AWS Credentials Refresh when Not Assuming Roles

[zprobst]

By default, if we do not assume a role, we grab a basic boto score session which gets the credentials without refreshing. This PR introduces a change to fall back on a regular boto3 session which will fetch again from the provider chain.

[codecov]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 97.87%. Comparing base (7882c36) to head (4365a0d).

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #335   +/-   ##
=======================================
  Coverage   97.87%   97.87%           
=======================================
  Files         144      144           
  Lines        5136     5141    +5     
=======================================
+ Hits         5027     5032    +5     
  Misses        109      109           

Flag	Coverage Δ
3.10-macos-latest	97.87% <100.00%> (+<0.01%)	⬆️
3.10-ubuntu-latest	97.87% <100.00%> (+<0.01%)	⬆️
3.10-windows-latest	97.83% <100.00%> (+<0.01%)	⬆️
3.11-macos-latest	97.87% <100.00%> (+<0.01%)	⬆️
3.11-ubuntu-latest	97.87% <100.00%> (+<0.01%)	⬆️
3.11-windows-latest	97.83% <100.00%> (+<0.01%)	⬆️
3.12-macos-latest	97.87% <100.00%> (+<0.01%)	⬆️
3.12-ubuntu-latest	97.87% <100.00%> (+<0.01%)	⬆️
3.12-windows-latest	97.83% <100.00%> (+<0.01%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[angelosantos4]

So this base client will refresh credentials using the user's arn by default?

[zprobst]

Good call. Turns out It will in some cases... but not all: https://boto3.amazonaws.com/v1/documentation/api/latest/guide/credentials.html

I've updated it.