diff options
| -rw-r--r-- | lib/ansible/plugins/lookup/credstash.py | 10 |
1 files changed, 9 insertions, 1 deletions
diff --git a/lib/ansible/plugins/lookup/credstash.py b/lib/ansible/plugins/lookup/credstash.py index 66c8d9950f..8bd2879b8f 100644 --- a/lib/ansible/plugins/lookup/credstash.py +++ b/lib/ansible/plugins/lookup/credstash.py @@ -17,6 +17,8 @@ from __future__ import (absolute_import, division, print_function) __metaclass__ = type +import os + from ansible.errors import AnsibleError from ansible.plugins.lookup import LookupBase @@ -41,8 +43,14 @@ class LookupModule(LookupBase): version = kwargs.pop('version', '') region = kwargs.pop('region', None) table = kwargs.pop('table', 'credential-store') + profile_name = kwargs.pop('profile_name', os.getenv('AWS_PROFILE', None)) + aws_access_key_id = kwargs.pop('aws_access_key_id', os.getenv('AWS_ACCESS_KEY_ID', None)) + aws_secret_access_key = kwargs.pop('aws_secret_access_key', os.getenv('AWS_SECRET_ACCESS_KEY', None)) + aws_session_token = kwargs.pop('aws_session_token', os.getenv('AWS_SESSION_TOKEN', None)) + kwargs_pass = {'profile_name': profile_name, 'aws_access_key_id': aws_access_key_id, + 'aws_secret_access_key': aws_secret_access_key, 'aws_session_token': aws_session_token} val = credstash.getSecret(term, version, region, table, - context=kwargs) + context=kwargs, **kwargs_pass) except credstash.ItemNotFound: raise AnsibleError('Key {0} not found'.format(term)) except Exception as e: |