-
Notifications
You must be signed in to change notification settings - Fork 4k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add support for AWS Single Sign-On #3447
Comments
@brandond, Thank you for reaching out. This seems like a reasonable feature request marking the label as such. Can you tell me more how you would like this feature to work or provide an example. Thanks. |
Other tools in this space use interactive prompts, much like the
I haven't been able to find any documentation on APIs for configuring or consuming SSO, but a quick look at the developer tool network log in my browser indicates that there is a REST service behind the console. |
@brandond, Thank you for your feedback. It sound reasonable and this issue will remain labeled as feature request. Thanks. |
+1 to this, would make our lives much easier |
We need CLI support. Right now our devs are stuck logging in and out of the SSO screen to get credentials every hour. |
+1 For this feature |
2 similar comments
+1 For this feature |
+1 For this feature |
100% required. |
+1 |
+1 for this feature. AWS SSO became available in our region (Sydney), but sadly it doesn't look like we can use it until the aws cli supports gaining access programatically. |
+1 for this. This would make a huge business impact. Atleast for us. |
+1 |
It's been months. Where is the support for AWS SSO? If it's going to be a competitor to Okta, Keycloak, or ADFS, it needs CLI methods to access credentials. |
+1 having AWS Landing Zone with integrated SSO and can't use CLI with it, is no good product solution ... please add this feature |
+1 |
1 similar comment
+1 |
+1 but consider also SAML IdPs which require you to login via web |
+1 |
+1 Yes please, this would save a lot of time and hassle. |
+1 |
+1 +1 +1 |
+1 |
AWS-CLI and AWS-SDK support would be nice |
+1 |
+1 we still updating our credentials files every hour with keys from the browser |
+1 |
This was driving me crazy, until AWS implement a new feature it is possible to extend this to up to 12 hours to make it less burdensome. |
+100 |
+600 |
+1 |
Would be good also to add support for cloud-formation and python sdk. |
longer session duration is nice, but would be great if we could programmatically authenticate without the need to go through a browser; helps automate and simplify local dev. |
So I got tired of waiting and made a small tool for this. It's still very early and could be improved but it has worked for me for the last couple of weeks. |
This is the current challenge that prohibiting us from using SSO and keeping our developers staying on GCP. Most of our Dev's are using Windows Boxes w/ Visual Studio. |
Hi @justnance, any progress update on this? This is a very critical piece for many, in determining whether they can utilize AWS Directory Service / SSO, or need to go a different route (e.g., Okta, etc). Hoping there may be light at the end of this tunnel soon...? |
Is there a way to create permission sets for AWS SSO via CLI? |
It is absolutely ridiculous that no one has responded to this in almost 18 months. |
finally, it's here with AWS CLI v2 preview. works great for me. thanks! https://aws.amazon.com/blogs/developer/aws-cli-v2-now-supports-aws-single-sign-on/ |
Closing issue. It is now supported in AWS CLI v2 developer preview and instructions on how to configure it can be found in the v2 user guide: https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-sso.html |
Is there a way to do login programatically. We need to do this from a script to be able to connect to k8s cluster created in AWS control tower managed account. |
Mandatory browser interaction seems absurd. Are there any plans to improve this with any of the suggestions, like |
AWS recently released a SSO service that integrates with Organizations and the AWS Directory Service:
https://docs.aws.amazon.com/singlesignon/latest/userguide/what-is.html
Currently, the only way to consume this service is via a browser. Shortcuts are provided to copy and paste shell commands to export the appropriate environment variables, but this is unacceptable. Users should not need to use a web browser to authenticate with CLI tools.
Other tools such as aws-adfs exist to do this for ADFS, Octa, etc, but there are not currently any for AWS SSO. Since this is a first-party AWS service, aws-cli should support it.
The text was updated successfully, but these errors were encountered: