update to use regionalized STS credentials client

sbiscigl · sbiscigl · commit bd9e3be4aaa1 · 2025-07-31T10:57:49.000-04:00
diff --git a/generated/src/aws-cpp-sdk-dynamodb/source/DynamoDBClientConfiguration.cpp b/generated/src/aws-cpp-sdk-dynamodb/source/DynamoDBClientConfiguration.cpp
@@ -45,6 +45,12 @@ void DynamoDBClientConfiguration::LoadDynamoDBSpecificConfig(const Aws::String&
   if(!enableEndpointDiscovery) {
     enableEndpointDiscovery = IsEndpointDiscoveryEnabled(this->endpointOverride, inputProfileName);
   }
+  this->configFactories.retryStrategyCreateFn = []() -> std::shared_ptr<Client::RetryStrategy> {
+    // TODO: renable once default retries are evaluated
+    // Align with other SDKs to default retry to 10 times for dynamodb.
+    // return Client::InitRetryStrategy(10);
+    return Client::InitRetryStrategy();
+  };
 }
 
 DynamoDBClientConfiguration::DynamoDBClientConfiguration(const Client::ClientConfigurationInitValues &configuration)
diff --git a/src/aws-cpp-sdk-core/include/aws/core/auth/STSCredentialsProvider.h b/src/aws-cpp-sdk-core/include/aws/core/auth/STSCredentialsProvider.h
@@ -26,6 +26,7 @@ namespace Aws
         {
         public:
             STSAssumeRoleWebIdentityCredentialsProvider();
+            STSAssumeRoleWebIdentityCredentialsProvider(Aws::Client::ClientConfiguration::CredentialProviderConfiguration config);
 
             /**
              * Retrieves the credentials if found, otherwise returns empty credential set.
diff --git a/src/aws-cpp-sdk-core/include/aws/core/client/ClientConfiguration.h b/src/aws-cpp-sdk-core/include/aws/core/client/ClientConfiguration.h
@@ -492,14 +492,20 @@ namespace Aws
             * AWS profile name to use for credentials.
             */
             Aws::String profile;
+
+            /**
+             * Region to use for calls
+             */
+            Aws::String region;
           }credentialProviderConfig;
         };
 
         /**
          * A helper function to initialize a retry strategy.
          * Default is DefaultRetryStrategy (i.e. exponential backoff)
          */
-        std::shared_ptr<RetryStrategy> InitRetryStrategy(Aws::String retryMode = "");
+        AWS_CORE_API std::shared_ptr<RetryStrategy> InitRetryStrategy(Aws::String retryMode = "");
+        AWS_CORE_API std::shared_ptr<RetryStrategy> InitRetryStrategy(int maxRetries, Aws::String retryMode = "");
 
         /**
          * A helper function to compute a user agent
diff --git a/src/aws-cpp-sdk-core/source/auth/AWSCredentialsProviderChain.cpp b/src/aws-cpp-sdk-core/source/auth/AWSCredentialsProviderChain.cpp
@@ -90,7 +90,7 @@ DefaultAWSCredentialsProviderChain::DefaultAWSCredentialsProviderChain(const Aws
     AddProvider(Aws::MakeShared<EnvironmentAWSCredentialsProvider>(DefaultCredentialsProviderChainTag));
     AddProvider(Aws::MakeShared<ProfileConfigFileAWSCredentialsProvider>(DefaultCredentialsProviderChainTag,config.profile.c_str()));
     AddProvider(Aws::MakeShared<ProcessCredentialsProvider>(DefaultCredentialsProviderChainTag,config.profile));
-    AddProvider(Aws::MakeShared<STSAssumeRoleWebIdentityCredentialsProvider>(DefaultCredentialsProviderChainTag));
+    AddProvider(Aws::MakeShared<STSAssumeRoleWebIdentityCredentialsProvider>(DefaultCredentialsProviderChainTag, config));
     AddProvider(Aws::MakeShared<SSOCredentialsProvider>(DefaultCredentialsProviderChainTag,config.profile));
 
     // General HTTP Credentials (prev. known as ECS TaskRole credentials) only available when ENVIRONMENT VARIABLE is set
diff --git a/src/aws-cpp-sdk-core/source/auth/STSCredentialsProvider.cpp b/src/aws-cpp-sdk-core/source/auth/STSCredentialsProvider.cpp
@@ -32,24 +32,18 @@ using Aws::Utils::Threading::WriterLockGuard;
 static const char STS_ASSUME_ROLE_WEB_IDENTITY_LOG_TAG[] = "STSAssumeRoleWithWebIdentityCredentialsProvider";
 static const int STS_CREDENTIAL_PROVIDER_EXPIRATION_GRACE_PERIOD = 5 * 60 * 1000; // 5 Minutes.
 
-STSAssumeRoleWebIdentityCredentialsProvider::STSAssumeRoleWebIdentityCredentialsProvider() :
+STSAssumeRoleWebIdentityCredentialsProvider::STSAssumeRoleWebIdentityCredentialsProvider(Aws::Client::ClientConfiguration::CredentialProviderConfiguration credentialsConfig):
     m_initialized(false)
 {
-    // check environment variables
-    Aws::String tmpRegion = Aws::Environment::GetEnv("AWS_DEFAULT_REGION");
     m_roleArn = Aws::Environment::GetEnv("AWS_ROLE_ARN");
     m_tokenFile = Aws::Environment::GetEnv("AWS_WEB_IDENTITY_TOKEN_FILE");
     m_sessionName = Aws::Environment::GetEnv("AWS_ROLE_SESSION_NAME");
 
     // check profile_config if either m_roleArn or m_tokenFile is not loaded from environment variable
     // region source is not enforced, but we need it to construct sts endpoint, if we can't find from environment, we should check if it's set in config file.
-    if (m_roleArn.empty() || m_tokenFile.empty() || tmpRegion.empty())
+    if (m_roleArn.empty() || m_tokenFile.empty())
     {
-        auto profile = Aws::Config::GetCachedConfigProfile(Aws::Auth::GetConfigProfileName());
-        if (tmpRegion.empty())
-        {
-            tmpRegion = profile.GetRegion();
-        }
+        auto profile = Aws::Config::GetCachedConfigProfile(credentialsConfig.profile);
         // If either of these two were not found from environment, use whatever found for all three in config file
         if (m_roleArn.empty() || m_tokenFile.empty())
         {
@@ -79,15 +73,6 @@ STSAssumeRoleWebIdentityCredentialsProvider::STSAssumeRoleWebIdentityCredentials
         AWS_LOGSTREAM_DEBUG(STS_ASSUME_ROLE_WEB_IDENTITY_LOG_TAG, "Resolved role_arn from profile_config or environment variable to be " << m_roleArn);
     }
 
-    if (tmpRegion.empty())
-    {
-        tmpRegion = Aws::Region::US_EAST_1;
-    }
-    else
-    {
-        AWS_LOGSTREAM_DEBUG(STS_ASSUME_ROLE_WEB_IDENTITY_LOG_TAG, "Resolved region from profile_config or environment variable to be " << tmpRegion);
-    }
-
     if (m_sessionName.empty())
     {
         m_sessionName = Aws::Utils::UUID::PseudoRandomUUID();
@@ -99,8 +84,7 @@ STSAssumeRoleWebIdentityCredentialsProvider::STSAssumeRoleWebIdentityCredentials
 
     Aws::Client::ClientConfiguration config;
     config.scheme = Aws::Http::Scheme::HTTPS;
-    config.region = tmpRegion;
-
+    config.region = credentialsConfig.region;
     Aws::Vector<Aws::String> retryableErrors;
     retryableErrors.push_back("IDPCommunicationError");
     retryableErrors.push_back("InvalidIdentityToken");
@@ -112,6 +96,19 @@ STSAssumeRoleWebIdentityCredentialsProvider::STSAssumeRoleWebIdentityCredentials
     AWS_LOGSTREAM_INFO(STS_ASSUME_ROLE_WEB_IDENTITY_LOG_TAG, "Creating STS AssumeRole with web identity creds provider.");
 }
 
+Aws::String LegacyGetRegion() {
+  auto region = Aws::Environment::GetEnv("AWS_DEFAULT_REGION");
+  if (region.empty()) {
+    auto profile = Aws::Config::GetCachedConfigProfile(Aws::Auth::GetConfigProfileName());
+    region = profile.GetRegion();
+  }
+  return region;
+}
+
+STSAssumeRoleWebIdentityCredentialsProvider::STSAssumeRoleWebIdentityCredentialsProvider()
+    : STSAssumeRoleWebIdentityCredentialsProvider(
+          Aws::Client::ClientConfiguration::CredentialProviderConfiguration{Aws::Auth::GetConfigProfileName(), LegacyGetRegion()}) {}
+
 AWSCredentials STSAssumeRoleWebIdentityCredentialsProvider::GetAWSCredentials()
 {
     // A valid client means required information like role arn and token file were constructed correctly.
diff --git a/src/aws-cpp-sdk-core/source/client/ClientConfiguration.cpp b/src/aws-cpp-sdk-core/source/client/ClientConfiguration.cpp
@@ -238,6 +238,7 @@ void setLegacyClientConfigurationParameters(ClientConfiguration& clientConfig)
     AWS_LOGSTREAM_DEBUG(CLIENT_CONFIG_TAG, "ClientConfiguration will use SDK Auto Resolved profile: [" << clientConfig.profileName << "] if not specified by users.");
 
     clientConfig.region = calculateRegion();
+    clientConfig.credentialProviderConfig.region = clientConfig.region;
 
     // Set the endpoint to interact with EC2 instance's metadata service
     Aws::String ec2MetadataServiceEndpoint = Aws::Environment::GetEnv("AWS_EC2_METADATA_SERVICE_ENDPOINT");
@@ -305,13 +306,15 @@ ClientConfiguration::ClientConfiguration()
         if (client)
         {
             region = client->GetCurrentRegion();
+            this->credentialProviderConfig.region = region;
         }
     }
     if (!region.empty())
     {
         return;
     }
     region = Aws::String(Aws::Region::US_EAST_1);
+    this->credentialProviderConfig.region = region;
 }
 
 ClientConfiguration::ClientConfiguration(const ClientConfigurationInitValues &configuration)
@@ -329,13 +332,15 @@ ClientConfiguration::ClientConfiguration(const ClientConfigurationInitValues &co
         if (client)
         {
             region = client->GetCurrentRegion();
+            this->credentialProviderConfig.region = region;
         }
     }
     if (!region.empty())
     {
         return;
     }
     region = Aws::String(Aws::Region::US_EAST_1);
+    this->credentialProviderConfig.region = region;
 }
 
 ClientConfiguration::ClientConfiguration(const char* profile, bool shouldDisableIMDS)
@@ -359,12 +364,14 @@ ClientConfiguration::ClientConfiguration(const char* profile, bool shouldDisable
             ec2MetadataRegion = client->GetCurrentRegion();
             hasEc2MetadataRegion = true;
             region = ec2MetadataRegion;
+            this->credentialProviderConfig.region = region;
         }
     }
 
     if(region.empty())
     {
         region = Aws::String(Aws::Region::US_EAST_1);
+        this->credentialProviderConfig.region = region;
     }
 
     if (profile && Aws::Config::HasCachedConfigProfile(profile)) {
@@ -373,6 +380,7 @@ ClientConfiguration::ClientConfiguration(const char* profile, bool shouldDisable
         auto tmpRegion = Aws::Config::GetCachedConfigProfile(this->profileName).GetRegion();
         if (!tmpRegion.empty()) {
             region = tmpRegion;
+            this->credentialProviderConfig.region = region;
         }
 
         Aws::String profileDefaultsMode = Aws::Config::GetCachedConfigProfile(this->profileName).GetDefaultsMode();
@@ -404,39 +412,19 @@ ClientConfiguration::ClientConfiguration(bool /*useSmartDefaults*/, const char*
             ec2MetadataRegion = client->GetCurrentRegion();
             hasEc2MetadataRegion = true;
             region = ec2MetadataRegion;
+            this->credentialProviderConfig.region = region;
         }
     }
     if (region.empty())
     {
         region = Aws::String(Aws::Region::US_EAST_1);
+        this->credentialProviderConfig.region = region;
     }
 
     Aws::Config::Defaults::SetSmartDefaultsConfigurationParameters(*this, defaultMode, hasEc2MetadataRegion, ec2MetadataRegion);
 }
 
-std::shared_ptr<RetryStrategy> InitRetryStrategy(Aws::String retryMode)
-{
-    int maxAttempts = 0;
-    Aws::String maxAttemptsString = Aws::Environment::GetEnv("AWS_MAX_ATTEMPTS");
-    if (maxAttemptsString.empty())
-    {
-        maxAttemptsString = Aws::Config::GetCachedConfigValue("max_attempts");
-    }
-    // In case users specify 0 explicitly to disable retry.
-    if (maxAttemptsString == "0")
-    {
-        maxAttempts = 0;
-    }
-    else
-    {
-        maxAttempts = static_cast<int>(Aws::Utils::StringUtils::ConvertToInt32(maxAttemptsString.c_str()));
-        if (maxAttempts == 0)
-        {
-            AWS_LOGSTREAM_INFO(CLIENT_CONFIG_TAG, "Retry Strategy will use the default max attempts.");
-            maxAttempts = -1;
-        }
-    }
-
+std::shared_ptr<RetryStrategy> InitRetryStrategy(int maxAttempts, Aws::String retryMode) {
     if (retryMode.empty())
     {
         retryMode = Aws::Environment::GetEnv("AWS_RETRY_MODE");
@@ -479,6 +467,32 @@ std::shared_ptr<RetryStrategy> InitRetryStrategy(Aws::String retryMode)
     return retryStrategy;
 }
 
+std::shared_ptr<RetryStrategy> InitRetryStrategy(Aws::String retryMode)
+{
+    int maxAttempts = 0;
+    Aws::String maxAttemptsString = Aws::Environment::GetEnv("AWS_MAX_ATTEMPTS");
+    if (maxAttemptsString.empty())
+    {
+        maxAttemptsString = Aws::Config::GetCachedConfigValue("max_attempts");
+    }
+    // In case users specify 0 explicitly to disable retry.
+    if (maxAttemptsString == "0")
+    {
+        maxAttempts = 0;
+    }
+    else
+    {
+        maxAttempts = static_cast<int>(Aws::Utils::StringUtils::ConvertToInt32(maxAttemptsString.c_str()));
+        if (maxAttempts == 0)
+        {
+            AWS_LOGSTREAM_INFO(CLIENT_CONFIG_TAG, "Retry Strategy will use the default max attempts.");
+            maxAttempts = -1;
+        }
+    }
+
+    return InitRetryStrategy(maxAttempts, retryMode);
+}
+
 Aws::String ClientConfiguration::LoadConfigFromEnvOrProfile(const Aws::String& envKey,
                                                             const Aws::String& profile,
                                                             const Aws::String& profileProperty,
diff --git a/tools/code-generation/generator/src/main/resources/com/amazonaws/util/awsclientgenerator/velocity/cpp/common/ServiceClientConfigurationSource.vm b/tools/code-generation/generator/src/main/resources/com/amazonaws/util/awsclientgenerator/velocity/cpp/common/ServiceClientConfigurationSource.vm
@@ -123,6 +123,15 @@ void ${metadata.classNamePrefix}ClientConfiguration::Load${serviceNamespace}Spec
     enableEndpointDiscovery = IsEndpointDiscoveryEnabled(this->endpointOverride, inputProfileName);
   }
 #end
+## DyanmoDB historically requires 10 retries for backwards compatibility
+#if($serviceModel.metadata.serviceId == "DynamoDB")
+  this->configFactories.retryStrategyCreateFn = []() -> std::shared_ptr<Client::RetryStrategy> {
+    // TODO: renable once default retries are evaluated
+    // Align with other SDKs to default retry to 10 times for dynamodb.
+    // return Client::InitRetryStrategy(10);
+    return Client::InitRetryStrategy();
+  };
+#end
 }
 
 ${metadata.classNamePrefix}ClientConfiguration::${metadata.classNamePrefix}ClientConfiguration(const Client::ClientConfigurationInitValues &configuration)

Original file line number	Diff line number	Diff line change
`@@ -45,6 +45,12 @@ void DynamoDBClientConfiguration::LoadDynamoDBSpecificConfig(const Aws::String&`
`45`	`45`	`if(!enableEndpointDiscovery) {`
`46`	`46`	`enableEndpointDiscovery = IsEndpointDiscoveryEnabled(this->endpointOverride, inputProfileName);`
`47`	`47`	`}`
	`48`	`+ this->configFactories.retryStrategyCreateFn = []() -> std::shared_ptr<Client::RetryStrategy> {`
	`49`	`+ // TODO: renable once default retries are evaluated`
	`50`	`+ // Align with other SDKs to default retry to 10 times for dynamodb.`
	`51`	`+ // return Client::InitRetryStrategy(10);`
	`52`	`+ return Client::InitRetryStrategy();`
	`53`	`+ };`
`48`	`54`	`}`
`49`	`55`
`50`	`56`	`DynamoDBClientConfiguration::DynamoDBClientConfiguration(const Client::ClientConfigurationInitValues &configuration)`
Original file line number	Diff line number	Diff line change
`@@ -26,6 +26,7 @@ namespace Aws`
`26`	`26`	`{`
`27`	`27`	`public:`
`28`	`28`	`STSAssumeRoleWebIdentityCredentialsProvider();`
	`29`	`+ STSAssumeRoleWebIdentityCredentialsProvider(Aws::Client::ClientConfiguration::CredentialProviderConfiguration config);`
`29`	`30`
`30`	`31`	`/**`
`31`	`32`	`* Retrieves the credentials if found, otherwise returns empty credential set.`
Original file line number	Diff line number	Diff line change
`@@ -238,6 +238,7 @@ void setLegacyClientConfigurationParameters(ClientConfiguration& clientConfig)`
`238`	`238`	`AWS_LOGSTREAM_DEBUG(CLIENT_CONFIG_TAG, "ClientConfiguration will use SDK Auto Resolved profile: [" << clientConfig.profileName << "] if not specified by users.");`
`239`	`239`
`240`	`240`	`clientConfig.region = calculateRegion();`
	`241`	`+ clientConfig.credentialProviderConfig.region = clientConfig.region;`
`241`	`242`
`242`	`243`	`// Set the endpoint to interact with EC2 instance's metadata service`
`243`	`244`	`Aws::String ec2MetadataServiceEndpoint = Aws::Environment::GetEnv("AWS_EC2_METADATA_SERVICE_ENDPOINT");`
`@@ -305,13 +306,15 @@ ClientConfiguration::ClientConfiguration()`
`305`	`306`	`if (client)`
`306`	`307`	`{`
`307`	`308`	`region = client->GetCurrentRegion();`
	`309`	`+ this->credentialProviderConfig.region = region;`
`308`	`310`	`}`
`309`	`311`	`}`
`310`	`312`	`if (!region.empty())`
`311`	`313`	`{`
`312`	`314`	`return;`
`313`	`315`	`}`
`314`	`316`	`region = Aws::String(Aws::Region::US_EAST_1);`
	`317`	`+ this->credentialProviderConfig.region = region;`
`315`	`318`	`}`
`316`	`319`
`317`	`320`	`ClientConfiguration::ClientConfiguration(const ClientConfigurationInitValues &configuration)`
`@@ -329,13 +332,15 @@ ClientConfiguration::ClientConfiguration(const ClientConfigurationInitValues &co`
`329`	`332`	`if (client)`
`330`	`333`	`{`
`331`	`334`	`region = client->GetCurrentRegion();`
	`335`	`+ this->credentialProviderConfig.region = region;`
`332`	`336`	`}`
`333`	`337`	`}`
`334`	`338`	`if (!region.empty())`
`335`	`339`	`{`
`336`	`340`	`return;`
`337`	`341`	`}`
`338`	`342`	`region = Aws::String(Aws::Region::US_EAST_1);`
	`343`	`+ this->credentialProviderConfig.region = region;`
`339`	`344`	`}`
`340`	`345`
`341`	`346`	`ClientConfiguration::ClientConfiguration(const char* profile, bool shouldDisableIMDS)`
`@@ -359,12 +364,14 @@ ClientConfiguration::ClientConfiguration(const char* profile, bool shouldDisable`
`359`	`364`	`ec2MetadataRegion = client->GetCurrentRegion();`
`360`	`365`	`hasEc2MetadataRegion = true;`
`361`	`366`	`region = ec2MetadataRegion;`
	`367`	`+ this->credentialProviderConfig.region = region;`
`362`	`368`	`}`
`363`	`369`	`}`
`364`	`370`
`365`	`371`	`if(region.empty())`
`366`	`372`	`{`
`367`	`373`	`region = Aws::String(Aws::Region::US_EAST_1);`
	`374`	`+ this->credentialProviderConfig.region = region;`
`368`	`375`	`}`
`369`	`376`
`370`	`377`	`if (profile && Aws::Config::HasCachedConfigProfile(profile)) {`
`@@ -373,6 +380,7 @@ ClientConfiguration::ClientConfiguration(const char* profile, bool shouldDisable`
`373`	`380`	`auto tmpRegion = Aws::Config::GetCachedConfigProfile(this->profileName).GetRegion();`
`374`	`381`	`if (!tmpRegion.empty()) {`
`375`	`382`	`region = tmpRegion;`
	`383`	`+ this->credentialProviderConfig.region = region;`
`376`	`384`	`}`
`377`	`385`
`378`	`386`	`Aws::String profileDefaultsMode = Aws::Config::GetCachedConfigProfile(this->profileName).GetDefaultsMode();`
`@@ -404,39 +412,19 @@ ClientConfiguration::ClientConfiguration(bool /useSmartDefaults/, const char*`
`404`	`412`	`ec2MetadataRegion = client->GetCurrentRegion();`
`405`	`413`	`hasEc2MetadataRegion = true;`
`406`	`414`	`region = ec2MetadataRegion;`
	`415`	`+ this->credentialProviderConfig.region = region;`
`407`	`416`	`}`
`408`	`417`	`}`
`409`	`418`	`if (region.empty())`
`410`	`419`	`{`
`411`	`420`	`region = Aws::String(Aws::Region::US_EAST_1);`
	`421`	`+ this->credentialProviderConfig.region = region;`
`412`	`422`	`}`
`413`	`423`
`414`	`424`	`Aws::Config::Defaults::SetSmartDefaultsConfigurationParameters(*this, defaultMode, hasEc2MetadataRegion, ec2MetadataRegion);`
`415`	`425`	`}`
`416`	`426`
`417`		`-std::shared_ptr<RetryStrategy> InitRetryStrategy(Aws::String retryMode)`
`418`		`-{`
`419`		`- int maxAttempts = 0;`
`420`		`- Aws::String maxAttemptsString = Aws::Environment::GetEnv("AWS_MAX_ATTEMPTS");`
`421`		`- if (maxAttemptsString.empty())`
`422`		`- {`
`423`		`- maxAttemptsString = Aws::Config::GetCachedConfigValue("max_attempts");`
`424`		`- }`
`425`		`- // In case users specify 0 explicitly to disable retry.`
`426`		`- if (maxAttemptsString == "0")`
`427`		`- {`
`428`		`- maxAttempts = 0;`
`429`		`- }`
`430`		`- else`
`431`		`- {`
`432`		`- maxAttempts = static_cast<int>(Aws::Utils::StringUtils::ConvertToInt32(maxAttemptsString.c_str()));`
`433`		`- if (maxAttempts == 0)`
`434`		`- {`
`435`		`- AWS_LOGSTREAM_INFO(CLIENT_CONFIG_TAG, "Retry Strategy will use the default max attempts.");`
`436`		`- maxAttempts = -1;`
`437`		`- }`
`438`		`- }`
`439`		`-`
	`427`	`+std::shared_ptr<RetryStrategy> InitRetryStrategy(int maxAttempts, Aws::String retryMode) {`
`440`	`428`	`if (retryMode.empty())`
`441`	`429`	`{`
`442`	`430`	`retryMode = Aws::Environment::GetEnv("AWS_RETRY_MODE");`
`@@ -479,6 +467,32 @@ std::shared_ptr<RetryStrategy> InitRetryStrategy(Aws::String retryMode)`
`479`	`467`	`return retryStrategy;`
`480`	`468`	`}`
`481`	`469`
	`470`	`+std::shared_ptr<RetryStrategy> InitRetryStrategy(Aws::String retryMode)`
	`471`	`+{`
	`472`	`+ int maxAttempts = 0;`
	`473`	`+ Aws::String maxAttemptsString = Aws::Environment::GetEnv("AWS_MAX_ATTEMPTS");`
	`474`	`+ if (maxAttemptsString.empty())`
	`475`	`+ {`
	`476`	`+ maxAttemptsString = Aws::Config::GetCachedConfigValue("max_attempts");`
	`477`	`+ }`
	`478`	`+ // In case users specify 0 explicitly to disable retry.`
	`479`	`+ if (maxAttemptsString == "0")`
	`480`	`+ {`
	`481`	`+ maxAttempts = 0;`
	`482`	`+ }`
	`483`	`+ else`
	`484`	`+ {`
	`485`	`+ maxAttempts = static_cast<int>(Aws::Utils::StringUtils::ConvertToInt32(maxAttemptsString.c_str()));`
	`486`	`+ if (maxAttempts == 0)`
	`487`	`+ {`
	`488`	`+ AWS_LOGSTREAM_INFO(CLIENT_CONFIG_TAG, "Retry Strategy will use the default max attempts.");`
	`489`	`+ maxAttempts = -1;`
	`490`	`+ }`
	`491`	`+ }`
	`492`	`+`
	`493`	`+ return InitRetryStrategy(maxAttempts, retryMode);`
	`494`	`+}`
	`495`	`+`
`482`	`496`	`Aws::String ClientConfiguration::LoadConfigFromEnvOrProfile(const Aws::String& envKey,`
`483`	`497`	`const Aws::String& profile,`
`484`	`498`	`const Aws::String& profileProperty,`