Assuming role configured in AWS profile does not work outside of aws
partition (China, US Gov Cloud, etc.)
#861
Labels
aws
partition (China, US Gov Cloud, etc.)
#861
Mountpoint for Amazon S3 version
mount-s3 1.6.0
AWS Region
cn-northwest-1
Describe the running environment
When I use the command AWS_DEFAULT_REGION=cn-northwest-1 AWS_PROFILE=bwmtest2 mount-s3 --region cn-northwest-1 --debug --log-directory . / testtmppp /mnt/ mount-s3 will fail when mounted
But the fact that I was able to get the IAM role correctly
Mountpoint options
What happened?
Note that this problem only occurs when I need to ASSUME, if I use ak/sk directly I don't have this problem!
This is my credentials file.
I think this is a bug in China, the resources in China are segregated from global, when I refer to a source_profile mount-s3 in credentials it sends the request to global's sts endpoint instead of China's endpoint, thus causing the authentication to fail.
The steps to reproduce this are very simple in the China region, through the source_profile assume role can appear this
I saw through a packet grab that the request from sts was sent to sts.amazonaws.com instead of the China endpoint I uploaded the attachment.
sts.zip
Relevant log output
The text was updated successfully, but these errors were encountered: