One keyring item for session #174

nickatsegment · 2019-07-06T00:52:23Z

Fixes: #146

Partially addresses #173

Adds a --session-cache-single-item flag and env var to opt into a new session cache that stores all sessions in a single keyring item. The benefit is fewer auth prompts from macOS Keychain. On every upgrade (new aws-okta binary), the user needs to reauth 3 + N (number of sessions) times, but with this new cache, this is always just 3+1.

This refactors the KeyringSessions type into a session cache store and a keying function interface so that we can reuse the existing (bizarre) keying function with a new storage engine.

I might propose in another PR that we use a better keying function. I'm still trying to understand what we want from this cache.

We can cross that bridge when we come to it

lib/provider.go

systemizer

this looks great. im very excited for less entering in my password (although, I have become quite good at it)

internal/sessioncache/key_orig.go

nickatsegment · 2019-07-09T17:25:33Z

I'm gonna add some simple tests.

Introduces golang.org/x/xerrors, until we can start to use go 1.13 errors reliably.

Just use stdlib errors + xerrors

nickatsegment added 14 commits July 5, 2019 13:49

Add some notes and docstrings

9bb3410

Move original KeyringSessions to its own internal package

2df6298

Avoid passing all profiles to sessioncache

68050dc

remove sessioncache Delete

c3f5b9d

Refactor session cache into Key and Store parts

a2c97d2

Rename Retrieve -> Get and Store -> Put

6be8e6d

Flatten sessioncache package heirarchy

4f5f4ac

Add cache hit/miss/expired/error debug messages

948e084

add sessionCacheInterface

ffa1671

Add SingleKrItemStore

c9ba413

fix debug fmt

f2ace15

Add --session-cache-single-item

b8b319f

Fixes; remove versioned db

f544f2f

We can cross that bridge when we come to it

docs

66ee4ed

nickatsegment force-pushed the one-keyring-for-session branch from 38f5571 to 66ee4ed Compare July 9, 2019 00:13

f: remove sequence number

1349dfb

nickatsegment marked this pull request as ready for review July 9, 2019 00:17

nickatsegment requested review from eculver, Fauzyy, systemizer and boggsboggs July 9, 2019 00:17

systemizer reviewed Jul 9, 2019

View reviewed changes

lib/provider.go Outdated Show resolved Hide resolved

systemizer reviewed Jul 9, 2019

View reviewed changes

lib/provider.go Show resolved Hide resolved

systemizer approved these changes Jul 9, 2019

View reviewed changes

Fauzyy reviewed Jul 9, 2019

View reviewed changes

internal/sessioncache/key_orig.go Show resolved Hide resolved

Fauzyy approved these changes Jul 9, 2019

View reviewed changes

Clean up; add missing error handling

6cccd42

nickatsegment added 2 commits July 9, 2019 12:57

Add sessioncache store tests

97ed5da

Introduces golang.org/x/xerrors, until we can start to use go 1.13 errors reliably.

Remove dependency on github.com/pkg/errors

25aeed3

Just use stdlib errors + xerrors

nickatsegment changed the title ~~One keyring for session~~ One keyring item for session Jul 9, 2019

nickatsegment merged commit 6658fa0 into master Jul 9, 2019

nickatsegment deleted the one-keyring-for-session branch July 9, 2019 23:11

nickatsegment mentioned this pull request Jul 15, 2019

Proposal: Keyring in keyring? Or how to reduce the number of items in a Keychain-backed keyring 99designs/keyring#50

Open

yhlee-tw mentioned this pull request Jul 24, 2019

Login with source_profile doesn't work on current version #182

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

One keyring item for session #174

One keyring item for session #174

nickatsegment commented Jul 6, 2019 •

edited

Loading

systemizer left a comment

nickatsegment commented Jul 9, 2019

One keyring item for session #174

One keyring item for session #174

Conversation

nickatsegment commented Jul 6, 2019 • edited Loading

systemizer left a comment

Choose a reason for hiding this comment

nickatsegment commented Jul 9, 2019

nickatsegment commented Jul 6, 2019 •

edited

Loading