README
¶
awsmfa (AWS MFA Refresher)
awsmfa replaces the config and credentials for MFA in AWS.
Usage
$ awsmfa [options] [token-code]
- The config file uses
~/.aws/configby default. You can override it with the environment variableAWS_CONFIG_FILE. - The credentials file uses
~/.aws/credentialsby default. You can override it with the environment variableAWS_SHARED_CREDENTIALS_FILE.
Options
--profile string
The name of the profile from which the session can be obtained (default `default`)
--mfa-profile-name string
MFA profile name (default `mfa`)
--duration-seconds int64
Session expiration duration secounds (default `43200`)
--serial-number string
AWS serial number. `--serial-number` is required
--quiet bool
if enabled, log is not printed in the console. (default `false`)
Example
$ awsmfa --serial-number arn:aws:iam::123456789012:mfa/future-architect --profile my-profile 123456
2021/02/28 11:01:49 {
Credentials: {
AccessKeyId: "AKIAIOSFODNN7EXAMPLE",
Expiration: 2021-02-28 14:01:49.689 +0000 UTC,
SecretAccessKey: "wJalrXUtnFEMI/K7MDENG/bPxRfiCYzEXAMPLEKEY",
SessionToken: "AQoEXAMPLEH4aoA...."
}
}
initial
.aws/config
| Before | After |
|---|---|
|
|
.aws/credentials
| Before | After |
|---|---|
|
|
next time
Update aws_access_key_id, aws_secret_access_key and aws_session_token in the target section (default is mfa) of .aws/credentials.
Installation
- From binary
# binary
$ curl -sfL https://raw.githubusercontent.com/future-architect/awsmfa/master/install.sh | sudo sh -s -- -b /usr/local/bin
- From source code
# go get
$ go get github.com/future-architect/awsmfa/cmd/awsmfa
Documentation
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.