v2.0.0-beta4

Overview

This is hopefully the final v2-beta release and if all goes to plan, will become v2.0.0.

Bugs

• Fix running the ECS server outside of docker #104
• Fix crash while fetching AWS account list
• Fix console command failing due to lack of authentication
• Fix --lines argument

New Features

• Add basic xonsh shell support
• Add AutoLogin config option

Changes

• Bump various 3rd party libraries
• Improve github actions for builds

What's Changed

• cleanup docs and remove completions pre-1.9 by @synfinatic in #1032
• fix ignore for cmd in codecov by @synfinatic in #1034
• basic xonsh support by @synfinatic in #1033
• validate codecov.yml by @synfinatic in #1035
• validate codecov workflow by @synfinatic in #1036
• ECS Server needs the secure store by @synfinatic in #1041
• fix --lines CLI argument by @synfinatic in #1038
• Bump golang.org/x/term from 0.22.0 to 0.23.0 by @dependabot in #1014
• Bump golang.org/x/net from 0.27.0 to 0.28.0 by @dependabot in #1016
• Bump squidfunk/mkdocs-material from 9.5.27 to 9.5.33 by @dependabot in #1042
• Bump github.com/aws/aws-sdk-go-v2 from 1.30.3 to 1.30.4 by @dependabot in #1026
• update security.md and update golangci-lint by @synfinatic in #1049
• unify all github test workflows by @synfinatic in #1050
• Bump golang.org/x/net from 0.28.0 to 0.29.0 by @dependabot in #1051
• DefaultCmd exits, and no longer exists by @guildencrantz in #1048
• Bump github.com/Masterminds/sprig/v3 from 3.2.3 to 3.3.0 by @dependabot in #1044
• Bump github.com/aws/aws-sdk-go-v2 from 1.30.4 to 1.30.5 by @dependabot in #1046
• Bump github.com/docker/docker from 27.1.2+incompatible to 27.2.1+incompatible by @dependabot in #1052
• fix crash due to go variable context change by @synfinatic in #1056
• Bump github.com/alecthomas/kong from 0.9.0 to 1.2.1 by @dependabot in #1054
• update FAQ for auto-refresh by @synfinatic in #1061
• console command requires authentication by @synfinatic in #1062
• Add AutoLogin config option by @synfinatic in #1064

Full Changelog: v2.0.0-beta3...v2.0.0-beta4

v2.0.0-beta3

What's Changed

• disable release-brew target by @synfinatic in #965
• Add login command, remove flush by @synfinatic in #966
• hide ecs sub-commands and re-order commands by @synfinatic in #967
• remove static creds code by @synfinatic in #977
• Bump github.com/aws/aws-sdk-go-v2 from 1.30.1 to 1.30.3 by @dependabot in #968
• fix ecs-commands documentation page by @synfinatic in #978
• fix all doc lint bugs and reorder ecs commands by @synfinatic in #979
• Change Warn -> Debug for invalid account/roles by @synfinatic in #981
• Add mkdocs versioning by @synfinatic in #984
• fix mkdocs yaml by @synfinatic in #986
• add mkdocs version selector by @synfinatic in #987
• Adjust links to documentation to versioning by @tillkahlbrock in #988
• move sso to internal by @synfinatic in #989
• Add some debug code for fetching the roles from AWS by @synfinatic in #990
• unify building of mkdocs by @synfinatic in #991
• change default profile format to NICE_PROFILE_FORMAT by @synfinatic in #994
• move config, config-profiles and completions to setup by @synfinatic in #993
• No auto-config check except login/cache by @synfinatic in #995
• change default log level from warn to info by @synfinatic in #996
• Continue work on login command by @synfinatic in #997
• Bump actions/checkout from 3 to 4 by @dependabot in #999
• Bump actions/setup-python from 4 to 5 by @dependabot in #998
• document ecs commands requiring login by @synfinatic in #1000
• Bump github.com/goccy/go-yaml from 1.11.3 to 1.12.0 by @dependabot in #1002
• Refactor commands by @synfinatic in #1004
• refactor the logger to be a singleton and use init() by @synfinatic in #1005
• work on ecs threat model by @synfinatic in #1009
• Fix crash with time command by @synfinatic in #1010
• Support XDG_CONFIG_HOME to override config location by @synfinatic in #1011
• Remove Firefox Multi-Account Containers plugin by @synfinatic in #1022
• Bump docker/build-push-action from 4 to 6 by @dependabot in #949
• Bump github.com/docker/docker from 27.0.3+incompatible to 27.1.1+incompatible in the go_modules group across 1 directory by @dependabot in #1019
• Bump github.com/docker/docker from 27.0.3+incompatible to 27.1.2+incompatible by @dependabot in #1024
• New logger v2 by @synfinatic in #1025
• switch to console logger by default by @synfinatic in #1029
• Bump golang from 1.21-alpine to 1.23-alpine by @dependabot in #1028

New Contributors

• @tillkahlbrock made their first contribution in #988

Full Changelog: v1.17.0...v2.0.0-beta3

v2.0.0-beta2

What's Changed

• disable release-brew target by @synfinatic in #965
• Add login command, remove flush by @synfinatic in #966
• hide ecs sub-commands and re-order commands by @synfinatic in #967
• remove static creds code by @synfinatic in #977
• Bump github.com/aws/aws-sdk-go-v2 from 1.30.1 to 1.30.3 by @dependabot in #968
• fix ecs-commands documentation page by @synfinatic in #978
• fix all doc lint bugs and reorder ecs commands by @synfinatic in #979
• Change Warn -> Debug for invalid account/roles by @synfinatic in #981
• Add mkdocs versioning by @synfinatic in #984
• fix mkdocs yaml by @synfinatic in #986
• add mkdocs version selector by @synfinatic in #987
• Adjust links to documentation to versioning by @tillkahlbrock in #988
• move sso to internal by @synfinatic in #989
• Add some debug code for fetching the roles from AWS by @synfinatic in #990
• unify building of mkdocs by @synfinatic in #991
• change default profile format to NICE_PROFILE_FORMAT by @synfinatic in #994
• move config, config-profiles and completions to setup by @synfinatic in #993
• No auto-config check except login/cache by @synfinatic in #995
• change default log level from warn to info by @synfinatic in #996
• Continue work on login command by @synfinatic in #997
• Bump actions/checkout from 3 to 4 by @dependabot in #999
• Bump actions/setup-python from 4 to 5 by @dependabot in #998
• document ecs commands requiring login by @synfinatic in #1000
• Bump github.com/goccy/go-yaml from 1.11.3 to 1.12.0 by @dependabot in #1002
• Refactor commands by @synfinatic in #1004
• refactor the logger to be a singleton and use init() by @synfinatic in #1005
• work on ecs threat model by @synfinatic in #1009
• Fix crash with time command by @synfinatic in #1010
• Support XDG_CONFIG_HOME to override config location by @synfinatic in #1011
• Remove Firefox Multi-Account Containers plugin by @synfinatic in #1022
• Bump docker/build-push-action from 4 to 6 by @dependabot in #949
• Bump github.com/docker/docker from 27.0.3+incompatible to 27.1.1+incompatible in the go_modules group across 1 directory by @dependabot in #1019
• Bump github.com/docker/docker from 27.0.3+incompatible to 27.1.2+incompatible by @dependabot in #1024
• New logger v2 by @synfinatic in #1025
• switch to console logger by default by @synfinatic in #1029

New Contributors

• @tillkahlbrock made their first contribution in #988

Full Changelog: v1.17.0...v2.0.0-beta2

v1.17.0

Overview

• Add credentials command
• Various small quality-of-life bug fixes (fix --threads flag and warn about old IAM roles in the config.yaml)
• Add support for and prefer the XDG Config location for config files: ~/.config/aws-sso over ~/.aws-sso
• ConfigProfilesUrlAction now defaults to value of UrlAction instead of url unless you picked print or printurl

There are also a significant number of ECS Server changes that aren't really backwards compatible, but will make the future better. If you are interested in the ECS Server functionality or using aws-sso on remote hosts over ssh then I would greatly appreciate it if you upvote this AWS SDK bug which makes it nearly impossible to use SSL/TLS with the ECS Server.

• aws-sso ecs ... commands have been re-worked
• ECS Server now technically supports SSL/TLS (see above)
• ECS Server now supports a bearer token for HTTP Auth
• ECS Server now can run in a Docker container
• ECS Server now supports binding to non-loopback interfaces via --bind-ip flag

What's Changed

• fix link to docs by @synfinatic in #902
• Bump github.com/aws/aws-sdk-go-v2/service/iam from 1.24.0 to 1.34.0 by @dependabot in #918
• Bump github.com/stretchr/testify from 1.8.4 to 1.9.0 by @dependabot in #898
• Add AWS_CONTAINER_AUTHORIZATION_TOKEN support by @synfinatic in #916
• Bump github.com/aws/aws-sdk-go-v2/service/sso from 1.20.11 to 1.22.0 by @dependabot in #917
• Improve bearer token support by @synfinatic in #919
• update ssh docs by @synfinatic in #920
• Ssl support by @synfinatic in #925
• Docker ecs server by @synfinatic in #935
• update copyright to 2024 by @synfinatic in #939
• Add --server flag for ecs client commands by @synfinatic in #940
• Update cache during login IFF relevant settings change by @synfinatic in #941
• Support AWS_SHARED_CREDENTIALS_FILE by @synfinatic in #942
• Bump github.com/aws/aws-sdk-go-v2/service/sts from 1.28.12 to 1.30.1 by @dependabot in #931
• Bump github.com/aws/aws-sdk-go-v2/config from 1.27.18 to 1.27.24 by @dependabot in #934
• add test tool for ssl bug by @synfinatic in #944
• Bump squidfunk/mkdocs-material from 9.5.25 to 9.5.27 by @dependabot in #904
• ConfigProfilesUrlAction defaults to UrlAction by @synfinatic in #947
• work on refactoring and documentation of ECS by @synfinatic in #943
• continue work on ecs server refactor by @synfinatic in #948
• Bump ubuntu from 22.04 to 24.04 by @dependabot in #841
• Support XDG config path by @synfinatic in #951
• continue ecs cleanup by @synfinatic in #957
• remove ecs run from docs by @synfinatic in #960
• fix docs again by @synfinatic in #961
• Fix --threads cli arg by @synfinatic in #959
• Don't store broken roles in the cache.json by @synfinatic in #963
• Bump golang.org/x/term from 0.21.0 to 0.22.0 by @dependabot in #954
• Bump golang.org/x/net from 0.26.0 to 0.27.0 by @dependabot in #952
• Bump github.com/aws/aws-sdk-go-v2/service/iam from 1.34.0 to 1.34.1 by @dependabot in #953
• prep for v1.17.0 release by @synfinatic in #964

Full Changelog: v1.16.1...v1.17.0

v1.16.1

Overview

• Fix homebrew auto-builds
• change flag for specifying profiles to --profile for the credentials command

What's Changed

• fix homebrew and credentials --profile by @synfinatic in #900

Full Changelog: v1.16.0...v1.16.1

v1.16.0

Overview

Key changes in v1.16.0:

• Add credentials command to write temporary IAM credentials to ~/.aws/credentials
• Fix config-profiles command to support multiple AWS SSO instances
• Improve fish shell support
• AWS_SSO_SESSION_EXPIRATION environment variable is now in RFC3339 format

What's Changed

• fix build issue with go.sum by @synfinatic in #845
• Bump squidfunk/mkdocs-material from 9.5.20 to 9.5.25 by @dependabot in #866
• Add support for credentials command by @synfinatic in #868
• Fix malformed LC_DYSYMTAB warning on darwin by @synfinatic in #869
• Bump golangci/golangci-lint-action from 5 to 6 by @dependabot in #851
• aws-sso-profile with no args should return usage. by @synfinatic in #872
• switch AWS_SSO_SESSION_EXPIRATION to RFC3339 by @synfinatic in #870
• fix token by @synfinatic in #882
• Bump codecov/codecov-action from 3 to 4 by @dependabot in #876
• Bump golang.org/x/term from 0.18.0 to 0.21.0 by @dependabot in #879
• Bump github.com/aws/aws-sdk-go-v2/service/sso from 1.15.2 to 1.20.10 by @dependabot in #881
• Bump github.com/aws/aws-sdk-go-v2 from 1.21.2 to 1.27.1 by @dependabot in #877
• Bump github.com/aws/aws-sdk-go-v2/service/ssooidc from 1.17.3 to 1.24.4 by @dependabot in #880
• Update aws-sso.fish to add completion helper for aws-sso-profile by @drmikecrowe in #865
• Bump github.com/aws/aws-sdk-go-v2/config from 1.19.1 to 1.27.17 by @dependabot in #887
• use SSO name for config-profiles block by @synfinatic in #871
• fix bug removing an fileedit config block by @synfinatic in #892
• improve documentation and prep release by @synfinatic in #893
• Bump github.com/aws/aws-sdk-go-v2/config from 1.27.17 to 1.27.18 by @dependabot in #890
• Bump github.com/aws/aws-sdk-go-v2/service/sts from 1.28.11 to 1.28.12 by @dependabot in #889
• Bump github.com/goccy/go-yaml from 1.11.2 to 1.11.3 by @dependabot in #886
• Bump github.com/alecthomas/kong from 0.8.1 to 0.9.0 by @dependabot in #884
• Bump golang.org/x/net from 0.23.0 to 0.26.0 by @dependabot in #885
• release 1.16.0 by @synfinatic in #894
• fix changelog by @synfinatic in #895

New Contributors

• @drmikecrowe made their first contribution in #865

Full Changelog: v1.15.1...v1.16.0

v1.15.1

Overview

• Added fish shell helperst #361

What's Changed

• Bump squidfunk/mkdocs-material from 9.5.3 to 9.5.17 by @dependabot in #826
• helper functions for fish (#361) by @zickzackv in #808
• Bump golangci/golangci-lint-action from 4 to 5 by @dependabot in #840
• fix: testing for AWS_SSO_PROFILE by @zickzackv in #839
• Bump golang.org/x/net from 0.19.0 to 0.23.0 by @dependabot in #835
• Bump squidfunk/mkdocs-material from 9.5.17 to 9.5.20 by @dependabot in #842
• Add govulncheck by @synfinatic in #843
• release v1.15.1 by @synfinatic in #844

New Contributors

• @zickzackv made their first contribution in #808

Full Changelog: v1.15.0...v1.15.1

v1.15.0

What's Changed

• fix workflow variables for go version by @synfinatic in #780
• feature: add support for installing completions at package build time by @ghthor in #779
• Bump golangci/golangci-lint-action from 3 to 4 by @dependabot in #773
• Bump codecov/codecov-action from 3 to 4 by @dependabot in #769
• support ~ and $HOME for UrlExecCommand by @synfinatic in #822
• release 1.15.0 by @synfinatic in #825

Full Changelog: v1.14.3...v1.15.0

v1.14.3

Overview

• Update dependencies
• Statically link Linux binaries (CGO_ENABLED=0)
• Fix crash when users have no AWS roles available

What's Changed

• do brew update for release by @synfinatic in #642
• Bump actions/stale from 5 to 8 by @dependabot in #643
• add script to validate status for release by @synfinatic in #645
• fix release-check logic and remove target by @synfinatic in #646
• Bump github.com/aws/aws-sdk-go-v2/service/iam from 1.22.7 to 1.23.0 by @dependabot in #648
• Bump github.com/aws/aws-sdk-go-v2/config from 1.19.0 to 1.19.1 by @dependabot in #647
• Bump github.com/aws/aws-sdk-go-v2/service/iam from 1.23.0 to 1.24.0 by @dependabot in #649
• Bump squidfunk/mkdocs-material from 9.4.6 to 9.4.7 by @dependabot in #656
• add contributing by @synfinatic in #680
• Bump golang.org/x/term from 0.13.0 to 0.14.0 by @dependabot in #689
• Bump squidfunk/mkdocs-material from 9.4.7 to 9.4.8 by @dependabot in #690
• Bump actions/setup-go from 4 to 5 by @dependabot in #725
• Bump actions/stale from 8 to 9 by @dependabot in #728
• Bump github/codeql-action from 2 to 3 by @dependabot in #734
• Bump actions/download-artifact from 3 to 4 by @dependabot in #735
• Bump actions/upload-artifact from 3 to 4 by @dependabot in #736
• Bump github.com/dvsekhvalnov/jose2go from 1.5.0 to 1.6.0 by @dependabot in #744
• Bump golang.org/x/crypto from 0.14.0 to 0.17.0 by @dependabot in #739
• ignore dependabot in auto-close by @synfinatic in #745
• Bump crazy-max/ghaction-import-gpg from 6.0.0 to 6.1.0 by @dependabot in #746
• Bump squidfunk/mkdocs-material from 9.4.8 to 9.5.3 by @dependabot in #742
• Bump golang.org/x/net from 0.17.0 to 0.19.0 by @dependabot in #716
• Bump golang.org/x/term from 0.14.0 to 0.15.0 by @dependabot in #719
• Don't crash with 0 AWS accounts by @synfinatic in #751
• Bump golang.org/x/term from 0.15.0 to 0.16.0 by @dependabot in #748
• CGO_ENABLED=0 for Linux by @synfinatic in #756
• Document support for firefox Multi-Account Containers plugin by @synfinatic in #762

Full Changelog: v1.14.2...v1.14.3

v2.0.0-beta1

Overview

This is a significant release with some key changes regarding configuration defaults and user experience which I hope makes aws-sso easier and more consistent to use. The major changes (please see the change log for more details) are:

1. Now requires to run aws-sso login to use your SSO credentials to login to AWS Identity Center.
2. New default Profile format (used for $AWS_PROFILE and --profile flag) uses the Account name/alias instead of the AccountId.
3. Removed the AutoConfigCheck config option. aws-sso will now check the number of authorized AWS Accounts at login to see if the cache needs to be updated. If you have been granted a new role to an existing account, you will need to run aws-sso cache manually.

I consider this beta quality as I am using this myself on a daily basis.

Changelog

Bugs

• No longer ignore the --threads CLI option

New Features

• Require running aws-sso login. No more auto-login. #291
• login does a quick cache invalidation check using the AWS AccountIDs #576
• New default ProfileFormat uses AccountAlias instead of AccountId

Changes

• aws-sso commands other than cache and login no longer can trigger a cache refresh or
  update of ~/.aws/config file

Removed Commands, Config Options and Flags

• Remove config, config-profiles and completions commands
  and replace with setup
• Remove flush command. Use logout instead
• Remove --no-cache flag
• Remove CacheRefresh configuration option. aws-sso will only update the cache
  when you ask it to via aws-sso cache
• Remove tags --force-update flag
• Remove AutoConfigCheck configuration option.
• Remove references to all deprecated features:
  • AccountIdStr() function for ProfileFormat.
  • AccountIdStr field is replaced by AccountIdPad in list command and ListFields in config.yaml
  • ARN field is replaced by Arn in list command and ListFields in config.yaml
  • ExpiresStr field is replaced by Expires in list command and ListFields in config.yaml
  • FirefoxOpenUrlInContainer config option
  • ConfigUrlAction config option

What's Changed

• do brew update for release by @synfinatic in #642
• Bump actions/stale from 5 to 8 by @dependabot in #643
• add script to validate status for release by @synfinatic in #645
• fix release-check logic and remove target by @synfinatic in #646
• Bump github.com/aws/aws-sdk-go-v2/service/iam from 1.22.7 to 1.23.0 by @dependabot in #648
• Bump github.com/aws/aws-sdk-go-v2/config from 1.19.0 to 1.19.1 by @dependabot in #647
• Bump github.com/aws/aws-sdk-go-v2/service/iam from 1.23.0 to 1.24.0 by @dependabot in #649
• Remove CacheRefresh config option by @synfinatic in #655
• remove --no-config-check from shell integration by @synfinatic in #657
• Fix threads by @synfinatic in #659
• Remove AutoConfigCheck config option by @synfinatic in #660
• Remove deprecated by @synfinatic in #664

Full Changelog: v1.14.2...v2.0.0-beta1