search

okta / okta-aws-cli

A CLI for having Okta as the IdP for AWS CLI operations
https://github.com/okta/okta-aws-cli
Other
128 stars 34 forks source link

Using --all-profiles with no access to ListAccountAliases api call #218

Open azisi opened 4 months ago

azisi commented 4 months ago

When using --all-profiles to get all available credentials, some roles may not have access to the ListAccountAliases api call. An example is the AWS Managed PowerUserAccess role. This produces a non-intuitive profile name in .aws/credentials.

Furthermore, if you have multiple cases in the same idp the failover default name is identical and credentials get overwritten.

It would be nice to add a section to the config yaml for known aliases in order to render the names correctly.

I can provide a PR if this feature would be considered.

monde commented 4 months ago

Thanks @azisi that would be awesome if you could make time to do a PR for this enhancement!

mervin-hemaraju-cko commented 2 months ago

Hey @azisi, any update on this one? I am getting the same issue as well!