Merge pull request #17 from rrigato/dev

rrigato · web-flow · commit a805ff68e3b1 · 2024-07-21T10:19:05.000-05:00
obtain short term credentials using cloudshell
diff --git a/.github/workflows/burnday_pipeline.yml b/.github/workflows/burnday_pipeline.yml
@@ -3,6 +3,7 @@ on:
   push:
     branches:
       - master
+      - dev
 jobs:
   run-build-test:
     runs-on: ubuntu-latest
diff --git a/scripts/app_deployment.sh b/scripts/app_deployment.sh
@@ -28,6 +28,8 @@ python -m unittest
 
 deactivate
 
+git push origin dev
+
 echo "pushed to remote"
 
 gh pr create --title "$1" \
diff --git a/scripts/burnday_build_test.sh b/scripts/burnday_build_test.sh
@@ -34,7 +34,7 @@ zip $DEPLOYMENT_PACKAGE -r $PROJECT_NAME  \
 zip -u $DEPLOYMENT_PACKAGE -j handlers/${PROJECT_NAME}_skill.py  \
     -x *__pycache__* --quiet
 
-zip -u $DEPLOYMENT_PACKAGE -j externals  \
+zip -u $DEPLOYMENT_PACKAGE -r externals  \
     -x *__pycache__* --quiet
 
 echo "--------deployment package created--------"
diff --git a/scripts/cloudshell_assume_role.sh b/scripts/cloudshell_assume_role.sh
@@ -0,0 +1,9 @@
+#assume sts role and export the credentials to be used from aws cloudshell
+CREDENTIALS=$(
+    aws sts assume-role --role-arn $ROLE_ARN \
+    --role-session-name local_debug_session \
+)
+
+echo -e "export AWS_ACCESS_KEY_ID=$(echo $CREDENTIALS | jq -r '.Credentials.AccessKeyId')\n\
+export AWS_SECRET_ACCESS_KEY=$(echo $CREDENTIALS | jq -r '.Credentials.SecretAccessKey')\n\
+export AWS_SESSION_TOKEN=$(echo $CREDENTIALS | jq -r '.Credentials.SessionToken')"
