Skip to content
This repository was archived by the owner on May 15, 2025. It is now read-only.

README.md

Latest commit

 

History

History
36 lines (26 loc) · 962 Bytes

README.md

File metadata and controls

36 lines (26 loc) · 962 Bytes

Description

I would like do use the hashicorp vault to get temporary AWS Credencial and using it to access the EKS service.

The problem is, the STS AWS credentials no valid for more than 12 hours, so, this script will automate the process.

Auth methods supported:

  • github

How to use

  1. Download the binary from github page or on OsX:
brew install luizm/tap/eks-login
  1. In the correct context into kubeconfig file, edit the command block and use eks-login instead of aws cli or aws-iam-authenticator

Example:

- name: cluster-name
  user:
    exec:
      apiVersion: client.authentication.k8s.io/v1alpha1
      command: eks-login
      args:
      - -cluster-name
      - <CLUSTER_NAME>
      - -vault-addr
      - <https://VAULT_ENDPOINT>
      - -vault-path
      - <PATH_TO_GET_THE_CREDENDIALS>