added a script to assume the correct role in staging in order to use the example data in the parameter store

detnon · detnon · commit 67ac19a49eaf · 2020-03-31T08:47:41.000+01:00
diff --git a/concourse/bin/sts-assume-role.sh b/concourse/bin/sts-assume-role.sh
@@ -0,0 +1,17 @@
+#!/bin/bash
+
+set -e
+
+unset AWS_SESSION_TOKEN
+
+role_arn="$1"
+region="$2"
+temp_role=$(aws sts assume-role \
+                    --role-arn "${role_arn}" \
+                    --role-session-name "concourse-task" \
+                    --duration 1800)
+
+export AWS_ACCESS_KEY_ID=$(echo $temp_role | jq .Credentials.AccessKeyId | xargs)
+export AWS_SECRET_ACCESS_KEY=$(echo $temp_role | jq .Credentials.SecretAccessKey | xargs)
+export AWS_SESSION_TOKEN=$(echo $temp_role | jq .Credentials.SessionToken | xargs)
+export AWS_DEFAULT_REGION=${region:-eu-west-2}
diff --git a/concourse/pipeline.yml b/concourse/pipeline.yml
@@ -34,4 +34,7 @@ jobs:
                 pip install -r requirements-pipeline.txt
                 pre-commit install -c .gds/.pre-commit-config.yaml
                 git config --global core.hookspath ../global_install/hooks
+                source ../concourse/bin/sts-assume-role.sh /
+                'arn:aws:iam::103495720024:role/gds_pre_commit_tests_role)' /
+                'eu-west-2'
                 make run
