A tool to automate AWS API access using a SAML compliant identity provider. This project is inspired by the ruby version https://github.com/electronicarts/awsudo, and rewrite it in golang, and do some enhancements.
- okta account
- awscli, 1.16.17+
- AWS Role setup
- Docker, for development
- Linux/macOS, not test in Windows now
- Rewrite with golang, use cross-compile to create one single binary with no dependencies
- Merge
.awsudo
and.awsudo_roles
configs to single one config byTOML
, and addawsudo configure
command to setup the config, just likeaws configure
style - Merge
awsudo agent
andawsudo
command, just use one command to do all tasks - Add
AWS Role Session Duration
andAwsudo Agent Expiration
support, more secure - Add command
awsudo stop
to close agent server gracefully - Add output log for monitor and debug
- Add docker support for development
- Only support okta now
make install
and uninstall by:
make uninstall
awsudo help
awsudo configure
awsudo prod-env aws s3 ls
It will call assumeRole API to fetch the credentials, and set them as environment variables, then to run aws command.
make test
, run unit test, coverage test, static analyticsmake run
, just to run help command to as a start pointexport AWSUDO_DEBUG=true; make run CMD=stop
, to runstop
command with debug mode
make build
, cross compile binaries, and put intodist/bin
directorymake debug
, usedlv
to do thegdb-style
debugmake dev
, build docker image used in dev
Waiting for your pull request
MIT Licence