AWS CLI does not propagate session tags through profiles due to lack of TransitiveTagKeys support #8953
Labels
configuration
feature-request
A feature should be added or improved.
p2
This is a standard priority issue
Describe the feature
Adding an option to the
[profile ...]
section of the config file, that allows the use of transitive tags during assume role chains.Use Case
When calling any command in the CLI with the
--profile
option, the CLI automatically runs anassume_role
chain to get credentials for the target profile.To enable the use of ABAC policies via the CLI, one needs to be able to specify what tags need to be carried through the assume role chain.
Proposed Solution
No response
Other Information
No response
Acknowledgements
CLI version used
aws-cli/2.17.24 Python
Environment details (OS name and version, etc.)
3.11.9 Darwin/22.6.0 source/arm64
The text was updated successfully, but these errors were encountered: