Serverless Stack

hey guys I’d like to get some help with AWS organizations

I have an account that I use for my personal projects, and I started using AWS Organizations/SSO to kill all of the IAM users I used to have, but now I can’t see the billing dashboard from the accounts logged in through SSO - even though I gave full access to the AWS account and to the billing dashboard. does it require any additional steps?

I think there's some annoying other place where you enable billing view for users

&gt; Sign in to the AWS Management Console with your root account credentials (the email address and password that you used to create your AWS account). Don't sign in with your IAM user credentials.
&gt; 
&gt; On the navigation bar, choose your account name, and then choose My Account.
&gt; 
&gt; Next to IAM User Access to Billing Information, choose Edit.
&gt; 
&gt; Select the Activate IAM Access check box to activate access to the Billing and Cost Management pages. You can now use IAM policies to control which pages a user can access.

next step is to search for how to get SSO creds for my CI, it’s the last IAM user standing

for SST projects (the ones who matters), seed

but for older projects on Serverless framework I go for GitLab

gotcha so for SEED we still require one iam user there

GitLab can do a new form of auth where you don't even need to load secrets into gitlab

<https://docs.gitlab.com/ee/ci/cloud_services/aws/>

hmm nice, I’ll let the CI iam user since seed is the most important for me lol

I used gitlab most because of it’s ci but now with SEED I can keep things on github so it works for me

I use github actions (I don't even use seed yet haha)

lol on my job I only use gitlab so I never got to learn how github actions works because of that