Switch roll history does not remain only five maximum on the AWS Management Console. This extension gives you show all of switch roles from a browse menu by loading your aws configuration.
## Configuration
Supports ~/.aws/config format and like ~/.aws/credentials
### Simple Configuration
The simplest configuration is for multiple **target roles** when you always intend to show the whole list. **Target roles** can be expressed with a `role_arn` or with both `aws_account_id` and `role_name`.
#### Optional parameters
* `color` – The RGB hex value (without the prefix ‘#’) for the color of the header bottom border and around the current profile.
* `region` – Changing the region whenever switching the role if this parameter is specified.
* `image` – The uri of an image to use on top of any color attribute supplied. The color and image are not mutually exclusive.
“`
[profile marketingadmin]
role_arn = arn:aws:iam::123456789012:role/marketingadmin
color = ffaaee
[anotheraccount]
aws_account_id = 987654321987
role_name = anotherrole
region=ap-northeast-1
[athirdaccount]
aws_account_id = 987654321988
role_name = athirdrole
image = “https://via.placeholder.com/150”
“`
### Complex Configuration
More complex configurations involve multiple AWS accounts and/or organizations.
– A profile that has only `aws_account_id` (without a `role_name`) is defined as **base account**.
– **If your account is aliased, the alias will be shown in the role dropdown after ‘Account:’. You MUST use that alias as the aws_account_id for the base account instead of the numerical account id or your configuration won’t work as expected.**
– A **target role** is associated with a **base account** by the **target role** specifying a `source_profile`.
– As above, **target roles** can be expressed with a `role_arn` or with both `aws_account_id` and `role_name` and can optionally pass the optional parameters.
– If `target_role_name` is set in **base account**, the value is provided as the default role name for each **target roles**.
“`
[organization1]
aws_account_id = your-account-alias
[Org1-Account1-Role1]
role_arn = arn:aws:iam::123456789012:role/Role1
source_profile = organization1
[Org1-Account1-Role2]
aws_account_id = 123456789012
role_name = Role2
source_profile = organization1
[Org1-Account2-Role1]
aws_account_id = 210987654321
role_name = Role1
source_profile = organization1
[baseaccount2]
aws_account_id = 000000000000
[Base2-Role1]
role_arn = arn:aws:iam::234567890123:role/Role1
source_profile = baseaccount2
[AnotherRole]
role_name = SomeOtherRole
aws_account_id = account-3-alias
;
; target_role_name example
;
[Org2-BaseAccount]
aws_account_id = 222200000000
target_role_name = Developer
[Org2-Account1-Developer]
aws_account_id = 222200001111
source_profile = Org2-BaseAccount
[Org2-Account2-Manager]
aws_account_id = 222200002222
role_name = Manager ; overrides target role name
source_profile = Org2-BaseAccount
“`
If you sign-in a base account, target roles of the other base accounts are excluded.
The ‘Show only matching roles’ setting is for use with more sophisticated account structures where you’re using AWS Organizations with multiple accounts along with AWS Federated Logins via something like Active Directory or Google GSuite. Common practice is to have a role in the master account that is allowed to assume a role of the same name in other member accounts. Checking this box means that if you’re logged in to the ‘Developer’ role in the master account, only member accounts with a role_arn ending in ‘role/Developer’ will be shown. You won’t see roles that your current role can’t actually assume.
No 5 account limit like the AWS UI. Needs quite a bit of tweaking on the config currently (see issue 171 on Github) to get my config to work… (my config is based on the settings to get the CLI MFA to work for everything other than the default profile)
Love it. Makes life so much easier. Surprised AWS doesn’t have this already.
Good work updating due to aws update!
Deserves waaay more love than it gets 😀
The plugin is great, but aws just change their nav bar style, and the plugin doesn’t work anymore.
Wonderful extension. Makes working with multiple accounts and multiple roles usable. The developer has been very responsive to address issues when AWS update the UI. And AWS have recognised the value of this extension.
Absolutely essential when managing multiple accounts & roles
Hi there. Is this compatible with the latest AWS console UI update?
Love this. It’s broken now as AWS just changed their switch org UI
Must have extension for AWS users.
This is a very well done extension. Simple, to the point and blends easily into the AWS UI.
AWSome extension! The latest UI update seems to have broken this. Are there any plans to update this to work with the new update?
If you use AWS with multiple roles/accounts, you *need* this plugin.
Giving it 5 star even if it broke today –
The extension works beautifully although on sept 18th AWS did an UI update and it’s not working anymore.
Thanks for checking it out!
This is a must have, no doubt about that. The guy is also superresponsive on Github! 🧡
Great extension! Shame to AWS they don’t have this out of the box.
A must have plugin for anyone handling more then 5 AWS accounts. Great plugin thank you!
One of the must have extensions if you work with multiple AWS accounts. Works great and is dead easy to configure.
Incredibly useful extension that really simplifies the workflow when working with many AWS accounts.
This is by far the most useful Chrome extension I use in my day-to-day work. It solves a huge problem with the native AWS console experience which (for some reason) only limits you to quick-switch between the last five roles. We have a dozen or more roles at any one time so being able to switch to any of them quickly is extremely helpful.
This plugin is a life-saver when managing many AWS accounts and roles.
I expected the roles to be available from the extension bar. The extension provides an interface similar to something AWS already has with some improvements. That’s nice, but is not really helpful.
superb – just works!
Very Useful! Thank you!
Awesome extension! I love it!