From 22511d023802006bfa00f5fe0f65d2fd5514e6a8 Mon Sep 17 00:00:00 2001
From: arnie <arnie@c3c.cz>
Date: Thu, 21 Aug 2025 11:32:28 +0200
Subject: [PATCH] Implement okta gov aws cli

---
 home-manager/veracode/aws-cli.nix | 25 +++++++++++++++++++++++++
 1 file changed, 25 insertions(+)

diff --git a/home-manager/veracode/aws-cli.nix b/home-manager/veracode/aws-cli.nix
index 93f7196..e399770 100644
--- a/home-manager/veracode/aws-cli.nix
+++ b/home-manager/veracode/aws-cli.nix
@@ -550,6 +550,31 @@ in
     '';
   };
 
+  home.file."${homedir}/.okta_aws_login_config" = {
+    text = ''
+[DEFAULT]
+okta_org_url = https://govus-staging-veracode.okta.com
+gimme_creds_server = appurl
+aws_rolename = arn:aws-us-gov:iam::403885414333:role/Corp-Engineer
+write_aws_creds = False
+cred_profile = role
+okta_username = lcech@veracode.com
+app_url = https://govus-staging-veracode.okta.com/home/amazon_aws/0oame0n0rGjDo9BvZ4h6/272
+resolve_aws_alias = False
+include_path = True
+preferred_mfa_type = push
+remember_device = True
+aws_default_duration = 3600
+output_format = export
+force_classic = True
+enable_keychain = True
+    '';
+  };
+
+  home.packages = [
+    pkgs.gimme-aws-creds
+  ];
+
   programs.zsh.shellAliases = {
     veracode-find = ''${pkgs.writeShellScript "veracode-find" ''
       for profile in $(aws configure list-profiles | grep -E '^(us|eu|old-world|longbow)-'); do