Use 1Password for AWS MFA login in terminal.
Script for signing in to AWS CLI with multi-factor authenitcation, using 1Password for generationg the MFA code.
op: https://support.1password.com/command-lineaws: https://aws.amazon.com/cliawsmfa: https://github.com/dcoker/awsmfa
See 1Password command-line tool: Getting started.
Note: There's an one time initial op signin <signinaddress> <emailaddress> <secretkey> that must be done before using mfauth.
The script assumes that awsmfa has the default setup as described in awsmfa docs, getting started.
mfauth [SUBDOMAIN] [OP_ITEM] -r [AWS-ROLE] -d [DURATION]SUBDOMAIN: The 1password account used for logging in withop [subdomain]OP_ITEM: Name of the 1password item that has the two factor code configured. Copy and paste from 1password GUI.AWS_ROLE: (Optional) Full ARN of the AWS IAM Role to assume. If empty, you will be logged in with the default identity, but no role.DURATION: (Optional) length of AWS token session, in seconds.
-
Get BitBar via https://getbitbar.com, or with Homebrew:
brew cask install bitbarNote: When starting BitBar for the first time, make sure to select an new empty folder as plugin folder. BitBar will try to run any file in the plugin folder, with curious results if there are any non-plugins in that folder. See https://github.com/matryer/bitbar#installing-plugins for reference.
-
Add Countdown Timer plugin to BitBar, and ensure you have execution rights for the plugin file.
-
Make the countdown plugin file available in the system PATH.
-
Test the script
$ which countdown_timer.1s.rb /path/to/bitbar/plugins/countdown_timer.1s.rb $ countdown_timer.1s.rb 3600h $ countdown_timer.1s.rb 00:59:55
Now the countdown timer will be set after a successful authentication, showing the remaining time in the menu bar.