2.8.1 (2023-06-27)
Fixed bugs:
Closed issues:
- Number Matching | Microsoft Authenticator #371
Merged pull requests:
v2.8.0 (2023-06-26)
Implemented enhancements:
- Add support for number matching in Microsoft Authenticator app #387 (martinverup)
Fixed bugs:
- Use Linux user-agent string to work-around Duo permission denied errors:
{"stat": "FAIL", "message_enum": 7, "data": {}}
#378 (pdecat)
Merged pull requests:
- Bump cryptography from 39.0.1 to 41.0.0 #392 (dependabot[bot])
- Bump pytest from 7.3.1 to 7.4.0 #391 (dependabot[bot])
- Bump coverage from 7.2.5 to 7.2.7 #388 (dependabot[bot])
- Bump requests from 2.28.1 to 2.31.0 #385 (dependabot[bot])
- Bump fido2 from 1.1.0 to 1.1.1 #384 (dependabot[bot])
- Bump cryptography from 38.0.3 to 39.0.1 #370 (dependabot[bot])
- Add support for python 3.11 #207 (pdecat)
v2.7.0 (2023-05-09)
Implemented enhancements:
- Add support for verification codes on Azure Cloud MFA #377 (martinverup)
Merged pull requests:
- Bump pytest from 7.2.0 to 7.3.1 #382 (dependabot[bot])
- Bump coverage from 6.5.0 to 7.2.5 #381 (dependabot[bot])
- Bump black from 22.12.0 to 23.3.0 #380 (dependabot[bot])
- Bump pre-commit from 2.20.0 to 2.21.0 #368 (dependabot[bot])
- Bump setuptools from 65.5.0 to 65.5.1 #365 (dependabot[bot])
- Bump cryptography from 37.0.2 to 38.0.3 #364 (dependabot[bot])
- Bump black from 22.10.0 to 22.12.0 #363 (pdecat)
- Bump lxml from 4.9.1 to 4.9.2 #362 (dependabot[bot])
- Bump certifi from 2022.5.18.1 to 2022.12.7 #361 (dependabot[bot])
v2.6.3 (2022-10-29)
Merged pull requests:
- Move release instructions to a script #360 (pdecat)
- Do not error if release already exists in test.pypi.org #359 (pdecat)
2.6.2 (2022-10-28)
Implemented enhancements:
2.6.1 (2022-10-28)
Merged pull requests:
- Document supported Duo authentication methods better #357 (pdecat)
- Update duo auth method prompt to explicitly show Passcode as an option #356 (lefju)
- Bump pytest from 7.1.3 to 7.2.0 #354 (dependabot[bot])
- Bump fido2 from 1.0.0 to 1.1.0 #351 (dependabot[bot])
2.6.0 (2022-10-26)
Implemented enhancements:
- Support for Passcode #162
- Add Duo Passcode support for both traditional and universal prompt #353 (trav-c)
- Add support for role,provider ordering of SAML Role attribute #352 (trav-c)
2.5.1 (2022-10-10)
Merged pull requests:
- Bump configparser from 5.2.0 to 5.3.0 #350 (dependabot[bot])
- Bump pytest from 7.1.2 to 7.1.3 #349 (dependabot[bot])
- Bump coverage from 6.4.1 to 6.5.0 #348 (dependabot[bot])
2.5.0 (2022-10-10)
Implemented enhancements:
- feature: Allow enforcing config role_arn #342
- Add support for Verified Duo Push MFA #346 (pdecat)
- feature: Allow enforcement role_arn config variable #343 (pvbouwel)
Merged pull requests:
- Bump botocore from 1.27.14 to 1.27.89 #347 (dependabot[bot])
- Bump black from 22.3.0 to 22.10.0 #344 (dependabot[bot])
- Improve README #326 (Shr3ps)
- Bump lxml from 4.9.0 to 4.9.1 #276 (dependabot[bot])
- Bump requests from 2.28.0 to 2.28.1 #273 (dependabot[bot])
- Bump boto3 from 1.24.13 to 1.24.14 #266 (dependabot[bot])
- Add note that overriding preferred server-side Duo factor and device is only supported with Duo Universal Prompt #265 (pdecat)
2.4.0 (2022-06-22)
Merged pull requests:
- Improve factor and device selection with Duo Universal Prompt #264 (pdecat)
- Bump boto3 from 1.24.11 to 1.24.13 #263 (dependabot[bot])
- Bump botocore from 1.27.13 to 1.27.14 #262 (dependabot[bot])
2.3.3 (2022-06-22)
Merged pull requests:
- Bump botocore from 1.27.11 to 1.27.13 #261 (dependabot[bot])
- Tolerate missing 'transports' key from WebAuthn challenge, and fix regression with CTAP1 device since fido2 1.0.0 #260 (pdecat)
- Bump boto3 from 1.24.5 to 1.24.11 #259 (dependabot[bot])
- Bump botocore from 1.27.7 to 1.27.11 #257 (dependabot[bot])
- Bump botocore from 1.27.5 to 1.27.7 #252 (dependabot[bot])
- Bump requests from 2.27.1 to 2.28.0 #251 (dependabot[bot])
- Bump actions/setup-python from 3 to 4 #246 (dependabot[bot])
2.3.2 (2022-06-10)
Fixed bugs:
login --role-arn "?"
not working on an existing profile #227
Merged pull requests:
2.3.1 (2022-06-09)
Merged pull requests:
2.3.0 (2022-06-09)
Fixed bugs:
- fido2 1.0.0 breaks aws-adfs #243
Merged pull requests:
- Drop support for python 3.6 and update dependencies (and define better constraints as pip does not honor poetry.lock) #245 (pdecat)
2.2.2 (2022-06-08)
Merged pull requests:
2.2.1 (2022-06-03)
Closed issues:
- cache file truncation #234
Merged pull requests:
- Avoid exception when multiple FIDO authenticators are present #242 (pdecat)
- Bump lxml from 4.8.0 to 4.9.0 #237 (dependabot[bot])
2.2.0 (2022-06-03)
Merged pull requests:
2.1.0 (2022-06-02)
Closed issues:
- Duo Universal Prompt breaks aws-adfs compatibility #236
Merged pull requests:
2.1.0-alpha.2 (2022-06-02)
2.1.0-alpha.1 (2022-06-02)
2.0.5 (2022-06-01)
Merged pull requests:
2.0.4 (2022-06-01)
Merged pull requests:
- Adding truncate flag when opening the credential cache file. #235 (mattmauriello)
2.0.3 (2022-05-07)
Merged pull requests:
- feat(doc): use github-changelog-generator for generating CHANGELOG.md #233 (pdecat)
- Hide RSA token #231 (gchambert)
2.0.2 (2022-04-27)
Merged pull requests:
- Switch to poetry-core #230 (fabaff)
- Bump actions/checkout from 2 to 3 #226 (dependabot[bot])
- Bump actions/setup-python from 2 to 3 #225 (dependabot[bot])
2.0.1 (2022-02-26)
Fixed bugs:
- going back and forth between multiple hosts #222
Merged pull requests:
- Added hashlib dependency and adfs hostname hash to cookie jar filename #223 (mattmauriello)
- Bump click from 8.0.3 to 8.0.4 #221 (dependabot[bot])
- Bump lxml from 4.7.1 to 4.8.0 #220 (dependabot[bot])
- Bump boto3 from 1.20.53 to 1.20.54 #219 (dependabot[bot])
- Bump boto3 from 1.20.52 to 1.20.53 #218 (dependabot[bot])
- Bump pytest from 7.0.0 to 7.0.1 #217 (dependabot[bot])
- Bump botocore from 1.23.53 to 1.23.54 #216 (dependabot[bot])
- Bump botocore from 1.23.52 to 1.23.53 #215 (dependabot[bot])
- Bump boto3 from 1.20.51 to 1.20.52 #214 (dependabot[bot])
- Bump botocore from 1.23.51 to 1.23.52 #213 (dependabot[bot])
2.0.0 (2022-02-09)
Closed issues:
- Support Duo webauthn #208
Merged pull requests:
- Bump botocore from 1.23.50 to 1.23.51 #212 (dependabot[bot])
- Bump coverage from 3.7.1 to 6.2 #211 (dependabot[bot])
- Bump pytest from 6.2.5 to 7.0.0 #210 (dependabot[bot])
- Switch from U2F to WebAuthn for DUO authentication #209 (pdecat)
2.0.0-alpha.11 (2022-02-09)
2.0.0-alpha.10 (2022-02-09)
2.0.0-alpha.9 (2022-02-09)
2.0.0-alpha.8 (2022-02-09)
2.0.0-alpha.7 (2022-02-09)
Implemented enhancements:
- Provide a command or option to get the console link #143
Merged pull requests:
- Print AWS web console sign-in url #197 (pdecat)
- Add
--username-password-command
to read username and password from the output of a shell command #196 (pdecat)
2.0.0-alpha.2 (2022-01-29)
Merged pull requests:
2.0.0-alpha.1 (2022-01-26)
2.0.0-alpha.0 (2022-01-26)
Implemented enhancements:
- AWS session caching is not implemented, ADFS is called every time #182
Closed issues:
- printenv should output only shell commands, the summary isn't #180
Merged pull requests:
- Update poetry from 1.1.10 to 1.1.11 to fix python 3.10 compatibility #202 (pdecat)
- Trigger Github Actions build job on all push tags events #201 (pdecat)
- Trigger Github Actions build job on push events to tags starting with 'v' #200 (pdecat)
- Add session credentials cache #195 (pdecat)
- printenv excludes summary to be shell readable #181 (Tantalon)
1.25.0-alpha.2 (2021-09-30)
Implemented enhancements:
- Support AWS_DEFAULT_PROFILE #123
- Duo authenticator status code calling #80
- Feature request / security : read username and password from file #78
- parameter --profile= should have precedence over environment variable #63
Fixed bugs:
- del password and python string objects #187
- Login issues solved by changing the code and parameters #142
- If env AWS_PROFILE or AWS_DEFAULT_PROFILE are set, a nonsensical provider_id is used. #60
Closed issues:
- SAML parsing breaks on ADFS because it expects a specific XML prefix #184
- Getting the below Error #161
- This account does not have access to any roles #98
Merged pull requests:
- Depend on requests-negotiate-sspi on Windows. On other platforms, depend on requests-kerberos and pykerberos. #199 (pdecat)
- Use Poetry for project and dependencies management #194 (pdecat)
- Fix Github Actions build job #193 (pdecat)
- Compiling lxml from source is no longer needed with python 3.9 #192 (pdecat)
- Github Actions no longer supports python 3.4 #191 (pdecat)
- Properly erase password from memory #190 (pdecat)
- Automate PyPI publishing with poetry PEP517 built dists #177 (pdecat)
1.24.5 (2020-10-12)
Closed issues:
- There was an issue when following the Duo result URL after authentication #168
Merged pull requests:
- GitHub actions #172 (pdecat)
- Support Duo bypassing MFA requests #169 (pdecat)
- Add python 3.9 support #166 (pdecat)
1.24.4 (2020-07-05)
Implemented enhancements:
- NO_PROXY Environment Variable #77
Closed issues:
- integration to aws credential_process #112
Merged pull requests:
- Add python 3.9-dev support #165 (pdecat)
- Feature credential process #164 (mikereinhold)
1.24.3 (2020-03-17)
Closed issues:
- Duo authentication not working with later versions of aws-adfs #157
Merged pull requests:
1.24.2 (2020-03-07)
Closed issues:
- GovCloud Initial Login #102
Merged pull requests:
- Ask for authentication method if there is no default method set in Duo Security settings #158 (johan1252)
1.24.1 (2020-02-13)
Merged pull requests:
- Add support for non-public AWS regions (e.g. GovCloud) #156 (gregorydulin)
1.24.0 (2020-01-25)
Merged pull requests:
- Change
AuthMethod
parameter toFormsAuthentication
#151 (rheemskerk)
1.23.0 (2020-01-23)
Merged pull requests:
- Fix authentication with cookies on non-windows system. #154 (rheemskerk)
- Fix username and password disclosure #153 (rheemskerk)
1.22.0 (2019-12-29)
Merged pull requests:
1.21.2 (2019-12-28)
Closed issues:
- Potential dependency conflicts between aws-adfs and botocore #148
Merged pull requests:
1.21.1 (2019-12-18)
Closed issues:
- Installation for aws-adfs fails #146
Merged pull requests:
1.21.0 (2019-12-17)
Closed issues:
- Should requests_negotiate_sspi work on a Linux box? #100
Merged pull requests:
- Duo: support U2F with no preferred factor or device configured #145 (pdecat)
- Kerberos support #144 (bodgit)
1.20.0 (2019-12-03)
Merged pull requests:
- U2F: fido2 v0.8.1 compatibility (U2FClient.sign timeout renamed to event) #141 (pdecat)
- Pin fido2 dependency to < 0.8.0 as it is a breaking release #140 (pdecat)
1.19.1 (2019-11-16)
Merged pull requests:
1.19.0 (2019-10-15)
Merged pull requests:
- Fix AttributeError: 'generator' object has no attribute 'append' on python3 #136 (pdecat)
- Add options to trigger or not the default authentication method when U2F is available #135 (pdecat)
1.18.1 (2019-09-26)
Merged pull requests:
1.18.0 (2019-09-25)
Closed issues:
Merged pull requests:
- lxml 4.4.0 dropped support for python 3.4 #130 (pdecat)
- Use MozillaCookieJar to support cookies with "expires" far in the future on Windows #129 (pdecat)
- Add FIDO/U2F support to Duo authentication #127 (pdecat)
1.17.0 (2019-07-11)
Merged pull requests:
- Handle sspi like other config options #125 (kfattig)
- Add support for AzureMfaAuthentication #124 (mjernsell)
v1.16.0 (2019-06-04)
Merged pull requests:
1.15.0 (2019-04-25)
Merged pull requests:
1.14.0 (2019-04-20)
Implemented enhancements:
- Feature request for more authentication methods #53
Merged pull requests:
- save provider_id config #121 (tommywo)
- Fix Duo authentication initiation failure messages #119 (pdecat)
1.13.0 (2019-02-23)
Merged pull requests:
1.12.3 (2019-01-23)
Merged pull requests:
- Fallback on prompt if env, stdin or auth file do not provide both username and password #115 (pdecat)
- Save duo session cookies #111 (NotMrSteve)
1.12.2 (2018-09-19)
Closed issues:
- Duo Authentication Issue #105
Merged pull requests:
0.12.1 (2018-08-25)
Closed issues:
- Error: Python has stopped working when running aws-adfs #104
- Using the environment and stdin parameters #91
Merged pull requests:
0.12.0 (2018-07-05)
Closed issues:
- Default Profile #86
Merged pull requests:
- Add RSA SecurID MFA #101 (NotMrSteve)
- Added flag for disabling Kerberos SSO authentication via SSPI #97 (JLambeth)
0.11.1 (2018-06-20)
Closed issues:
- Symantec VIP has obfuscated form #93
Merged pull requests:
- login.py #99 (leonardo-test)
- Fix Symantec VIP adapter #96 (avoidik)
0.11.0 (2018-05-10)
Implemented enhancements:
- Incorporating the new CLI/API session duration functionality #82
Merged pull requests:
0.10.1 (2018-04-14)
0.10.0 (2018-04-14)
Merged pull requests:
- Change default profile to default #89 (KyleJamesWalker)
- Feature/read username and password from file #88 (keirwhitlock)
0.9.1 (2018-04-09)
Merged pull requests:
- Allow phone call authentication #83 (KyleJamesWalker)
0.9.0 (2018-04-08)
Closed issues:
- Requirements? botocore, boto3, and awscli downgrades? #75
0.8.0 (2018-03-01)
Implemented enhancements:
- Support for Duo's "Remember Me" feature #40
- Allow selection of a device for second authentication factor in duo security integration when the preferred device setting is missing #33
Fixed bugs:
- adfs conflicts with default profile #37
Merged pull requests:
0.7.0 (2018-02-16)
Implemented enhancements:
- How to use "role-arn" parameter? #70
0.6.1 (2018-02-07)
0.6.0 (2018-01-30)
Merged pull requests:
0.5.0 (2018-01-27)
Implemented enhancements:
- Role arn passed as parameter to the login method #66
Closed issues:
- botocore VersionConflict issue #68
Merged pull requests:
0.4.8 (2018-01-03)
Closed issues:
- aws-adfs installs with botocore-1.8.15, but requires botocore-1.8.17? both? #65
0.4.7 (2017-12-24)
0.4.6 (2017-12-24)
Closed issues:
- Bump awscli and botocore versions #64
0.4.5 (2017-12-17)
Closed issues:
0.4.4 (2017-11-28)
Fixed bugs:
- Version 0.3.9 returns no roles #50
Closed issues:
- SSL certificate verify failed even with --no-ssl-verification #59
0.4.3 (2017-11-02)
0.4.2 (2017-11-02)
Merged pull requests:
0.4.1 (2017-10-17)
0.4.0 (2017-10-12)
Fixed bugs:
- When using two roles error: This account does not have access to any roles #55
Merged pull requests:
0.3.18 (2017-10-06)
0.3.17 (2017-10-05)
0.3.16 (2017-10-04)
0.3.15 (2017-10-04)
Implemented enhancements:
- When logging in with aws-adfs and Duo MFA #34
0.3.14 (2017-09-19)
Implemented enhancements:
- Dependency incompatibility with botocore 1.6.0+ #52
0.3.13 (2017-09-17)
0.3.12 (2017-08-14)
Implemented enhancements:
- Introduce git tag based versioning #47
0.3.11 (2017-08-13)
Fixed bugs:
- Upgrade from 0.3.6 to 0.3.7 breaking simple authentication #49
0.3.9 (2017-07-28)
0.3.8 (2017-07-20)
Implemented enhancements:
- ADFS with DUO list account alias instead of account IDs #35
0.3.7 (2017-07-11)
Implemented enhancements:
- Script-ability #45
0.3.6 (2017-06-24)
Fixed bugs:
- Version 0.3.4 returns no roles. #44
Merged pull requests:
0.3.5 (2017-06-21)
Fixed bugs:
- Python 3 compatible? #41
0.3.4 (2017-06-20)
Implemented enhancements:
- Duo Authentication fails for users who don't have a preferred Auth method. #30
Fixed bugs:
- Parsing error while trying to login to Duo MFA #42
- --region and --output-format flags don't seem to be working #27
Closed issues:
- Issues with Centos 7 #39
- TypeError #32
- aws-adfs not working on macOS Sierra - System-installed Python 2.7 #31
- On login, skipping profile option causes error. #28
Merged pull requests:
- #42 - Bug in parsing Duo host and signature, backwards compatible #43 (AndrewFarley)
- Update README.md #38 (wiederhold)
- Fix formatting in README.md #29 (roblugton)
0.3.3 (2017-04-12)
0.3.2 (2017-04-09)
Fixed bugs:
- UnicodeEncodeError: 'ascii' codec can't encode character u'\u201c' in position 18498: ordinal not in range(128) #25
Closed issues:
- Add option to remove adfs Cookie that stores user account information #26
0.3.1 (2017-04-04)
Closed issues:
- Failed with DUO MFA enabled. #24
0.3.0 (2017-03-27)
Closed issues:
- --verbose flag fails when used with login --adfs-host. #23
- Requests specifying Server Side Encryption with AWS KMS managed keys require AWS Signature Version 4 #22
0.2.3 (2017-03-04)
Closed issues:
- list output is too simple #20
0.2.2 (2017-03-01)
Closed issues:
- Ability to change the URN in html_roles_fetcher.py #18
0.2.1 (2017-02-16)
Closed issues:
- Add an option to change the STS token duration #17
Merged pull requests:
- Added extra option "--provider-id" #19 (keirwhitlock)
0.2.0 (2016-11-05)
Closed issues:
- automate aws-adfs with expect #16
Merged pull requests:
0.1.5 (2016-10-11)
Merged pull requests:
0.1.4 (2016-10-04)
Merged pull requests:
0.1.3 (2016-08-30)
Closed issues:
- requests.exceptions.SSLError: [Errno 2] - aws-adfs version 0.1.1 #11
Merged pull requests:
0.1.2 (2016-08-27)
0.1.1 (2016-08-18)
Merged pull requests:
0.1.0 (2016-08-14)
Merged pull requests:
0.0.9 (2016-07-22)
Closed issues:
- Ability to add environment variables #8
- UnicodeEncodeError: 'ascii' codec can't encode character u'\u017a' in position 705: ordinal not in range(128) #6
Merged pull requests:
0.0.8 (2016-07-19)
Closed issues:
- Clear IAM role from config #5
0.0.7 (2016-07-12)
Merged pull requests:
0.0.6 (2016-07-10)
Merged pull requests:
0.0.5 (2016-07-10)
Closed issues:
- Runnable script instruction #1
Merged pull requests:
0.0.4 (2016-07-08)
0.0.3 (2016-06-25)
0.0.2 (2016-06-25)
0.0.1 (2016-06-25)
* This Changelog was automatically generated by github_changelog_generator