# identity情報なし（確認）
$aws sts get-caller-identity --profile test
The config profile (test) could not be found

# aws loginを試みる　→config情報が自動で作成される
$aws login --profile test
No AWS region has been configured. The AWS region is the geographic location of your AWS resources.

If you have used AWS before and already have resources in your account, specify which region they were created in. If you have not created resources in your account before, you can pick the region closest to you: https://docs.aws.amazon.com/global-infrastructure/latest/regions/aws-regions.html.

You are able to change the region in the CLI at any time with the command "aws configure set region NEW_REGION".
AWS Region [us-east-1]: ap-northeast-1
Attempting to open your default browser.
If the browser does not open, open the following URL:

https://ap-northeast-1.signin.aws.amazon.com/v1/authorize?response_type=code&client_id=xxxxxx~~

Updated profile test to use arn:aws:iam::************:user/username credentials.
Use "--profile test" to use the new credentials, such as "aws sts get-caller-identity --profile test"

# identity情報が作成される
$aws sts get-caller-identity --profile test
{
    "UserId": "userid1234567890",
    "Account": "************",
    "Arn": "arn:aws:iam::************:user/username"
}

$cat .aws/config
[profile test]
login_session = arn:aws:iam::xxxxxxxxxx:user/username
region = ap-northeast-1


# サーバーログイン可能
$aws ecs execute-command  \ 
    --region ap-northeast-1 \
    --cluster test-cluster \
    --task xxxxxxxxxxxxxxxxxxxxx  \
    --command "sh" \
    --interactive \
    --profile test     

The Session Manager plugin was installed successfully. Use the AWS CLI to start a session.


Starting session with SessionId: ecs-execute-command-xxxx
/var/www/rails（STG）#