ihoegen · Avolynsk · Apr 5, 2019
diff --git a/Dockerfile b/Dockerfile
@@ -12,6 +12,9 @@ RUN CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build -a -o manager github.com/ihoe
 
 # Copy the controller-manager into a thin image
 FROM ubuntu:latest
+RUN apt-get update
+RUN apt-get install -y ca-certificates
+
 WORKDIR /root/
 COPY --from=builder /go/src/github.com/ihoegen/iam-role-manager/manager .
 ENTRYPOINT ["./manager"]
diff --git a/pkg/controller/iamrole/aws.go b/pkg/controller/iamrole/aws.go
@@ -244,20 +244,39 @@ func isArn(policy string) bool {
 // Paginate over inline policies
 func (i *IAMClient) listInlinePolicies(roleName string) ([]string, error) {
 	var policyNamesPointers []*string
-	isTruncated := true
-	marker := "1"
-	for isTruncated {
-		currentPolicies, err := i.Client.ListRolePolicies(&iam.ListRolePoliciesInput{
+	currentPolicies, err := i.Client.ListRolePolicies(&iam.ListRolePoliciesInput{
 			RoleName: &roleName,
-			Marker:   &marker,
 		})
 		if err != nil {
 			return nil, err
 		}
-		policyNamesPointers = append(policyNamesPointers, currentPolicies.PolicyNames...)
-		marker = *currentPolicies.Marker
-		isTruncated = *currentPolicies.IsTruncated
-	}
+		isTruncated := *currentPolicies.IsTruncated
+		if isTruncated == true {
+        policyNamesPointers = append(policyNamesPointers, currentPolicies.PolicyNames...)
+        marker := *currentPolicies.Marker
+        for isTruncated {
+            currentPolicies, err := i.Client.ListRolePolicies(&iam.ListRolePoliciesInput{
+            RoleName: &roleName,
+            Marker:   &marker,
+            })
+						if err != nil {
+							return nil, err
+						}
+            policyNamesPointers = append(policyNamesPointers, currentPolicies.PolicyNames...)
+            isTruncated = *currentPolicies.IsTruncated
+            if isTruncated == true {
+                marker = *currentPolicies.Marker
+            }
+					}
+	    } else {
+	        currentPolicies, err := i.Client.ListRolePolicies(&iam.ListRolePoliciesInput{
+	            RoleName: &roleName,
+	        })
+					if err != nil {
+						return nil, err
+					}
+	        policyNamesPointers = append(policyNamesPointers, currentPolicies.PolicyNames...)
+	    }
 	var policyNameValues []string
 	for _, val := range policyNamesPointers {
 		policyNameValues = append(policyNameValues, *val)
@@ -268,20 +287,39 @@ func (i *IAMClient) listInlinePolicies(roleName string) ([]string, error) {
 // Paginate over attached policies
 func (i *IAMClient) listAttachedPolicies(roleName string) ([]iam.AttachedPolicy, error) {
 	var policyPointers []*iam.AttachedPolicy
-	isTruncated := true
-	marker := "1"
-	for isTruncated {
-		currentPolicies, err := i.Client.ListAttachedRolePolicies(&iam.ListAttachedRolePoliciesInput{
+	currentPolicies, err := i.Client.ListAttachedRolePolicies(&iam.ListAttachedRolePoliciesInput{
 			RoleName: &roleName,
-			Marker:   &marker,
 		})
 		if err != nil {
 			return nil, err
 		}
-		policyPointers = append(policyPointers, currentPolicies.AttachedPolicies...)
-		marker = *currentPolicies.Marker
-		isTruncated = *currentPolicies.IsTruncated
-	}
+		isTruncated := *currentPolicies.IsTruncated
+		if isTruncated == true {
+				policyPointers = append(policyPointers, currentPolicies.AttachedPolicies...)
+				marker := *currentPolicies.Marker
+				for isTruncated {
+						currentPolicies, err := i.Client.ListAttachedRolePolicies(&iam.ListAttachedRolePoliciesInput{
+						RoleName: &roleName,
+						Marker:   &marker,
+						})
+						if err != nil {
+							return nil, err
+						}
+						policyPointers = append(policyPointers, currentPolicies.AttachedPolicies...)
+						isTruncated = *currentPolicies.IsTruncated
+						if isTruncated == true {
+								marker = *currentPolicies.Marker
+						}
+					}
+			} else {
+					currentPolicies, err := i.Client.ListAttachedRolePolicies(&iam.ListAttachedRolePoliciesInput{
+							RoleName: &roleName,
+					})
+					if err != nil {
+						return nil, err
+					}
+					policyPointers = append(policyPointers, currentPolicies.AttachedPolicies...)
+			}
 	var policyNameValues []iam.AttachedPolicy
 	for _, val := range policyPointers {
 		policyNameValues = append(policyNameValues, *val)