Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Browse files
Browse the repository at this point in the history
[PR #2012/8b138e39 backport][stable-7] returns boolean if a user has access to console login This is a backport of PR #2012 as merged into main (8b138e3). Summary I've introduced a new feature that includes in the response a console_access parameter, which is a boolean indicating whether an iam user has the ability to log in through the AWS console. This addition is particularly useful for scenarios where administrative constraints require users to access AWS services exclusively via API keys or through controlled environments, such as landing zones, without using the AWS console login interface. Issue Type Feature Pull Request Component Name: botocore includes the botocore interaction, specifically regarding the console_access information retrievals Additional Information With this update, the module now provides visibility into whether an IAM user is permitted console access. This could be pivotal for enforcing stricter security protocols, ensuring users do not bypass VPN requirements, API keys, or other access control measures by logging in through the AWS console Before the change a normal response: { "arn": "arn:aws:iam::11111111:user/terraform", "create_date": "2018-04-18T14:12:44+00:00", "path": "/", "tags": {}, "user_id": "12345abcd", "user_name": "terraform" } After the change: { "arn": "arn:aws:iam::11111111:user/terraform", "console_access": false, "create_date": "2018-04-18T14:12:44+00:00", "path": "/", "tags": {}, "user_id": "12345abcd", "user_name": "terraform" } Reviewed-by: Alina Buzachis Reviewed-by: Helen Bailey <[email protected]>
- Loading branch information