quiet-gold-81036
03/21/2022, 11:00 AMSharedConfigErr: only one credential type may be specified per profile: source profile, credential source, credential process, web identity token, or sso
we have to use credential_process
for the SDK so I tried to create a separate profile for Pulumi:
[pulumi-tst]
region = us-east-1
sso_start_url = <https://d-XXXX.awsapps.com/start>
sso_region = us-east-1
sso_account_id = XXXXAccountId
sso_role_name = XXXRole
but the backend doesn’t seem to respect aws:profile
config form the stack, it only works if I specify it as an env variable AWS_PROFILE
which isn’t very ergonomic for developers to manage separate profiles for the appand Pulumi.
would love any pointers you have mayimportant-appointment-55126
03/21/2022, 6:12 PMlittle-cartoon-10569
03/21/2022, 8:31 PMaws:profile
is for configuring the default AWS provider. Backends are created before Pulumi starts. Different configuration is used.aws:profile
for this.boundless-artist-23351
03/22/2022, 11:01 PMlittle-cartoon-10569
03/22/2022, 11:12 PM