Support for Trust Policies

[pampolha]

Hello,
I have observed that trust policies are not yet implemented, and I am eager to contribute to this area.
I recently needed to declare an sts:AssumeRole policy but was unable to do so with the current plugin due to its lack of support for the Principal element, which is a best practice for such policy definitions.

Has this been considered previously? Is there an alternative method supported by the plugin for declaring trust policies, or is it intentionally not possible as designed by the developers?
If there is no alternative, what are the potential obstacles to implementing the Principal element in statements?

Thank you in advance.

Reference: AWS Security Blog

[randomhash]

hey, the question is what you would need to grant :)
For sample this package provides roles per function, so each function has it's own role
If you want to allow lambda assumeRole then you would not really need principal, as role already must allow such action
In case you want to create a function role that can be assumed by other entities, then this plugin not really fits the bill