hashicorp
diff --git a/‎sdk/helper/awsutil/generate_credentials.go‎
Lines changed: 8 additions & 0 deletions b/‎sdk/helper/awsutil/generate_credentials.go‎
Lines changed: 8 additions & 0 deletions
diff --git a/‎vendor/github.com/hashicorp/vault/sdk/helper/awsutil/generate_credentials.go‎
Lines changed: 8 additions & 0 deletions b/‎vendor/github.com/hashicorp/vault/sdk/helper/awsutil/generate_credentials.go‎
Lines changed: 8 additions & 0 deletions
@@ -4,6 +4,7 @@ import (
 	"fmt"
 	"net/http"
 	"os"
+	"time"
 
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/aws/aws-sdk-go/aws/credentials"
@@ -89,6 +90,13 @@ func (c *CredentialsConfig) GenerateCredentialChain() (*credentials.Credentials,
 	}
 	if c.HTTPClient != nil {
 		def.Config.HTTPClient = c.HTTPClient
+		_, checkFullURI := os.LookupEnv("AWS_CONTAINER_CREDENTIALS_FULL_URI")
+		_, checkRelativeURI := os.LookupEnv("AWS_CONTAINER_CREDENTIALS_RELATIVE_URI")
+		if !checkFullURI && !checkRelativeURI {
+			// match the sdk defaults from https://github.com/aws/aws-sdk-go/pull/3066
+			def.Config.HTTPClient.Timeout = 1 * time.Second
+			def.Config.MaxRetries = aws.Int(2)
+		}
 	}
 
 	providers = append(providers, defaults.RemoteCredProvider(*def.Config, def.Handlers))