Initial
This commit is contained in:
7
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/fromIni.js
generated
vendored
Normal file
7
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/fromIni.js
generated
vendored
Normal file
@@ -0,0 +1,7 @@
|
||||
import { getProfileName, parseKnownFiles } from "@smithy/shared-ini-file-loader";
|
||||
import { resolveProfileData } from "./resolveProfileData";
|
||||
export const fromIni = (init = {}) => async () => {
|
||||
init.logger?.debug("@aws-sdk/credential-provider-ini", "fromIni");
|
||||
const profiles = await parseKnownFiles(init);
|
||||
return resolveProfileData(getProfileName(init), profiles, init);
|
||||
};
|
||||
1
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/index.js
generated
vendored
Normal file
1
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/index.js
generated
vendored
Normal file
@@ -0,0 +1 @@
|
||||
export * from "./fromIni";
|
||||
53
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveAssumeRoleCredentials.js
generated
vendored
Normal file
53
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveAssumeRoleCredentials.js
generated
vendored
Normal file
@@ -0,0 +1,53 @@
|
||||
import { CredentialsProviderError } from "@smithy/property-provider";
|
||||
import { getProfileName } from "@smithy/shared-ini-file-loader";
|
||||
import { resolveCredentialSource } from "./resolveCredentialSource";
|
||||
import { resolveProfileData } from "./resolveProfileData";
|
||||
export const isAssumeRoleProfile = (arg) => Boolean(arg) &&
|
||||
typeof arg === "object" &&
|
||||
typeof arg.role_arn === "string" &&
|
||||
["undefined", "string"].indexOf(typeof arg.role_session_name) > -1 &&
|
||||
["undefined", "string"].indexOf(typeof arg.external_id) > -1 &&
|
||||
["undefined", "string"].indexOf(typeof arg.mfa_serial) > -1 &&
|
||||
(isAssumeRoleWithSourceProfile(arg) || isAssumeRoleWithProviderProfile(arg));
|
||||
const isAssumeRoleWithSourceProfile = (arg) => typeof arg.source_profile === "string" && typeof arg.credential_source === "undefined";
|
||||
const isAssumeRoleWithProviderProfile = (arg) => typeof arg.credential_source === "string" && typeof arg.source_profile === "undefined";
|
||||
export const resolveAssumeRoleCredentials = async (profileName, profiles, options, visitedProfiles = {}) => {
|
||||
options.logger?.debug("@aws-sdk/credential-provider-ini", "resolveAssumeRoleCredentials (STS)");
|
||||
const data = profiles[profileName];
|
||||
if (!options.roleAssumer) {
|
||||
const { getDefaultRoleAssumer } = await import("@aws-sdk/client-sts");
|
||||
options.roleAssumer = getDefaultRoleAssumer({
|
||||
...options.clientConfig,
|
||||
credentialProviderLogger: options.logger,
|
||||
parentClientConfig: options?.parentClientConfig,
|
||||
}, options.clientPlugins);
|
||||
}
|
||||
const { source_profile } = data;
|
||||
if (source_profile && source_profile in visitedProfiles) {
|
||||
throw new CredentialsProviderError(`Detected a cycle attempting to resolve credentials for profile` +
|
||||
` ${getProfileName(options)}. Profiles visited: ` +
|
||||
Object.keys(visitedProfiles).join(", "), false);
|
||||
}
|
||||
const sourceCredsProvider = source_profile
|
||||
? resolveProfileData(source_profile, profiles, options, {
|
||||
...visitedProfiles,
|
||||
[source_profile]: true,
|
||||
})
|
||||
: (await resolveCredentialSource(data.credential_source, profileName)(options))();
|
||||
const params = {
|
||||
RoleArn: data.role_arn,
|
||||
RoleSessionName: data.role_session_name || `aws-sdk-js-${Date.now()}`,
|
||||
ExternalId: data.external_id,
|
||||
DurationSeconds: parseInt(data.duration_seconds || "3600", 10),
|
||||
};
|
||||
const { mfa_serial } = data;
|
||||
if (mfa_serial) {
|
||||
if (!options.mfaCodeProvider) {
|
||||
throw new CredentialsProviderError(`Profile ${profileName} requires multi-factor authentication, but no MFA code callback was provided.`, false);
|
||||
}
|
||||
params.SerialNumber = mfa_serial;
|
||||
params.TokenCode = await options.mfaCodeProvider(mfa_serial);
|
||||
}
|
||||
const sourceCreds = await sourceCredsProvider;
|
||||
return options.roleAssumer(sourceCreds, params);
|
||||
};
|
||||
15
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveCredentialSource.js
generated
vendored
Normal file
15
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveCredentialSource.js
generated
vendored
Normal file
@@ -0,0 +1,15 @@
|
||||
import { CredentialsProviderError } from "@smithy/property-provider";
|
||||
export const resolveCredentialSource = (credentialSource, profileName) => {
|
||||
const sourceProvidersMap = {
|
||||
EcsContainer: (options) => import("@smithy/credential-provider-imds").then(({ fromContainerMetadata }) => fromContainerMetadata(options)),
|
||||
Ec2InstanceMetadata: (options) => import("@smithy/credential-provider-imds").then(({ fromInstanceMetadata }) => fromInstanceMetadata(options)),
|
||||
Environment: (options) => import("@aws-sdk/credential-provider-env").then(({ fromEnv }) => fromEnv(options)),
|
||||
};
|
||||
if (credentialSource in sourceProvidersMap) {
|
||||
return sourceProvidersMap[credentialSource];
|
||||
}
|
||||
else {
|
||||
throw new CredentialsProviderError(`Unsupported credential source in profile ${profileName}. Got ${credentialSource}, ` +
|
||||
`expected EcsContainer or Ec2InstanceMetadata or Environment.`);
|
||||
}
|
||||
};
|
||||
5
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveProcessCredentials.js
generated
vendored
Normal file
5
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveProcessCredentials.js
generated
vendored
Normal file
@@ -0,0 +1,5 @@
|
||||
export const isProcessProfile = (arg) => Boolean(arg) && typeof arg === "object" && typeof arg.credential_process === "string";
|
||||
export const resolveProcessCredentials = async (options, profile) => import("@aws-sdk/credential-provider-process").then(({ fromProcess }) => fromProcess({
|
||||
...options,
|
||||
profile,
|
||||
})());
|
||||
28
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveProfileData.js
generated
vendored
Normal file
28
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveProfileData.js
generated
vendored
Normal file
@@ -0,0 +1,28 @@
|
||||
import { CredentialsProviderError } from "@smithy/property-provider";
|
||||
import { isAssumeRoleProfile, resolveAssumeRoleCredentials } from "./resolveAssumeRoleCredentials";
|
||||
import { isProcessProfile, resolveProcessCredentials } from "./resolveProcessCredentials";
|
||||
import { isSsoProfile, resolveSsoCredentials } from "./resolveSsoCredentials";
|
||||
import { isStaticCredsProfile, resolveStaticCredentials } from "./resolveStaticCredentials";
|
||||
import { isWebIdentityProfile, resolveWebIdentityCredentials } from "./resolveWebIdentityCredentials";
|
||||
export const resolveProfileData = async (profileName, profiles, options, visitedProfiles = {}) => {
|
||||
const data = profiles[profileName];
|
||||
if (Object.keys(visitedProfiles).length > 0 && isStaticCredsProfile(data)) {
|
||||
return resolveStaticCredentials(data, options);
|
||||
}
|
||||
if (isAssumeRoleProfile(data)) {
|
||||
return resolveAssumeRoleCredentials(profileName, profiles, options, visitedProfiles);
|
||||
}
|
||||
if (isStaticCredsProfile(data)) {
|
||||
return resolveStaticCredentials(data, options);
|
||||
}
|
||||
if (isWebIdentityProfile(data)) {
|
||||
return resolveWebIdentityCredentials(data, options);
|
||||
}
|
||||
if (isProcessProfile(data)) {
|
||||
return resolveProcessCredentials(options, profileName);
|
||||
}
|
||||
if (isSsoProfile(data)) {
|
||||
return await resolveSsoCredentials(profileName, options);
|
||||
}
|
||||
throw new CredentialsProviderError(`Profile ${profileName} could not be found or parsed in shared credentials file.`);
|
||||
};
|
||||
13
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveSsoCredentials.js
generated
vendored
Normal file
13
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveSsoCredentials.js
generated
vendored
Normal file
@@ -0,0 +1,13 @@
|
||||
export const resolveSsoCredentials = async (profile, options = {}) => {
|
||||
const { fromSSO } = await import("@aws-sdk/credential-provider-sso");
|
||||
return fromSSO({
|
||||
profile,
|
||||
logger: options.logger,
|
||||
})();
|
||||
};
|
||||
export const isSsoProfile = (arg) => arg &&
|
||||
(typeof arg.sso_start_url === "string" ||
|
||||
typeof arg.sso_account_id === "string" ||
|
||||
typeof arg.sso_session === "string" ||
|
||||
typeof arg.sso_region === "string" ||
|
||||
typeof arg.sso_role_name === "string");
|
||||
14
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveStaticCredentials.js
generated
vendored
Normal file
14
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveStaticCredentials.js
generated
vendored
Normal file
@@ -0,0 +1,14 @@
|
||||
export const isStaticCredsProfile = (arg) => Boolean(arg) &&
|
||||
typeof arg === "object" &&
|
||||
typeof arg.aws_access_key_id === "string" &&
|
||||
typeof arg.aws_secret_access_key === "string" &&
|
||||
["undefined", "string"].indexOf(typeof arg.aws_session_token) > -1;
|
||||
export const resolveStaticCredentials = (profile, options) => {
|
||||
options?.logger?.debug("@aws-sdk/credential-provider-ini", "resolveStaticCredentials");
|
||||
return Promise.resolve({
|
||||
accessKeyId: profile.aws_access_key_id,
|
||||
secretAccessKey: profile.aws_secret_access_key,
|
||||
sessionToken: profile.aws_session_token,
|
||||
credentialScope: profile.aws_credential_scope,
|
||||
});
|
||||
};
|
||||
13
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveWebIdentityCredentials.js
generated
vendored
Normal file
13
resources/app/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveWebIdentityCredentials.js
generated
vendored
Normal file
@@ -0,0 +1,13 @@
|
||||
export const isWebIdentityProfile = (arg) => Boolean(arg) &&
|
||||
typeof arg === "object" &&
|
||||
typeof arg.web_identity_token_file === "string" &&
|
||||
typeof arg.role_arn === "string" &&
|
||||
["undefined", "string"].indexOf(typeof arg.role_session_name) > -1;
|
||||
export const resolveWebIdentityCredentials = async (profile, options) => import("@aws-sdk/credential-provider-web-identity").then(({ fromTokenFile }) => fromTokenFile({
|
||||
webIdentityTokenFile: profile.web_identity_token_file,
|
||||
roleArn: profile.role_arn,
|
||||
roleSessionName: profile.role_session_name,
|
||||
roleAssumerWithWebIdentity: options.roleAssumerWithWebIdentity,
|
||||
logger: options.logger,
|
||||
parentClientConfig: options.parentClientConfig,
|
||||
})());
|
||||
Reference in New Issue
Block a user