AWS CDKをつかって複数環境にdeployするときは bootstrap時にtrust情報を提供する
<div class="code-block-container"><pre><code>cdk bootstrap \
 --cloudformation-execution-policies arn:aws:iam::aws:policy/AdministratorAccess \
 aws://[account_id]/ap-northeast-1 --trust [base_account_id] --profile [name]
</code></pre></div><div class="code-block-container">
<div class="code-block-filename-container">.aws/credentials</div>
<pre><code>[bastion]
aws_access_key_id = xxxxxxxxxxxxxxxxxxx
aws_secret_access_key = xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

[aws_1]
aws_access_key_id = xxxxxxxxxxxxxxxxxxx
aws_secret_access_key = xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx

[aws_2]
aws_access_key_id = xxxxxxxxxxxxxxxxxxx
aws_secret_access_key = xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
</code></pre>
</div><div class="code-block-container">
<div class="code-block-filename-container">.aws/config</div>
<pre><code>[profile bastion]
region = ap-northeast-1

[profile aws_1]
region = ap-northeast-1

[profile aws_2]
region = ap-northeast-1
</code></pre>
</div>これでCDKのPropsにEnvとして渡せば、一つのCDKから複数環境に適用することができる
<div class="code-block-container"><pre class="language-go"><code class="language-go">&amp;CdkProjectStackProps{
	awscdk.StackProps{
		Env: &amp;awscdk.Environment{
			Account: jsii.String(accountID),
			Region: jsii.String("ap-northeast-1"),
		},
	},
}
</code></pre></div>できたー！SwitchRoleのRole設定とかするときに便利

AWS CDKで複数環境にdeployする

Discussion