Readme
Source Code: https://github.com/browniebroke/stsmfa-cli
Creating temporary profiles for multi-factor auth (MFA) protected accounts using AWS STS is too hard. This is a small CLI that helps with that.
Via Homebrew:
brew install browniebroke/tap/stsmfa-cli
Via pip, pipx, or your favourite Python package manager:
pip install stsmfa-cli
The CLI is a simple command stsmfa that creates a profile for a temporary session protected by MFA.
Assuming your ~/.aws/credentials file looks like this:
[my-profile-name]
aws_access_key_id = AKIAXXXXX
aws_secret_access_key = xxxx
mfa_serial = arn:aws:iam::123456789010:mfa/first.last
When running, for example:
stsmfa --profile my-profile-name 123456
This will create a session using the MFA serial defined under my-profile-name with the one-time password 123456, and save the required AWS key, secret and token under as a new profile my-profile-name-mfa in you ~/.aws/credentials file.
Now to use that session, you just need to set AWS_PROFILE=my-profile-name-mfa.
If your MFA serial is defined under the default profile, you don't need to specify the --profile option.
Thanks goes to these wonderful people (emoji key):
 Bruno Alla 💻 🤔 📖 |
This project follows the all-contributors specification. Contributions of any kind welcome!
This package was created with Copier and the browniebroke/pypackage-template project template.
FAQs
A small CLI to help with creating AWS profile for MFA protected sessions
We found that stsmfa-cli demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
CISA launched a new project called Vulnrichment to enrich CVEs with details that help prioritize patching and mitigation efforts, as the NVD backlog of unenriched CVEs awaiting analysis surpasses 10,000.
Security News
Socket is joining forces with CISA and other industry leaders at the RSA Conference to sign the Secure by Design pledge, committing to uphold the highest security standards in our products.
Research
The Socket research team breaks down a sampling of malicious packages that download and execute files, among other suspicious behaviors, targeting the popular Discord platform.