8000 Use AWS SDK to load sso-session sections enable multiple sso users by JoshuaWilkes · Pull Request #530 · fwdcloudsec/granted · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

Use AWS SDK to load sso-session sections enable multiple sso users #530

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Nov 6, 2023
Merged

Use AWS SDK to load sso-session sections enable multiple sso users #530

merged 3 commits into from
Nov 6, 2023

Conversation

JoshuaWilkes
Copy link
Contributor
@JoshuaWilkes JoshuaWilkes commented Oct 24, 2023
edited
Loading

What changed?

In order to support uses who login with multiple SSO users we needed to update our implementation of sso-session section support.

When it was first added, the AWS sdk did not yet have support for it, this has since been added so code related to loading those sections has been updated/removed in favour of the sdk.

Why?

How did you test it?

The following config is an example of how you can have 2 profiles that login to the same account with a different aws user by using an sso-session section for one of them.

You can also use an sso section for both your users and their config can be the same, they just need different names

make cli
dassume profile-1
dassume profile-2

[sso-session user-1]
sso_start_url  = https://example.awsapps.com/start
sso_region     = ap-southeast-2

[profile profile-1]
sso_session = user-1
sso_account_id = 12345678912
sso_role_name  = AWSAdministratorAccess
region                 = ap-southeast-2

[profile profile-2]
sso_start_url  = https://example.awsapps.com/start
sso_region     = ap-southeast-2
sso_account_id = 12345678912
sso_role_name  = AWSAdministratorAccess
region                 = ap-southeast-2

Potential risks

Is patch release candidate?

Link to relevant docs PRs

@JoshuaWilkes JoshuaWilkes changed the title Add granted_sso_user key to config to allow multiple sso users Use AWS SDK to load sso-session sections enable multiple sso users Oct 25, 2023
@JoshuaWilkes JoshuaWilkes merged commit 98f3908 into main Nov 6, 2023
@JoshuaWilkes JoshuaWilkes deleted the Allow-distinct-sso-users-to-be-used-with-granted-based-on-aws-config-key branch November 6, 2023 06:34
@JoshuaWilkes JoshuaWilkes mentioned this pull request Nov 7, 2023
Merged
@simpson-ross simpson-ross mentioned this pull request May 27, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@JoshuaWilkes
0