joelittlejohn/.bash_profile_snippet.sh

Last active June 18, 2020 11:25

Star (0) You must be signed in to star a gist
Fork (0) You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/joelittlejohn/08e978aa850e0a1f4f957245669f6d67.js"></script>
Save joelittlejohn/08e978aa850e0a1f4f957245669f6d67 to your computer and use it in GitHub Desktop.

Download ZIP

Once-per-week rotation of AWS keys stored by aws-vault (alternative to crontab, useful for keychain access)

Raw

.bash_profile_snippet.sh

[ "$(find ~/.rotate -mtime -7 2>/dev/null)" ] ||  (for p in $(aws-vault list --profiles | grep -v default | grep -v mfa); do aws-vault rotate -n $p; done && touch ~/.rotate)

Author

joelittlejohn commented Jun 18, 2020 •

edited

Loading

Once per week, you'll find that this process happens when you start a terminal. This allows access to the keychain without providing a keychain password in a crontab entry.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment