This repo houses the code for the "How does Cloud Glance" blog series which explains how Cloud Glance works. Essentially Cloud Glance has just built a UI on top of these scripts and has some extra bells and whistles.
Blog: How to get AWS credentials(temporary) for IAM User, Role and SSO with scripts
This blog goes through what is required to get temporary AWS credentials for IAM Users, Roles and SSO.
We show how to configure each method's AWS .aws/config and .aws/credentials file. So that we can use both the
AWS CLI or these scripts alongside each other. We will also talk about the AWS CLI equivalent commands and their
shortcomings.
These scripts do not handle caching and the AWS IAM User and Role solutions still store long-lived credentials on disk in plain text. You can also extend the duration longer than 1 hour in certain scenarios. This is where Cloud Glance makes your life easier:
- ✅ Don't worry about strange MFA caveats (explained in this article)
- ✅ Open multiple AWS consoles at the same time with Firefox Containers
- ✅ Works alongside the AWS CLI and your existing
.aws/credentialsand.aws/config - ✅ Securely stores long-lived IAM credentials on disk, this encryption is opt-in
- ✅ Deep bookmark links directly to service resources, ex: Prod CloudWatch Dashboard
There are many more features of CloudGlance including managing Bastion port forwarding and also Tracked Security Groups that sync your computer IP with the rules in an AWS Security Group. Check it out here: https://cloudglance.dev/