Skip to content
Chrome extension that generates AWS STS tokens from SAML console login
JavaScript Python CSS HTML Shell Batchfile
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
app
host
.gitignore
README.md
diagram.png

README.md

awsstssaml

Generate temporary AWS access tokens from an SSO login to the AWS console.

requirements

install

  1. install AWS STS SAML extension
  2. install host app

security

  • permissions scoped to signin.aws.amazon.com/saml
  • saml assertion expires after 5 minutes
  • sts tokens expire after 1 hour
  • tokens are not stored in the browser / extension

diagram

why

Increase your security posture by generating temporary AWS access tokens. Ideal for developers, engineers or users that require access to the AWS CLI, but want to protect themselves from device compromise.

Creating and storing permanent access tokens is prone to security issues. Leveraging an existing SSO/SAML login flow with your AWS account, you can avoid this pitfall, reduce key management, and maintain user attribution in AWS.

You can’t perform that action at this time.