Reusing Okta Session ID

[smashling]

Problem Statement

It is required that MFA must be used every time a new profile is made or refreshed.

Solution

The Session ID cookie is saved and reused so that the session will refresh as long as the session is still valid.

[AlainODea]

Tested and validated. @mraible this is ready to merge.

@smashling this is an incredible user experience boost. Awesome work 🎉

[atifrasheed79]

Gents, sorry couldn't find this in documentation and I have tried various utils available in .okta/bin but couldn't find much help as how can I switch my role within the same session.
When I authenticate via okta, I am presented with multiple roles, but after selecting one, I can't selection another within the same authenticated session.
I just upgraded myself to 2.0.0, was using 1.0.12 probably and in the previous version awscli sts get-caller-identity always started a new auth session. The new version does use the existing auth session but I couldn't find an option to change my role.
Please advise!

P.S. I am getting a java exception when I try to work with okta verify (push). It was working fine in the older version. I will raise a separate ticket for this.

[smashling]

The funcionality the last time I used it was that you type in the role you want to use, followed by the command, and it should bring up your list of available roles when it doesn't recognise the role you put in. As an example, you type research S3 ls to list your research buckets, then dev S3 ls to list the buckets in dev. It won't recognize dev because it doesn't have a local cache for it, and ask you to pick the role for it.

…

On Thu., Apr. 11, 2019, 1:14 a.m. Atif Rasheed, ***@***.***> wrote: Gents, sorry couldn't find this in documentation and I have tried various utils available in .okta/bin but couldn't find much help as how can I switch my role within the same session. When I authenticate via okta, I am presented with multiple roles, but after selecting one, I can't selection another within the same authenticated session. I just upgraded myself to 2.0.0, was using 1.0.12 probably and in the previous version awscli sts get-caller-identity always started a new auth session. The new version does use the existing auth session but I couldn't find an option to change my role. Please advise! P.S. I am getting a java exception when I try to work with okta verify (push). It was working fine in the older version. I will raise a separate ticket for this. — You are receiving this because you were mentioned. Reply to this email directly, view it on GitHub <#83 (comment)>, or mute the thread <https://github.com/notifications/unsubscribe-auth/Ah88qVKclijr3coibJulb-sA7NqEngeMks5vfq-jgaJpZM4SZ96j> .