2019-10-03 08:59:00 +01:00
|
|
|
# aws-google-auth
|
|
|
|
|
2021-05-20 21:13:41 +01:00
|
|
|
> Command-line tool to acquire AWS temporary (STS) credentials using Google Apps as a federated (Single Sign-On) provider.
|
2019-10-03 08:59:00 +01:00
|
|
|
> More information: <https://github.com/cevoaustralia/aws-google-auth>.
|
|
|
|
|
2021-05-14 01:42:15 +01:00
|
|
|
- Log in with Google SSO using the IDP and SP identifiers and set the credentials duration to one hour:
|
2019-10-03 08:59:00 +01:00
|
|
|
|
|
|
|
`aws-google-auth -u {{example@example.com}} -I {{$GOOGLE_IDP_ID}} -S {{$GOOGLE_SP_ID}} -d {{3600}}`
|
|
|
|
|
2021-05-14 01:42:15 +01:00
|
|
|
- Log in [a]sking which role to use (in case of several available SAML roles):
|
2019-10-03 08:59:00 +01:00
|
|
|
|
|
|
|
`aws-google-auth -u {{example@example.com}} -I {{$GOOGLE_IDP_ID}} -S {{$GOOGLE_SP_ID}} -d {{3600}} -a`
|
|
|
|
|
|
|
|
- Resolve aliases for AWS accounts:
|
|
|
|
|
|
|
|
`aws-google-auth -u {{example@example.com}} -I {{$GOOGLE_IDP_ID}} -S {{$GOOGLE_SP_ID}} -d {{3600}} -a --resolve-aliases`
|
|
|
|
|
|
|
|
- Show help information:
|
|
|
|
|
|
|
|
`aws-google-auth -h`
|