{"id":13624368,"url":"https://github.com/xeger/awsume-1password-plugin","last_synced_at":"2025-04-13T18:52:39.878Z","repository":{"id":65696658,"uuid":"597579273","full_name":"xeger/awsume-1password-plugin","owner":"xeger","description":"Automates awsume MFA entry via 1Password CLI.","archived":false,"fork":false,"pushed_at":"2025-01-18T02:17:35.000Z","size":91,"stargazers_count":11,"open_issues_count":2,"forks_count":5,"subscribers_count":1,"default_branch":"main","last_synced_at":"2025-04-09T00:56:54.560Z","etag":null,"topics":["1password","1password-cli","aws","awsume","mfa"],"latest_commit_sha":null,"homepage":"","language":"Python","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/xeger.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2023-02-05T00:42:38.000Z","updated_at":"2025-01-18T02:17:34.000Z","dependencies_parsed_at":"2023-02-18T21:31:28.041Z","dependency_job_id":"7879ae75-aa94-4dc4-b1f3-8571fe3dd30c","html_url":"https://github.com/xeger/awsume-1password-plugin","commit_stats":{"total_commits":17,"total_committers":2,"mean_commits":8.5,"dds":0.05882352941176472,"last_synced_commit":"6f08cfc5ad1eeddffd07f2aadca5cce13478a456"},"previous_names":[],"tags_count":8,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/xeger%2Fawsume-1password-plugin","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/xeger%2Fawsume-1password-plugin/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/xeger%2Fawsume-1password-plugin/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/xeger%2Fawsume-1password-plugin/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/xeger","download_url":"https://codeload.github.com/xeger/awsume-1password-plugin/tar.gz/refs/heads/main","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":248766003,"owners_count":21158296,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["1password","1password-cli","aws","awsume","mfa"],"created_at":"2024-08-01T21:01:41.817Z","updated_at":"2025-04-13T18:52:39.844Z","avatar_url":"https://github.com/xeger.png","language":"Python","funding_links":[],"categories":["Python"],"sub_categories":[],"readme":"# Awsume 1Password Plugin\n\n_Awsume 4+ only_.\n\nThis is a plugin that automates the entry of MFA tokens using 1Password.\nIt replaces AWSume's `MFA Token:` prompt with a biometric unlock and delegates to 1Password for policies on how often unlock is required.\nIn other words: it saves you from ever having to type an MFA token, ever again!\n\n## Support\n\nIf you experience any problems, please [file a bug report](https://github.com/xeger/awsume-1password-plugin/issues/new?assignees=xeger\u0026template=bug_report.md).\n\n## Installation\n\n### Install This Plugin\n\n```\npip3 install awsume-1password-plugin\n```\n\nIf you've installed awsume with `pipx`, this will install the console plugin in awsume's virtual environment:\n\n```\npipx inject awsume awsume-1password-plugin\n```\n\n### Set Up 1Password\n\n1. Install the [1Password CLI](https://developer.1password.com/docs/cli)\n2. Enable [biometric unlock](https://developer.1password.com/docs/cli/about-biometric-unlock) of the CLI in 1Password settings\n\n### Configure AWSume\n\nThis plugin needs to know which 1Password vault item to use for each MFA token. You can specify this information in your AWSume configuration file.\n\n```yaml\n# ~/.awsume/config.yaml\n\ncolors: true\n1password: AWS (12345, tony)\n```\n\nIn this example, I have only one MFA token shared among all my accounts (which belong to the same organization).\n\nI have a corresponding 1Password vault item that looks like this:\n\n\n![Example 1Password Item](docs/screenshots/1p-item.png \"Example 1Password Item\")\n\n\n### Multiple MFA Tokens\n\n```yaml\n# ~/.awsume/config.yaml\n\ncolors: true\nfuzzy-match: false\n1password:\n  \"arn:aws:iam::12345:mfa/tony\": \"AWS for Tony Inc.\"\n  \"arn:aws:iam::67890:mfa/xeger\": \"AWS for Xeger Enterprises\"\n```\n\nIn this example I have access to two unrelated accounts, so there are two MFA tokens and two 1Password vault items; the config subsection becomes a map of token serials to vault item names.\n\n## Usage\n\nThis plugin works automatically in the background; just `awsume` roles as you normally would, and it will invoke the `op` command to obtain TOTP tokens whenever AWSume requires one.\n\n## Troubleshooting\n\nIf you experience any trouble, invoke `awsume` with the `--debug` flag and look for log entries that contain `1password`.\n\nThe specific command that this plugin invokes is `op item get --otp \"Profile Name Here\"`; make sure it succeeds when you invoke it manually.\n\nIf you can't solve your problem, [create a GitHub issue](https://github.com/xeger/awsume-1password-plugin/issues/new) with diagnostic details and we'll try to help you.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fxeger%2Fawsume-1password-plugin","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fxeger%2Fawsume-1password-plugin","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fxeger%2Fawsume-1password-plugin/lists"}