feat: Add support for optional profile expiration

[ruhulio]

Description

These changes add optional support for profile expiration checking. When enabled with the --use-profile-expiration option, tokendito will store the expiration in each profile. Subsequent authentication requests will then check the expiration to see if it's still valid and bypass the need to re-authenticate.

Related Issue

N/A

Motivation and Context

This reduces the friction for our engineering teams when they need to script the use of tokendito and MFA is in play.

How Has This Been Tested?

• Running without the new option
• Running with the new option and a clean INI file
• Running with the new option and an INI file with expiration values

Example output:

# Without profile expiration set
❯ tokendito --use-profile-expiration--profile test_profile --aws-profile test_profile --config-file ./test-tokendito.ini
Organization username. E.g. [email protected]: xxxxx.xxxxx
Password:
2023-12-13 10:59:21,642 WARNING |tokendito.user check_profile_expiration():550| Expiration unavailable for config profile test-profile.
…

# With profile expiration in the future set
❯ tokendito --use-profile-expiration--profile test_profile --aws-profile test_profile --config-file ./test-tokendito.ini
Organization username. E.g. [email protected]: xxxxx.xxxxx
Password:
2023-12-13 10:57:18,126 INFO |tokendito.user check_profile_expiration():557| Expiration for config profile test-profile is still valid: 2023-12-13 23:17:10+00:00

# With profile expiration in the past set
❯ tokendito --use-profile-expiration--profile test_profile --aws-profile test_profile --config-file ./test-tokendito.ini
Organization username. E.g. [email protected]: xxxxx.xxxxx
Password:
2023-12-13 11:02:24,429 WARNING |tokendito.user check_profile_expiration():560| Expiration for config profile test-profile is no longer valid: 2023-12-11 23:17:10+00:00
...

Types of changes

• Bug fix (non-breaking change which fixes an issue)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to change)
• Documentation update

Checklist:

• My code follows the style guidelines of this project
• I have performed a self-review of my own code
• I have commented my code, particularly in hard-to-understand areas
• I have made corresponding changes to the documentation
• I have added tests that prove my fix is effective or that my feature works
• New and existing unit tests pass locally with my changes

[JSpenced]

Clean solution grabbing the Expiration from the API 👍 . Minor comments

[JSpenced]

Assuming here that aws returns the expiration time in utc?

[ruhulio]

Yep, the value is returned in UTC.

There is existing code that converts this to local when displaying the role to the user.

[JSpenced]

Yup yup! I just knew there was a aws config var for setting timestamps. I have had a problem switching from aws cli version 1 to 2 before. A different issue than this, but just wanted to check as those returned different formats. Think we are good then 👍 !

[JSpenced]

Probably not necessary but if it isn't guaranteed to return utc.

Suggested change

	now = datetime.now(timezone.utc)
	now = datetime.now(profile_expiration.tzinfo if profile_espiration.tzinfo else timezone.utc)