sunggun-yu/aws-mfa-role

## aws-mfa-role
#!/bin/bash

# prerequisites
# aws-cli : brew install awscli
# jq : brew install jq

read -p "Enter ENV (account1 | account2 | account3 | account4): " targe_env

case "$targe_env" in
   "account1") aws_account=<account1>
   ;;
   "account2") aws_account=<account2>
   ;;
   "account3") aws_account=<account3>
   ;;
   "account4") aws_account=<account4>
   ;;
esac

read -p "Enter AWS MFA Code: " mfa_code

aws_temp_credential=$(aws sts assume-role --role-arn "arn:aws:iam::${aws_account}:role/<your-role>" --role-session-name "my-role-${targe_env}" --serial-number <your-mfa-device-arn> --token-code "${mfa_code}")

export AWS_ACCESS_KEY_ID=$(echo $aws_temp_credential | jq '.Credentials.AccessKeyId'|tr -d '"')
export AWS_SECRET_ACCESS_KEY=$(echo $aws_temp_credential | jq '.Credentials.SecretAccessKey'|tr -d '"')
export AWS_SESSION_TOKEN=$(echo $aws_temp_credential | jq '.Credentials.SessionToken'|tr -d '"')

# bash -i or zsh -i
zsh -i
	#!/bin/bash

	# prerequisites
	# aws-cli : brew install awscli
	# jq : brew install jq

	read -p "Enter ENV (account1 \| account2 \| account3 \| account4): " targe_env

	case "$targe_env" in
	"account1") aws_account=<account1>
	;;
	"account2") aws_account=<account2>
	;;
	"account3") aws_account=<account3>
	;;
	"account4") aws_account=<account4>
	;;
	esac

	read -p "Enter AWS MFA Code: " mfa_code

	aws_temp_credential=$(aws sts assume-role --role-arn "arn:aws:iam::${aws_account}:role/<your-role>" --role-session-name "my-role-${targe_env}" --serial-number <your-mfa-device-arn> --token-code "${mfa_code}")

	export AWS_ACCESS_KEY_ID=$(echo $aws_temp_credential \| jq '.Credentials.AccessKeyId'\|tr -d '"')
	export AWS_SECRET_ACCESS_KEY=$(echo $aws_temp_credential \| jq '.Credentials.SecretAccessKey'\|tr -d '"')
	export AWS_SESSION_TOKEN=$(echo $aws_temp_credential \| jq '.Credentials.SessionToken'\|tr -d '"')

	# bash -i or zsh -i
	zsh -i