Skip to content

future-architect/awsmfa

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

45 Commits

.github/workflows

.github/workflows

 
 

cmd/awsmfa

cmd/awsmfa

 
 

testdata

testdata

 
 

.gitattributes

.gitattributes

 
 

.gitignore

.gitignore

 
 

.golangci.yml

.golangci.yml

 
 

.goreleaser.yml

.goreleaser.yml

 
 

CREDITS

CREDITS

 
 

LICENSE

LICENSE

 
 

Makefile

Makefile

 
 

README.md

README.md

 
 

config.go

config.go

 
 

config_test.go

config_test.go

 
 

docker-compose.yml

docker-compose.yml

 
 

go.mod

go.mod

 
 

go.sum

go.sum

 
 

install.sh

install.sh

 
 

run.go

run.go

 
 

run_test.go

run_test.go

 
 

Repository files navigation

awsmfa (AWS MFA Refresher)

Test Status Apache-2.0 license

awsmfa replaces the config and credentials for MFA in AWS.

Usage

$ awsmfa [options] [token-code]
  • The config file uses ~/.aws/config by default. You can override it with the environment variable AWS_CONFIG_FILE.
  • The credentials file uses ~/.aws/credentials by default. You can override it with the environment variable AWS_SHARED_CREDENTIALS_FILE.

Options

--profile string
	The name of the profile from which the session can be obtained (default `default`)

--mfa-profile-name string
	MFA profile name (default `mfa`)

--duration-seconds int64
	Session expiration duration secounds (default `43200`)

--serial-number string
	AWS serial number. `--serial-number` is required

--quiet bool
	if enabled, log is not printed in the console. (default `false`)

Example

$ awsmfa --serial-number arn:aws:iam::123456789012:mfa/future-architect --profile my-profile 123456
2021/02/28 11:01:49 Wrote session token for profile mfa, expiration: 2021-02-28 14:01:49.689 +0000 UTC

initial

  • .aws/config
BeforeAfter
 
[default]
region = us-east-1
output = json
 
[default]
region = us-east-1
output = json

[profile mfa]
  • .aws/credentials
BeforeAfter
 
[default]
aws_access_key_id = ABCDEFGHIJKLMNOPQRST
aws_secret_access_key = ChcdJbC9kraRNW5iy8XgDyR4QNRT44kKRPmKEGQT
 
[default]
aws_access_key_id     = ABCDEFGHIJKLMNOPQRST
aws_secret_access_key = ChcdJbC9kraRNW5iy8XgDyR4QNRT44kKRPmKEGQT

[mfa]
aws_access_key_id     = AKIAIOSFODNN7EXAMPLE
aws_secret_access_key = wJalrXUtnFEMI/K7MDENG/bPxRfiCYzEXAMPLEKEY
aws_session_token     = AQoEXAMPLEH4aoA....

next time

Update aws_access_key_id, aws_secret_access_key and aws_session_token in the target section (default is mfa) of .aws/credentials.

Installation

  • From binary
# Install the latest version. (Install it into ./bin/ by default).
$ curl -sfL https://raw.githubusercontent.com/future-architect/awsmfa/master/install.sh | sh -s

# Specify installation directory ($(go env GOPATH)/bin/) and version.
$ curl -sfL https://raw.githubusercontent.com/future-architect/awsmfa/master/install.sh | sh -s -- -b $(go env GOPATH)/bin [vX.Y.Z]

On Windows, you can run the above commands with Git Bash, which comes with Git for Windows.

  • From source code
$ go install github.com/future-architect/awsmfa/cmd/awsmfa@latest

About

replaces the credentials for MFA in AWS

Topics

go golang aws credentials sts mfa awscli

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

30 stars

Watchers

3 watching

Forks

6 forks
Report repository

Releases 6

v1.1.2 Latest
May 14, 2022
+ 5 releases

Packages

No packages published

Contributors 2

  •  
  •  

Languages