Daily Hack #day71 - aws-sso-util

Daily Hack #day71 - aws-sso-util

Making life with Identity Center a little easier

AWS IAM Identity Center (formerly AWS SSO) has some rough edges, and aws-sso-util is here to smooth them out, hopefully temporarily until AWS makes it better.

aws-sso-util contains utilities for the following:

  • Configuring .aws/config

  • Logging in/out

  • AWS SDK support

  • Looking up identifiers

  • CloudFormation

The underlying Python library for Identity Center authentication is aws-sso-lib, which has useful functions like interactive login, creating a boto3 session for specific a account and role, and the programmatic versions of the lookup functions in aws-sso-util.

aws-sso-util supersedes aws-sso-credential-process, which is still available in its original form here. Read the updated docs for aws-sso-util credential-process here.

Quickstart

  1. I recommend you install pipx, which installs the tool in an isolated virtualenv while linking the script you need.

Mac and Linux:

brew install pipx
pipx ensurepath

Other:

python3 -m pip install --user pipx
python3 -m pipx ensurepath
  1. Install
pipx install aws-sso-util
  1. Learn
aws-sso-util --help

Documentation

See the full docs at https://github.com/benkehoe/aws-sso-util