noqcks
commented
5 years ago I would love to see this. This is the main thing preventing us from switching to SSO for AWS.
It's pretty cumbersome to be logging in with MFA + captcha every day.
Open Velyks opened 5 years ago
noqcks
commented
5 years ago I would love to see this. This is the main thing preventing us from switching to SSO for AWS.
It's pretty cumbersome to be logging in with MFA + captcha every day.
stevemac007
commented
5 years ago It would be awesome to do that - I know other SaaS solutions for SSO do have these options.
Off the cuff I don't think there would be an easy way to do this. It would require some sort of request and callback function from Google itself.
Anyone with suggestions on the way to implement this - let us know and we can take a crack.
danielhodder
commented
5 years ago I was curious about this concept and so I ended up spending the afternoon playing with ElectronJS. I've made https://github.com/danielhodder/electronjs-aws-saml-extractor which can be registered as a credential process in the AWS CLI. Very rough and ready but it works for my use case at least.
Would it be possible to make aws-google-auth pop up the standard google auth webpage (Normally lets you pick a google account) instead of asking for username+password in the CLI?
This would be nice as I'm already logged into google and so wouldn't need to re-enter my user+pass, and it would also dodge the annoying captcha challenge.