Simple CLI tool which enables you to login and retrieve AWS temporary credentials for IAM users.
- Access Key and Secret Key stores $HOME/.aws/credentials
- AWS IAM User account
TBA
Usage:
shell [command]
Available Commands:
help Help about any command
shell Generates AWS STS access keys for use on the shell by wrapping the result in eval
version display release version
Flags:
-h, --help help for shell
-p, --profile string AWS Profile name in $HOME/.aws/credentials (default "default")
-t, --token string Current MFA value to use for STS generation
Use "shell [command] --help" for more information about a command.
If the shell sub-command is called, mfa4aws will output the following temporary security credentials:
export AWS_ACCESS_KEY_ID=DDFHAFG....UOCA
export AWS_SECRET_ACCESS_KEY="JSKA...HJ2F
export AWS_SESSION_TOKEN=ZQ...1VVQ==
export AWS_SECURITY_TOKEN=ZQ...1VVQ==
export X_PRINCIPAL_ARN=arn:aws:iam::3678236812376:user/johnsmith
If you use eval $(mfa4aws shell) frequently, you may want to create a alias for it:
zsh:
alias m4a="function(){eval $( $(command mfa4aws) shell --token=$@);}"
bash:
function m4a { eval $( $(which mfa4aws) shell --token=$@); }
make build
The exec sub command will export the following environment variables.
- AWS_ACCESS_KEY_ID
- AWS_SECRET_ACCESS_KEY
- AWS_SESSION_TOKEN
- AWS_SECURITY_TOKEN
- X_PRINCIPAL_ARN
This code is Copyright (c) 2018 Cameron Newman and released under the MIT license. All rights not explicitly granted in the MIT license are reserved. See the included LICENSE.md file for more details.