venth
Issues with login
When I try to use it I get the proper notification on my phone to approve the login but the application doesn't wait but gives me this error:
aws-adfs login --env --adfs-host sso.XXXXXX.com 2018-11-08 21:18:07,852 [authenticator authenticator.py:authenticate] [18295-MainProcess] [139640110843712-MainThread] - ERROR: Cannot extract saml assertion. Re-authentication needed? 2018-11-08 21:18:10,206 [authenticator authenticator.py:authenticate] [18295-MainProcess] [139640110843712-MainThread] - ERROR: Cannot extract saml assertion. Re-authentication needed? This account does not have access to any roles
Any idea?
I can confirm exactly same behavior with:
Xubuntu LTS 18.05 Python 3.6.6 aws-adfs 1.12.2 aws/cli 1.14.44
@rrkraft though first check whether your "normal" web UI login works, as in my case I see though role selection displayed in the browser but after choosing one I get access denied. So that could be an issue with the identity provider configuration. Sure, not clear why aws-adfs doesn't list roles.
UPD now as ADFS account/role selection is properly configured, there is still same error with aws-adfs.
I have the same problem. I have tried different methods of authentication (push to phone, sms, call) as the sms is waiting for user input of the code, push notification only sends request to allow or deny access and it does not work too. Strange is that when i enter username, push is sent and when i enter password, another push is sent (tried to allow them before i put password but no success)
You should be able to get more details about what's going on by adding --verbose to your aws-adfs login command, e.g. aws-adfs --verbose login ....
Note: you should have traces of the HTTP requests / responses that are happening. In case you want to share some parts here, be careful to redact all sensitive content such as login, tokens, etc.
