Ensure that you have installed Python3
and Pip3
as part of the Pre-requisites.
pip install -r requirements.txt
python cli.py \
--client_id client-id \
--client_secret client-secret \
--cloudfront_host cloudfront-host \
--idp_domain_name idp-domain-name \
--idp_name idp
--client_id
(required) = the IdP Registered Application Client ID.--client_secret
(required) = the IdP Registered Application Client Secret.--cloudfront_host
(required) = the host name of the Amazon Cloudfront Distribution.--idp_domain_name
(required) = the domain name generated by your IdP for OIDC.--idp_name
(required) = the name of your IdP (e.g. Cognito).
This will produce the following two files in the same directory:
cloudfront_config_rendered.json
= this is the rendered configuration file with all of the supplied parameters from the CLI above.encoded_cloudfront_config_rendered.json
= this is the key-value pair JSON document with the Base64 encoded JSON document from the first file. It is a key-value pair in the format that this should be stored in AWS Secrets Manager.