I have the following use case:

• I want to run a bash script to execute several cloudmonkey commands.
• These commands should get executed by a specific user.
• I'm passing the APIkey and Secret as parameter to the script.
• These commands will clean up all the resources in this account the user has permission for.
• At the beginning of my script I do set the APIkey and secret which arestored in the .cmk/config file.
• Now the config file has the username and password for my admin account and the APIkey and secret for my regular user account.

Now I see a behavior which will cause issues:

• If I pass now a wrong APIkey and/or Secret to cmk or my script (e.q. typo by mistake) then the username and password (for my admin account) is used automatically.
• In my case I'm in the wrong account and can potentially delete all the resources the admin account has permission and not just the user.