Ben Kehoe
Ben Kehoe
Currently, `aws-sso-util check` can tell you if you do or don't have access to a particular account and/or role. It's doing access enumeration in some of these cases, so there...
At the very least it needs to support searching the SSO sessions in the config for instance information. https://github.com/boto/botocore/blob/5958cc82edee760308425fbe3e09bc73466b1766/botocore/tokens.py#L173 Also `aws-sso-util configure` should have support for writing sessions and using...
The documentation exists, but in the macro directory there should be a pointer over there.
* `lookup`: find groups for member, find members for groups * `assignments`: currently lists principals with access. With identity store functionality, it could list users even when the principal is...
It was receiving updates, but I should see if that's still true.
It's still going to be called `aws-sso-util` but the docs should talk about AWS IAM Identity Center rather than AWS SSO.
When specifying an `AWS::Serverless::Function` without a role, SAM creates a role and attaches the `AWSLambdaBasicExecutionRole` managed policy to it. This provides write permissions for CloudWatch Logs, in particular: ```json {...
### Describe the feature The new support for `sso_session` in config is great! But it's allowed to create a profile that has *both* `sso_session` and `sso_start_url` and `sso_region`. This is...
~I'm looking forward to the [AWS CLI v2 allowing `aws login` to connect with AWS SSO](https://aws.amazon.com/blogs/developer/aws-cli-v2-now-supports-aws-single-sign-on/). I'm also excited that the auth token retrieved by the CLI is managed by...
This app can be deployed once to an account and used by multiple state machines. Any code that uses the app shouldn't have to hardcode the Lambda function name or...