I am looking into dev containers in visual studio code and possible features like CLI's, like the AWS CLI: https://github.com/devcontainers/features/tree/main/src/aws-cli.
Is it possible to install this in a manner that it will look for the configuration file that holds the credentials to login to the AWS account on the local file system (not the file system of the container)?
Asking this question due to the fact that I use SSO to login to my AWS account, and the configuration for this is stored on my local file system, and is not something that should be checked in into a remote repository.
Yes, it is possible to configure AWS CLI in a dev container in Visual Studio Code to use credentials stored on your local file system. You can achieve this by mounting the local AWS configuration files into the container. Here are the steps:
Mount the AWS configuration files: In your dev container configuration or Dockerfile, ensure that you mount the directory containing your AWS configuration files into the container. For example:
Ensure that your
.awsdirectory on the local machine contains the necessary configuration files, includingconfigandcredentialswith your SSO settings.Configure AWS CLI to use the local files: Inside your dev container, make sure that the AWS CLI is configured to use the mounted files. You can set the
AWS_SHARED_CREDENTIALS_FILEandAWS_CONFIG_FILEenvironment variables:This ensures that AWS CLI looks for credentials and configuration in the specified paths.
Ensure proper permissions: Make sure that the mounted files have the necessary permissions for the container to read them.
With these configurations, the AWS CLI inside your dev container will use the AWS configuration files from your local machine, allowing you to leverage SSO without storing sensitive information in your remote repository.