Skip to content
/ sso-aws Public

CLI tool which enables you to login and retrieve AWS temporary credentials using SAML with ADFS

License

MIT license
7 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

sergiubodiu/sso-aws

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

8 Commits
cmd
cmd
 
 
saml
saml
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
main.go
main.go
 
 

Repository files navigation

Single Sign-On AWS CLI access using SAML 2.0

CLI tool which enables you to login and retrieve AWS temporary credentials using SAML with ADFS

This is based on python code from How to Implement Federated API and CLI Access Using SAML 2.0 and AD FS.

How you can implement federated API and CLI access for your users using AWS Go SDK:

  • Prompt user for credentials
  • Opens the initial IdP url and follows all of the HTTP302 redirects
  • Programmatically get the SAML assertion
  • Parse the response and extract all the necessary values
  • Exchange the role and SAML assertion with AWS STS service to get a temporary set of credentials
  • Save these creds to an aws profile named "saml"

Requirements

  • Identity Provider
    • ADFS (2.x or 3.x)
  • AWS SAML Provider configured

Usage

go get -u github.com/spf13/cobra/cobra

cobra init github.com/sergiubodiu/sso-aws -a "Sergiu Bodiu" -l MIT

About

CLI tool which enables you to login and retrieve AWS temporary credentials using SAML with ADFS

Resources

Readme

License

MIT license
Activity

Stars

7 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages