Add aws_caller_facts module and use it in setup-iam.yml (#36683)

* Add aws_caller_facts module and use it in setup-iam.yml This removes the dependency on having the command line AWS tools installed.
2026-05-07 22:02:50 +00:00 · 2018-02-28 19:30:34 +13:00
parent db43fe6a76
commit 645952c139
4 changed files with 103 additions and 4 deletions
--- a/hacking/aws_config/setup-iam.yml
+++ b/hacking/aws_config/setup-iam.yml
@@ -25,13 +25,12 @@
      when: iam_group is not defined

    - name: Get aws account ID
-      command: aws sts get-caller-identity --output text --query 'Account' "{{ '--profile=' ~ profile if profile else '' }}"
-      changed_when: False
-      register: aws_account_command
+      aws_caller_facts:
+      register: aws_caller_facts

    - name: Set aws_account_fact
      set_fact:
-        aws_account: "{{ aws_account_command.stdout }}"
+        aws_account: "{{ aws_caller_facts.account }}"


    - name: Ensure Managed IAM policies exist