serverless-better-credentials
Advanced tools
The Serverless Better Credentials plugin replaces the existing AWS credential resolution mechanism in the Serverless Framework with an extended version that:
credential_process mechanism for sourcing credentials from an external process.AWS_SHARED_CREDENTIALS_FILE / AWS_SDK_LOAD_CONFIG).It is designed to be a drop-in replacement; respecting the current credentials resolution order and extensions already provided by the Serverless Framework.
npm install --dev serverless-better-credentials
# or
yarn add --dev serverless-better-credentials
Add the following to your serverless.yml:
plugins:
- serverless-better-credentials # as the first plugin
# - ... other plugins
AWS SSO profiles configured to work with the AWS CLI should "just work" when this plugin is enabled. This includes prompting and attempting to automatically open the SSO authorization page in your default browser when the credentials require refreshing.
Full details about how to configure AWS SSO can be found in the AWS CLI documentation.
Credentials are resolved in the same order the Serverless Framework currently uses. This order is:
--aws-profileAWS_${STAGE}_PROFILEAWS_${STAGE}_XAWS_PROFILEAWS_Xprovider.profile (unless --aws-profile is specified)provider.credentialsAWS_DEFAULT_PROFILE || defaultWhere:
[profile_name] configuration:
credential_process is specifiedsso_start_url, etc. is specifiedIf you have an issue, suggestion, or want to contribute, please open an issue or create a pull request and I'll take a look.
FAQs
Better AWS credentials resolution plugin for serverless
The npm package serverless-better-credentials receives a total of 20,261 weekly downloads. As such, serverless-better-credentials popularity was classified as popular.
We found that serverless-better-credentials demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 0 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Company News
Socket is joining TC54 to help develop standards for software supply chain security, contributing to the evolution of SBOMs, CycloneDX, and Package URL specifications.
Security News
PyPI now allows maintainers to archive projects, improving security and helping users make informed decisions about their dependencies.
Research
Security News
Malicious npm package postcss-optimizer delivers BeaverTail malware, targeting developer systems; similarities to past campaigns suggest a North Korean connection.