Add flag to exclude existing AWS groups when sync-method=users_groups

awslabs / ssosync

Populate AWS SSO directly with your G Suite users and groups using either a CLI or AWS Lambda

Apache License 2.0

528 stars 182 forks source link

Closed yesteph closed 8 months ago

yesteph commented 1 year ago

Can resolve #141 using a regular expression on groups.

Description of changes:

Add ignore-aws-groups flag to filter existing AWS groups when sync-method=users_groups. If the flag is not provided, no change on behaviour.

By submitting this pull request, I confirm that you can use, modify, copy, and redistribute this contribution, under the terms of your choice.

ChrisPates commented 8 months ago

This functionality needs a more robust approach to be suitable for all ssosync users.

This items has been merged into a more complete feature request Configurable handling of 'manually created' Users/Groups in IAM Identity Center #179, please review and provide feedback on that item.