Skip to content

Instantly share code, notes, and snippets.

@gene1wood
Created December 29, 2016 17:38
Show Gist options
  • Save gene1wood/938ff578fbe57cf894a105b4107702de to your computer and use it in GitHub Desktop.
Save gene1wood/938ff578fbe57cf894a105b4107702de to your computer and use it in GitHub Desktop.
Simple python function to assume an AWS IAM Role from a role ARN and return a boto3 session object
import boto3
def role_arn_to_session(**args):
"""
Usage :
session = role_arn_to_session(
RoleArn='arn:aws:iam::012345678901:role/example-role',
RoleSessionName='ExampleSessionName')
client = session.client('sqs')
"""
client = boto3.client('sts')
response = client.assume_role(**args)
return boto3.Session(
aws_access_key_id=response['Credentials']['AccessKeyId'],
aws_secret_access_key=response['Credentials']['SecretAccessKey'],
aws_session_token=response['Credentials']['SessionToken'])
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment