Add automatic maximum duration sensing

[madeddie]

With the --auto-duration flag the application will try the maximum duration, and if that fails use the maximum duration given in the error message.

Also, the minimum duration allowed by AWS IAM is 900, not anything >0

[coveralls]

Coverage decreased (-0.5%) to 48.605% when pulling 8550387d9157d75c2ef655803d33ba8265c12954 on madeddie:auto_duration into b5ee2478b04e3f5db8777e201663635006fcf93b on cevoaustralia:master.

[stevemac007]

When testing this it seems that the MaxDuration is not always returned. For one of my accounts I get the following error message. An error occurred (ValidationError) when calling the AssumeRoleWithSAML operation: The requested DurationSeconds exceeds the MaxSessionDuration set for this role.

This causes

ERROR:root:'NoneType' object has no attribute 'group'
Traceback (most recent call last):
  File "/Users/steve/development/cevo/aws-google-auth/aws_google_auth/__init__.py", line 78, in cli
    process_auth(args, config)
  File "/Users/steve/development/cevo/aws-google-auth/aws_google_auth/__init__.py", line 278, in process_auth
    print("Credentials Expiration: " + format(amazon_client.expiration.astimezone(get_localzone())))
  File "/Users/steve/development/cevo/aws-google-auth/aws_google_auth/amazon.py", line 64, in expiration
    return self.token['Credentials']['Expiration']
  File "/Users/steve/development/cevo/aws-google-auth/aws_google_auth/amazon.py", line 47, in token
    self.config.duration)
  File "/Users/steve/development/cevo/aws-google-auth/aws_google_auth/amazon.py", line 106, in assume_role
    if m.group(1):
AttributeError: 'NoneType' object has no attribute 'group'

I'll add another m is not None guard here to protect for these cases.

[madeddie]

Aw meh, probably has to do with permissions. The AWS documentation about this is lacking. Sorry about the bug.