mirror of
https://github.com/hashicorp/vault.git
synced 2025-08-22 15:11:07 +02:00
6e0c771e57
* aws-secrets/add-cross-acc-mgmt-static-roles * refactor * add function pointer for tests * delete commented out code * update * update comment * update func name * add flag * remove docs
22 lines
649 B
Go
22 lines
649 B
Go
// Copyright (c) HashiCorp, Inc.
|
|
// SPDX-License-Identifier: BUSL-1.1
|
|
|
|
//go:build !enterprise
|
|
|
|
package aws
|
|
|
|
import (
|
|
"context"
|
|
"fmt"
|
|
|
|
"github.com/aws/aws-sdk-go/aws"
|
|
"github.com/hashicorp/vault/sdk/logical"
|
|
)
|
|
|
|
// assumeRoleStatic assumes an AWS role for cross-account static role management.
|
|
// It uses the role ARN and session name provided in the staticRoleEntry configuration
|
|
// to generate credentials for the assumed role.
|
|
func (b *backend) assumeRoleStatic(ctx context.Context, s logical.Storage, entry *staticRoleEntry) (*aws.Config, error) {
|
|
return nil, fmt.Errorf("cross-account static roles are only supported in Vault Enterprise")
|
|
}
|