Use AWS credentials Provider chain

Create issue
Issue #5 resolved
Jonathan Nuñez Aguin created an issue


The AWS SDK provides a builder for the ECR client using a credentials chain which looks for credentials in this order:

  • Environment Variables - AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY (RECOMMENDED since they are recognized by all the AWS SDKs and CLI except for .NET), or AWS_ACCESS_KEY and AWS_SECRET_KEY (only recognized by Java SDK)
  • Java System Properties - aws.accessKeyId and aws.secretKey
  • Credential profiles file at the default location (~/.aws/credentials) shared by all AWS SDKs and the AWS CLI
  • Credentials delivered through the Amazon EC2 container service if AWS_CONTAINER_CREDENTIALS_RELATIVE_URI" environment variable is set and security manager has permission to access the variable, Instance profile credentials delivered through the Amazon EC2 metadata service

It would be a nice enhancement if the plugin uses this chain if the task does not contain the AWS keys set. Happy to contribute if it helps to get this merged.


Comments (4)

  1. Log in to comment