Blog

Community Newsletter: March 2024

Fraser Ricupero
Fraser Ricupero
April 3, 2024
Community Newsletter: March 2024

Community Newsletter: March 2024

Hey everyone! Shwetha here with the latest tech update. If you're eager for deeper insights and real-time updates, make sure to join our Slack community or follow us on Twitter.

Here's what's been happening in the world of Common Fate over the past month:

DataStax Integration

We've introduced a built-in DataStax Integration for seamless, just-in-time access to roles within DataStax. Learn more about the setup and process here. Want to see this in action? Book a live demo using this link.

Authorization Logs

We have added authorization logs to inspect and debug authorization events within Common Fate. Each time an authorization decision is made, Common Fate stores a log of the evaluation. In this guide, you’ll learn how to use authorization logs to debug your authorization policies.

Fourtheorem Blog Post

We were recently featured on Fourtheorem’s blog post on Managing AWS accounts like a PRO, which goes through the process of setting up IAM Identity Center with Granted to obtain credentials through Granted.

You can read the blog post here

Granted Updates

In our ongoing commitment to enhancing Granted, we're excited to share the latest updates:

Added support for refreshable AWS SSO:

  • You can now add granted_sso_registration_scopes = sso:account:access to your ~/.aws/config, which will cause Granted to respect the session duration in IAM Identity Center. This can be extended to prompt less frequently. Supplying the sso:account:access scope will cause IAM Identity Center to return a refreshable access token, with a total allowed session time in accordance with your configured AWS SSO session length.

IAM Federated logins now have attributable username in Cloudtrail

  • The changes refactor the way federation token ID is used for AWS IAM credentials. Instead of relying on the userID which was previously parsed, the code now uses the userName which is more easily attributable to the IAM user name in the Cloudtrail events list view. Thank you to @matthewhembree for their contributors on this.

A big shoutout to our first-time contributors:

For a comprehensive list of changes, please visit our changelog.

Your voice shapes our tools. We value your feedback, suggestions, and ideas, so please don't hesitate to get in touch.

Until next time,

The Common Fate Team

Share this post
Fraser Ricupero
Co-Founder