prolane / samltoawsstskeys

Google Chrome Extension which converts a SAML 2.0 assertion to AWS STS Keys.
MIT License
139 stars 91 forks source link

Failing to download credentials #24

Closed sd3z closed 6 years ago

sd3z commented 6 years ago

Hello,

It looks like if a user only has a single SAML role, the extension fails to download the credentials file.

I've done a little digging and it appears that the Chrome Extension is being canceled due to the SAML https://signin.aws.amazon.com/saml response being a Redirect 302.

I've tried to add "" to the manifest file, but I think the response doesn't have the payload that the plugin is expecting to pull the role information, so its not a simple permission issue.

Steps to reproduce

If the https://signin.aws.amazon.com/saml screen asks you to select the Role, then the extension will work.

If anyone else has this issue a simple workaround is to add a second SAML role to the account. It doesn't need to work (I've set my to DONOTUSE), and get users to select their normal role. The extension seems to work fine.

sd3z commented 6 years ago

I'm the worst. Please ignore this issue as can see you've fixed the bug in the latest 2.4 version. I've actually forked your project and was looking at that revision.