glide
granted
glide | granted | |
---|---|---|
4 | 15 | |
235 | 910 | |
0.9% | 6.8% | |
6.6 | 8.7 | |
3 months ago | 6 days ago | |
Go | Go | |
GNU Affero General Public License v3.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
glide
-
AWS SSO: Strategy for access to all member accounts
Especially for occasional access, I recommend implementing a request/approval workflow. It is still an early product, but Common Fate has a tool for this that I’m really excited about. https://github.com/common-fate/common-fate
-
IAM Identity Center and SAML assertions
Take a look at Common Fate
-
Who Cares About Least Privilege?
Honestly? I don’t know. On a more granular level, each of the above problems have their own solution. Talk to your coworkers about how you trust them, you just don’t want to take unnecessary risks. Make sure to do good security design before you need to pay KPMG $25 million to fix it for you. Talk to your coworkers about what their jobs actually are. Check out our Github repo, etc. etc.
-
Prevent Logging Secrets in Go by Using Custom Types
If you want to check out the code for yourself, here’s a Go Playground link. And if you’re interested in seeing how we’ve implemented this in our own project, you can check out our gconfig package.
granted
-
Ask HN: How do you manage many profiles and credentials for cloud tooling?
You're going to love https://granted.dev. It can be extended further, as we've done internally: https://www.duckbillgroup.com/blog/overhauling-aws-account-a...
- Granted
-
Easy as SSO tooling with Granted AWS
Like most problems I started with the typical search for AWS SSO CLI and console related tools to help out. One of the write-ups that stood out for me was from Corey Quinn - taking aws logins for granted (fun fact: the title of this article was almost identical without me even noticing, you win this round Corey). The article really hit home the problems I was having and suggested the use of Granted (github link) (Granted.dev has some nice info).
- AWS SSO: Strategy for access to all member accounts
- What tools or systems do you use to manage your time, improve your productivity or to make your life easier?
-
AWS SSO multiple account browser tabs
https://granted.dev uses FF containers. You can auth via CLI and then log into all of your accounts in separate container tabs
-
Must-have AWS browser plugins
If you’re using multiple accounts, https://granted.dev/ is an awesome tool to federate into multiple accounts on the same browser at the same time.
- Show HN: Granted CLI – manage multiple AWS profiles in your CLI and browser
-
How to log in to multiple AWS accounts — the easy way
Here’s how Granted CLI works. Run the assume command in your terminal and pick which AWS profile to sign in to (in my case, testing):
-
Multiple accounts open in 1 browser
https://granted.dev/ can make this a lot easier.
What are some alternatives?
consoleme - A Central Control Plane for AWS Permissions and Access
yawsso - Yet Another AWS SSO - sync up AWS CLI v2 SSO login session to legacy CLI v1 credentials
aws-sso-util - Smooth out the rough edges of AWS SSO (temporarily, until AWS makes it better).
aws-vault - A vault for securely storing and accessing AWS credentials in development environments
granted-containers - Firefox containers extension for Granted
credentialfs - FUSE for credentials stored in password managers
stratus-red-team - :cloud: :zap: Granular, Actionable Adversary Emulation for the Cloud
AWSCreds - MacOS menubar app to help switch AWS Profiles
alfred-aws-console-services-workflow - A powerful workflow for quickly opening up AWS Console Services in your browser or searching for entities within them.
fzf - :cherry_blossom: A command-line fuzzy finder