aliyun
diff --git a/‎CHANGELOG.md‎
Lines changed: 14 additions & 0 deletions b/‎CHANGELOG.md‎
Lines changed: 14 additions & 0 deletions
diff --git a/‎config/configure.go‎
Lines changed: 19 additions & 1 deletion b/‎config/configure.go‎
Lines changed: 19 additions & 1 deletion
diff --git a/‎config/configure_list.go‎
Lines changed: 2 additions & 0 deletions b/‎config/configure_list.go‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎config/configure_set.go‎
Lines changed: 5 additions & 0 deletions b/‎config/configure_set.go‎
Lines changed: 5 additions & 0 deletions
diff --git a/‎config/configure_set_test.go‎
Lines changed: 10 additions & 0 deletions b/‎config/configure_set_test.go‎
Lines changed: 10 additions & 0 deletions
diff --git a/‎config/flags.go‎
Lines changed: 2 additions & 2 deletions b/‎config/flags.go‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎config/flags_test.go‎
Lines changed: 2 additions & 2 deletions b/‎config/flags_test.go‎
Lines changed: 2 additions & 2 deletions
@@ -2,6 +2,20 @@
 
 ### Master
 
+- add: credential type `RamRoleArnWithRoleName`
+  >This type is to add RamRoleArn credentials based on EcsRamRole, and does not store information such as ak locally. When the ecs role has the AssumeRole permission, it can be used to exchange permissions for another role.
+```shell
+$ aliyun configure --mode RamRoleArnWithRoleName --profile ecsarn
+Configuring profile 'ecsarn' in 'RamRoleArnWithRoleName' authenticate mode...
+Ecs Ram Role []: <YourEcsRamRole>
+Ram Role Arn []: <YourRamRoleArn>
+Role Session Name []: <YourRoleSessionName>
+Expired Seconds [900]: 
+Default Region Id []: cn-hangzhou
+Default Output Format [json]: json (Only support json)
+Default Language [zh|en] en:
+Saving profile[ecsarn] ...Done
+```
 - add: flag `--expired-seconds` to specify expiration time
 - update: Help information for the configure command
 
 
@@ -38,7 +38,7 @@ func NewConfigureCommand() *cli.Command {
 		Short: i18n.T(
 			"configure credential and settings",
 			"配置身份认证和其他信息"),
-		Usage: "configure --mode {AK|StsToken|RamRoleArn|EcsRamRole|RsaKeyPair} --profile <profileName>",
+		Usage: "configure --mode {AK|StsToken|RamRoleArn|EcsRamRole|RsaKeyPair|RamRoleArnWithRoleName} --profile <profileName>",
 		Run: func(ctx *cli.Context, args []string) error {
 			if len(args) > 0 {
 				return cli.NewInvalidCommandError(args[0], ctx)
@@ -101,6 +101,9 @@ func doConfigure(ctx *cli.Context, profileName string, mode string) error {
 		case EcsRamRole:
 			cp.Mode = EcsRamRole
 			configureEcsRamRole(w, &cp)
+		case RamRoleArnWithEcs:
+			cp.Mode = RamRoleArnWithEcs
+			configureRamRoleArnWithEcs(w, &cp)
 		case RsaKeyPair:
 			cp.Mode = RsaKeyPair
 			configureRsaKeyPair(w, &cp)
@@ -186,6 +189,21 @@ func configureEcsRamRole(w io.Writer, cp *Profile) error {
 	return nil
 }
 
+func configureRamRoleArnWithEcs(w io.Writer, cp *Profile) error {
+	cli.Printf(w, "Ecs Ram Role [%s]: ", cp.RamRoleName)
+	cp.RamRoleName = ReadInput(cp.RamRoleName)
+	cli.Printf(w, "Ram Role Arn [%s]: ", cp.RamRoleArn)
+	cp.RamRoleArn = ReadInput(cp.RamRoleArn)
+	cli.Printf(w, "Role Session Name [%s]: ", cp.RoleSessionName)
+	cp.RoleSessionName = ReadInput(cp.RoleSessionName)
+	if cp.ExpiredSeconds == 0 {
+		cp.ExpiredSeconds = 900
+	}
+	cli.Printf(w, "Expired Seconds [%v]: ", cp.ExpiredSeconds)
+	cp.ExpiredSeconds, _ = strconv.Atoi(ReadInput(strconv.Itoa(cp.ExpiredSeconds)))
+	return nil
+}
+
 func configureRsaKeyPair(w io.Writer, cp *Profile) error {
 	cli.Printf(w, "Rsa Private Key File: ")
 	keyFile := ReadInput("")
 
@@ -63,6 +63,8 @@ func doConfigureList(w io.Writer) {
 			cred = "RamRoleArn:" + "***" + GetLastChars(pf.AccessKeyId, 3)
 		case EcsRamRole:
 			cred = "EcsRamRole:" + pf.RamRoleName
+		case RamRoleArnWithEcs:
+			cred = "arn:" + "***" + GetLastChars(pf.AccessKeyId, 3)
 		case RsaKeyPair:
 			cred = "RsaKeyPair:" + pf.KeyPairName
 		}
 
@@ -103,6 +103,11 @@ func doConfigureSet(w io.Writer, flags *cli.FlagSet) {
 		profile.ExpiredSeconds = ExpiredSecondsFlag(flags).GetIntegerOrDefault(profile.ExpiredSeconds)
 	case EcsRamRole:
 		profile.RamRoleName = RamRoleNameFlag(flags).GetStringOrDefault(profile.RamRoleName)
+	case RamRoleArnWithEcs:
+		profile.RamRoleName = RamRoleNameFlag(flags).GetStringOrDefault(profile.RamRoleName)
+		profile.RamRoleArn = RamRoleArnFlag(flags).GetStringOrDefault(profile.RamRoleArn)
+		profile.RoleSessionName = RoleSessionNameFlag(flags).GetStringOrDefault(profile.RoleSessionName)
+		profile.ExpiredSeconds = ExpiredSecondsFlag(flags).GetIntegerOrDefault(profile.ExpiredSeconds)
 	case RsaKeyPair:
 		profile.PrivateKey = PrivateKeyFlag(flags).GetStringOrDefault(profile.PrivateKey)
 		profile.KeyPairName = KeyPairNameFlag(flags).GetStringOrDefault(profile.KeyPairName)
 
@@ -99,6 +99,16 @@ func TestDoConfigureSet(t *testing.T) {
 	doConfigureSet(w, fs)
 	assert.Empty(t, w.String())
 
+	//RamRoleArnWithEcs
+	hookLoadConfiguration = func(fn func(path string, w io.Writer) (Configuration, error)) func(path string, w io.Writer) (Configuration, error) {
+		return func(path string, w io.Writer) (Configuration, error) {
+			return Configuration{CurrentProfile: "default", Profiles: []Profile{Profile{Name: "default", Mode: RamRoleArnWithEcs, RamRoleName: "RamRoleName", RoleSessionName: "RoleSessionName", RamRoleArn: "RamRoleArn", AccessKeyId: "default_aliyun_access_key_id", AccessKeySecret: "default_aliyun_access_key_secret", OutputFormat: "json", RegionId: "cn-hangzhou"}, Profile{Name: "aaa", Mode: AK, AccessKeyId: "sdf", AccessKeySecret: "ddf", OutputFormat: "json"}}}, nil
+		}
+	}
+	w.Reset()
+	doConfigureSet(w, fs)
+	assert.Empty(t, w.String())
+	
 	//RsaKeyPair
 	hookLoadConfiguration = func(fn func(path string, w io.Writer) (Configuration, error)) func(path string, w io.Writer) (Configuration, error) {
 		return func(path string, w io.Writer) (Configuration, error) {
 
@@ -149,8 +149,8 @@ func NewModeFlag() *cli.Flag {
 		Category: "config",
 		Name:     ModeFlagName, DefaultValue: "AK", Persistent: true,
 		Short: i18n.T(
-			"use `--mode {AK|StsToken|RamRoleArn|EcsRamRole|RsaKeyPair}` to assign authenticate mode",
-			"使用 `--mode {AK|StsToken|RamRoleArn|EcsRamRole|RsaKeyPair}` 指定认证方式")}
+			"use `--mode {AK|StsToken|RamRoleArn|EcsRamRole|RsaKeyPair|RamRoleArnWithRoleName}` to assign authenticate mode",
+			"使用 `--mode {AK|StsToken|RamRoleArn|EcsRamRole|RsaKeyPair|RamRoleArnWithRoleName}` 指定认证方式")}
 }
 
 func NewAccessKeyIdFlag() *cli.Flag {
 
@@ -48,8 +48,8 @@ func TestAddFlag(t *testing.T) {
 			DefaultValue: "AK",
 			Persistent:   true,
 			Short: i18n.T(
-				"use `--mode {AK|StsToken|RamRoleArn|EcsRamRole|RsaKeyPair}` to assign authenticate mode",
-				"使用 `--mode {AK|StsToken|RamRoleArn|EcsRamRole|RsaKeyPair}` 指定认证方式"),
+				"use `--mode {AK|StsToken|RamRoleArn|EcsRamRole|RsaKeyPair|RamRoleArnWithRoleName}` to assign authenticate mode",
+				"使用 `--mode {AK|StsToken|RamRoleArn|EcsRamRole|RsaKeyPair|RamRoleArnWithRoleName}` 指定认证方式"),
 			Long:         nil,
 			Required:     false,
 			Aliases:      nil,
Original file line number	Diff line number	Diff line change
`@@ -63,6 +63,8 @@ func doConfigureList(w io.Writer) {`
`63`	`63`	`cred = "RamRoleArn:" + "***" + GetLastChars(pf.AccessKeyId, 3)`
`64`	`64`	`case EcsRamRole:`
`65`	`65`	`cred = "EcsRamRole:" + pf.RamRoleName`
	`66`	`+ case RamRoleArnWithEcs:`
	`67`	`+ cred = "arn:" + "***" + GetLastChars(pf.AccessKeyId, 3)`
`66`	`68`	`case RsaKeyPair:`
`67`	`69`	`cred = "RsaKeyPair:" + pf.KeyPairName`
`68`	`70`	`}`