Granted Versions Save

The easiest way to access your cloud.

v0.26.2

3 weeks ago

This release fixes an issue when using Granted to authenticate to an OIDC provider on Windows, when using Granted with Common Fate.

What's Changed

Full Changelog: https://github.com/common-fate/granted/compare/v0.26.1...v0.26.2

v0.26.1

3 weeks ago

What's Changed

Full Changelog: https://github.com/common-fate/granted/compare/v0.26.0...v0.26.1

v0.26.0

3 weeks ago

This release introduces initial support for HTTP Profile Registries. HTTP registries implement the granted.registry.aws.v1alpha1 API.

To add a HTTP registry, you can run:

granted registry add --name <name> --url <url_of_registry_deployment> --type http

The Common Fate platform implements the HTTP Profile Registry in the v1.42.0 release.

You can read more about Profile Registries here.

What's Changed

Full Changelog: https://github.com/common-fate/granted/compare/v0.25.0...v0.26.0

v0.25.0

1 month ago

This release adds support for using Sprig template functions in granted sso populate and granted sso generate. Here's an example:

granted sso populate --sso-region us-east-1 --prune --prefix gen_ --profile-template '{{ .RoleName | strings.ToLower }}-{{ .AccountName | strings.ToLower }}' https://<snip>.awsapps.com/start

Additionally, this release allows granted sso generate/granted sso populate configuration to be persisted in the Granted config file (~/.granted/config by default). You can now add the following section to your config file:

[SSO.default]
StartURL = "https://d-976708da7d.awsapps.com/start"
SSORegion = "ap-southeast-2"

and then run the following command to generate a ~/.aws/profile file, without needing to provide additional arguments:

granted sso generate

A huge thankyou to @mikesarver for contributing both of these new improvements.

Additionally, this release fixes some release pipeline issues which caused keychain errors in v0.24 for Intel MacOS (#647). If you're experiencing issues on v0.24 please update to this release.

What's Changed

New Contributors

Full Changelog: https://github.com/common-fate/granted/compare/v0.24.0...v0.25.0

v0.24.0

1 month ago

This version adds support for clearing the Granted cache non-interactively, thanks to @jsproede in #643.

granted cache clear --storage session-credentials --profile [profile_name]

skips the prompts and clears the cache entry immediately.

This version additionally fixes the fish shell completions thanks to @Hawkbawk in #645.

What's Changed

New Contributors

Full Changelog: https://github.com/common-fate/granted/compare/v0.23.2...v0.24.0

v0.23.2

1 month ago

What's Changed

Full Changelog: https://github.com/common-fate/granted/compare/v0.23.1...v0.23.2

v0.23.1

1 month ago

What's Changed

New Contributors

Full Changelog: https://github.com/common-fate/granted/compare/v0.23.0...v0.23.1

v0.23.0

2 months ago

This release brings a few minor bug fixes and support for Just-In-Time (JIT) access using Common Fate. For more information on JIT access, check out the JIT recipe in our documentation. A big thankyou to @Nepoxx for making their first contribution in this release!

What's Changed

New Contributors

Full Changelog: https://github.com/common-fate/granted/compare/v0.22.0...v0.23.0

v0.22.0

2 months ago

IAM Federated logins now have attributable username in Cloudtrail

  • The changes refactor the way federation token ID is used for AWS IAM credentials. Instead of relying on the userID which was previously parsed, the code now uses the userName which is more easily attributable to the IAM user name in the Cloudtrail events list view.

What's Changed

New Contributors

Full Changelog: https://github.com/common-fate/granted/compare/v0.21.1...v0.22.0

v0.21.1

3 months ago

What's Changed

New Contributors

Full Changelog: https://github.com/common-fate/granted/compare/v0.21.0...v0.21.1