+ specs:
11
+ aws-partitions (1.68.0)
12
+ aws-sdk (3.0.1)
13
+ aws-sdk-resources (~> 3)
14
+ aws-sdk-acm (1.3.0)
15
+ aws-sdk-core (~> 3)
16
+ aws-sigv4 (~> 1.0)
17
+ aws-sdk-alexaforbusiness (1.1.0)
18
+ aws-sdk-core (~> 3)
19
+ aws-sigv4 (~> 1.0)
20
+ aws-sdk-apigateway (1.9.0)
21
+ aws-sdk-core (~> 3)
22
+ aws-sigv4 (~> 1.0)
23
+ aws-sdk-applicationautoscaling (1.8.0)
24
+ aws-sdk-core (~> 3)
25
+ aws-sigv4 (~> 1.0)
26
+ aws-sdk-applicationdiscoveryservice (1.1.0)
27
+ aws-sdk-core (~> 3)
28
+ aws-sigv4 (~> 1.0)
29
+ aws-sdk-appstream (1.6.0)
30
+ aws-sdk-core (~> 3)
31
+ aws-sigv4 (~> 1.0)
32
+ aws-sdk-appsync (1.1.0)
33
+ aws-sdk-core (~> 3)
34
+ aws-sigv4 (~> 1.0)
35
+ aws-sdk-athena (1.0.1)
36
+ aws-sdk-core (~> 3)
37
+ aws-sigv4 (~> 1.0)
38
+ aws-sdk-autoscaling (1.5.0)
39
+ aws-sdk-core (~> 3)
40
+ aws-sigv4 (~> 1.0)
41
+ aws-sdk-autoscalingplans (1.1.0)
42
+ aws-sdk-core (~> 3)
43
+ aws-sigv4 (~> 1.0)
44
+ aws-sdk-batch (1.3.0)
45
+ aws-sdk-core (~> 3)
46
+ aws-sigv4 (~> 1.0)
47
+ aws-sdk-budgets (1.5.0)
48
+ aws-sdk-core (~> 3)
49
+ aws-sigv4 (~> 1.0)
50
+ aws-sdk-cloud9 (1.1.0)
51
+ aws-sdk-core (~> 3)
52
+ aws-sigv4 (~> 1.0)
53
+ aws-sdk-clouddirectory (1.1.0)
54
+ aws-sdk-core (~> 3)
55
+ aws-sigv4 (~> 1.0)
56
+ aws-sdk-cloudformation (1.3.0)
57
+ aws-sdk-core (~> 3)
58
+ aws-sigv4 (~> 1.0)
59
+ aws-sdk-cloudfront (1.1.0)
60
+ aws-sdk-core (~> 3)
61
+ aws-sigv4 (~> 1.0)
62
+ aws-sdk-cloudhsm (1.3.0)
63
+ aws-sdk-core (~> 3)
64
+ aws-sigv4 (~> 1.0)
65
+ aws-sdk-cloudhsmv2 (1.1.0)
66
+ aws-sdk-core (~> 3)
67
+ aws-sigv4 (~> 1.0)
68
+ aws-sdk-cloudsearch (1.0.1)
69
+ aws-sdk-core (~> 3)
70
+ aws-sigv4 (~> 1.0)
71
+ aws-sdk-cloudsearchdomain (1.0.1)
72
+ aws-sdk-core (~> 3)
73
+ aws-sigv4 (~> 1.0)
74
+ aws-sdk-cloudtrail (1.0.1)
75
+ aws-sdk-core (~> 3)
76
+ aws-sigv4 (~> 1.0)
77
+ aws-sdk-cloudwatch (1.4.0)
78
+ aws-sdk-core (~> 3)
79
+ aws-sigv4 (~> 1.0)
80
+ aws-sdk-cloudwatchevents (1.2.0)
81
+ aws-sdk-core (~> 3)
82
+ aws-sigv4 (~> 1.0)
83
+ aws-sdk-cloudwatchlogs (1.2.0)
84
+ aws-sdk-core (~> 3)
85
+ aws-sigv4 (~> 1.0)
86
+ aws-sdk-codebuild (1.6.0)
87
+ aws-sdk-core (~> 3)
88
+ aws-sigv4 (~> 1.0)
89
+ aws-sdk-codecommit (1.3.0)
90
+ aws-sdk-core (~> 3)
91
+ aws-sigv4 (~> 1.0)
92
+ aws-sdk-codedeploy (1.3.0)
93
+ aws-sdk-core (~> 3)
94
+ aws-sigv4 (~> 1.0)
95
+ aws-sdk-codepipeline (1.1.0)
96
+ aws-sdk-core (~> 3)
97
+ aws-sigv4 (~> 1.0)
98
+ aws-sdk-codestar (1.1.0)
99
+ aws-sdk-core (~> 3)
100
+ aws-sigv4 (~> 1.0)
101
+ aws-sdk-cognitoidentity (1.0.1)
102
+ aws-sdk-core (~> 3)
103
+ aws-sigv4 (~> 1.0)
104
+ aws-sdk-cognitoidentityprovider (1.3.0)
105
+ aws-sdk-core (~> 3)
106
+ aws-sigv4 (~> 1.0)
107
+ aws-sdk-cognitosync (1.0.1)
108
+ aws-sdk-core (~> 3)
109
+ aws-sigv4 (~> 1.0)
110
+ aws-sdk-comprehend (1.0.0)
111
+ aws-sdk-core (~> 3)
112
+ aws-sigv4 (~> 1.0)
113
+ aws-sdk-configservice (1.6.0)
114
+ aws-sdk-core (~> 3)
115
+ aws-sigv4 (~> 1.0)
116
+ aws-sdk-core (3.17.0)
117
+ aws-partitions (~> 1.0)
118
+ aws-sigv4 (~> 1.0)
119
+ jmespath (~> 1.0)
120
+ aws-sdk-costandusagereportservice (1.0.1)
121
+ aws-sdk-core (~> 3)
122
+ aws-sigv4 (~> 1.0)
123
+ aws-sdk-costexplorer (1.1.0)
124
+ aws-sdk-core (~> 3)
125
+ aws-sigv4 (~> 1.0)
126
+ aws-sdk-databasemigrationservice (1.4.0)
127
+ aws-sdk-core (~> 3)
128
+ aws-sigv4 (~> 1.0)
129
+ aws-sdk-datapipeline (1.0.1)
130
+ aws-sdk-core (~> 3)
131
+ aws-sigv4 (~> 1.0)
132
+ aws-sdk-dax (1.0.1)
133
+ aws-sdk-core (~> 3)
134
+ aws-sigv4 (~> 1.0)
135
+ aws-sdk-devicefarm (1.3.0)
136
+ aws-sdk-core (~> 3)
137
+ aws-sigv4 (~> 1.0)
138
+ aws-sdk-directconnect (1.1.0)
139
+ aws-sdk-core (~> 3)
140
+ aws-sigv4 (~> 1.0)
141
+ aws-sdk-directoryservice (1.1.0)
142
+ aws-sdk-core (~> 3)
143
+ aws-sigv4 (~> 1.0)
144
+ aws-sdk-dynamodb (1.4.0)
145
+ aws-sdk-core (~> 3)
146
+ aws-sigv4 (~> 1.0)
147
+ aws-sdk-dynamodbstreams (1.0.1)
148
+ aws-sdk-core (~> 3)
149
+ aws-sigv4 (~> 1.0)
150
+ aws-sdk-ec2 (1.29.0)
151
+ aws-sdk-core (~> 3)
152
+ aws-sigv4 (~> 1.0)
153
+ aws-sdk-ecr (1.3.0)
154
+ aws-sdk-core (~> 3)
155
+ aws-sigv4 (~> 1.0)
156
+ aws-sdk-ecs (1.8.0)
157
+ aws-sdk-core (~> 3)
158
+ aws-sigv4 (~> 1.0)
159
+ aws-sdk-efs (1.0.1)
160
+ aws-sdk-core (~> 3)
161
+ aws-sigv4 (~> 1.0)
162
+ aws-sdk-elasticache (1.3.0)
163
+ aws-sdk-core (~> 3)
164
+ aws-sigv4 (~> 1.0)
165
+ aws-sdk-elasticbeanstalk (1.3.0)
166
+ aws-sdk-core (~> 3)
167
+ aws-sigv4 (~> 1.0)
168
+ aws-sdk-elasticloadbalancing (1.2.0)
169
+ aws-sdk-core (~> 3)
170
+ aws-sigv4 (~> 1.0)
171
+ aws-sdk-elasticloadbalancingv2 (1.8.0)
172
+ aws-sdk-core (~> 3)
173
+ aws-sigv4 (~> 1.0)
174
+ aws-sdk-elasticsearchservice (1.3.0)
175
+ aws-sdk-core (~> 3)
176
+ aws-sigv4 (~> 1.0)
177
+ aws-sdk-elastictranscoder (1.0.1)
178
+ aws-sdk-core (~> 3)
179
+ aws-sigv4 (~> 1.0)
180
+ aws-sdk-emr (1.1.0)
181
+ aws-sdk-core (~> 3)
182
+ aws-sigv4 (~> 1.0)
183
+ aws-sdk-firehose (1.1.0)
184
+ aws-sdk-core (~> 3)
185
+ aws-sigv4 (~> 1.0)
186
+ aws-sdk-gamelift (1.3.0)
187
+ aws-sdk-core (~> 3)
188
+ aws-sigv4 (~> 1.0)
189
+ aws-sdk-glacier (1.6.0)
190
+ aws-sdk-core (~> 3)
191
+ aws-sigv4 (~> 1.0)
192
+ aws-sdk-glue (1.5.0)
193
+ aws-sdk-core (~> 3)
194
+ aws-sigv4 (~> 1.0)
195
+ aws-sdk-greengrass (1.2.0)
196
+ aws-sdk-core (~> 3)
197
+ aws-sigv4 (~> 1.0)
198
+ aws-sdk-guardduty (1.2.0)
199
+ aws-sdk-core (~> 3)
200
+ aws-sigv4 (~> 1.0)
201
+ aws-sdk-health (1.0.1)
202
+ aws-sdk-core (~> 3)
203
+ aws-sigv4 (~> 1.0)
204
+ aws-sdk-iam (1.3.0)
205
+ aws-sdk-core (~> 3)
206
+ aws-sigv4 (~> 1.0)
207
+ aws-sdk-importexport (1.0.1)
208
+ aws-sdk-core (~> 3)
209
+ aws-sigv2 (~> 1.0)
210
+ aws-sdk-inspector (1.3.0)
211
+ aws-sdk-core (~> 3)
212
+ aws-sigv4 (~> 1.0)
213
+ aws-sdk-iot (1.3.0)
214
+ aws-sdk-core (~> 3)
215
+ aws-sigv4 (~> 1.0)
216
+ aws-sdk-iotdataplane (1.0.1)
217
+ aws-sdk-core (~> 3)
218
+ aws-sigv4 (~> 1.0)
219
+ aws-sdk-iotjobsdataplane (1.0.0)
220
+ aws-sdk-core (~> 3)
221
+ aws-sigv4 (~> 1.0)
222
+ aws-sdk-kinesis (1.2.0)
223
+ aws-sdk-core (~> 3)
224
+ aws-sigv4 (~> 1.0)
225
+ aws-sdk-kinesisanalytics (1.2.0)
226
+ aws-sdk-core (~> 3)
227
+ aws-sigv4 (~> 1.0)
228
+ aws-sdk-kinesisvideo (1.0.0)
229
+ aws-sdk-core (~> 3)
230
+ aws-sigv4 (~> 1.0)
231
+ aws-sdk-kinesisvideoarchivedmedia (1.0.0)
232
+ aws-sdk-core (~> 3)
233
+ aws-sigv4 (~> 1.0)
234
+ aws-sdk-kinesisvideomedia (1.0.0)
235
+ aws-sdk-core (~> 3)
236
+ aws-sigv4 (~> 1.0)
237
+ aws-sdk-kms (1.5.0)
238
+ aws-sdk-core (~> 3)
239
+ aws-sigv4 (~> 1.0)
240
+ aws-sdk-lambda (1.4.0)
241
+ aws-sdk-core (~> 3)
242
+ aws-sigv4 (~> 1.0)
243
+ aws-sdk-lambdapreview (1.0.1)
244
+ aws-sdk-core (~> 3)
245
+ aws-sigv4 (~> 1.0)
246
+ aws-sdk-lex (1.3.0)
247
+ aws-sdk-core (~> 3)
248
+ aws-sigv4 (~> 1.0)
249
+ aws-sdk-lexmodelbuildingservice (1.5.0)
250
+ aws-sdk-core (~> 3)
251
+ aws-sigv4 (~> 1.0)
252
+ aws-sdk-lightsail (1.3.0)
253
+ aws-sdk-core (~> 3)
254
+ aws-sigv4 (~> 1.0)
255
+ aws-sdk-machinelearning (1.0.1)
256
+ aws-sdk-core (~> 3)
257
+ aws-sigv4 (~> 1.0)
258
+ aws-sdk-marketplacecommerceanalytics (1.0.1)
259
+ aws-sdk-core (~> 3)
260
+ aws-sigv4 (~> 1.0)
261
+ aws-sdk-marketplaceentitlementservice (1.0.1)
262
+ aws-sdk-core (~> 3)
263
+ aws-sigv4 (~> 1.0)
264
+ aws-sdk-marketplacemetering (1.0.1)
265
+ aws-sdk-core (~> 3)
266
+ aws-sigv4 (~> 1.0)
267
+ aws-sdk-mediaconvert (1.1.0)
268
+ aws-sdk-core (~> 3)
269
+ aws-sigv4 (~> 1.0)
270
+ aws-sdk-medialive (1.2.0)
271
+ aws-sdk-core (~> 3)
272
+ aws-sigv4 (~> 1.0)
273
+ aws-sdk-mediapackage (1.0.0)
274
+ aws-sdk-core (~> 3)
275
+ aws-sigv4 (~> 1.0)
276
+ aws-sdk-mediastore (1.1.0)
277
+ aws-sdk-core (~> 3)
278
+ aws-sigv4 (~> 1.0)
279
+ aws-sdk-mediastoredata (1.1.0)
280
+ aws-sdk-core (~> 3)
281
+ aws-sigv4 (~> 1.0)
282
+ aws-sdk-migrationhub (1.0.1)
283
+ aws-sdk-core (~> 3)
284
+ aws-sigv4 (~> 1.0)
285
+ aws-sdk-mobile (1.0.0)
286
+ aws-sdk-core (~> 3)
287
+ aws-sigv4 (~> 1.0)
288
+ aws-sdk-mq (1.0.0)
289
+ aws-sdk-core (~> 3)
290
+ aws-sigv4 (~> 1.0)
291
+ aws-sdk-mturk (1.2.0)
292
+ aws-sdk-core (~> 3)
293
+ aws-sigv4 (~> 1.0)
294
+ aws-sdk-opsworks (1.2.0)
295
+ aws-sdk-core (~> 3)
296
+ aws-sigv4 (~> 1.0)
297
+ aws-sdk-opsworkscm (1.2.0)
298
+ aws-sdk-core (~> 3)
299
+ aws-sigv4 (~> 1.0)
300
+ aws-sdk-organizations (1.7.0)
301
+ aws-sdk-core (~> 3)
302
+ aws-sigv4 (~> 1.0)
303
+ aws-sdk-pinpoint (1.2.0)
304
+ aws-sdk-core (~> 3)
305
+ aws-sigv4 (~> 1.0)
306
+ aws-sdk-polly (1.4.0)
307
+ aws-sdk-core (~> 3)
308
+ aws-sigv4 (~> 1.0)
309
+ aws-sdk-pricing (1.0.0)
310
+ aws-sdk-core (~> 3)
311
+ aws-sigv4 (~> 1.0)
312
+ aws-sdk-rds (1.13.0)
313
+ aws-sdk-core (~> 3)
314
+ aws-sigv4 (~> 1.0)
315
+ aws-sdk-redshift (1.1.0)
316
+ aws-sdk-core (~> 3)
317
+ aws-sigv4 (~> 1.0)
318
+ aws-sdk-rekognition (1.2.0)
319
+ aws-sdk-core (~> 3)
320
+ aws-sigv4 (~> 1.0)
321
+ aws-sdk-resourcegroups (1.0.0)
322
+ aws-sdk-core (~> 3)
323
+ aws-sigv4 (~> 1.0)
324
+ aws-sdk-resourcegroupstaggingapi (1.0.1)
325
+ aws-sdk-core (~> 3)
326
+ aws-sigv4 (~> 1.0)
327
+ aws-sdk-resources (3.12.0)
328
+ aws-sdk-acm (~> 1)
329
+ aws-sdk-alexaforbusiness (~> 1)
330
+ aws-sdk-apigateway (~> 1)
331
+ aws-sdk-applicationautoscaling (~> 1)
332
+ aws-sdk-applicationdiscoveryservice (~> 1)
333
+ aws-sdk-appstream (~> 1)
334
+ aws-sdk-appsync (~> 1)
335
+ aws-sdk-athena (~> 1)
336
+ aws-sdk-autoscaling (~> 1)
337
+ aws-sdk-autoscalingplans (~> 1)
338
+ aws-sdk-batch (~> 1)
339
+ aws-sdk-budgets (~> 1)
340
+ aws-sdk-cloud9 (~> 1)
341
+ aws-sdk-clouddirectory (~> 1)
342
+ aws-sdk-cloudformation (~> 1)
343
+ aws-sdk-cloudfront (~> 1)
344
+ aws-sdk-cloudhsm (~> 1)
345
+ aws-sdk-cloudhsmv2 (~> 1)
346
+ aws-sdk-cloudsearch (~> 1)
347
+ aws-sdk-cloudsearchdomain (~> 1)
348
+ aws-sdk-cloudtrail (~> 1)
349
+ aws-sdk-cloudwatch (~> 1)
350
+ aws-sdk-cloudwatchevents (~> 1)
351
+ aws-sdk-cloudwatchlogs (~> 1)
352
+ aws-sdk-codebuild (~> 1)
353
+ aws-sdk-codecommit (~> 1)
354
+ aws-sdk-codedeploy (~> 1)
355
+ aws-sdk-codepipeline (~> 1)
356
+ aws-sdk-codestar (~> 1)
357
+ aws-sdk-cognitoidentity (~> 1)
358
+ aws-sdk-cognitoidentityprovider (~> 1)
359
+ aws-sdk-cognitosync (~> 1)
360
+ aws-sdk-comprehend (~> 1)
361
+ aws-sdk-configservice (~> 1)
362
+ aws-sdk-costandusagereportservice (~> 1)
363
+ aws-sdk-costexplorer (~> 1)
364
+ aws-sdk-databasemigrationservice (~> 1)
365
+ aws-sdk-datapipeline (~> 1)
366
+ aws-sdk-dax (~> 1)
367
+ aws-sdk-devicefarm (~> 1)
368
+ aws-sdk-directconnect (~> 1)
369
+ aws-sdk-directoryservice (~> 1)
370
+ aws-sdk-dynamodb (~> 1)
371
+ aws-sdk-dynamodbstreams (~> 1)
372
+ aws-sdk-ec2 (~> 1)
373
+ aws-sdk-ecr (~> 1)
374
+ aws-sdk-ecs (~> 1)
375
+ aws-sdk-efs (~> 1)
376
+ aws-sdk-elasticache (~> 1)
377
+ aws-sdk-elasticbeanstalk (~> 1)
378
+ aws-sdk-elasticloadbalancing (~> 1)
379
+ aws-sdk-elasticloadbalancingv2 (~> 1)
380
+ aws-sdk-elasticsearchservice (~> 1)
381
+ aws-sdk-elastictranscoder (~> 1)
382
+ aws-sdk-emr (~> 1)
383
+ aws-sdk-firehose (~> 1)
384
+ aws-sdk-gamelift (~> 1)
385
+ aws-sdk-glacier (~> 1)
386
+ aws-sdk-glue (~> 1)
387
+ aws-sdk-greengrass (~> 1)
388
+ aws-sdk-guardduty (~> 1)
389
+ aws-sdk-health (~> 1)
390
+ aws-sdk-iam (~> 1)
391
+ aws-sdk-importexport (~> 1)
392
+ aws-sdk-inspector (~> 1)
393
+ aws-sdk-iot (~> 1)
394
+ aws-sdk-iotdataplane (~> 1)
395
+ aws-sdk-iotjobsdataplane (~> 1)
396
+ aws-sdk-kinesis (~> 1)
397
+ aws-sdk-kinesisanalytics (~> 1)
398
+ aws-sdk-kinesisvideo (~> 1)
399
+ aws-sdk-kinesisvideoarchivedmedia (~> 1)
400
+ aws-sdk-kinesisvideomedia (~> 1)
401
+ aws-sdk-kms (~> 1)
402
+ aws-sdk-lambda (~> 1)
403
+ aws-sdk-lambdapreview (~> 1)
404
+ aws-sdk-lex (~> 1)
405
+ aws-sdk-lexmodelbuildingservice (~> 1)
406
+ aws-sdk-lightsail (~> 1)
407
+ aws-sdk-machinelearning (~> 1)
408
+ aws-sdk-marketplacecommerceanalytics (~> 1)
409
+ aws-sdk-marketplaceentitlementservice (~> 1)
410
+ aws-sdk-marketplacemetering (~> 1)
411
+ aws-sdk-mediaconvert (~> 1)
412
+ aws-sdk-medialive (~> 1)
413
+ aws-sdk-mediapackage (~> 1)
414
+ aws-sdk-mediastore (~> 1)
415
+ aws-sdk-mediastoredata (~> 1)
416
+ aws-sdk-migrationhub (~> 1)
417
+ aws-sdk-mobile (~> 1)
418
+ aws-sdk-mq (~> 1)
419
+ aws-sdk-mturk (~> 1)
420
+ aws-sdk-opsworks (~> 1)
421
+ aws-sdk-opsworkscm (~> 1)
422
+ aws-sdk-organizations (~> 1)
423
+ aws-sdk-pinpoint (~> 1)
424
+ aws-sdk-polly (~> 1)
425
+ aws-sdk-pricing (~> 1)
426
+ aws-sdk-rds (~> 1)
427
+ aws-sdk-redshift (~> 1)
428
+ aws-sdk-rekognition (~> 1)
429
+ aws-sdk-resourcegroups (~> 1)
430
+ aws-sdk-resourcegroupstaggingapi (~> 1)
431
+ aws-sdk-route53 (~> 1)
432
+ aws-sdk-route53domains (~> 1)
433
+ aws-sdk-s3 (~> 1)
434
+ aws-sdk-sagemaker (~> 1)
435
+ aws-sdk-sagemakerruntime (~> 1)
436
+ aws-sdk-serverlessapplicationrepository (~> 1)
437
+ aws-sdk-servicecatalog (~> 1)
438
+ aws-sdk-servicediscovery (~> 1)
439
+ aws-sdk-ses (~> 1)
440
+ aws-sdk-shield (~> 1)
441
+ aws-sdk-simpledb (~> 1)
442
+ aws-sdk-sms (~> 1)
443
+ aws-sdk-snowball (~> 1)
444
+ aws-sdk-sns (~> 1)
445
+ aws-sdk-sqs (~> 1)
446
+ aws-sdk-ssm (~> 1)
447
+ aws-sdk-states (~> 1)
448
+ aws-sdk-storagegateway (~> 1)
449
+ aws-sdk-support (~> 1)
450
+ aws-sdk-swf (~> 1)
451
+ aws-sdk-transcribeservice (~> 1)
452
+ aws-sdk-translate (~> 1)
453
+ aws-sdk-waf (~> 1)
454
+ aws-sdk-wafregional (~> 1)
455
+ aws-sdk-workdocs (~> 1)
456
+ aws-sdk-workmail (~> 1)
457
+ aws-sdk-workspaces (~> 1)
458
+ aws-sdk-xray (~> 1)
459
+ aws-sdk-route53 (1.9.0)
460
+ aws-sdk-core (~> 3)
461
+ aws-sigv4 (~> 1.0)
462
+ aws-sdk-route53domains (1.1.0)
463
+ aws-sdk-core (~> 3)
464
+ aws-sigv4 (~> 1.0)
465
+ aws-sdk-s3 (1.8.2)
466
+ aws-sdk-core (~> 3)
467
+ aws-sdk-kms (~> 1)
468
+ aws-sigv4 (~> 1.0)
469
+ aws-sdk-sagemaker (1.5.0)
470
+ aws-sdk-core (~> 3)
471
+ aws-sigv4 (~> 1.0)
472
+ aws-sdk-sagemakerruntime (1.0.0)
473
+ aws-sdk-core (~> 3)
474
+ aws-sigv4 (~> 1.0)
475
+ aws-sdk-serverlessapplicationrepository (1.1.0)
476
+ aws-sdk-core (~> 3)
477
+ aws-sigv4 (~> 1.0)
478
+ aws-sdk-servicecatalog (1.4.0)
479
+ aws-sdk-core (~> 3)
480
+ aws-sigv4 (~> 1.0)
481
+ aws-sdk-servicediscovery (1.1.0)
482
+ aws-sdk-core (~> 3)
483
+ aws-sigv4 (~> 1.0)
484
+ aws-sdk-ses (1.6.0)
485
+ aws-sdk-core (~> 3)
486
+ aws-sigv4 (~> 1.0)
487
+ aws-sdk-shield (1.1.0)
488
+ aws-sdk-core (~> 3)
489
+ aws-sigv4 (~> 1.0)
490
+ aws-sdk-simpledb (1.0.1)
491
+ aws-sdk-core (~> 3)
492
+ aws-sigv2 (~> 1.0)
493
+ aws-sdk-sms (1.0.1)
494
+ aws-sdk-core (~> 3)
495
+ aws-sigv4 (~> 1.0)
496
+ aws-sdk-snowball (1.2.0)
497
+ aws-sdk-core (~> 3)
498
+ aws-sigv4 (~> 1.0)
499
+ aws-sdk-sns (1.1.0)
500
+ aws-sdk-core (~> 3)
501
+ aws-sigv4 (~> 1.0)
502
+ aws-sdk-sqs (1.3.0)
503
+ aws-sdk-core (~> 3)
504
+ aws-sigv4 (~> 1.0)
505
+ aws-sdk-ssm (1.8.0)
506
+ aws-sdk-core (~> 3)
507
+ aws-sigv4 (~> 1.0)
508
+ aws-sdk-states (1.2.0)
509
+ aws-sdk-core (~> 3)
510
+ aws-sigv4 (~> 1.0)
511
+ aws-sdk-storagegateway (1.3.0)
512
+ aws-sdk-core (~> 3)
513
+ aws-sigv4 (~> 1.0)
514
+ aws-sdk-support (1.0.1)
515
+ aws-sdk-core (~> 3)
516
+ aws-sigv4 (~> 1.0)
517
+ aws-sdk-swf (1.0.1)
518
+ aws-sdk-core (~> 3)
519
+ aws-sigv4 (~> 1.0)
520
+ aws-sdk-transcribeservice (1.0.0)
521
+ aws-sdk-core (~> 3)
522
+ aws-sigv4 (~> 1.0)
523
+ aws-sdk-translate (1.0.0)
524
+ aws-sdk-core (~> 3)
525
+ aws-sigv4 (~> 1.0)
526
+ aws-sdk-waf (1.4.0)
527
+ aws-sdk-core (~> 3)
528
+ aws-sigv4 (~> 1.0)
529
+ aws-sdk-wafregional (1.4.0)
530
+ aws-sdk-core (~> 3)
531
+ aws-sigv4 (~> 1.0)
532
+ aws-sdk-workdocs (1.1.0)
533
+ aws-sdk-core (~> 3)
534
+ aws-sigv4 (~> 1.0)
535
+ aws-sdk-workmail (1.0.0)
536
+ aws-sdk-core (~> 3)
537
+ aws-sigv4 (~> 1.0)
538
+ aws-sdk-workspaces (1.1.0)
539
+ aws-sdk-core (~> 3)
540
+ aws-sigv4 (~> 1.0)
541
+ aws-sdk-xray (1.1.0)
542
+ aws-sdk-core (~> 3)
543
+ aws-sigv4 (~> 1.0)
544
+ aws-sigv2 (1.0.1)
545
+ aws-sigv4 (1.0.2)
546
+ clamp (1.2.1)
547
+ diff-lcs (1.3)
548
+ jmespath (1.3.1)
549
+ rake (10.5.0)
550
+ rspec (3.7.0)
551
+ rspec-core (~> 3.7.0)
552
+ rspec-expectations (~> 3.7.0)
553
+ rspec-mocks (~> 3.7.0)
554
+ rspec-core (3.7.1)
555
+ rspec-support (~> 3.7.0)
556
+ rspec-expectations (3.7.0)
557
+ diff-lcs (>= 1.2.0, < 2.0)
558
+ rspec-support (~> 3.7.0)
559
+ rspec-mocks (3.7.0)
560
+ diff-lcs (>= 1.2.0, < 2.0)
561
+ rspec-support (~> 3.7.0)
562
+ rspec-support (3.7.1)
563
+
564
+ PLATFORMS
565
+ ruby
566
+
567
+ DEPENDENCIES
568
+ aws-role!
569
+ bundler (~> 1.16)
570
+ rake (~> 10.0)
571
+ rspec (~> 3.0)
572
+
573
+ BUNDLED WITH
574
+ 1.16.1
data/README.md ADDED
@@ -0,0 +1,73 @@
1
+ # Aws::Role
2
+
3
+ CLI to allow easy aws role assumption.
4
+
5
+ ## Why assuming roles with the AWS CLI sucks.
6
+
7
+ Assuming roles in AWS via the CLI is clunky with the default tooling. You need to do something like this:
8
+
9
+ ```
10
+ # Assume the role. Man that's a long string to have to paste on the CLI!
11
+ aws sts assume-role --role-arn arn:aws:iam::123456789012:role/xaccounts3access --role-session-name s3-access-example
12
+
13
+ # Now copy the secret key, access key, and token from the output and paste it:
14
+ export AWS_ACCESS_KEY_ID=...
15
+ export AWS_SECRET_KEY=...
16
+ export AWS_SESSION_TOKEN=...
17
+
18
+ # Okay, NOW you can do stuff using the role....
19
+ ```
20
+
21
+ ## How to make it better.
22
+
23
+ Before doing this, you need to have the following environment variables exported:
24
+
25
+ * `AWS_ACCESS_KEY_ID`
26
+ * `AWS_SECRET_ACCESS_KEY`
27
+ * `AWS_MFA_SERIAL` -- you only need this if you require MFA for role assumption (which hopefully, you do).
28
+ * `AWS_DEFAULT_REGION`
29
+
30
+ I suggest putting these into a `~/.secrets` file so you don't type this stuff out all the time.
31
+
32
+ Once this is done, you can do the following:
33
+
34
+ 1. Create a ~/.aws_roles file. It's yaml, and it looks like this:
35
+
36
+ ```yaml
37
+ my_role: arn:aws:iam::123456789012:role/xaccounts3access
38
+ my_other_role: arn:aws:iam::2109876312412:otherrole/admin
39
+ ```
40
+
41
+ 2. Assume the role:
42
+ ```bash
43
+ # You'll get prompted for your MFA token if necessary:
44
+ eval `aws-role -r my_role`
45
+
46
+ # Now do the things!
47
+ aws s3 ls # etc
48
+ ```
49
+
50
+ 3. Oh you want to login to the UI or print out a link? No problem!
51
+ ```bash
52
+ # Uses "open" under the hood, only works on OSX:
53
+ aws-role -r my_role --ui
54
+
55
+ # Just print out the url instead of opening it:
56
+ aws-role -r my_role --url
57
+ ```
58
+
59
+ ## Installation
60
+
61
+ ```bash
62
+ gem install aws-role
63
+ ```
64
+
65
+ ## Development
66
+
67
+ After checking out the repo, run `bin/setup` to install dependencies. Then, run `rake spec` to run the tests. You can also run `bin/console` for an interactive prompt that will allow you to experiment.
68
+
69
+ To install this gem onto your local machine, run `bundle exec rake install`. To release a new version, update the version number in `version.rb`, and then run `bundle exec rake release`, which will create a git tag for the version, push git commits and tags, and push the `.gem` file to [rubygems.org](https://rubygems.org).
70
+
71
+ ## Contributing
72
+
73
+ Bug reports and pull requests are welcome on GitHub at https://github.com/sheax0r/aws-role.
data/Rakefile ADDED
@@ -0,0 +1,6 @@
1
+ require "bundler/gem_tasks"
2
+ require "rspec/core/rake_task"
3
+
4
+ RSpec::Core::RakeTask.new(:spec)
5
+
6
+ task :default => :spec
data/aws-role.gemspec ADDED
@@ -0,0 +1,29 @@
1
+
2
+ lib = File.expand_path("../lib", __FILE__)
3
+ $LOAD_PATH.unshift(lib) unless $LOAD_PATH.include?(lib)
4
+ require "aws/role/version"
5
+
6
+ Gem::Specification.new do |spec|
7
+ spec.name = "aws-role"
8
+ spec.version = AwsRole::VERSION
9
+ spec.authors = ["Michael Shea"]
10
+ spec.email = ["michael.shea@heroku.com"]
11
+
12
+ spec.summary = %q{CLI to assume AWS roles}
13
+ spec.description = %q{CLI to assume AWS roles}
14
+ spec.homepage = "https://github.com/sheax0r/aws-role"
15
+
16
+ spec.files = `git ls-files -z`.split("\x0").reject do |f|
17
+ f.match(%r{^(test|spec|features)/})
18
+ end
19
+ spec.bindir = "bin"
20
+ spec.executables = spec.files.grep(%r{^bin/}) { |f| File.basename(f) }
21
+ spec.require_paths = ["lib"]
22
+
23
+ spec.add_dependency "clamp", "~> 1.2.1"
24
+ spec.add_dependency "aws-sdk", "~> 3.0.1"
25
+
26
+ spec.add_development_dependency "bundler", "~> 1.16"
27
+ spec.add_development_dependency "rake", "~> 10.0"
28
+ spec.add_development_dependency "rspec", "~> 3.0"
29
+ end
data/bin/aws-role ADDED
@@ -0,0 +1,5 @@
1
+ #!/usr/bin/env ruby
2
+ require "aws/role"
3
+
4
+ AwsRole::Assume.run
5
+
data/lib/aws/role.rb ADDED
@@ -0,0 +1,5 @@
1
+ require "aws/role/version"
2
+ require "aws/role/assume"
3
+
4
+ module AwsRole
5
+ end
data/lib/aws/role/assume.rb ADDED
@@ -0,0 +1,95 @@
1
+ require "aws-sdk"
2
+ require "clamp"
3
+ require "yaml"
4
+
5
+ module AwsRole
6
+ class Assume < Clamp::Command
7
+
8
+ option %w{--access-key}, "AWS_ACCESS_KEY_ID", "aws access key id", required: true, environment_variable: "AWS_ACCESS_KEY_ID", attribute_name: :aws_access_key_id
9
+ option %w{--secret-key}, "AWS_SECRET_ACCESS_KEY", "aws secret key", required: true, environment_variable: "AWS_SECRET_ACCESS_KEY", attribute_name: :aws_secret_access_key
10
+ option %w{--region}, "REGION", "aws region", required: true, environment_variable: "AWS_DEFAULT_REGION", attribute_name: :aws_region
11
+ option %w{-r --role}, "ROLE", "the role to assume", required: true, attribute_name: :role
12
+ option %w{-d --duration}, "DURATION", "duration of the assumed credentials in seconds", default: 3600
13
+ option %w{-s --serial}, "AWS_MFA_SERIAL", "MFA serial number", required: false, environment_variable: "AWS_MFA_SERIAL", attribute_name: :mfa_serial
14
+ option %w{-f --file}, "ROLES_FILE", "Yaml file containing the list of roles", environment_variable: "AWS_ROLES_FILE", attribute_name: :roles_file, default: "#{ENV["HOME"]}/.aws_roles"
15
+ option "--ui", :flag, "Set this if you want to switch roles in the UI"
16
+ option "--url", :flag, "Set this if you want to print out the URL to be used to assume a role"
17
+
18
+ parameter "PARAMETERS ...", "command to execute", required: false, attribute_name: :params
19
+
20
+ def execute
21
+ if ui? || url?
22
+ match = role_arn.match(role_expression)
23
+ account = match["account"]
24
+ role_name = match["role_name"]
25
+ url = "https://signin.aws.amazon.com/switchrole?account=#{account}&roleName=#{role_name}&displayName=#{role}"
26
+
27
+ puts url if url?
28
+ system("open '#{url}'") if ui?
29
+ else
30
+ creds = credentials
31
+ if params.size > 0
32
+ ENV['AWS_ACCESS_KEY_ID'] = creds.access_key_id
33
+ ENV['AWS_SECRET_ACCESS_KEY'] = creds.secret_access_key
34
+ ENV['AWS_SESSION_TOKEN'] = creds.session_token
35
+ exec(params.join(" "))
36
+ else
37
+ %w{AWS_ACCESS_KEY_ID AWS_SECRET_ACCESS_KEY AWS_SESSION_TOKEN}.each do |key|
38
+ STDOUT.puts "unset #{key};"
39
+ end
40
+ STDOUT.puts "export AWS_ACCESS_KEY_ID=#{creds.access_key_id};"
41
+ STDOUT.puts "export AWS_SECRET_ACCESS_KEY=#{creds.secret_access_key};"
42
+ STDOUT.puts "export AWS_SESSION_TOKEN=$'#{creds.session_token}';"
43
+ end
44
+ end
45
+ end
46
+
47
+ private
48
+
49
+ def sts
50
+ @sts ||= ::Aws::STS::Client.new(aws_params)
51
+ end
52
+
53
+ def credentials
54
+ sts.assume_role(assume_role_params).credentials
55
+ end
56
+
57
+ def assume_role_params
58
+ result = {
59
+ role_arn: role_arn,
60
+ role_session_name: "srtools-cli",
61
+ duration_seconds: Integer(duration)
62
+ }
63
+ if mfa_serial
64
+ result [:serial_number] = mfa_serial
65
+ result[:token_code] = mfa_token
66
+ end
67
+ result
68
+ end
69
+
70
+ def aws_params
71
+ {
72
+ region: aws_region,
73
+ access_key_id: aws_access_key_id,
74
+ secret_access_key: aws_secret_access_key,
75
+ }
76
+ end
77
+
78
+ def mfa_token
79
+ STDERR.puts "Enter your MFA code: "
80
+ STDIN.gets.strip
81
+ end
82
+
83
+ def role_arn
84
+ roles[role]
85
+ end
86
+
87
+ def roles
88
+ @roles ||= YAML.load(File.read(roles_file))
89
+ end
90
+
91
+ def role_expression
92
+ /arn:aws:iam::(?<account>\d.*):role\/(?<role_name>.*)/
93
+ end
94
+ end
95
+ end
data/lib/aws/role/version.rb ADDED
@@ -0,0 +1,3 @@
1
+ module AwsRole
2
+ VERSION = "0.1.0"
3
+ end
metadata ADDED
@@ -0,0 +1,138 @@
1
+ --- !ruby/object:Gem::Specification
2
+ name: aws-role
3
+ version: !ruby/object:Gem::Version
4
+ version: 0.1.0
5
+ prerelease:
6
+ platform: ruby
7
+ authors:
8
+ - Michael Shea
9
+ autorequire:
10
+ bindir: bin
11
+ cert_chain: []
12
+ date: 2018-03-06 00:00:00.000000000 Z
13
+ dependencies:
14
+ - !ruby/object:Gem::Dependency
15
+ name: clamp
16
+ requirement: !ruby/object:Gem::Requirement
17
+ none: false
18
+ requirements:
19
+ - - ~>
20
+ - !ruby/object:Gem::Version
21
+ version: 1.2.1
22
+ type: :runtime
23
+ prerelease: false
24
+ version_requirements: !ruby/object:Gem::Requirement
25
+ none: false
26
+ requirements:
27
+ - - ~>
28
+ - !ruby/object:Gem::Version
29
+ version: 1.2.1
30
+ - !ruby/object:Gem::Dependency
31
+ name: aws-sdk
32
+ requirement: !ruby/object:Gem::Requirement
33
+ none: false
34
+ requirements:
35
+ - - ~>
36
+ - !ruby/object:Gem::Version
37
+ version: 3.0.1
38
+ type: :runtime
39
+ prerelease: false
40
+ version_requirements: !ruby/object:Gem::Requirement
41
+ none: false
42
+ requirements:
43
+ - - ~>
44
+ - !ruby/object:Gem::Version
45
+ version: 3.0.1
46
+ - !ruby/object:Gem::Dependency
47
+ name: bundler
48
+ requirement: !ruby/object:Gem::Requirement
49
+ none: false
50
+ requirements:
51
+ - - ~>
52
+ - !ruby/object:Gem::Version
53
+ version: '1.16'
54
+ type: :development
55
+ prerelease: false
56
+ version_requirements: !ruby/object:Gem::Requirement
57
+ none: false
58
+ requirements:
59
+ - - ~>
60
+ - !ruby/object:Gem::Version
61
+ version: '1.16'
62
+ - !ruby/object:Gem::Dependency
63
+ name: rake
64
+ requirement: !ruby/object:Gem::Requirement
65
+ none: false
66
+ requirements:
67
+ - - ~>
68
+ - !ruby/object:Gem::Version
69
+ version: '10.0'
70
+ type: :development
71
+ prerelease: false
72
+ version_requirements: !ruby/object:Gem::Requirement
73
+ none: false
74
+ requirements:
75
+ - - ~>
76
+ - !ruby/object:Gem::Version
77
+ version: '10.0'
78
+ - !ruby/object:Gem::Dependency
79
+ name: rspec
80
+ requirement: !ruby/object:Gem::Requirement
81
+ none: false
82
+ requirements:
83
+ - - ~>
84
+ - !ruby/object:Gem::Version
85
+ version: '3.0'
86
+ type: :development
87
+ prerelease: false
88
+ version_requirements: !ruby/object:Gem::Requirement
89
+ none: false
90
+ requirements:
91
+ - - ~>
92
+ - !ruby/object:Gem::Version
93
+ version: '3.0'
94
+ description: CLI to assume AWS roles
95
+ email:
96
+ - michael.shea@heroku.com
97
+ executables:
98
+ - aws-role
99
+ extensions: []
100
+ extra_rdoc_files: []
101
+ files:
102
+ - .gitignore
103
+ - .rspec
104
+ - .travis.yml
105
+ - Gemfile
106
+ - Gemfile.lock
107
+ - README.md
108
+ - Rakefile
109
+ - aws-role.gemspec
110
+ - bin/aws-role
111
+ - lib/aws/role.rb
112
+ - lib/aws/role/assume.rb
113
+ - lib/aws/role/version.rb
114
+ homepage: https://github.com/sheax0r/aws-role
115
+ licenses: []
116
+ post_install_message:
117
+ rdoc_options: []
118
+ require_paths:
119
+ - lib
120
+ required_ruby_version: !ruby/object:Gem::Requirement
121
+ none: false
122
+ requirements:
123
+ - - ! '>='
124
+ - !ruby/object:Gem::Version
125
+ version: '0'
126
+ required_rubygems_version: !ruby/object:Gem::Requirement
127
+ none: false
128
+ requirements:
129
+ - - ! '>='
130
+ - !ruby/object:Gem::Version
131
+ version: '0'
132
+ requirements: []
133
+ rubyforge_project:
134
+ rubygems_version: 1.8.23
135
+ signing_key:
136
+ specification_version: 3
137
+ summary: CLI to assume AWS roles
138
+ test_files: []