You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I've written several of these tools for clients for azuread, google and other IDPs, and I was pleased to come across this tool for google, thanks for your hard work and publishing it!
Based on what I've done before, my 2 main usability enhancements would be:
The tool should save profiles automatically with the profile name <sp_id>:<role_arn> or <profile>:<role_arn> - as it stands it only saves it with under the profile implied by the -p flag or as the current AWS_PROFILE. This has deficiencies if a user is using multiple terminals in parallel and expects aws-google-auth to not pollute another terminals credentials. Furthermore it enforced discipline on the user to have to remember their profilenames. It would be better to autogenerate/autoinfer this to have both parallelism and negate the user to have to remember things.
It would be awesome to have this written in go so you could publish static binaries that dont need python to be installed.
Feel free to ignore, but thought I'd pass those on in case you were interested in those ideas.
Thanks again for this tool!
The text was updated successfully, but these errors were encountered:
Hi,
I've written several of these tools for clients for azuread, google and other IDPs, and I was pleased to come across this tool for google, thanks for your hard work and publishing it!
Based on what I've done before, my 2 main usability enhancements would be:
The tool should save profiles automatically with the profile name
<sp_id>:<role_arn>
or<profile>:<role_arn>
- as it stands it only saves it with under the profile implied by the-p
flag or as the current AWS_PROFILE. This has deficiencies if a user is using multiple terminals in parallel and expects aws-google-auth to not pollute another terminals credentials. Furthermore it enforced discipline on the user to have to remember their profilenames. It would be better to autogenerate/autoinfer this to have both parallelism and negate the user to have to remember things.It would be awesome to have this written in go so you could publish static binaries that dont need python to be installed.
Feel free to ignore, but thought I'd pass those on in case you were interested in those ideas.
Thanks again for this tool!
The text was updated successfully, but these errors were encountered: