Add sessionToken to dict where step-up code expects it

Sometimes, Okta requires a step-up authentication when accessing the AWS Okta application. The Duo Universal prompt support worked in the case where step-up was not required, but returned a session data structure that the step-up handling code did not expect. I've changed the Duo Universal Prompt auth to return sessionToken where get_saml_response() expects to find it for use in step-up authentication.
Nike-Inc · Feb 8, 2024 · 6100c13 · 6100c13
1 parent 2ee0ff4
commit 6100c13
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/gimme_aws_creds/duo_universal.py b/gimme_aws_creds/duo_universal.py
@@ -68,7 +68,8 @@ def do_auth(self):
                     "username": okta_profile_login,
                     "session": self.session.cookies['sid'],
                     "device_token": self.session.cookies['DT']
-                }
+                },
+                'sessionToken': self.session.cookies['sid']
             },
         }