aws-google-auth
The command line tool "aws-google-auth" is a utility that enables authentication with the AWS (Amazon Web Services) CLI (Command Line Interface) using Google Secure Token Service (STS) credentials.
With this tool, users can authenticate to the AWS CLI using their Google accounts and obtain temporary AWS credentials. It simplifies the authentication process by automatically handling the exchange of Google STS credentials for AWS STS credentials.
By enabling Google STS authentication, users can leverage their existing Google credentials without the need to create and manage separate AWS IAM (Identity and Access Management) users. It can be particularly useful for organizations already using Google for user authentication and wanting to access AWS resources.
To use aws-google-auth, users need to install the tool and configure necessary credentials, such as Google OAuth client ID and secret, AWS IAM roles, and AWS configuration details. Once configured, users can run the "aws-google-auth" command to initiate the authentication process and obtain temporary AWS credentials.
Overall, aws-google-auth provides a convenient way to authenticate to the AWS CLI using Google STS credentials, making the integration between Google and AWS smoother and more streamlined.
List of commands for aws-google-auth:
-
aws-google-auth:tldr:17ad7 aws-google-auth: Log in with Google SSO using the IDP and SP identifiers and set the credentials duration to one hour.$ aws-google-auth -u ${example@example-com} -I ${$GOOGLE_IDP_ID} -S ${$GOOGLE_SP_ID} -d ${3600}try on your machineexplain this command
-
aws-google-auth:tldr:20990 aws-google-auth: Resolve aliases for AWS accounts.$ aws-google-auth -u ${example@example-com} -I ${$GOOGLE_IDP_ID} -S ${$GOOGLE_SP_ID} -d ${3600} -a --resolve-aliasestry on your machineexplain this command
-
aws-google-auth:tldr:6c73a aws-google-auth: Show help information.$ aws-google-auth -htry on your machineexplain this command
-
aws-google-auth:tldr:baf07 aws-google-auth: Log in [a]sking which role to use (in case of several available SAML roles).$ aws-google-auth -u ${example@example-com} -I ${$GOOGLE_IDP_ID} -S ${$GOOGLE_SP_ID} -d ${3600} -atry on your machineexplain this command