saml2aws
awsume
saml2aws | awsume | |
---|---|---|
12 | 12 | |
2,005 | 474 | |
0.7% | 0.2% | |
9.1 | 7.5 | |
2 days ago | about 1 month ago | |
Go | Python | |
MIT License | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
saml2aws
- CLI tool to login and retrieve AWS temporary credentials using a SAML IDP
- Script or software that automatically populate specific profile in ~/.aws/credentials
-
Completions plugin `saml2aws`
related: message on saml2aws repo
-
Securing the AWS CLI
If you have an external identity provider, you can add a SAML provider in IAM and use saml2aws locally. The session duration can be configured on the role.
-
don't want to store access key and secret key in plain text in the .aws/credentials file or variables
Or if you have an existing IdP you can use https://github.com/Versent/saml2aws and https://github.com/makethunder/awsudo. By setting up a central account that you put in your trust policy which users can assume roles.
- Script for cli commands with MFA and multiple accounts
-
Show HN: Authenticate into AWS right from your terminal window
In my company everything goes through Active Directory and we use saml2aws [1] to generate credentials with two factor involved. It works quite well for us. We even use this for our artists to create local builds of our games since we keep all important secrets and such in aws secrets mananger. We scope access to said secrets with custom roles and tags.
[1] https://github.com/Versent/saml2aws
- How do you get CLI credentials for a federated role?
-
Getting CLI credentials for an AWS account that is not under your AWS SSO organization
Technically I guess it should be possible with something like saml2aws, but it doesn't support AWS as an IdP yet.
-
saml2aws-multi: a simple tool providing an easy-to-use command line interface for saml2aws
saml2aws-multi is a simple tool I created for using saml2aws more effectively on day-to-day tasks. saml2aws-multi provides an easy-to-use command line interface to support login and retrieve AWS temporary credentials for multiple roles of different accounts with saml2aws.
awsume
-
Switch & Leapp-cli - AWS session management 100% command line
I have used awsume a long time. Then I got a new Macbook and lost 1/2 hour installing different python versions. So I programmed switchaws in go to get a single executable. And, yes: I declare guilty of the "not invented here" syndrom :) .
-
Script or software that automatically populate specific profile in ~/.aws/credentials
Bonus comment: After setting up your aws credentials, have a look at awsume, which makes rapid switches between accounts and roles a lot easier.. :)
-
Falling for Kubernetes
Has anyone on AWS gotten k9s to work with Awsume [0] authentication?
[0] https://awsu.me/
-
Learning AWS from a GCP Background
Learn how to WORK with AWS well, for instance set up Awsume (https://awsu.me/, install the Switch Roles extension (https://chrome.google.com/webstore/detail/aws-extend-switch-roles/jpmkfafbacpgapdghgdpembnojdlgkdl). Try to make working with it as painless as possible. I went through a long phase of bitching and hating AWS but I've recently just given in.
- Stop putting AWS credentials in the credentials file
- Script for cli commands with MFA and multiple accounts
-
My Most Loved AWS Developer Tools & Resources
Haven’t tried Leapp, not sure how I’d feel about needing to swap to a UI every time. I’m a huge fan of Awsume
-
AWS identity and access management
💡 When working with different accounts and/or roles and enabled MFA, it's recommendable to get some tooling support. I love working with AWSume in this case. It's easy to set up and really intuitive to work with.
-
My favourite CDK parameter for large deployments is...
Together with awsume and cdkstat I can have a terminal dashboard if a want to monitor the deployment on multiple accounts:
- How do you store and manage multiple access keys for your personal accounts?
What are some alternatives?
gimme-aws-creds - A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials
aws-vault - A vault for securely storing and accessing AWS credentials in development environments
aws-toolkit-vscode - Amazon Q, CodeWhisperer, CodeCatalyst, Local Lambda debug, SAM/CFN syntax, ECS Terminal, AWS resources
aws-extend-switch-roles - Extend your AWS IAM switching roles by Chrome extension, Firefox add-on, or Edge add-on
terraform - Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.
aws-runas - aws-runas rewritten in Go
leapp - Leapp is the DevTool to access your cloud
k9s - 🐶 Kubernetes CLI To Manage Your Clusters In Style!
terraform-aws-icons - Annotate Terraform graphs with AWS icons.
aws-codebuild-docker-images - Official AWS CodeBuild repository for managed Docker images http://docs.aws.amazon.com/codebuild/latest/userguide/build-env-ref.html