amazon-web-services amazon-ecr assume-role codefresh

Codefresh: How to use assume role in docker registry while adding ecr?

Codefresh takes only 2 params: Access key Secret key

I've got assume role to work on local but it requires aws config file etc

Any ideas how to use assume role to add ecr to docker registry in Codefresh? Or how to get Access key and Secret key from assume role?

Thanks a lot

Solution

Or how to get Access key and Secret key from assume role?

Generally you use STS service for that. The service has assume-role API call. The call:

Returns a set of temporary security credentials that you can use to access AWS resources that you might not normally have access to.

However, the credentials (access key ID, secret access key, and a security token) that you get are temporary. They can last from 15 min to max 12 hours (depending on the role settings).

Upload via presigned request - 403 forbidden for Unicode Filename
Best practices for developing scalable video transcoding server on Amazon Web Services?
Enable compression for AWS SQS Java API or how to tell if it's already on?
Getting no basic auth credential from AWS ECR when pulling image
How to load npm modules in AWS Lambda?
Amazon EFS vs S3: Which is better for appending small chunks of data to large files?
Is there a way to delay DynamoDB stream emissions while nearly parallel data is upserted to a record?
Push docker image to amazon ecs repository
AWS SSM Agent - Using the aws cli, is there a way to list all the AWS instances that are missing the SSM agent?
CloudFormation is not authorized to perform: iam:PassRole on resource
S3 - Access-Control-Allow-Origin Header
How to run AWS codeartifact login and keep default registry
aws s3api restore-object permission error
AWS Amplify Functions allow.resource() not working
Is it possible to enrich a message on an sqs queue
Does EKS Auto Mode use AWS Load Balancer Controller?
kubectl error You must be logged in to the server (Unauthorized) when accessing EKS cluster
AWS Elasticache -- How to flush node from console?
How to parameterize prevent_destroy lifecycle configuration in Terraform?
RDS instance start: which subnet/AZ is selected?
Connection refused error (127.0.0.1:4566) for Localstack S3
Problem with file directory link in amazon s3
Can I use aws-advanced-jdbc-wrapper with MySQL?
Creating Lambda Snapstart with Typescript CDK
How to force SQL Server container to immediately update MDF file in Docker volume?
AWS Cloudwatch agent config file removed after startup
AWS lambda SQS does not allow to process 1 message per 1 invocation
How can I create a TLS/SSL connection to a mongodb instance on AWS with a certificate made by certificate manager? Health check failed
Cloudfront redirect when signed cookies not present
AWS Lambda and DynamoDB - updatetItem is not a function