search

tilfinltd / aws-extend-switch-roles

Extend your AWS IAM switching roles by Chrome extension, Firefox add-on, or Edge add-on
https://goo.gl/0QFjow
MIT License
1.31k stars 140 forks source link

Question - How to get the Base/Org level account as an option? #281

Open tyu0912 opened 1 year ago

tyu0912 commented 1 year ago

Hello good peoples. Wondering if anyone knows how to do this. I'm having some trouble getting the base account to show up as a potential choice for switching. Is this possible?

Currently, my setup looks something like this and basically I can't get Base to show up as an option. I'm wondering if it has something to do with how I've defined role_name under Base which is a federated role that begins with AWSReservedSSO.

Any help is appreciated!

[Base]
aws_account_id = 000000000
target_role_name = MySwapRole
role_name = MySuperRole

[Account1]
aws_account_id = 1111111111
source_profile = Base

[Account2]
aws_account_id = 222222222
source_profile = Base
tilfin commented 1 year ago

For SSO login, only the permission set name must be specified in the role_name.

Perhaps the following logic is not working correctly due to a specification I am not yet aware of. https://github.com/tilfinltd/aws-extend-switch-roles/blob/56f8717294ef78a5d949045cd7f7f899b24e2cce/src/lib/profile_set.js#L86-L94