Formatting the MI arn so we can appropriately check the ARN against o…

…ur API.
Cox-Automotive · Jun 9, 2020 · 5e76f2f · 5e76f2f
1 parent 5587d3e
commit 5e76f2f
Showing 1 changed file with 9 additions and 2 deletions.
diff --git a/config.go b/config.go
@@ -14,7 +14,7 @@ import (
 	"github.com/aws/aws-sdk-go/aws/defaults"
 	"github.com/aws/aws-sdk-go/aws/ec2metadata"
 
-	alks "github.com/Cox-Automotive/alks-go"
+	"github.com/Cox-Automotive/alks-go"
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/aws/aws-sdk-go/aws/credentials"
 	"github.com/aws/aws-sdk-go/aws/credentials/ec2rolecreds"
@@ -187,9 +187,16 @@ func isValidIAM(arn *string, client *alks.Client) bool {
 	}
 
 	// Check if MI...
-	_, err := client.SearchRoleMachineIdentity(*arn)
+	arnParts := strings.FieldsFunc(*arn, splitBy)
+	iamArn := fmt.Sprintf("arn:aws:iam::%s:role/acct-managed/%s", arnParts[3], arnParts[5])
+
+	_, err := client.SearchRoleMachineIdentity(iamArn)
 	if err != nil {
 		return false
 	}
 	return true
 }
+
+func splitBy(r rune) bool {
+	return r == ':' || r == '/'
+}