[v17] Workload Identity: Roles Anywhere tbot service. (#52426) by strideynet · Pull Request #53401 · gravitational/teleport

strideynet · 2025-03-25T16:52:02Z

Backports #52426

changelog: Introduce workload-identity-aws-ra service for generating AWS credentials using Roles Anywhere directly from tbot.

* Add config for WorkloadIdenttiyAWSRAService * Add CLI command * Start hacking on service impl * Write credentials in AWS credentials file format * Fix go.mod/go.sum * Go mod tidy * Add ARN validation * Add specific config for AWS session duration/renewal * Update golden file * Fix gomod/gosum * Refactor CheckAndSetDefaults * Initialize service * Update CLI flags * Refactor & add tests * Use *Context slog calls * Update service name to include full `roles-anywhere` * Add mocked AWS rolesanywhere API based test * Validate region

strideynet added 3 commits March 25, 2025 16:45

Fix go.sum

3ef4d36

go mod tidy

be8ff35

strideynet closed this Mar 25, 2025

strideynet deleted the strideynet/v17/backport-52426 branch March 25, 2025 18:24

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[v17] Workload Identity: Roles Anywhere tbot service. (#52426)#53401

[v17] Workload Identity: Roles Anywhere tbot service. (#52426)#53401
strideynet wants to merge 3 commits intobranch/v17from
strideynet/v17/backport-52426

strideynet commented Mar 25, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant

Conversation

strideynet commented Mar 25, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

1 participant