Skip to content

winebarrel/ssowrap

BranchesTags

Repository files navigation

ssowrap

CI

ssowrap is a single binary tool that run a command using AWS SSO credentials.

Note

In most cases it is better to use aws configure export-credentials.

Installation

brew install winebarrel/ssowrap/ssowrap

Usage

Usage: ssowrap --aws-profile=STRING <command> [flags]

Arguments:
  <command>    Command and arguments.

Flags:
  -h, --help                                   Show help.
      --aws-profile=STRING                     AWS CLI profile ($AWS_PROFILE).
      --aws-config-file="~/.aws/config"        AWS CLI config file location ($AWS_CONFIG_FILE).
      --awssso-cache-dir="~/.aws/sso/cache"    AWS SSO token cache dir location ($AWS_SSO_CACHE_DIR).
      --version

$ export AWS_PROFILE=my-profile
$ aws sso login
$ ssowrap env | grep ^AWS_

$ cat ./list-users.sh
#!/bin/sh
curl -L "https://iam.amazonaws.com/?Action=ListUsers&Version=2010-05-08" \
  --aws-sigv4 "aws:amz:us-east-1:iam" \
  --user "$AWS_ACCESS_KEY_ID:$AWS_SECRET_ACCESS_KEY" \
  -H "X-Amz-Security-Token: $AWS_SESSION_TOKEN"

# Call AWS IAM API using curl with AWS SSO credentials.
$ ssowrap ./list-users.sh

About

ssowrap is a single binary tool that run a command using AWS SSO credentials.

Topics

golang aws sso

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 5

v0.1.4 Latest
Feb 23, 2025
+ 4 releases

Packages

 
 
 

Contributors 3

  •  
  •  
  •  

Languages