CLI tool to authenticate AWS IAM users with password + MFA via Console sign-in (no access keys needed)

These details have not been verified by PyPI

Project links

Project description

awsuser

AWS credential_process tool that authenticates IAM users with password + MFA via Console sign-in. Uses a headless browser to automate login and extract temporary credentials — no pre-existing access keys needed.

Installation

pip install awsuser
playwright install chromium

Note: On macOS and Windows, awsuser uses your installed Google Chrome by default. You only need playwright install chromium if Chrome isn't installed.

Quick Start

# 1. Setup a profile (writes credential_process to ~/.aws/credentials)
awsuser -a 123456789012 -u alice -p myprofile

# 2. Use it — awsuser is called automatically by the AWS CLI
aws s3 ls --profile myprofile

When the AWS CLI needs credentials, it calls awsuser which:

Returns cached credentials if still valid
Otherwise opens a GUI prompt for MFA (password comes from keyring)
Automates Console sign-in in a headless browser
Extracts credentials from CloudShell and caches them

Usage

# Setup a profile
awsuser -a 123456789012 -u alice -p myprofile

# Save password to keyring (avoids password prompt on future runs)
awsuser -a 123456789012 -u alice --save

# Watch the browser during sign-in (debugging)
awsuser -a 123456789012 -u alice --watch

# Use a specific browser
awsuser -a 123456789012 -u alice --browser firefox

How It Works

AWS CLI calls awsuser via credential_process
Checks disk cache (~/.awsuser/cache/) — returns immediately if valid
If expired: opens a GUI window for MFA code (password from keyring or GUI)
Automates Console sign-in in a headless browser
Opens CloudShell and runs aws configure export-credentials
Caches and returns credentials as JSON to the AWS CLI

Running Tests

./run_tests.sh

Documentation

License

MIT

Disclaimer

This tool automates the AWS Console sign-in flow using browser automation. It relies on the Console's UI structure which AWS may change without notice. If the tool stops working after an AWS Console update, please open an issue.

Project details

These details have not been verified by PyPI

Project links

Release history Release notifications | RSS feed

1.0.1

Jun 5, 2026

This version

1.0.0

Jun 2, 2026

0.1.0

Jun 1, 2026

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distributions

No source distribution files available for this release.See tutorial on generating distribution archives.

Built Distribution

If you're not sure about the file name format, learn more about wheel file names.

The dropdown lists show the available interpreters, ABIs, and platforms. Enable javascript to be able to filter the list of wheel files.

awsuser-1.0.0-py3-none-any.whl (16.4 kB view details)

Uploaded Jun 2, 2026 Python 3

File details

Details for the file awsuser-1.0.0-py3-none-any.whl.

File metadata

Download URL: awsuser-1.0.0-py3-none-any.whl
Upload date: Jun 2, 2026
Size: 16.4 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: twine/6.2.0 CPython/3.14.5

File hashes

Hashes for awsuser-1.0.0-py3-none-any.whl
Algorithm	Hash digest
SHA256	`cb0d0e9d11dc3e263ec4972be2187706fc076a3e8409af8ca64ed5d071c817d9`
MD5	`f07eb0ebc853cf1e1218e46fff25bbb2`
BLAKE2b-256	`b9193043a385dce92ace48f77a03a1d7f2a4469dfc08d4fadd266854a49d59c4`

See more details on using hashes here.

awsuser 1.0.0

Navigation

Verified details

Maintainers

Unverified details

Project links

Meta

Classifiers

Project description

awsuser

Installation

Quick Start

Usage

How It Works

Running Tests

Documentation

License

Disclaimer

Project details

Verified details

Maintainers

Unverified details

Project links

Meta

Classifiers

Release history Release notifications | RSS feed

Download files

Source Distributions

Built Distribution

File details

File metadata

File hashes