crowbar $version$ https://github.com/moritzheiber/crowbar Moritz Heiber, https://github.com/moritzheiber https://github.com/moritzheiber/crowbar https://cdn.jsdelivr.net/gh/moritzheiber/crowbar@master/images/crowbar-monogram-icon.png 2020, Moritz Heiber https://raw.githubusercontent.com/moritzheiber/crowbar/master/LICENSE true https://github.com/moritzheiber/crowbar https://github.com/moritzheiber/crowbar/blob/master/README.md https://github.com/moritzheiber/crowbar/issues crowbar aws saml idp authentication command-line-tools

Your trusty tool for retrieving AWS credentials securely via SAML

Crowbar is designed to securely retrieve temporary AWS credentials using its STS service, utilizing SAML as a means for authenticating and authorizing requests. Its unique feature is that it doesn't write any sensitive data (passwords, session tokens, security keys) to disk, but rather stores them in the operating system's keystore which requires the user's consent to have them retrieved from. It is meant to be used with the AWS CLI's credential_process capabilities, to provide a seamless experience when it comes to using AWS resources on the command line. Crowbar is a fork of oktaws, written by Jonathan Morley, whereas the main differentiating factors for forking the original project were that it does write credentials to disk and it focuses solely on Okta. Both of these are not the intentions of this project. For the time being, only Okta is supported as an IdP, with other providers (ADFS being prioritized the highest) to be added as soon as capacity allows.