Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How to manage AWS credentials when running Docker container with Visual Studio 2017

Tags:

docker

amazon-web-services

visual-studio-2017

I have a .NET Core 2.0 console application developed using Visual Studio 2017. The launchSettings.json file sets an environment variable that allows it to use the developer's default AWS credentials

"environmentVariables": {
  "AWS_PROFILE": "default"
  ...
}

I have now added Docker support to the VS solution, and am trying to run the application in a Linux Docker container. Of course it fails with the following exception, as it is unable to find the profile:

Amazon.Runtime.AmazonClientException: Unable to find the 'default' profile in CredentialProfileStoreChain.

What is the best way to pass AWS credentials to the Docker container in a development environment? I obviously don't want to put my credentials as environment variables in launchSettings.json as this file is committed to source control.

EDIT

Just to be clear, I am looking for a solution that allows my Docker container to access the developer's credentials when debugging in Visual Studio 2017 on the developer's machine. Release builds will be deployed to AWS and an IAM role will preclude the need for credentials. The credentials are in the file %USERPROFILE%\.aws\credentials and I'm looking for a solution that will enable me to use them from within the Docker container without exposing them elsewhere: hence I don't want to put them in launchSettings.json or any other file that launches the Docker container.

A solution I envisage could involve mounting the Windows drive in the Docker container (or at least the directory %USERPROFILE%\.aws\) then setting an environment variable (AWS_SHARED_CREDENTIALS_FILE ?) in the Docker container so that AWS automagically finds the credentials file.

I've no idea how to do this though, as I'm very new to Docker.

like image 262
Joe Avatar asked Apr 19 '18 07:04

Joe

1 Answers

The solution I went for was to edit the docker-compose.override.yml file that was added by Visual Studio Tools for Docker, and add the following lines:

version: '3'

services:
  mydockerapp:
    volumes:
      - ${USERPROFILE}/.aws:/root/.aws
    environment:
      - AWS_REGION=(your region)
      - AWS_PROFILE=default

This mounts the .aws directory containing AWS credentials in the appropriate place in the Docker container (/root is the default HOME directory), and sets environment variables to select the profile and region. The launchSettings.json file in the .NET Core project is not used when running in Docker.

like image 94
Joe Avatar answered Oct 26 '22 18:10

Joe
Sign in to Comment

Related questions

AWS Lambda: How to Add Numbers to a NS Set in Dynamodb
Upload .env environment variables to elastic beanstalk
aws cloudformation use Fn::Join in a list
Trigger Lambda Function in AWS when the message is present in SQS Queue
Set or modify an AWS Lambda environment variable with Python boto3
MySQL Server shuts down frequently and won't start again now
Lots of files appearing in my Amazon S3 bucket
Is AWS Lambda considered parallel processing?
How to connect to AWS Elasticsearch using the Elasticsearch JavaScript SDK?
AWS Glue predicate push down condition has no effect
Is AWS Lambda good for real-time API Rest?
AWS API GateWay can't have multiple paths?
Latest Lambda Layer ARN
Why does my AWS Lambda function keep timing out?
persistent storage solutions for aws fargate [closed]
How to upload and deploy zip file to AWS elastic beanstalk via CLI?
How do I connect to an existing CloudSearch domain in boto?
Running AWS Command Line Interface using Jenkins: command not found?
How to get AWS account details using java api? Not for IAM user
AWS IAM Roles and policies in simple English?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!