Burekasim/assume_role.py

## assume_role.py
# assume role to the new account
import boto3
sts_client = boto3.client('sts')
assume_account_id = '0123456789012'
assume_role_name = 'role_name'
role_session_name = 'check_cost_explorer_script'
assumed_role_object = sts_client.assume_role(
    RoleArn=f'arn:aws:iam::{assume_account_id}:role/{assume_role_name}',
    RoleSessionName=role_session_name
)
# temp credentials for organization account
credentials = assumed_role_object['Credentials']
ce_client = boto3.client('ce', aws_access_key_id=credentials['AccessKeyId'],
                   aws_secret_access_key=credentials['SecretAccessKey'],
                   aws_session_token=credentials['SessionToken'])
	# assume role to the new account
	import boto3
	sts_client = boto3.client('sts')
	assume_account_id = '0123456789012'
	assume_role_name = 'role_name'
	role_session_name = 'check_cost_explorer_script'
	assumed_role_object = sts_client.assume_role(
	RoleArn=f'arn:aws:iam::{assume_account_id}:role/{assume_role_name}',
	RoleSessionName=role_session_name
	)
	# temp credentials for organization account
	credentials = assumed_role_object['Credentials']
	ce_client = boto3.client('ce', aws_access_key_id=credentials['AccessKeyId'],
	aws_secret_access_key=credentials['SecretAccessKey'],
	aws_session_token=credentials['SessionToken'])