Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bug]: Assume Role Region is not valid for GovCloud Regions #4244

Closed
collin-miller opened this issue Jun 11, 2024 · 2 comments · Fixed by #4254
Closed

[Bug]: Assume Role Region is not valid for GovCloud Regions #4244

collin-miller opened this issue Jun 11, 2024 · 2 comments · Fixed by #4254
Assignees
@jfagoagas
Labels
bug provider/aws Issues/PRs related with the AWS provider severity/high Bug capable of collapsing large parts of the execution.

Comments

@collin-miller
Copy link

Steps to Reproduce

  1. prowler aws --region us-gov-east-1 --role arn:aws-us-gov:iam:::role/ --log-level DEBUG
  2. aws
  3. kubernetes
  4. An error occurred (InvalidClientTokenId) when calling the AssumeRole operation: The security token included in the request is invalid

Expected behavior

Assume role works properly with an applicable govcloud region. This is occurring because the AWS region being set does not use the region being set as a CLI argument.

Actual Result with Screenshots or Logs

{"timestamp": "2024-06-11 20:04:10,218", "filename": "aws_provider.py:872", "level": "CRITICAL", "module": "aws_provider", "message": "ClientError[855] -- An error occurred (InvalidClientTokenId) when calling the AssumeRole operation: The security token included in the request is invalid"}

How did you install Prowler?

From pip package (pip install prowler)

Environment Resource

EKS

OS used

Linux

Prowler version

Prowler 4.2.4

Pip version

pip 23.0.1

Context

No response
@collin-miller collin-miller added bug status/needs-triage Issue pending triage labels Jun 11, 2024
@jfagoagas
Copy link
Member

Hi @collin-miller I'm actively checking this issue. I'll get back to you soon.

Thanks for using Prowler 🚀

@jfagoagas jfagoagas added severity/high Bug capable of collapsing large parts of the execution. and removed status/needs-triage Issue pending triage labels Jun 17, 2024
@jfagoagas jfagoagas self-assigned this Jun 17, 2024
@jfagoagas jfagoagas added the provider/aws Issues/PRs related with the AWS provider label Jun 17, 2024
@jfagoagas jfagoagas mentioned this issue Jun 17, 2024
Merged
@jfagoagas
Copy link
Member

Hi @collin-miller could you please test it again with the above PR? You can clone the branch PRWLR-3913-bug-assume-role-region-is-not-valid-for-gov-cloud-regions-4244 and let us know if this works for you.

Thanks!

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jfagoagas jfagoagas

Labels
bug provider/aws Issues/PRs related with the AWS provider severity/high Bug capable of collapsing large parts of the execution.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix(aws): Assume role for Gov Cloud prowler-cloud/prowler
2 participants
@jfagoagas @collin-miller