Assume role with web identity

bash

aws sts assume-role-with-web-identity --role-arn arn:aws:iam::123456789012:role/GitHubOIDC --role-session-name ci --web-identity-token file://token.jwt

Explanation

Common in OIDC-based CI/CD integrations.

View in sheet →

Learn the surrounding workflow

Compare similar commands or jump into common fixes when this command is part of a bigger troubleshooting path.

Compare commands View fixes

Related commands

Same sheet · prioritizing STS Identity and Sessions

Get caller identity

Show the current principal, account, and ARN.

Open In sheetbashsame section

Assume a role

Obtain temporary credentials for another role.

Open In sheetbashsame section

Request a session token

Get temporary credentials for an IAM user.

Open In sheetbashsame section

List IAM users

Show IAM users in the account.

Open In sheetbash1 tag match

List managed policies

Show AWS-managed and customer-managed policies.

Open In sheetbash1 tag match

List roles

Show IAM roles in the account.

Open In sheetbash1 tag match