It would be nice to be able to replace the hardcoded and long lived AWS credentials you’re currently offering for access AWS APIs with the ability to assume a cross-account role with STS? for an example how datadog did it:
I agree. I’ve been hoping this would come out for a while. Cross account roles are definitely the way to go for these types of SAAS integrations. Easier and more secure. Win win.