This project provides a tool that simplifies secure shell connections over AWS Systems Manager (formerly known as SSM).
- The AWS CLI installed on your system.
- The Session Manager plugin for the AWS CLI installed on your system.
- A valid AWS profile that has permissions to start/stop SSM sessions.
- A
bashshell.
-
Install the
awsshcommand line utility. One easy way to do this is to run thesetup-envscript in the main directory. -
Define environment variables:
AWSSH_PROFILE_FILTER: A string that will match one or more profiles in your AWS configuration file that have permission to start/stop SSM sessions.AWSSH_USER: The username to use for ssh connections over SSM.
export AWSSH_PROFILE_FILTER="startstopssmsession" export AWSSH_USER="lemmy.kilmister"
-
Source the
awssh-completion.bashfile in yourbashenvironment:source tools/awssh-completion.bashIf you skip this step, you won't get to enjoy any of that sweet, sweet tab completion that will make life a lot easier for you. Don't say we didn't warn you.
If you have Nix installed you can use
the flake.nix configuration file located at the root of the
project to build and run awssh:
nix buildAfter the build has completed, the awssh executable can be found at:
result/bin/awssh
To run the program simply execute the binary from the project root:
result/bin/awssh --helpawssh --no-ssh my-aws-startstopssmsession-profile i-01234567890abcdefawssh my-aws-startstopssmsession-profile i-01234567890abcdefTab completion can be used to autocomplete the following items as you type
your awssh command:
- Shared credentials file (following
-c,--credentials=FILENAME), by showing matching files in the.awsdirectory in your home directory (e.g.~/.aws/) - AWS region (
-r,--region) - AWS profile (
<profile>), provided your chosen (or default) credentials file contains at least one profile that matches the string specified by theAWSSH_PROFILE_FILTERenvironment variable - AWS instance you want to open a session to (
<instance-id>); note that if your instance is tagged with a name, you can start typing that name and when you tab complete, the name will be transformed into the instance ID (assuming you have typed enough of the name to identify a unique instance).
We welcome contributions! Please see CONTRIBUTING.md for
details.
Note
This project supports installation via a Nix
flake.nix file, and as a result
the bump_version.sh script requires that Nix be installed locally.
This project is in the worldwide public domain.
This project is in the public domain within the United States, and copyright and related rights in the work worldwide are waived through the CC0 1.0 Universal public domain dedication.
All contributions to this project will be released under the CC0 dedication. By submitting a pull request, you are agreeing to comply with this waiver of copyright interest.