wata727
diff --git a/‎README.md‎
Lines changed: 4 additions & 4 deletions b/‎README.md‎
Lines changed: 4 additions & 4 deletions
diff --git a/‎access_config.go‎
Lines changed: 39 additions & 15 deletions b/‎access_config.go‎
Lines changed: 39 additions & 15 deletions
diff --git a/‎cleaner_mock.go‎
Lines changed: 25 additions & 24 deletions b/‎cleaner_mock.go‎
Lines changed: 25 additions & 24 deletions
diff --git a/‎config.go‎
Lines changed: 1 addition & 1 deletion b/‎config.go‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎config.hcl2spec.go‎
Lines changed: 65 additions & 26 deletions b/‎config.hcl2spec.go‎
Lines changed: 65 additions & 26 deletions
@@ -72,12 +72,12 @@ The following attibutes are also available. These are optional and used in the s
 
 - `access_key`
 - `secret_key`
-- `profile`
-- `token`
-- `mfa_code`
+- `assume_role`
 - `custom_endpoint_ec2`
-- `skip_region_validation`
+- `mfa_code`
+- `profile`
 - `skip_metadata_api_check`
+- `token`
 
 ### IAM Task or Instance Role
 
 
@@ -1,4 +1,4 @@
-// @see https://github.com/hashicorp/packer/blob/v1.6.4/builder/amazon/common/access_config.go
+// @see https://github.com/hashicorp/packer-plugin-amazon/blob/v1.0.0/builder/common/access_config.go
 
 package main
 
@@ -16,16 +16,32 @@ import (
 	"github.com/hashicorp/go-cleanhttp"
 )
 
+// AssumeRoleConfig lets users set configuration options for assuming a special
+// role when executing this plugin.
+type AssumeRoleConfig struct {
+	AssumeRoleARN               string            `mapstructure:"role_arn" required:"false"`
+	AssumeRoleDurationSeconds   int               `mapstructure:"duration_seconds" required:"false"`
+	AssumeRoleExternalID        string            `mapstructure:"external_id" required:"false"`
+	AssumeRolePolicy            string            `mapstructure:"policy" required:"false"`
+	AssumeRolePolicyARNs        []string          `mapstructure:"policy_arns" required:"false"`
+	AssumeRoleSessionName       string            `mapstructure:"session_name" required:"false"`
+	AssumeRoleTags              map[string]string `mapstructure:"tags" required:"false"`
+	AssumeRoleTransitiveTagKeys []string          `mapstructure:"transitive_tag_keys" required:"false"`
+}
+
 // AccessConfig is for common configuration related to AWS access
 type AccessConfig struct {
-	AccessKey            string `mapstructure:"access_key"`
-	SecretKey            string `mapstructure:"secret_key"`
-	ProfileName          string `mapstructure:"profile"`
-	Token                string `mapstructure:"token"`
-	MFACode              string `mapstructure:"mfa_code"`
-	CustomEndpointEc2    string `mapstructure:"custom_endpoint_ec2"`
-	SkipValidation       bool   `mapstructure:"skip_region_validation"`
-	SkipMetadataAPICheck bool   `mapstructure:"skip_metadata_api_check"`
+	AccessKey            string           `mapstructure:"access_key"`
+	AssumeRole           AssumeRoleConfig `mapstructure:"assume_role" required:"false"`
+	CustomEndpointEc2    string           `mapstructure:"custom_endpoint_ec2"`
+	MFACode              string           `mapstructure:"mfa_code"`
+	ProfileName          string           `mapstructure:"profile"`
+	SecretKey            string           `mapstructure:"secret_key"`
+	SkipMetadataAPICheck bool             `mapstructure:"skip_metadata_api_check"`
+	Token                string           `mapstructure:"token"`
+
+	// SkipValidation is not used, but it is still a valid option to keep backward compatibility.
+	SkipValidation bool `mapstructure:"skip_region_validation"`
 
 	session *session.Session
 }
@@ -102,12 +118,20 @@ func (c *AccessConfig) Session() (*session.Session, error) {
 func (c *AccessConfig) GetCredentials(config *aws.Config) (*awsCredentials.Credentials, error) {
 	// Reload values into the config used by the Packer-Terraform shared SDK
 	awsbaseConfig := &awsbase.Config{
-		AccessKey:            c.AccessKey,
-		DebugLogging:         false,
-		Profile:              c.ProfileName,
-		SecretKey:            c.SecretKey,
-		SkipMetadataApiCheck: c.SkipMetadataAPICheck,
-		Token:                c.Token,
+		AccessKey:                   c.AccessKey,
+		AssumeRoleARN:               c.AssumeRole.AssumeRoleARN,
+		AssumeRoleDurationSeconds:   c.AssumeRole.AssumeRoleDurationSeconds,
+		AssumeRoleExternalID:        c.AssumeRole.AssumeRoleExternalID,
+		AssumeRolePolicy:            c.AssumeRole.AssumeRolePolicy,
+		AssumeRolePolicyARNs:        c.AssumeRole.AssumeRolePolicyARNs,
+		AssumeRoleSessionName:       c.AssumeRole.AssumeRoleSessionName,
+		AssumeRoleTags:              c.AssumeRole.AssumeRoleTags,
+		AssumeRoleTransitiveTagKeys: c.AssumeRole.AssumeRoleTransitiveTagKeys,
+		DebugLogging:                false,
+		Profile:                     c.ProfileName,
+		SecretKey:                   c.SecretKey,
+		SkipMetadataApiCheck:        c.SkipMetadataAPICheck,
+		Token:                       c.Token,
 	}
 
 	return awsbase.GetCredentials(awsbaseConfig)
 
@@ -1,4 +1,4 @@
-//go:generate mapstructure-to-hcl2 -type Config
+//go:generate mapstructure-to-hcl2 -type Config,AssumeRoleConfig
 
 package main
Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-//go:generate mapstructure-to-hcl2 -type Config`
	`1`	`+//go:generate mapstructure-to-hcl2 -type Config,AssumeRoleConfig`
`2`	`2`
`3`	`3`	`package main`
`4`	`4`