Enhanced error handling without credentials

2026-02-10 14:55:00 +00:00 · 2020-12-17 17:15:17 +01:00
parent 810801fb3d
commit e298158bcd
1 changed files with 11 additions and 7 deletions
--- a/include/whoami
+++ b/include/whoami
@@ -30,6 +30,17 @@ case "$REGION" in
 esac

 GETCALLER=$($AWSCLI sts get-caller-identity $PROFILE_OPT --region $REGION_FOR_STS)
+RESULT_CALL=$?
+if [[ $RESULT_CALL == 254 ]]; then
+  if [[ $PRINTCHECKSONLY || $PRINTGROUPSONLY ]]; then
+    echo Listing... 
+  else
+    # Failed to get own identity ... exit
+    echo -e "$RED ERROR Getting credentials to run Prowler - EXITING! $NORMAL"
+    EXITCODE=2
+    exit $EXITCODE
+  fi
+fi 

 if [[ $ACCOUNT_TO_ASSUME ]]; then
  ACCOUNT_NUM=$ACCOUNT_TO_ASSUME
@@ -43,13 +54,6 @@ AWS_PARTITION=$(echo $CALLER_ARN| cut -d: -f2)

 getWhoami(){

-  if [[ 255 -eq $? ]]; then
-          # Failed to get own identity ... exit
-          echo -e "$RED ERROR Getting credentials to run Prowler - EXITING! $NORMAL"
-          EXITCODE=2
-          exit $EXITCODE
-  fi
-
  if [[ "$MODE" == "csv" ]]; then
    if [[ 255 -eq $? ]]; then
      # Failed to get own identity ... exit