Skip to content

angulo-solido/aws-mfa-terraform

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

23 Commits

LICENSE

LICENSE

 
 

README.md

README.md

 
 

aws-creds-update.sh

aws-creds-update.sh

 
 

Repository files navigation

aws-mfa-terraform

A simple script to update the ~.aws/credentials with temporary MFA credentials.

Usage:

Add/edit 3 profiles to your ~/.aws/credentials:

[profile-for-mfa]
aws_access_key_id = <AWS_ACCESS_KEY_ID>
aws_secret_access_key = <AWS_SECRET_ACCESS_KEY>

[profile-with-updated-token]
aws_access_key_id = REDACTED
aws_secret_access_key = REDACTED
aws_session_token = REDACTED

# Profile(s) to be used

[profile-in-use]
source_profile = profile-with-updated-token
role_arn = arn:aws:iam::123456789012:role/a_nice_role

(REDACTED values will be updated later when you run aws-mfa-terraform)

Add this to a new file ~/.aws/config.vars file:

# aws-mfa-terraform
mfa_token_sn=arn:aws:iam::123456789012:mfa/<AWS_PROFILE_USERNAME>
aws_base_profile=profile-for-mfa
aws_update_profile=profile-with-updated-token
token_duration=129600 # 36h, max

Run the script:

$ ./aws-creds-update.sh

...and test the result:

$ aws s3 ls --profile profile-in-use

About

A simple script to update the ~.aws/credentials with temporary MFA credentials.

Resources

Readme

License

GPL-3.0 license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Shell 100.0%