Skip to content

Instantly share code, notes, and snippets.

@gene1wood
Last active March 22, 2024 22:53
Show Gist options
  • Star 24 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save gene1wood/ad3fc1e2f20fd83e78c9bea86f4e339a to your computer and use it in GitHub Desktop.
Save gene1wood/ad3fc1e2f20fd83e78c9bea86f4e339a to your computer and use it in GitHub Desktop.
How to get BitWarden to differentiate between amazon.com consumer retail logins, AWS root logins and AWS IAM user logins

Here's how to get BitWarden to treat these three different types of Amazon logins as separate

  • amazon.com consumer retail business login
  • AWS root user login (AWS logins that use an email address)
  • AWS IAM user login (AWS logins that use a username)

amazon.com consumer retail

  • Set URI 1 to Exact with a value of

    https://www.amazon.com/ap/signin?_encoding=UTF8&ignoreAuthState=1&openid.assoc_handle=usflex&openid.claimed_id=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.identity=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.mode=checkid_setup&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0&openid.ns.pape=http%3A%2F%2Fspecs.openid.net%2Fextensions%2Fpape%2F1.0&openid.pape.max_auth_age=0&openid.return_to=https%3A%2F%2Fwww.amazon.com%2F%3Fref_%3Dnav_custrec_signin&switch_account=

  • Set URI 2 to Starts with with a value of

    https://www.amazon.com/ap/signin?

AWS root user

  • Set URI 1 to Exact with a value of

    https://signin.aws.amazon.com/signin?redirect_uri=https%3A%2F%2Fconsole.aws.amazon.com%2Fconsole%2Fhome%3Fstate%3DhashArgs%2523%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fhomepage&forceMobileApp=0

  • Set URI 2 to Regular expression with a value of

    https://[^./]*\.?signin.aws.amazon.com/signin\?

AWS IAM user

  • Set URI 1 to Exact with a value of

    https://YOUR-ACCOUNT-ALIAS-OR-NUMBER.signin.aws.amazon.com/console

    Where YOUR-ACCOUNT-ALIAS-OR-NUMBER is replaced by your AWS account ID number or alias

  • Set URI 2 to Regular expression with a value of

    https://[^./]*\.?signin.aws.amazon.com/oauth\?

  • Add a New Custom Field to enter your AWS Account ID or Alias (thanks to @pilasguru for this suggestion)

    • Name : account
    • Value : The AWS Account ID or alias for your account
@pilasguru
Copy link

AWS IAM user add custom field with:

id=account
YOUR-ACCOUNT-NAME-OR-NUMBER

to enable full autocomplete three fields login form.

@talha-shoaib-vd
Copy link

Still the account field isn't auto filled. Tried above.

@agniswarm
Copy link

@pilasguru 👍

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment