sceptre
saml2aws
Our great sponsors
sceptre | saml2aws | |
---|---|---|
6 | 12 | |
1,452 | 2,003 | |
0.2% | 1.4% | |
8.6 | 9.2 | |
6 days ago | 6 days ago | |
Python | Go | |
GNU General Public License v3.0 or later | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
sceptre
-
Script or software that automatically populate specific profile in ~/.aws/credentials
See: * https://github.com/hashicorp/terraform-provider-aws/issues/10491 * https://github.com/Sceptre/sceptre/issues/674
-
Who's using AWS Proton?
our AWS SAs tried to sell us on it. but it seems worse than my current sceptre pipeline that I also run in CodePipeline 🤷♂️
-
New to AWS, looking for tips and maybe automation ideas
Cloud formation or AWS cdk. If you're leaning towards cloud formation check out some management tools like sceptre if you like the cdk idea you could also check out terraform.
-
Stackset organization from multiple yaml files
Also have a look at Cloudreach's Sceptre.
-
What is the best tool for managing CloudFormation stacks with CLI?
On the tool side you have sceptre: https://github.com/Sceptre/sceptre
-
Working in finance...
https://github.com/Sceptre/sceptre - here's a good example. Terra form knockoff written and managed by a consultancy. As part of their "services", they can code themselves into your organization for a small monthly consulting fee! Yay!
saml2aws
- CLI tool to login and retrieve AWS temporary credentials using a SAML IDP
- Script or software that automatically populate specific profile in ~/.aws/credentials
-
Completions plugin `saml2aws`
related: message on saml2aws repo
-
Securing the AWS CLI
If you have an external identity provider, you can add a SAML provider in IAM and use saml2aws locally. The session duration can be configured on the role.
-
don't want to store access key and secret key in plain text in the .aws/credentials file or variables
Or if you have an existing IdP you can use https://github.com/Versent/saml2aws and https://github.com/makethunder/awsudo. By setting up a central account that you put in your trust policy which users can assume roles.
- Script for cli commands with MFA and multiple accounts
-
Show HN: Authenticate into AWS right from your terminal window
In my company everything goes through Active Directory and we use saml2aws [1] to generate credentials with two factor involved. It works quite well for us. We even use this for our artists to create local builds of our games since we keep all important secrets and such in aws secrets mananger. We scope access to said secrets with custom roles and tags.
[1] https://github.com/Versent/saml2aws
- How do you get CLI credentials for a federated role?
-
Getting CLI credentials for an AWS account that is not under your AWS SSO organization
Technically I guess it should be possible with something like saml2aws, but it doesn't support AWS as an IdP yet.
-
saml2aws-multi: a simple tool providing an easy-to-use command line interface for saml2aws
saml2aws-multi is a simple tool I created for using saml2aws more effectively on day-to-day tasks. saml2aws-multi provides an easy-to-use command line interface to support login and retrieve AWS temporary credentials for multiple roles of different accounts with saml2aws.
What are some alternatives?
terraform - Terraform enables you to safely and predictably create, change, and improve infrastructure. It is a source-available tool that codifies APIs into declarative configuration files that can be shared amongst team members, treated as code, edited, reviewed, and versioned.
gimme-aws-creds - A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials
cloud-custodian - Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
awsume - A utility for easily assuming AWS IAM roles from the command line.
nixops - NixOps is a tool for deploying to NixOS machines in a network or cloud.
aws-toolkit-vscode - Amazon Q, CodeWhisperer, CodeCatalyst, Local Lambda debug, SAM/CFN syntax, ECS Terminal, AWS resources
awesome-aws - A curated list of awesome Amazon Web Services (AWS) libraries, open source repos, guides, blogs, and other resources. Featuring the Fiery Meter of AWSome.
aws-extend-switch-roles - Extend your AWS IAM switching roles by Chrome extension, Firefox add-on, or Edge add-on
cdk-magento-webshop - This is a CDK app to provision the required resources to run a flexible, scalable, and cost-effective Magento webshop on top of AWS.
aws-runas - aws-runas rewritten in Go
aws-sso-util - Smooth out the rough edges of AWS SSO (temporarily, until AWS makes it better).
leapp - Leapp is the DevTool to access your cloud