AWS Credentials

Published by Felipe Crochik on

Get the role name

wget http://169.254.169.254/latest/meta-data/iam/info

will get something like:

{
   "Code" : "Success",
   "LastUpdated" : "2020-03-06T20:34:08Z",
   "InstanceProfileArn" : "arn:aws:iam::3940394039403:instance-profile/ProfileName",
   "InstanceProfileId" : "kasdjaksjakjsa"
 }

or better yet, get the role name from:

wget http://169.254.169.254/latest/meta-data/iam/security-credentials

It will be the name of the only entry returned.

then get credentials with:

wget http://169.254.169.254/latest/meta-data/iam/security-credentials/ProfileName

will get something like:

 {
   "Code" : "Success",
   "LastUpdated" : "2020-03-06T20:33:39Z",
   "Type" : "AWS-HMAC",
   "AccessKeyId" : "SDFDFSDFSDFSDFS....",
   "SecretAccessKey" : "salkdfsldfklsdkf....",
   "Token" : "sdfksldkfldksfldskflksdfsd...",
   "Expiration" : "2020-03-07T02:37:16Z"
 }

References

Categories: TL;DR
Tags:

Related Posts

TL;DR

Grafana – reset admin password

If you have deployed grafana to your k8s cluster using the helm chart and for some reason can’t login using the password stored in the secret, this is how you reset it. The password is Read more

TL;DR

Multipass – Remote-SSH development environment on your Mac

This is a little experiment to run ubuntu linux on your Mac using multipass to develop SPAs using a vscode Remote-SSH development environment. This is not the quickest way to setup a remote development environment Read more

TL;DR

EKS – IAM roles

Similar to assigning an IAM role to a ec2 instance to grant access to the applications running on it to access AWS services, you can assign an IAM role to each individual k8s service. This Read more