Here's how to get BitWarden to treat these three different types of Amazon logins as separate
- amazon.com consumer retail business login
- AWS root user login (AWS logins that use an email address)
- AWS IAM user login (AWS logins that use a username)
-
Set
URI 1
toExact
with a value ofhttps://www.amazon.com/ap/signin?_encoding=UTF8&ignoreAuthState=1&openid.assoc_handle=usflex&openid.claimed_id=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.identity=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0%2Fidentifier_select&openid.mode=checkid_setup&openid.ns=http%3A%2F%2Fspecs.openid.net%2Fauth%2F2.0&openid.ns.pape=http%3A%2F%2Fspecs.openid.net%2Fextensions%2Fpape%2F1.0&openid.pape.max_auth_age=0&openid.return_to=https%3A%2F%2Fwww.amazon.com%2F%3Fref_%3Dnav_custrec_signin&switch_account=
-
Set
URI 2
toStarts with
with a value ofhttps://www.amazon.com/ap/signin?
-
Set
URI 1
toExact
with a value ofhttps://signin.aws.amazon.com/signin?redirect_uri=https%3A%2F%2Fconsole.aws.amazon.com%2Fconsole%2Fhome%3Fstate%3DhashArgs%2523%26isauthcode%3Dtrue&client_id=arn%3Aaws%3Aiam%3A%3A015428540659%3Auser%2Fhomepage&forceMobileApp=0
-
Set
URI 2
toRegular expression
with a value ofhttps://[^./]*\.?signin.aws.amazon.com/signin\?
-
Set
URI 1
toExact
with a value ofhttps://YOUR-ACCOUNT-ALIAS-OR-NUMBER.signin.aws.amazon.com/console
Where
YOUR-ACCOUNT-ALIAS-OR-NUMBER
is replaced by your AWS account ID number or alias -
Set
URI 2
toRegular expression
with a value ofhttps://[^./]*\.?signin.aws.amazon.com/oauth\?
-
Add a
New Custom Field
to enter your AWS Account ID or Alias (thanks to @pilasguru for this suggestion)- Name :
account
- Value : The AWS Account ID or alias for your account
- Name :
AWS IAM user add custom field with:
to enable full autocomplete three fields login form.