minio-go icon indicating copy to clipboard operation
minio-go copied to clipboard

Published 20 hours ago verified publisher icon minio

Add ability to use AWS SSO profile as a credential provider

Open konidev20 opened this issue 1 year ago • 8 comments

I have a feature request, I want the ability to use AWS SSO profile stored in .aws/sso/cache to retrieve temporary access keys and session tokens to my S3 bucket.

Here is the corresponding AWS SDK SSO credential provider in golang for reference. https://pkg.go.dev/github.com/aws/aws-sdk-go-v2/credentials/ssocreds

konidev20 avatar Feb 11 '24 10:02 konidev20

Please test https://github.com/minio/minio-go/pull/1911

harshavardhana avatar Feb 11 '24 17:02 harshavardhana

I'd like to test it in restic, but I have no idea how to do that. But looking at the code, it seems to do the right things.

fdw avatar Feb 12 '24 08:02 fdw

@fdw I can help you with that. I can take a look at this next weekend and help you out.

konidev20 avatar Feb 12 '24 16:02 konidev20

Have you had a chance yet to implement it?

fdw avatar Feb 25 '24 12:02 fdw

Hey @fdw, I need some more time to look in to this.

konidev20 avatar Mar 03 '24 07:03 konidev20

Reporting back after trying out @konidev20's build of restic: It doesn't seem to work for me. I always get some kind of client.BucketExists: 301 Moved Permanently that suggest some permissions problem. I'm also not asked to login. Hope that helps :)

fdw avatar Mar 07 '24 20:03 fdw

Is there anything else I can do to help?

fdw avatar Jun 02 '24 17:06 fdw

Bump? I'd still like this feature very much and would be willing to support, but I can't do it by myself.

fdw avatar Jul 25 '24 05:07 fdw