-
-
Save pecigonzalo/d10fabb75cc5b957a6f897de3a15418c to your computer and use it in GitHub Desktop.
AWS SSO + Codespaces
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # video demo - https://www.youtube.com/watch?v=Y8TyE_DNds8 | |
| mkdir ~/.tmp && cd $_ | |
| # install aws-cli v2 | |
| curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip" && \ | |
| unzip awscliv2.zip && \ | |
| sudo ./aws/install | |
| mkdir ~/.bin && cd $_ | |
| wget https://raw.githubusercontent.com/pahud/vscode/main/.devcontainer/bin/aws-sso-credential-process && \ | |
| chmod +x aws-sso-credential-process | |
| aws configure set credential_process ${HOME}/.bin/aws-sso-credential-process | |
| touch ~/.aws/credentials && chmod 600 $_ | |
| aws configure sso --profile default | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # this script will generate everything including the ~/.aws/config file for you. | |
| # make sure you modify the variables before you run this script. | |
| KUBECTL_URL='https://amazon-eks.s3.us-west-2.amazonaws.com/1.20.4/2021-04-12/bin/linux/amd64/kubectl' | |
| AWS_CLI_V2_URL='https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip' | |
| CRED_PROCESS_URL='https://raw.githubusercontent.com/pahud/vscode/main/.devcontainer/bin/aws-sso-credential-process' | |
| DEFAULT_PROFILE='default' | |
| DEFAULT_REGION='ap-northeast-1' | |
| DEFAULT_OUTPUT='json' | |
| SSO_START_URL='https://pahud-sso.awsapps.com/start' | |
| SSO_REGION='us-east-1' | |
| SSO_ACCOUNT_ID='903779448426' | |
| SSO_ROLE_NAME='AdministratorAccess' | |
| PROJECT_DIR="${PWD}" | |
| mkdir ~/.tmp && cd $_ | |
| # install aws-cli v2 | |
| curl "${AWS_CLI_V2_URL}" -o "awscliv2.zip" && \ | |
| unzip awscliv2.zip && \ | |
| sudo ./aws/install | |
| # install kubectl | |
| RUN curl -o kubectl "${KUBECTL_URL}" && \ | |
| chmod +x kubectl && \ | |
| mv kubectl /usr/local/bin/kubectl | |
| mkdir ~/.bin && cd $_ | |
| wget "${CRED_PROCESS_URL}" && \ | |
| chmod +x aws-sso-credential-process && \ | |
| cd ${PROJECT_DIR} | |
| aws configure set credential_process ${HOME}/.bin/aws-sso-credential-process | |
| touch ~/.aws/credentials && chmod 600 $_ | |
| echo "generate the ~/.aws/config" | |
| cat << EOF > ~/.aws/config | |
| [${DEFAULT_PROFILE}] | |
| credential_process = /home/codespace/.bin/aws-sso-credential-process | |
| sso_start_url = ${SSO_START_URL} | |
| sso_region = ${SSO_REGION} | |
| sso_account_id = ${SSO_ACCOUNT_ID} | |
| sso_role_name =${SSO_ROLE_NAME} | |
| region = ${DEFAULT_REGION} | |
| output = ${DEFAULT_OUTPUT} | |
| EOF | |
| # skip the configuration as we just generated the config above | |
| #aws configure sso --profile default | |
| # login to authenticate again | |
| aws sso login |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment