Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

It's not the same without you

Join the community to find out what other Atlassian users are discussing, debating and creating.

Atlassian Community Hero Image Collage

How does one pull an ECR image that requires IAM AssumeRole?

Edited

We have images stored in an ECR repository that requires AssumeRole in order to authenticate, i.e.

echo '{ "credsStore": "ecr-login"}' > ~/.docker/config.json
export JQ=$(aws sts assume-role --role-arn ${AWS_ROLE_ARN} --role-session-name bitbucket)
export AWS_ACCESS_KEY_ID="$(echo ${JQ} | jq -r '.Credentials.AccessKeyId')"
export AWS_SECRET_ACCESS_KEY="$(echo ${JQ} | jq -r '.Credentials.SecretAccessKey')"
export AWS_SESSION_TOKEN="$(echo ${JQ} | jq -r '.Credentials.SessionToken')"
docker pull acctnum.dkr.ecr.us-west-2.amazonaws.com/repo:tag

 Our pipelines need to run from inside an image that is already in this repo.

I don't see any documentation in https://confluence.atlassian.com/bitbucket/use-docker-images-as-build-environments-792298897.html on how to assume-role using

 image:
name: acctnum.dkr.ecr.us-west-2.amazonaws.com/repo:tag
aws:
HOW TO ASSUME ROLE HERE?:

 This is blocking us at the moment.

0 answers

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Published in Jira

Admins, notify your Jira instance of system-wide changes with the new admin announcement banner

Hi All! We’re excited to share the launch of an announcement banner that lets Jira site administrators communicate directly to their users across their  Jira Cloud instance.  ...

747 views 17 21
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you