markymarkus · February 9, 2021 10:58
diff --git a/gistfile1.txt b/gistfile1.txt
 #!/bin/sh

 echo "Assuming role based on CI job name $CI_JOB_NAME"

 case "$CI_JOB_NAME" in
  *"prod")
        AWS_DEPLOYMENT_ROLE=$AWS_DEPLOYMENT_ROLE_PROD
        AWS_EXTERNALID=$AWS_EXTERNALID_PROD
        ;;
  *"test")
        AWS_DEPLOYMENT_ROLE=$AWS_DEPLOYMENT_ROLE_TEST
        AWS_EXTERNALID=$AWS_EXTERNALID_TEST
        ;;
  *"dev")
        AWS_DEPLOYMENT_ROLE=$AWS_DEPLOYMENT_ROLE_DEV
        AWS_EXTERNALID=$AWS_EXTERNALID_DEV
        ;;
 esac

 echo "Assumed role $AWS_DEPLOYMENT_ROLE"

 KST="$(aws sts assume-role --role-arn "${AWS_DEPLOYMENT_ROLE}" --role-session-name "deployment-${CI_PROJECT_NAME}" --external-id "${AWS_EXTERNALID}")"

 export AWS_ACCESS_KEY_ID=$(echo $KST | jq -r .Credentials.AccessKeyId)
 export AWS_SECRET_ACCESS_KEY=$(echo $KST | jq -r .Credentials.SecretAccessKey)
 export AWS_SESSION_TOKEN=$(echo $KST | jq -r .Credentials.SessionToken)
 export AWS_DEFAULT_REGION=eu-west-1
	#!/bin/sh

	echo "Assuming role based on CI job name $CI_JOB_NAME"

	case "$CI_JOB_NAME" in
	*"prod")
	AWS_DEPLOYMENT_ROLE=$AWS_DEPLOYMENT_ROLE_PROD
	AWS_EXTERNALID=$AWS_EXTERNALID_PROD
	;;
	*"test")
	AWS_DEPLOYMENT_ROLE=$AWS_DEPLOYMENT_ROLE_TEST
	AWS_EXTERNALID=$AWS_EXTERNALID_TEST
	;;
	*"dev")
	AWS_DEPLOYMENT_ROLE=$AWS_DEPLOYMENT_ROLE_DEV
	AWS_EXTERNALID=$AWS_EXTERNALID_DEV
	;;
	esac

	echo "Assumed role $AWS_DEPLOYMENT_ROLE"

	KST="$(aws sts assume-role --role-arn "${AWS_DEPLOYMENT_ROLE}" --role-session-name "deployment-${CI_PROJECT_NAME}" --external-id "${AWS_EXTERNALID}")"

	export AWS_ACCESS_KEY_ID=$(echo $KST \| jq -r .Credentials.AccessKeyId)
	export AWS_SECRET_ACCESS_KEY=$(echo $KST \| jq -r .Credentials.SecretAccessKey)
	export AWS_SESSION_TOKEN=$(echo $KST \| jq -r .Credentials.SessionToken)
	export AWS_DEFAULT_REGION=eu-west-1