gsts

Changelog

• Bump dependencies.
• Fix engines.node version constraint on package.json.

Changelog

• Bump dependencies.

Changelog

Improvements

• Fix issue preventing interactive (headful) mode from being triggered when the Account Chooser dialog was being presented on Google authentication systems.

Changelog

Improvements

• Fix issues with using multiple AWS profiles.

Notable Updates

• Bump [email protected].

This version introduces a major shift of gsts to a credential_process provider - so much, in fact, that its internal structure has been completely adapted to behave like one by default.

As part of this refactor, there are a number of breaking changes too.

Breaking Changes

• gsts is now a credential_process provider and should not called manually anymore.

  The ~/.aws/config should similar to the below:

  [default]
  credential_process = gsts --idp-id=12345 --sp-id=67890
  

• Credentials are no longer stored under ~/.aws/config but instead under gsts own cache directory (~/Library/Caches/gsts on macOS, %LOCALAPPDATA%\gsts\Cache on Windows and ~/.cache/gsts on Linux) .

• All command line parameters are now overridable by corresponding environment variables with the GSTS_ prefix.

• Remove --google-* aliases.

• Remove support for node < 18.

• Daemon support has been removed in favor of the credential_process setup.

• Playwright-specific parameters (--engine-executable-path, --engine) have had --playwright added to them to make it more explicit on what they achieve (--playwright-engine-executable-path and --playwright-engine).

New Features

• Add support for cacheless operation mode with --no-credentials-cache.
• Add support for processing the following AWS CLI variables:
  • AWS_REGION
  • AWS_DEFAULT_REGION
  • AWS_PROFILE
• Add support for configuring gsts under ~/.aws/config (or any other directory configured via $AWS_CONFIG_FILE).
• Add support for setting the playwright engine channel via --playwright-engine-channel.
• Store SAML assertion in cache for further automation power.

Improvements

• Migrated to AWS SDK v3.
• Fix headless hang when Google forces interactive login mode.
• Logging has been reworked to make gsts a lot less verbose and respect non-TTY sessions more accurately.
• Set permissions for credentials file for read-write to the owner only (600).

Notable Updates

• Bump [email protected].

Changelog

• Add support for Okta
• Sort by ARN when interactively prompting so that accounts are grouped together when multiple roles exist

Changelog

• Fix authentication request redirect getting stuck after successful logins

Changelog

• Add support for macOS Monterey

Changelog

• Improve error logging messages

Changelog

• Prevent hanging logins to non-default regions
• Add release workflow to update homebrew formula

Changelog

• Fix console hanging when multiple roles are available

Changelog

⚠️ Warning: Final resolution of the hanging issue was only fully mitigated on v3.0.5.

• Add workaround for hanged console after authentication

Changelog

• Fix daemon issues with --engine-executable-path=null

Changelog

• Update [email protected]

Changelog

• Add additional logging for debugging purposes

Changelog

• Refactored to replace puppeteer by playwright, a more modern and reliable framework automation.

Changelog

⚠️ Warning: persistence session storage isn't working properly in this version. Downgrade to v2.4.3 if you don't want to see the Chromium window every time a session reauthentication is needed.

• Upgrades to puppeter@5 with better Big Sur support (fixes https://github.com/ruimarinho/gsts/issues/40)

Changelog

• Add configurable puppeteer executable path
• Add more node compatibility fixes

Changelog

• Add note about reported aws-cli workaround
• Fix mkdirp issues on Windows platforms

Changelog

Maintenance release

• Fix a failing test when testing JSON output.