Secondary account linked to AWS SSO portal not launching in separate container

pyro2927 / AWS_SSO_Containers

Firefox extension to route AWS SSO logins into unique containers.

https://addons.mozilla.org/en-US/firefox/addon/aws-sso-containers/

55 stars 16 forks source link

Secondary account linked to AWS SSO portal not launching in separate container #9

Closed ncs-alexhoward closed 1 month ago

ncs-alexhoward commented 11 months ago

Everything works as expected with all accounts and roles controlled by my organization listed under "AWS Account" on my AWS SSO portal page. However, there is another account we do not own or control but have access to in order to manage the environment. It appears as separately in the portal. When I launch this account, it does not launch in its own container.

Plugin version: 1.3 Firefox version: 116.0.2 (64-bit) - MacOS

pyro2927 commented 10 months ago

@ncs-alexhoward only thing I can guess is that this is due to the other portal using a different federation URL that the plugin is currently not setup to detect. Do you happen to have any other details on the account that you're willing to share?

WTFender commented 10 months ago

@pyro2927 the account he's logging into isn't federated like a typical account in AWS SSO. The account is a generic SAML app (IAM Assume Role) that does hit different federation URLs... I haven't figured out the differences yet though.

pyro2927 commented 10 months ago

I appreciate the heads up @WTFender! I'll have to set up an account like that for myself to see what the API responses look like.

pyro2927 commented 1 month ago

Resolved with #24