{"id":16725269,"url":"https://github.com/unfor19/iamlive-docker","last_synced_at":"2025-04-10T10:22:56.913Z","repository":{"id":44785900,"uuid":"438696415","full_name":"unfor19/iamlive-docker","owner":"unfor19","description":"The source code for building iamlive Docker image","archived":false,"fork":false,"pushed_at":"2024-02-16T16:35:06.000Z","size":44,"stargazers_count":9,"open_issues_count":0,"forks_count":5,"subscribers_count":2,"default_branch":"master","last_synced_at":"2025-03-24T09:11:31.158Z","etag":null,"topics":["aws","docker","iamlive","terraform"],"latest_commit_sha":null,"homepage":"https://meirg.co.il","language":"Shell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/unfor19.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2021-12-15T16:23:49.000Z","updated_at":"2023-09-15T21:12:19.000Z","dependencies_parsed_at":"2025-02-17T01:31:59.974Z","dependency_job_id":"dbfeff59-fa76-4443-bb90-967033b8985a","html_url":"https://github.com/unfor19/iamlive-docker","commit_stats":null,"previous_names":[],"tags_count":0,"template":true,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/unfor19%2Fiamlive-docker","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/unfor19%2Fiamlive-docker/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/unfor19%2Fiamlive-docker/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/unfor19%2Fiamlive-docker/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/unfor19","download_url":"https://codeload.github.com/unfor19/iamlive-docker/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248199079,"owners_count":21063641,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["aws","docker","iamlive","terraform"],"created_at":"2024-10-12T22:48:35.867Z","updated_at":"2025-04-10T10:22:56.883Z","avatar_url":"https://github.com/unfor19.png","language":"Shell","readme":"# iamlive-docker\n\n[![Push latest version to DockerHub](https://github.com/unfor19/iamlive-docker/actions/workflows/release.yml/badge.svg)](https://github.com/unfor19/iamlive-docker/actions/workflows/release.yml) [![Dockerhub pulls](https://img.shields.io/docker/pulls/unfor19/iamlive-docker)](https://hub.docker.com/r/unfor19/iamlive-docker)\n\n\nRun [iamlive](https://github.com/iann0036/iamlive) as a Docker container.\n\nTo read more about how iamlive works, see [Determining AWS IAM Policies According To Terraform And AWS CLI\n](https://meirg.co.il/2021/04/23/determining-aws-iam-policies-according-to-terraform-and-aws-cli/)\n\n## Requirements\n\n1. [AWS Account Credentials Configured](https://docs.aws.amazon.com/cli/latest/userguide/cli-chap-configure.html)\n1. [AWS CLI](https://docs.aws.amazon.com/cli/latest/userguide/getting-started-install.html)\n1. [Docker](https://docs.docker.com/get-docker/)\n\n## Getting Started\n\n### Run iamlive\n\n1. Git clone this repo, **or** [curl](https://curl.se/) relevant files\n   ```\n   curl -L --remote-name-all https://raw.githubusercontent.com/unfor19/iamlive-docker/master/{Dockerfile,.dockerignore,Makefile,entrypoint.sh,generate_ca.sh} \u0026\u0026 \\\n   chmod +x entrypoint.sh generate_ca.sh\n   ```\n2. **Terminal #1**: Build the Docker image\n   ```bash\n   make build\n   ```\n3. **Terminal #2**: Run the Docker image for the first time\n    ```bash\n    make run\n    # Runs in the background ...\n    # Average Memory Usage: 88MB\n    ```\n4. **Terminal #1**: Copy CA certificate from the container to host; To keep `ca.pem` valid for future runs, **do not remove** the `iamlive-docker` container.\n    ```bash\n    make copy\n    ```\n\n### Proxy IAM Requests Through iamlive\n\n1. **Terminal #1**: Set AWS credentials\n    ```bash\n    export AWS_PROFILE=MY_AWS_PROFILE\n    ```\n\n    **OR**\n    ```bash\n    export AWS_ACCESS_KEY_ID=MY_AWS_ACCESS_KEY_ID\n    ```\n    ```bash\n    export AWS_SECRET_ACCESS_KEY=MY_AWS_SECRET_ACCESS_KEY\n    ```\n1. **Terminal #1**: Set required environment variables [HTTP_PROXY, HTTPS_PROXY](https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-proxy.html) and [AWS_CA_BUNDLE](https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-envvars.html#envvars-list)\n    ```bash\n    export \\\n        HTTP_PROXY=http://127.0.0.1:80 \\\n        HTTPS_PROXY=http://127.0.0.1:443\n    ```\n    \n    **AND**\n\n    ```bash\n    export AWS_CA_BUNDLE=\"${HOME}/.iamlive/ca.pem\"\n    ```\n1. **Terminal #1**: Test it by making calls to AWS, using the CLI is the easiest way\n   ```bash\n   aws s3 ls\n   ```\n\n   **Terminal #2**: iamlive output after `aws s3 ls`\n   ```json\n    {\n        \"Version\": \"2012-10-17\",\n        \"Statement\": [\n            {\n                \"Effect\": \"Allow\",\n                \"Action\": [\n                    \"s3:ListAllMyBuckets\"\n                ],\n                \"Resource\": \"*\"\n            }\n        ]\n    }   \n   ```\n1. **Terminal #1**: Stop the iamlive container\n   ```bash\n   make stop\n   ```\n1. **Terminal #2**: Start iamlive container again (no need to invoke `make copy`)\n   ```bash\n   make start\n   ```\n1.  **Terminal #1**: Do your thing again ;)\n## Authors\n\nCreated and maintained by [Meir Gabay](https://github.com/unfor19)\n\n## License\n\nThis project is licensed under the [DBAD](https://dbad-license.org/) License - see the [LICENSE](https://github.com/unfor19/iamlive-docker/blob/master/LICENSE) file for details\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Funfor19%2Fiamlive-docker","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Funfor19%2Fiamlive-docker","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Funfor19%2Fiamlive-docker/lists"}