参考

元ファイル

terraform {
  required_providers {
    aws = {
      source  = "hashicorp/aws"
      version = "~> 5.9.0"
    }
  }
}

provider "aws" {
  region = "ap-northeast-1"
}

data "aws_caller_identity" "current" {}

現在のTerraformの実行権限確認

$ echo "data.aws_caller_identity.current" | terraform console
{
  "account_id" = "<AccountID>"
  "arn" = "arn:aws:iam::<AccountID>:user/<User>"
  "id" = "<AccountID>:"
  "user_id" = "<User>"
}

not75743

AssumeRole設定追加

terraform {
  required_providers {
    aws = {
      source  = "hashicorp/aws"
      version = "~> 5.9.0"
    }
  }
}

provider "aws" {
  region = "ap-northeast-1"
+  assume_role {
+   role_arn     = "<Switch先RoleArn>"
+  }
}

data "aws_caller_identity" "current" {}

not75743

確認

echo "data.aws_caller_identity.current" | terraform consoleを実行し、スイッチ先のアカウント情報が出力されればOK

Terraformドキュメント

not75743

自身のアカウント情報を知るData Source: aws_caller_identity

not75743

このスクラップは2023/07/28にクローズされました