Difference between revisions of "Dynamic Credentials with the AWS Provider"

• https://developer.hashicorp.com/terraform/cloud-docs/workspaces/dynamic-provider-credentials/aws-configuration

• https://app.terraform.io

Example

variable "tfc_aws_dynamic_credentials" {
 description = "Object containing AWS dynamic credentials configuration"
 type = object({
   default = object({
     shared_config_file = string
   })
   aliases = map(object({
     shared_config_file = string
   }))
 })
}

provider "aws" {
  shared_config_files = [var.tfc_aws_dynamic_credentials.default.shared_config_file]
}

provider "aws" {
  alias = "ALIAS1"
  shared_config_files = [var.tfc_aws_dynamic_credentials.aliases["ALIAS1"].shared_config_file]
}

Related

• aws_iam_access_key
• AWS_SHARED_CREDENTIALS_FILE
• AWS_CONFIG_FILE
• TFC_AWS_PROVIDER_AUTH
• TFC_AWS_RUN_ROLE_ARN
• OIDC Identity Provider
• Creating an IAM OIDC provider for your EKS cluster
• aws iam create-open-id-connect-provider --url
• aws.workload.identity

See also

• Terraform Cloud (TFC), Terraform Cloud Agents (Business version), terraform login, execution modes, terraform_remote_state, Terraform cloud block, Terraform Cloud Workflows, Terraform organization, TF_CLOUD_ORGANIZATION, Dynamic Provider Credentials, Bootstrapping trust between a TFC workspace and AWS