Hi Pulumi community, How to login into s3 backend using AWS IAM role? supplying the

pulumi config set aws:assumeRole

configuration doesn't work. related issue - https://github.com/pulumi/pulumi/issues/10316 (closed due to no response)

backends don't (currently) support explicit configuration. They'll just pull credentials from the standard environment variables like AWS_PROFILE.

@echoing-dinner-19531 Thanks for the quick response. is there a workaround that currently people are using?

It should be the same set of envvars that aws cli uses (https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-envvars.html). I guess you've got to inject enough credentials to allow the role assumption, but aws creds are not my expertise I'm afraid. I'd take a look at the aws docs linked above, and maybe link to this thread in #aws

Thanks @echoing-dinner-19531!, I wrote a watcher pod which will inject aws creds into a kubneretes secret and I'm refrerring that secret in the Stack resource. When the kubernetes secret gets updated will Pulumi operator pull the latest secret?

Oh I don't know, might be worth raising an issue at https://github.com/pulumi/pulumi-kubernetes-operator/issues

Okay, Thanks for the help!