New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Improvement] AWS Multifactor Auth Support #719
Comments
👋 Thanks for opening your first issue! If you're reporting a 🐞 bug, please make sure To help make this a smooth process, please be sure you have first read the |
I don't really know much about how that would work but maybe @focusaurus has an idea? I'd be happy to help if someone wanted to take this on. |
Yeah I'll take a look tomorrow. Sorry I saw this thread just haven't gotten around it. I believe if the end user can get a valid trio of credentials from the aws command line tool and paste them into Insomnia, they'll work for 24 hours. |
* Back end support
OK so I have the back end changes made in a feature branch on my fork. They are very straightforward just 3 fields instead of 2. I think for the UI trying to use the KeyValueEditor is clunky. What we really have is 3 values and I think the most logical UI would just be a stack of 3 inputs:
They can have a single enable/disable checkbox. @gschier What do you think? If you think that UI makes sense it might be faster for you to just wire it up as I'm pretty unfamiliar with the widget library available here. Or if you want me to do it and you can point me to the basic set of components I should look to combine like |
OK so here's what is done or close to done and what else I think we should do:
HELP WANTED on the following:
Code is in the feature/aws-auth-mfa branch on my fork. |
On it! I'll try to get this done today. |
That looks good. Nit: I think if most labels are just capitalized you could Access Key ID title case the labels. |
Also we might want some help text explaining:
|
Oh and where did you put the enable/disable checkbox? |
I wasn't sure whether to keep the checkbox or not because only some of the auth types have it. But, I've decided to make it consistent and add it to all the ones that don't as well. |
* Back end support
Thank you @focusaurus and @gschier for your work in #347, I use it every day :)
At the bottom of #347 you mention supporting AWS multifactor auth via the
AWS_SESSION_TOKEN
.If this were to be implemented I would use it every other day!
My use case:
I want to get
/cat/_indices
and run some aws elasticsearch queries. I do this using a read only AWS_ACCESS_KEY / AWS_SECRET_ACCESS_KEY.When I want to manipulate backups or change some settings I need write access. I generate a temporary AWS_ACCESS_KEY, AWS_SECRET_ACCESS_KEY and AWS_SESSION_TOKEN to do this.
I would love to see a third optional field that lets me put in the AWS_SESSION_TOKEN for times such as these!
The text was updated successfully, but these errors were encountered: