Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

AWS Local Proxy #8610

Closed
smallinsky opened this issue Oct 14, 2021 · 3 comments · Fixed by #10025
Closed

AWS Local Proxy #8610

smallinsky opened this issue Oct 14, 2021 · 3 comments · Fixed by #10025
Assignees
@greedy52
Labels
application-access feature-request Used for new features in Teleport, improvements to current should be #enhancements

Comments

@smallinsky
Copy link
Contributor

smallinsky commented Oct 14, 2021
edited by programmerq
Loading

What

Add support for AWS local proxy in order to handler AWS access from third party applications like terraform.

How

the tsh proxy aws command should be introduced allowing to start the AWS proxy manually.

gz#4128
@smallinsky smallinsky added feature-request Used for new features in Teleport, improvements to current should be #enhancements application-access labels Oct 14, 2021
@smallinsky smallinsky self-assigned this Oct 14, 2021
@r0mant r0mant assigned greedy52 and unassigned smallinsky Jan 24, 2022
@greedy52
Copy link
Contributor

greedy52 commented Jan 24, 2022
edited
Loading

AWS profile currently does NOT support endpoint url: aws/aws-cli#4454
AWS environment currently does NOT support endpoint url: aws/aws-cli#4454

so if the client is using AWS SDK (terraform for e.g.), there is currently no generic way to make it work.

if the client is aws cli, maybe best we can do is this alias hack mentioned in the above issue alias aws='aws --endpoint-url http://website'. or use awslocal which is intended for localstack.

for terraform, has to specify extra endpoint block

  endpoints {
    dynamodb = "http://localhost:4569"
    s3       = "http://localhost:4572"
  }

@r0mant
Copy link
Collaborator

r0mant commented Jan 24, 2022

@greedy52 Yes, for terraform users will need to use custom endpoints which is fine. Let's not worry about supporting plain aws client, tsh aws already does basically what you've described.

@greedy52
Copy link
Contributor

greedy52 commented Jan 24, 2022
edited
Loading

@r0mant yeah, we should certainly have this local aws proxy. Just pointing out that since there is no generic way for specifying the endpoint url, client apps will need some extra configurations on their side and it will be different from client by client. I will try out different ones as many as I can.

@greedy52 greedy52 mentioned this issue Jan 28, 2022
Merged
@Tener Tener mentioned this issue Mar 4, 2022
Closed
@greedy52 greedy52 mentioned this issue Mar 30, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@greedy52 greedy52

Labels
application-access feature-request Used for new features in Teleport, improvements to current should be #enhancements
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Implement "tsh proxy aws" gravitational/teleport
3 participants
@r0mant @greedy52 @smallinsky