The regular expressions for AWS access key ids and secret keys from the AWS security blog are:
AKID: (?<![A-Z0-9])[A-Z0-9]{20}(?![A-Z0-9])
SK: (?<![A-Za-z0-9/+=])[A-Za-z0-9/+=]{40}(?![A-Za-z0-9/+=])
When I try to use these with the Go regexp package, it gives the following error for both expressions: error parsing regexp: invalid or unsupported Perl syntax: `(?<`. I know that the Go regexp package does not fully support the Perl syntax, but I'm not sure how to represent the same expression so that it is supported by Go.
Any help would be appreciated.
Based on the above comments that the system takes users credentials and uses them to create EC2 isntances, this does not sound like the right place to use credentials. IAM best practices advices against sharing AIM credentials.
Depending on how the user is authenticated you should either use Cognito Identity pools to grant the permission to the user to create the instance when they use your service.
Or you can use STS to assume a role on behalf of the user.
Depending on how the service works it could also just have the IAM role needed to create the EC2 instances, and do user validation and logging in the service