Hi,
We use hashicorp vault to have STS tokens generated for us. Clients can send us requests using variety of policies to generate either assumed_role and federation_token credential types based sts tokens.
For each STS request that comes in , a temporary AWS role is created , STS token is retrieved ( response along with temporary role is written to vault’s dynamo db, temporary role created is deleted and the actual STS token retrieved is returned to caller. Two write operations is per STS token request is causing high api latency.
-
Is there a way to bypass temporary role creation ? We urgently need to speed up api latency.
-
Is there a way to capture more detailed metrics or enable some debug flag, for hashicorp vault operations, to be able to determine where the delay is coming from ?