Use AWS credentials Provider chain
Issue #5
resolved
Hello,
The AWS SDK provides a builder for the ECR client using a credentials chain which looks for credentials in this order:
- Environment Variables - AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY (RECOMMENDED since they are recognized by all the AWS SDKs and CLI except for .NET), or AWS_ACCESS_KEY and AWS_SECRET_KEY (only recognized by Java SDK)
- Java System Properties - aws.accessKeyId and aws.secretKey
- Credential profiles file at the default location (~/.aws/credentials) shared by all AWS SDKs and the AWS CLI
- Credentials delivered through the Amazon EC2 container service if AWS_CONTAINER_CREDENTIALS_RELATIVE_URI" environment variable is set and security manager has permission to access the variable, Instance profile credentials delivered through the Amazon EC2 metadata service
It would be a nice enhancement if the plugin uses this chain if the task does not contain the AWS keys set. Happy to contribute if it helps to get this merged.
Thanks!
Comments (4)
-
repo owner
-
repo owner
- changed status to open
-
reporter
PR sent for review! Thanks!
-
repo owner
- changed status to resolved
Released in version 0.3
- Log in to comment
Great idea, pull requests are welcome!