Amazon STS MFA Authentication

auth.sh

#!/bin/bash

MFA_SERIAL=arn:aws:iam::TRUNCATED:mfa/TRUNCATED

read -p "MFA Code: " MFA_CODE
aws sts get-session-token --serial-number $MFA_SERIAL --token-code $MFA_CODE > ~/.aws/l0creds

SECRET_ACCESS_KEY=$(jq -r '.Credentials.SecretAccessKey' ~/.aws/l0creds)
SESSION_TOKEN=$(jq -r '.Credentials.SessionToken' ~/.aws/l0creds)
ACCESS_KEY_ID=$(jq -r '.Credentials.AccessKeyId' ~/.aws/l0creds)

echo -e "\n[l0_$ACCESS_KEY_ID]" >> ~/.aws/credentials
echo -e "aws_access_key_id = $ACCESS_KEY_ID" >> ~/.aws/credentials
echo -e "aws_secret_access_key = $SECRET_ACCESS_KEY" >> ~/.aws/credentials
echo -e "aws_session_token = $SESSION_TOKEN" >> ~/.aws/credentials

export AWS_PROFILE=l0_$ACCESS_KEY_ID
bash