Investigate if we need to have global STS endpoint

**What would you like to be enhanced**:
Investigate if we need to have a global fallback sts endpoint as per this comment 
https://github.com/aws/amazon-vpc-resource-controller-k8s/blob/dd3564c30c5da8233d3ab5737ce331ee2fe0d10d/pkg/aws/ec2/api/wrapper.go#L536-L539

Also this piece of code where if regional STS !=global STS we still end up using the regional STS endpoint. It should be global STS if regional is not available. 

https://github.com/aws/amazon-vpc-resource-controller-k8s/blob/dd3564c30c5da8233d3ab5737ce331ee2fe0d10d/pkg/aws/ec2/api/wrapper.go#L547-L549

**Why is the change needed and what use case will it solve**:

	// Get the global sts end point
	// TODO: we should revisit the global sts endpoint and check if we should remove global endpoint
	// we are not using it since the concern on availability and performance
	// https://docs.aws.amazon.com/IAM/latest/UserGuide/id_credentials_temp_enable-regions.html

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Investigate if we need to have global STS endpoint #472

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

	if regionalSTSEndpoint.URL != globalSTSEndpoint.URL {
	globalProvider := &stscreds.AssumeRoleProvider{
	Client: e.createSTSClient(userStsSession, client, regionalSTSEndpoint, sourceAcct, sourceArn),

Investigate if we need to have global STS endpoint #472

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions