Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow to specify a default file for credentials options #903

Closed
andrewmiskell opened this issue Jun 15, 2024 · 8 comments
Closed

Allow to specify a default file for credentials options #903

andrewmiskell opened this issue Jun 15, 2024 · 8 comments
Labels
enhancement New feature or request priority:low Low Priority Items stale Will be auto-closed in 14 days waiting-for-customer

Comments

@andrewmiskell
Copy link

I love the new credentials option, it does make my life a lot easier when using applications like Cyberduck!

However, I know the default is to output to stdin, but would it be possible to be able to specify a default file in the config.yaml so it doesn't have to be specified each time I need to generate credentials for those types of apps (ones that rely on the credentials file to support AWS SSO, like CyberDuck)?
@andrewmiskell andrewmiskell added the enhancement New feature or request label Jun 15, 2024
@synfinatic
Copy link
Owner

Can you explain what limitation Cyberduck has which requires this?

Basically, why are you using insecure hardcoded IAM credentials instead of the dynamic credentials provided via aws-sso config-profiles? If you want it to go to some special file, why not just create an alias or shell script which redirects the output to the appropriate file?

@andrewmiskell
Copy link
Author

Unless I'm missing something, Cyberduck doesn't support the method used in the aws-sso config-profiles in order to work (at least I've never been able to get it to work properly).

I've always had to use the aws sso login/aws sts get-caller-identity method described in the Cyberduck documentation in order to make it work.

https://docs.cyberduck.io/protocols/s3/#connecting-using-credentials-from-aws-command-line-interface

@synfinatic
Copy link
Owner

If people don't use the AWS SDK then things don't work. Nothing I can do there.

I'm still not sure why you can't just use a shell script or alias? Just redirect the output to a file. :)

@synfinatic
Copy link
Owner

I should ask, have you talked to Cyberduck to see if they can or will support credential_process ?

https://docs.aws.amazon.com/cli/v1/userguide/cli-configure-sourcing-external.html

@andrewmiskell
Copy link
Author

There's already a couple of issues created around ease of use with the SSO process, including the credential_process. Unfortunately, doesn't seem to be getting much traction.

iterate-ch/cyberduck#11664

iterate-ch/cyberduck#13377

@synfinatic
Copy link
Owner

So I still don't understand why you can't just create a shell script or alias to "specify a default file". there are so many configuration options today that I actually feel things are kinda out of hand and this seems to be something that can be handled outside of aws-sso.

@github-actions GitHub Actions
Copy link

This issue is stale because it has been open for 14 days with no response
from the reporter. It will be automatically closed in 14 days from this message.

@github-actions github-actions bot added the stale Will be auto-closed in 14 days label Jul 25, 2024
@github-actions GitHub Actions
Copy link

github-actions bot commented Aug 8, 2024

This issue was closed because it has been inactive for 28 days.

@github-actions github-actions bot closed this as not planned Won't fix, can't repro, duplicate, stale Aug 8, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request priority:low Low Priority Items stale Will be auto-closed in 14 days waiting-for-customer
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@synfinatic @andrewmiskell