ssm-connect 1.0.0__tar.gz

ssm_connect-1.0.0/LICENSE

@@ -0,0 +1,201 @@
+Apache License
+                           Version 2.0, January 2004
+                        http://www.apache.org/licenses/
+
+   TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION
+
+   1. Definitions.
+
+      "License" shall mean the terms and conditions for use, reproduction,
+      and distribution as defined by Sections 1 through 9 of this document.
+
+      "Licensor" shall mean the copyright owner or entity authorized by
+      the copyright owner that is granting the License.
+
+      "Legal Entity" shall mean the union of the acting entity and all
+      other entities that control, are controlled by, or are under common
+      control with that entity. For the purposes of this definition,
+      "control" means (i) the power, direct or indirect, to cause the
+      direction or management of such entity, whether by contract or
+      otherwise, or (ii) ownership of fifty percent (50%) or more of the
+      outstanding shares, or (iii) beneficial ownership of such entity.
+
+      "You" (or "Your") shall mean an individual or Legal Entity
+      exercising permissions granted by this License.
+
+      "Source" form shall mean the preferred form for making modifications,
+      including but not limited to software source code, documentation
+      source, and configuration files.
+
+      "Object" form shall mean any form resulting from mechanical
+      transformation or translation of a Source form, including but
+      not limited to compiled object code, generated documentation,
+      and conversions to other media types.
+
+      "Work" shall mean the work of authorship, whether in Source or
+      Object form, made available under the License, as indicated by a
+      copyright notice that is included in or attached to the work
+      (an example is provided in the Appendix below).
+
+      "Derivative Works" shall mean any work, whether in Source or Object
+      form, that is based on (or derived from) the Work and for which the
+      editorial revisions, annotations, elaborations, or other modifications
+      represent, as a whole, an original work of authorship. For the purposes
+      of this License, Derivative Works shall not include works that remain
+      separable from, or merely link (or bind by name) to the interfaces of,
+      the Work and Derivative Works thereof.
+
+      "Contribution" shall mean any work of authorship, including
+      the original version of the Work and any modifications or additions
+      to that Work or Derivative Works thereof, that is intentionally
+      submitted to Licensor for inclusion in the Work by the copyright owner
+      or by an individual or Legal Entity authorized to submit on behalf of
+      the copyright owner. For the purposes of this definition, "submitted"
+      means any form of electronic, verbal, or written communication sent
+      to the Licensor or its representatives, including but not limited to
+      communication on electronic mailing lists, source code control systems,
+      and issue tracking systems that are managed by, or on behalf of, the
+      Licensor for the purpose of discussing and improving the Work, but
+      excluding communication that is conspicuously marked or otherwise
+      designated in writing by the copyright owner as "Not a Contribution."
+
+      "Contributor" shall mean Licensor and any individual or Legal Entity
+      on behalf of whom a Contribution has been received by Licensor and
+      subsequently incorporated within the Work.
+
+   2. Grant of Copyright License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      copyright license to reproduce, prepare Derivative Works of,
+      publicly display, publicly perform, sublicense, and distribute the
+      Work and such Derivative Works in Source or Object form.
+
+   3. Grant of Patent License. Subject to the terms and conditions of
+      this License, each Contributor hereby grants to You a perpetual,
+      worldwide, non-exclusive, no-charge, royalty-free, irrevocable
+      (except as stated in this section) patent license to make, have made,
+      use, offer to sell, sell, import, and otherwise transfer the Work,
+      where such license applies only to those patent claims licensable
+      by such Contributor that are necessarily infringed by their
+      Contribution(s) alone or by combination of their Contribution(s)
+      with the Work to which such Contribution(s) was submitted. If You
+      institute patent litigation against any entity (including a
+      cross-claim or counterclaim in a lawsuit) alleging that the Work
+      or a Contribution incorporated within the Work constitutes direct
+      or contributory patent infringement, then any patent licenses
+      granted to You under this License for that Work shall terminate
+      as of the date such litigation is filed.
+
+   4. Redistribution. You may reproduce and distribute copies of the
+      Work or Derivative Works thereof in any medium, with or without
+      modifications, and in Source or Object form, provided that You
+      meet the following conditions:
+
+      (a) You must give any other recipients of the Work or
+          Derivative Works a copy of this License; and
+
+      (b) You must cause any modified files to carry prominent notices
+          stating that You changed the files; and
+
+      (c) You must retain, in the Source form of any Derivative Works
+          that You distribute, all copyright, patent, trademark, and
+          attribution notices from the Source form of the Work,
+          excluding those notices that do not pertain to any part of
+          the Derivative Works; and
+
+      (d) If the Work includes a "NOTICE" text file as part of its
+          distribution, then any Derivative Works that You distribute must
+          include a readable copy of the attribution notices contained
+          within such NOTICE file, excluding those notices that do not
+          pertain to any part of the Derivative Works, in at least one
+          of the following places: within a NOTICE text file distributed
+          as part of the Derivative Works; within the Source form or
+          documentation, if provided along with the Derivative Works; or,
+          within a display generated by the Derivative Works, if and
+          wherever such third-party notices normally appear. The contents
+          of the NOTICE file are for informational purposes only and
+          do not modify the License. You may add Your own attribution
+          notices within Derivative Works that You distribute, alongside
+          or as an addendum to the NOTICE text from the Work, provided
+          that such additional attribution notices cannot be construed
+          as modifying the License.
+
+      You may add Your own copyright statement to Your modifications and
+      may provide additional or different license terms and conditions
+      for use, reproduction, or distribution of Your modifications, or
+      for any such Derivative Works as a whole, provided Your use,
+      reproduction, and distribution of the Work otherwise complies with
+      the conditions stated in this License.
+
+   5. Submission of Contributions. Unless You explicitly state otherwise,
+      any Contribution intentionally submitted for inclusion in the Work
+      by You to the Licensor shall be under the terms and conditions of
+      this License, without any additional terms or conditions.
+      Notwithstanding the above, nothing herein shall supersede or modify
+      the terms of any separate license agreement you may have executed
+      with Licensor regarding such Contributions.
+
+   6. Trademarks. This License does not grant permission to use the trade
+      names, trademarks, service marks, or product names of the Licensor,
+      except as required for reasonable and customary use in describing the
+      origin of the Work and reproducing the content of the NOTICE file.
+
+   7. Disclaimer of Warranty. Unless required by applicable law or
+      agreed to in writing, Licensor provides the Work (and each
+      Contributor provides its Contributions) on an "AS IS" BASIS,
+      WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
+      implied, including, without limitation, any warranties or conditions
+      of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A
+      PARTICULAR PURPOSE. You are solely responsible for determining the
+      appropriateness of using or redistributing the Work and assume any
+      risks associated with Your exercise of permissions under this License.
+
+   8. Limitation of Liability. In no event and under no legal theory,
+      whether in tort (including negligence), contract, or otherwise,
+      unless required by applicable law (such as deliberate and grossly
+      negligent acts) or agreed to in writing, shall any Contributor be
+      liable to You for damages, including any direct, indirect, special,
+      incidental, or consequential damages of any character arising as a
+      result of this License or out of the use or inability to use the
+      Work (including but not limited to damages for loss of goodwill,
+      work stoppage, computer failure or malfunction, or any and all
+      other commercial damages or losses), even if such Contributor
+      has been advised of the possibility of such damages.
+
+   9. Accepting Warranty or Additional Liability. While redistributing
+      the Work or Derivative Works thereof, You may choose to offer,
+      and charge a fee for, acceptance of support, warranty, indemnity,
+      or other liability obligations and/or rights consistent with this
+      License. However, in accepting such obligations, You may act only
+      on Your own behalf and on Your sole responsibility, not on behalf
+      of any other Contributor, and only if You agree to indemnify,
+      defend, and hold each Contributor harmless for any liability
+      incurred by, or claims asserted against, such Contributor by reason
+      of your accepting any such warranty or additional liability.
+
+   END OF TERMS AND CONDITIONS
+
+   APPENDIX: How to apply the Apache License to your work.
+
+      To apply the Apache License to your work, attach the following
+      boilerplate notice, with the fields enclosed by brackets "[]"
+      replaced with your own identifying information. (Don't include
+      the brackets!)  The text should be enclosed in the appropriate
+      comment syntax for the file format. We also recommend that a
+      file or class name and description of purpose be included on the
+      same "printed page" as the copyright notice for easier
+      identification within third-party archives.
+
+   Copyright [yyyy] [name of copyright owner]
+
+   Licensed under the Apache License, Version 2.0 (the "License");
+   you may not use this file except in compliance with the License.
+   You may obtain a copy of the License at
+
+       http://www.apache.org/licenses/LICENSE-2.0
+
+   Unless required by applicable law or agreed to in writing, software
+   distributed under the License is distributed on an "AS IS" BASIS,
+   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+   See the License for the specific language governing permissions and
+   limitations under the License.

ssm_connect-1.0.0/PKG-INFO

@@ -0,0 +1,119 @@
+Metadata-Version: 2.4
+Name: ssm-connect
+Version: 1.0.0
+Summary: Interactive CLI to connect to AWS EC2 via SSM or SSH-over-SSM, with keyword search and multi-session terminal launch.
+Author-email: Your Name <you@example.com>
+License: Apache-2.0
+Project-URL: Homepage, https://github.com/yourusername/ssm-connect
+Project-URL: Issues, https://github.com/yourusername/ssm-connect/issues
+Project-URL: Source, https://github.com/yourusername/ssm-connect
+Keywords: aws,ec2,ssm,ssh,cli,session-manager
+Classifier: Development Status :: 4 - Beta
+Classifier: Intended Audience :: Developers
+Classifier: Intended Audience :: System Administrators
+Classifier: License :: OSI Approved :: Apache Software License
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3 :: Only
+Classifier: Programming Language :: Python :: 3.8
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Topic :: System :: Systems Administration
+Classifier: Topic :: Utilities
+Requires-Python: >=3.8
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: boto3>=1.26.0
+Dynamic: license-file
+
+Interactive CLI to connect to AWS EC2 instances via:
+
+SSM Session Manager (shell)
+
+SSH over SSM (with your SSH key)
+
+Multiple sessions in parallel (opens each in a new terminal)
+
+Keyword search across Name/ID/all tag values
+
+Simple, cross-platform, and secure by default.
+
+Features
+Search instances by keywords (matches Name, InstanceId, and all tag values)
+
+Choose SSM or SSH-over-SSM per connection
+
+Optional strict SSH host key checking (security toggle)
+
+Opens each session in a new terminal window (Linux, macOS, Windows)
+
+Uses your existing AWS credentials (SSO, profiles, env vars)
+
+Validates SSH key path and permissions (Unix)
+
+Requirements
+AWS account permissions to use SSM Session Manager
+
+Locally installed:
+
+AWS CLI v2
+
+SSM Session Manager plugin
+
+OpenSSH client (ssh)
+
+Python 3.8+
+
+boto3 (installed automatically if using PyPI package)
+
+On Linux/macOS, ensure a terminal emulator exists (e.g., gnome-terminal, xterm, or Terminal.app on macOS). On Windows, PowerShell or Windows Terminal recommended.
+
+Install
+From source:
+
+Clone this repo and run the script with Python 3.
+
+From PyPI (if published):
+
+pip install ssm-connect
+
+ssm-connect
+
+Usage
+Run the tool
+
+Optionally enter keywords to filter instances (e.g., “prod web”)
+
+Select an instance
+
+Choose connection type:
+
+SSM (interactive shell)
+
+SSH over SSM (enter SSH key path and user)
+
+For SSH, choose whether to enable strict host key checking
+
+Each session opens in a new terminal; you can open more without restarting the tool
+
+Notes
+SSH over SSM uses AWS-StartSSHSession and does not require port 22 open in security groups.
+
+Strict host key checking is disabled by default for convenience; enable it for production/security-sensitive use.
+
+The tool does not print or store credentials; it inherits your AWS session from the environment/AWS CLI.
+
+Troubleshooting
+If “aws” or “ssh” not found: ensure AWS CLI v2 and OpenSSH are on PATH.
+
+If SSO token expired: run aws sso login or refresh your Granted/SSO session.
+
+If SSH key error: ensure the private key exists locally and has correct permissions (chmod 600 on Unix). Avoid cloud-only paths (e.g., OneDrive placeholders).
+
+License
+Apache License 2.0. See LICENSE for details.
+
+Contributing
+Issues and PRs are welcome. Please keep changes focused and add brief notes to the README when behavior changes.

ssm_connect-1.0.0/README.md

@@ -0,0 +1,89 @@
+Interactive CLI to connect to AWS EC2 instances via:
+
+SSM Session Manager (shell)
+
+SSH over SSM (with your SSH key)
+
+Multiple sessions in parallel (opens each in a new terminal)
+
+Keyword search across Name/ID/all tag values
+
+Simple, cross-platform, and secure by default.
+
+Features
+Search instances by keywords (matches Name, InstanceId, and all tag values)
+
+Choose SSM or SSH-over-SSM per connection
+
+Optional strict SSH host key checking (security toggle)
+
+Opens each session in a new terminal window (Linux, macOS, Windows)
+
+Uses your existing AWS credentials (SSO, profiles, env vars)
+
+Validates SSH key path and permissions (Unix)
+
+Requirements
+AWS account permissions to use SSM Session Manager
+
+Locally installed:
+
+AWS CLI v2
+
+SSM Session Manager plugin
+
+OpenSSH client (ssh)
+
+Python 3.8+
+
+boto3 (installed automatically if using PyPI package)
+
+On Linux/macOS, ensure a terminal emulator exists (e.g., gnome-terminal, xterm, or Terminal.app on macOS). On Windows, PowerShell or Windows Terminal recommended.
+
+Install
+From source:
+
+Clone this repo and run the script with Python 3.
+
+From PyPI (if published):
+
+pip install ssm-connect
+
+ssm-connect
+
+Usage
+Run the tool
+
+Optionally enter keywords to filter instances (e.g., “prod web”)
+
+Select an instance
+
+Choose connection type:
+
+SSM (interactive shell)
+
+SSH over SSM (enter SSH key path and user)
+
+For SSH, choose whether to enable strict host key checking
+
+Each session opens in a new terminal; you can open more without restarting the tool
+
+Notes
+SSH over SSM uses AWS-StartSSHSession and does not require port 22 open in security groups.
+
+Strict host key checking is disabled by default for convenience; enable it for production/security-sensitive use.
+
+The tool does not print or store credentials; it inherits your AWS session from the environment/AWS CLI.
+
+Troubleshooting
+If “aws” or “ssh” not found: ensure AWS CLI v2 and OpenSSH are on PATH.
+
+If SSO token expired: run aws sso login or refresh your Granted/SSO session.
+
+If SSH key error: ensure the private key exists locally and has correct permissions (chmod 600 on Unix). Avoid cloud-only paths (e.g., OneDrive placeholders).
+
+License
+Apache License 2.0. See LICENSE for details.
+
+Contributing
+Issues and PRs are welcome. Please keep changes focused and add brief notes to the README when behavior changes.

ssm_connect-1.0.0/pyproject.toml

@@ -0,0 +1,49 @@
+[build-system]
+requires = ["setuptools>=61.0", "wheel"]
+build-backend = "setuptools.build_meta"
+
+[project]
+name = "ssm-connect"
+version = "1.0.0"
+description = "Interactive CLI to connect to AWS EC2 via SSM or SSH-over-SSM, with keyword search and multi-session terminal launch."
+readme = "README.md"
+requires-python = ">=3.8"
+license = { text = "Apache-2.0" }
+authors = [
+{ name = "Your Name", email = "you@example.com" }
+]
+keywords = ["aws", "ec2", "ssm", "ssh", "cli", "session-manager"]
+classifiers = [
+"Development Status :: 4 - Beta",
+"Intended Audience :: Developers",
+"Intended Audience :: System Administrators",
+"License :: OSI Approved :: Apache Software License",
+"Operating System :: OS Independent",
+"Programming Language :: Python :: 3",
+"Programming Language :: Python :: 3 :: Only",
+"Programming Language :: Python :: 3.8",
+"Programming Language :: Python :: 3.9",
+"Programming Language :: Python :: 3.10",
+"Programming Language :: Python :: 3.11",
+"Programming Language :: Python :: 3.12",
+"Topic :: System :: Systems Administration",
+"Topic :: Utilities",
+]
+
+dependencies = [
+"boto3>=1.26.0",
+]
+
+[project.urls]
+Homepage = "https://github.com/yourusername/ssm-connect"
+Issues = "https://github.com/yourusername/ssm-connect/issues"
+Source = "https://github.com/yourusername/ssm-connect"
+
+[project.scripts]
+ssm-connect = "ssm_connect.main:main"
+
+[tool.setuptools.packages.find]
+where = ["src"]
+
+[tool.setuptools.package-dir]
+"" = "src"

ssm_connect-1.0.0/setup.cfg

@@ -0,0 +1,4 @@
+[egg_info]
+tag_build = 
+tag_date = 0
+

ssm_connect-1.0.0/setup.py

@@ -0,0 +1,2 @@
+from setuptools import setup
+setup()

ssm_connect-1.0.0/src/ssm_connect/init.py

@@ -0,0 +1 @@
+version = "1.0.0"

ssm_connect-1.0.0/src/ssm_connect/main.py

@@ -0,0 +1,345 @@
+## Copyright 2025 Siby Jose
+#
+# Licensed under the Apache License, Version 2.0 (the "License");
+# you may not use this file except in compliance with the License.
+# You may obtain a copy of the License at
+#
+#     http://www.apache.org/licenses/LICENSE-2.0
+#
+# Unless required by applicable law or agreed to in writing, software
+# distributed under the License is distributed on an "AS IS" BASIS,
+# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+# See the License for the specific language governing permissions and
+# limitations under the License.
+
+# !/usr/bin/env python3
+import os
+import sys
+import subprocess
+import stat
+from pathlib import Path
+from typing import List, Dict, Optional, Tuple
+from enum import Enum
+import shutil
+import platform
+import shlex
+import boto3
+from botocore.config import Config
+from botocore.exceptions import BotoCoreError, ClientError, NoCredentialsError
+
+Instance = Dict[str, str]
+
+class ConnectionType(Enum):
+    SSM = "ssm"
+    SSH = "ssh"
+
+def make_boto3_session() -> boto3.Session:
+    os.environ.setdefault("AWS_SDK_LOAD_CONFIG", "1")
+    return boto3.Session()
+
+def get_session_credentials(session: boto3.Session) -> Dict[str, str]:
+    try:
+        credentials = session.get_credentials()
+        if not credentials:
+            return {}
+        frozen = credentials.get_frozen_credentials()
+        env_creds = {
+            "AWS_ACCESS_KEY_ID": frozen.access_key,
+            "AWS_SECRET_ACCESS_KEY": frozen.secret_key,
+        }
+        if frozen.token:
+            env_creds["AWS_SESSION_TOKEN"] = frozen.token
+        return env_creds
+    except NoCredentialsError:
+        print("Warning: Could not resolve AWS credentials from the session.", file=sys.stderr)
+        return {}
+
+def _get_instance_name(tags: Optional[List[Dict[str, str]]]) -> str:
+    if not tags:
+        return "Unnamed"
+    for tag in tags:
+        if tag.get("Key") == "Name":
+            return tag.get("Value", "Unnamed")
+    return "Unnamed"
+
+def validate_key_permissions(key_path: Path) -> bool:
+    if os.name == 'nt':
+        return True
+    try:
+        mode = key_path.stat().st_mode
+        if mode & (stat.S_IRWXG | stat.S_IRWXO):
+            print(f"\nWarning: Private key '{key_path}' has overly permissive access.", file=sys.stderr)
+            print(f"         To fix, run: chmod 600 {key_path}", file=sys.stderr)
+            return False
+        return True
+    except Exception as e:
+        print(f"Warning: Could not check key permissions: {e}", file=sys.stderr)
+        return True
+
+def list_running_instances(session: boto3.Session) -> List[Instance]:
+    ec2 = session.client("ec2", config=Config(retries={"max_attempts": 5}))
+    paginator = ec2.get_paginator("describe_instances")
+    filters = [{"Name": "instance-state-name", "Values": ["running"]}]
+    instances = []
+    for page in paginator.paginate(Filters=filters):
+        for reservation in page.get("Reservations", []):
+            for inst in reservation.get("Instances", []):
+                tags = inst.get("Tags") or []
+                flat_tags = {tag['Key'].lower(): (tag.get('Value') or '').lower() for tag in tags if 'Key' in tag}
+                all_tag_values = ' '.join(flat_tags.values())
+                instances.append({
+                    "InstanceId": inst.get("InstanceId"), 
+                    "Name": _get_instance_name(tags),
+                    "AllTagsBlob": all_tag_values
+                })
+    return instances
+
+def prompt_for_keywords() -> Optional[List[str]]:
+    raw = input("\n(Optional) Enter keywords to filter instances (or press ENTER to list all): ").strip()
+    if not raw:
+        return None
+    return [s.lower() for s in raw.replace(',', ' ').split() if s.strip()]
+
+def filter_instances_by_keywords(instances: List[Instance], keywords: Optional[List[str]]) -> List[Instance]:
+    if not keywords:
+        return instances
+    filtered = []
+    for inst in instances:
+        search_blob = (
+            inst.get("Name", "").lower() + " " +
+            inst.get("InstanceId", "").lower() + " " +
+            inst.get("AllTagsBlob", "")
+        )
+        if all(kw in search_blob for kw in keywords):
+            filtered.append(inst)
+    return filtered
+
+def choose_instance(instances: List[Instance]) -> Optional[str]:
+    if not instances:
+        return None
+    print("\nSelect an EC2 Instance:")
+    for idx, inst in enumerate(instances, start=1):
+        print(f"[{idx}] {inst['Name']} ({inst['InstanceId']})")
+    print("[0] Exit / Refine Search")
+    try:
+        raw_choice = input("\nEnter the number of the instance to connect to: ").strip()
+        if raw_choice == "0":
+            return "RETRY"
+        choice_idx = int(raw_choice) - 1
+        if 0 <= choice_idx < len(instances):
+            return instances[choice_idx]["InstanceId"]
+    except (ValueError, IndexError):
+        return None
+    return None
+
+def choose_connection_type() -> Optional[ConnectionType]:
+    print("\nSelect connection type:")
+    print("[1] SSM Session (interactive shell)")
+    print("[2] SSH over SSM (requires private key)")
+    try:
+        choice = input("\nEnter your choice (1 or 2): ").strip()
+        if choice == "1":
+            return ConnectionType.SSM
+        elif choice == "2":
+            return ConnectionType.SSH
+        else:
+            return None
+    except (ValueError, KeyboardInterrupt):
+        return None
+
+def prompt_for_ssh_details() -> Optional[Tuple[str, Path]]:
+    key_path_str = input("\nEnter the path to your private key file: ").strip()
+    if not key_path_str:
+        print("Error: Private key path cannot be empty.", file=sys.stderr)
+        return None
+    key_path = Path(key_path_str.strip('"\'')).expanduser()
+    if not key_path.is_file():
+        print(f"Error: Private key file not found or is not a file at '{key_path}'", file=sys.stderr)
+        return None
+    if not validate_key_permissions(key_path):
+        response = input("Continue anyway? (y/N): ").strip().lower()
+        if response != 'y':
+            return None
+    username = input("Enter SSH username (e.g., ec2-user, ubuntu): ").strip()
+    if not username:
+        print("Error: Username cannot be empty.", file=sys.stderr)
+        return None
+    return username, key_path
+
+def get_host_key_checking_choice() -> bool:
+    choice = input(
+        "Enable strict SSH host key checking? [y/N]: "
+    ).strip().lower()
+    return choice == "y"
+
+def _prepare_subprocess_env(session: boto3.Session) -> Dict[str, str]:
+    env = os.environ.copy()
+    creds = get_session_credentials(session)
+    env.update(creds)
+    if session.region_name:
+        env["AWS_REGION"] = session.region_name
+        env["AWS_DEFAULT_REGION"] = session.region_name
+    return env
+
+def open_in_new_terminal(command: list, env: dict):
+    if sys.platform.startswith("linux"):
+        if shutil.which("gnome-terminal"):
+            safe_command = " ".join(shlex.quote(arg) for arg in command) + "; exec bash"
+            subprocess.Popen(["gnome-terminal", "--", "bash", "-c", safe_command], env=env)
+        elif shutil.which("konsole"):
+            subprocess.Popen(["konsole", "-e"] + command, env=env)
+        elif shutil.which("xterm"):
+            subprocess.Popen(["xterm", "-e"] + command, env=env)
+        elif shutil.which("x-terminal-emulator"):
+            subprocess.Popen(["x-terminal-emulator", "-e"] + command, env=env)
+        else:
+            print("No supported terminal emulator found, running in current window.", file=sys.stderr)
+            subprocess.Popen(command, env=env)
+    
+    elif sys.platform == "darwin":
+        safe_command = " ".join(shlex.quote(arg) for arg in command)
+        applescript_safe_command = safe_command.replace('"', '\\"')
+        subprocess.Popen([
+            "osascript",
+            "-e",
+            f'tell application "Terminal" to do script "{applescript_safe_command}"'
+        ], env=env)
+    
+    elif os.name == "nt":
+        safe_command = subprocess.list2cmdline(command)
+        
+        if shutil.which("wt"):
+            subprocess.Popen(["wt", "new-tab", "cmd", "/k", safe_command], env=env)
+        elif shutil.which("powershell"):
+            subprocess.Popen([
+                "powershell", 
+                "-Command", 
+                f"Start-Process powershell -ArgumentList '-NoExit', '-Command', {repr(safe_command)}"
+            ], env=env)
+        else:
+            # Fallback to cmd - use start with quoted command
+            subprocess.Popen(["cmd", "/c", "start", "cmd", "/k", safe_command], env=env)
+    
+    else:
+        print("Unknown OS: running the command in the current terminal.")
+        subprocess.Popen(command, env=env)
+
+def start_ssm_session(instance_id: str, session: boto3.Session) -> int:
+    env = _prepare_subprocess_env(session)
+    cmd = ["aws", "ssm", "start-session", "--target", instance_id]
+    try:
+        print(f"\nOpening SSM session to {instance_id} in a new terminal window.")
+        print("You can now open additional sessions by making another selection.\n")
+        open_in_new_terminal(cmd, env)
+        return 0
+    except Exception as e:
+        print(f"Error opening terminal: {e}", file=sys.stderr)
+        print("Falling back to current terminal session.", file=sys.stderr)
+        try:
+            result = subprocess.run(cmd, env=env)
+            return result.returncode
+        except FileNotFoundError:
+            print("Error: 'aws' command not found. Please ensure the AWS CLI is installed.", file=sys.stderr)
+            return 1
+        except KeyboardInterrupt:
+            print("\nSSM session terminated.")
+            return 0
+
+def start_ssh_session(instance_id: str, username: str, key_path: Path, session: boto3.Session) -> int:
+    env = _prepare_subprocess_env(session)
+    proxy_command = (
+        f"aws ssm start-session --target {instance_id} "
+        f"--document-name AWS-StartSSHSession --parameters portNumber=%p"
+    )
+    strict_host_check = get_host_key_checking_choice()
+    ssh_cmd = [
+        "ssh", "-i", str(key_path.resolve()),
+        "-o", f"ProxyCommand={proxy_command}",
+        "-o", "IdentitiesOnly=yes"
+    ]
+    if not strict_host_check:
+        ssh_cmd += [
+            "-o", "StrictHostKeyChecking=no",
+            "-o", "UserKnownHostsFile=/dev/null"
+        ]
+    ssh_cmd.append(f"{username}@{instance_id}")
+    try:
+        print(f"\nOpening SSH over SSM session to {instance_id} as '{username}' in a new terminal window.")
+        print("You can now open additional sessions by making another selection.\n")
+        open_in_new_terminal(ssh_cmd, env)
+        return 0
+    except Exception as e:
+        print(f"Error opening terminal: {e}", file=sys.stderr)
+        print("Falling back to current terminal session.", file=sys.stderr)
+        try:
+            result = subprocess.run(ssh_cmd, env=env)
+            return result.returncode
+        except FileNotFoundError:
+            print("Error: 'ssh' or 'aws' command not found. Ensure both are installed.", file=sys.stderr)
+            return 1
+        except KeyboardInterrupt:
+            print("\nSSH session terminated.")
+            return 0
+
+def ask_continue_or_exit():
+    choice = input("\nWould you like to open another session? [Y/n]: ").strip().lower()
+    return choice != 'n' and choice != 'no'
+
+def main():
+    try:
+        session = make_boto3_session()
+        all_instances = list_running_instances(session)
+    except (BotoCoreError, ClientError) as e:
+        print(f"AWS API Error: Failed to list instances: {e}", file=sys.stderr)
+        print("\nTip: Ensure your AWS credentials are configured correctly.", file=sys.stderr)
+        sys.exit(1)
+    
+    if not all_instances:
+        print(f"No running instances found in region '{session.region_name}'.")
+        sys.exit(0)
+    
+    print(f"Found {len(all_instances)} running instances in region '{session.region_name}'.")
+    
+    while True:
+        instance_id = None
+        
+        while not instance_id:
+            keywords = prompt_for_keywords()
+            filtered_instances = filter_instances_by_keywords(all_instances, keywords)
+            
+            if not filtered_instances:
+                print("No instances found matching your keywords. Please try again.")
+                continue
+            
+            selection = choose_instance(filtered_instances)
+            if selection is None:
+                print("Invalid selection. Please try again.", file=sys.stderr)
+                continue
+            elif selection == "RETRY":
+                continue
+            else:
+                instance_id = selection
+        
+        connection_type = choose_connection_type()
+        if not connection_type:
+            print("Invalid connection type. Exiting.", file=sys.stderr)
+            sys.exit(1)
+        
+        if connection_type == ConnectionType.SSM:
+            start_ssm_session(instance_id, session)
+        elif connection_type == ConnectionType.SSH:
+            ssh_details = prompt_for_ssh_details()
+            if ssh_details:
+                username, key_path = ssh_details
+                start_ssh_session(instance_id, username, key_path, session)
+            else:
+                print("Failed to get SSH details.")
+                continue
+        
+        if not ask_continue_or_exit():
+            break
+    
+    print("Goodbye!")
+
+if __name__ == "__main__":
+    main()

ssm_connect-1.0.0/src/ssm_connect.egg-info/PKG-INFO

@@ -0,0 +1,119 @@
+Metadata-Version: 2.4
+Name: ssm-connect
+Version: 1.0.0
+Summary: Interactive CLI to connect to AWS EC2 via SSM or SSH-over-SSM, with keyword search and multi-session terminal launch.
+Author-email: Your Name <you@example.com>
+License: Apache-2.0
+Project-URL: Homepage, https://github.com/yourusername/ssm-connect
+Project-URL: Issues, https://github.com/yourusername/ssm-connect/issues
+Project-URL: Source, https://github.com/yourusername/ssm-connect
+Keywords: aws,ec2,ssm,ssh,cli,session-manager
+Classifier: Development Status :: 4 - Beta
+Classifier: Intended Audience :: Developers
+Classifier: Intended Audience :: System Administrators
+Classifier: License :: OSI Approved :: Apache Software License
+Classifier: Operating System :: OS Independent
+Classifier: Programming Language :: Python :: 3
+Classifier: Programming Language :: Python :: 3 :: Only
+Classifier: Programming Language :: Python :: 3.8
+Classifier: Programming Language :: Python :: 3.9
+Classifier: Programming Language :: Python :: 3.10
+Classifier: Programming Language :: Python :: 3.11
+Classifier: Programming Language :: Python :: 3.12
+Classifier: Topic :: System :: Systems Administration
+Classifier: Topic :: Utilities
+Requires-Python: >=3.8
+Description-Content-Type: text/markdown
+License-File: LICENSE
+Requires-Dist: boto3>=1.26.0
+Dynamic: license-file
+
+Interactive CLI to connect to AWS EC2 instances via:
+
+SSM Session Manager (shell)
+
+SSH over SSM (with your SSH key)
+
+Multiple sessions in parallel (opens each in a new terminal)
+
+Keyword search across Name/ID/all tag values
+
+Simple, cross-platform, and secure by default.
+
+Features
+Search instances by keywords (matches Name, InstanceId, and all tag values)
+
+Choose SSM or SSH-over-SSM per connection
+
+Optional strict SSH host key checking (security toggle)
+
+Opens each session in a new terminal window (Linux, macOS, Windows)
+
+Uses your existing AWS credentials (SSO, profiles, env vars)
+
+Validates SSH key path and permissions (Unix)
+
+Requirements
+AWS account permissions to use SSM Session Manager
+
+Locally installed:
+
+AWS CLI v2
+
+SSM Session Manager plugin
+
+OpenSSH client (ssh)
+
+Python 3.8+
+
+boto3 (installed automatically if using PyPI package)
+
+On Linux/macOS, ensure a terminal emulator exists (e.g., gnome-terminal, xterm, or Terminal.app on macOS). On Windows, PowerShell or Windows Terminal recommended.
+
+Install
+From source:
+
+Clone this repo and run the script with Python 3.
+
+From PyPI (if published):
+
+pip install ssm-connect
+
+ssm-connect
+
+Usage
+Run the tool
+
+Optionally enter keywords to filter instances (e.g., “prod web”)
+
+Select an instance
+
+Choose connection type:
+
+SSM (interactive shell)
+
+SSH over SSM (enter SSH key path and user)
+
+For SSH, choose whether to enable strict host key checking
+
+Each session opens in a new terminal; you can open more without restarting the tool
+
+Notes
+SSH over SSM uses AWS-StartSSHSession and does not require port 22 open in security groups.
+
+Strict host key checking is disabled by default for convenience; enable it for production/security-sensitive use.
+
+The tool does not print or store credentials; it inherits your AWS session from the environment/AWS CLI.
+
+Troubleshooting
+If “aws” or “ssh” not found: ensure AWS CLI v2 and OpenSSH are on PATH.
+
+If SSO token expired: run aws sso login or refresh your Granted/SSO session.
+
+If SSH key error: ensure the private key exists locally and has correct permissions (chmod 600 on Unix). Avoid cloud-only paths (e.g., OneDrive placeholders).
+
+License
+Apache License 2.0. See LICENSE for details.
+
+Contributing
+Issues and PRs are welcome. Please keep changes focused and add brief notes to the README when behavior changes.

ssm_connect-1.0.0/src/ssm_connect.egg-info/SOURCES.txt

@@ -0,0 +1,12 @@
+LICENSE
+README.md
+pyproject.toml
+setup.py
+src/ssm_connect/init.py
+src/ssm_connect/main.py
+src/ssm_connect.egg-info/PKG-INFO
+src/ssm_connect.egg-info/SOURCES.txt
+src/ssm_connect.egg-info/dependency_links.txt
+src/ssm_connect.egg-info/entry_points.txt
+src/ssm_connect.egg-info/requires.txt
+src/ssm_connect.egg-info/top_level.txt

ssm_connect-1.0.0/src/ssm_connect.egg-info/dependency_links.txt

@@ -0,0 +1 @@
+

ssm_connect-1.0.0/src/ssm_connect.egg-info/entry_points.txt

@@ -0,0 +1,2 @@
+[console_scripts]
+ssm-connect = ssm_connect.main:main

ssm_connect-1.0.0/src/ssm_connect.egg-info/requires.txt

@@ -0,0 +1 @@
+boto3>=1.26.0

ssm_connect-1.0.0/src/ssm_connect.egg-info/top_level.txt

@@ -0,0 +1 @@
+ssm_connect