diff --git a/lib/ex_aws/sts/auth_cache/assume_role_pod_identity_adapter.ex b/lib/ex_aws/sts/auth_cache/assume_role_pod_identity_adapter.ex
new file mode 100644
index 0000000..c4edb00
--- /dev/null
+++ b/lib/ex_aws/sts/auth_cache/assume_role_pod_identity_adapter.ex
@@ -0,0 +1,45 @@
+defmodule ExAws.STS.AuthCache.AssumeRolePodIdentityAdapter do
+  @moduledoc """
+  Provides a custom Adapter that intercepts ExAWS configuration
+  which uses Pod Identity Tokens for authentication.
+  """
+
+  @behaviour ExAws.Config.AuthCache.AuthConfigAdapter
+
+  @impl true
+  def adapt_auth_config(config, _profile, _expiration) do
+    http_config = ExAws.Config.http_config(:sts)
+
+    case http_config.http_client.request(:get, container_credentials_full_uri(config), "", [
+           {"Authorization", container_authorization_token(config)}
+         ]) do
+      {:ok, %{body: body}} ->
+        values = http_config.json_codec.decode!(body)
+
+        %{
+          access_key_id: values["AccessKeyId"],
+          secret_access_key: values["SecretAccessKey"],
+          security_token: values["Token"],
+          expiration: values["Expiration"]
+        }
+
+      {:error, reason} ->
+        {:error, reason}
+    end
+  end
+
+  defp container_credentials_full_uri(config) do
+    config[:container_credentials_uri] || System.get_env("AWS_CONTAINER_CREDENTIALS_FULL_URI")
+  end
+
+  defp container_authorization_token(config) do
+    config
+    |> container_authorization_token_file()
+    |> File.read!()
+  end
+
+  defp container_authorization_token_file(config) do
+    config[:container_authorization_token_file] ||
+      System.get_env("AWS_CONTAINER_AUTHORIZATION_TOKEN_FILE")
+  end
+end