Allow assuming an AWS role in AWS MSK IAM flow #64
Labels
enhancement
New feature or request
Comments
|
Yup, this shouldn't be too bad. I can take a look in a few days unless someone else wants to help and do it before then. |
|
Ok, I have a draft of a fix in #67. Can you give it a try and let me know whether it works for you? Unfortunately, I don't have access to an MSK cluster at the moment to test it on. Thanks. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
I'm integrating your tool into my AWS Kafka infrastructure, and so far it looks like a great fit, but I've stumbled upon a (seemingly) missing feature that I think could be useful.
We have a bunch of Kafka clusters in different regions, so instead of creating separate local AWS profiles for them we use a unified profile with explicit
--assume-rolefor each of the regions/accounts. I can't make it work withtopicctlthough: AWS_ROLE_ARN is not documented in the AWS Go SDK and doesn't seem to do anything. The only way I could find was generating a bunch of profiles for each of the roles, which quickly gets out of hands.There appears to be a way to assume a role programmatically in the SDK, so I'm wondering if you could offer an extra configuration option for
mechanism: AWS-MSK-IAM, such asassume-role? It'd help a lot.The text was updated successfully, but these errors were encountered: