Closed grettir closed 6 years ago
Thanks, I'll look into this.
I think that this should be fixed now - If mfa_serial or aws_mfa_serial is found, it will be used. If it is specified in the [profile], this will overwrite anything coming from upstream.
Currently opinel looks for the custom configuration variable
aws_mfa_serial
in the ~/.aws/credentials file to get the arn of the MFA device.For instance, my current
~/.aws/credentials
file might look like this:However, the AWS/boto3 configuration variables have changed a bit since opinel was first introduced. When assuming roles, boto3 now looks for the arn of the MFA device via the
mfa_serial
variable in the `~/.aws/config file.It would be nice if opinel used the
mfa_serial
variable in the ~/.aws/config file, too, both for assuming roles and other standard operations.So a typical configuration might look something like this…
In
~/.aws/credentials
:In
~/.aws/config
: