Added support for refreshable AWS SSO
You can now add granted_sso_registration_scopes = sso:account:access to your ~/.aws/config, which will cause Granted to respect the session duration in IAM Identity Center. This can be extended to prompt less frequently. Supplying thesso:account:access scope will cause IAM Identity Center to return a refreshable access token, with a total allowed session time in accordance with your configured AWS SSO session length.
What's Changed
- Adds event bridge service map by @CodyDunlap in #611
- Delete former credentials when rotating (
granted credentials rotate) by @n3s7or in #582 - Bump github.com/dvsekhvalnov/jose2go from 1.5.0 to 1.6.0 by @dependabot in #586
- Add support for refreshable AWS SSO tokens by @chrnorm in #616
New Contributors
- @CodyDunlap made their first contribution in #611
Full Changelog: v0.20.7...v0.21.0