aws-sdk-core 3.168.4 → 3.224.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +719 -0
- data/VERSION +1 -1
- data/lib/aws-defaults/default_configuration.rb +5 -6
- data/lib/aws-defaults.rb +4 -1
- data/lib/aws-sdk-core/arn.rb +1 -3
- data/lib/aws-sdk-core/assume_role_credentials.rb +13 -5
- data/lib/aws-sdk-core/assume_role_web_identity_credentials.rb +14 -7
- data/lib/aws-sdk-core/binary/decode_handler.rb +3 -9
- data/lib/aws-sdk-core/binary/encode_handler.rb +1 -1
- data/lib/aws-sdk-core/binary/event_builder.rb +34 -37
- data/lib/aws-sdk-core/binary/event_stream_decoder.rb +1 -0
- data/lib/aws-sdk-core/binary/event_stream_encoder.rb +4 -3
- data/lib/aws-sdk-core/cbor/decoder.rb +308 -0
- data/lib/aws-sdk-core/cbor/encoder.rb +243 -0
- data/lib/aws-sdk-core/cbor.rb +53 -0
- data/lib/aws-sdk-core/client_side_monitoring.rb +9 -0
- data/lib/aws-sdk-core/client_stubs.rb +33 -55
- data/lib/aws-sdk-core/credential_provider.rb +8 -1
- data/lib/aws-sdk-core/credential_provider_chain.rb +39 -11
- data/lib/aws-sdk-core/credentials.rb +19 -6
- data/lib/aws-sdk-core/ec2_metadata.rb +1 -1
- data/lib/aws-sdk-core/ecs_credentials.rb +179 -53
- data/lib/aws-sdk-core/endpoints/condition.rb +5 -0
- data/lib/aws-sdk-core/endpoints/endpoint.rb +3 -1
- data/lib/aws-sdk-core/endpoints/endpoint_rule.rb +5 -1
- data/lib/aws-sdk-core/endpoints/error_rule.rb +5 -0
- data/lib/aws-sdk-core/endpoints/function.rb +5 -0
- data/lib/aws-sdk-core/endpoints/matchers.rb +19 -18
- data/lib/aws-sdk-core/endpoints/reference.rb +5 -0
- data/lib/aws-sdk-core/endpoints/rule.rb +5 -0
- data/lib/aws-sdk-core/endpoints/rule_set.rb +5 -0
- data/lib/aws-sdk-core/endpoints/rules_provider.rb +5 -0
- data/lib/aws-sdk-core/endpoints/templater.rb +6 -0
- data/lib/aws-sdk-core/endpoints/tree_rule.rb +5 -0
- data/lib/aws-sdk-core/endpoints/url.rb +1 -0
- data/lib/aws-sdk-core/endpoints.rb +79 -19
- data/lib/aws-sdk-core/error_handler.rb +41 -0
- data/lib/aws-sdk-core/errors.rb +14 -5
- data/lib/aws-sdk-core/event_emitter.rb +0 -16
- data/lib/aws-sdk-core/ini_parser.rb +7 -0
- data/lib/aws-sdk-core/instance_profile_credentials.rb +56 -32
- data/lib/aws-sdk-core/json/builder.rb +8 -1
- data/lib/aws-sdk-core/json/error_handler.rb +30 -14
- data/lib/aws-sdk-core/json/handler.rb +13 -6
- data/lib/aws-sdk-core/json/json_engine.rb +3 -1
- data/lib/aws-sdk-core/json/oj_engine.rb +7 -1
- data/lib/aws-sdk-core/json/parser.rb +33 -3
- data/lib/aws-sdk-core/json.rb +43 -14
- data/lib/aws-sdk-core/log/formatter.rb +6 -0
- data/lib/aws-sdk-core/log/param_filter.rb +2 -2
- data/lib/aws-sdk-core/log/param_formatter.rb +7 -3
- data/lib/aws-sdk-core/log.rb +10 -0
- data/lib/aws-sdk-core/lru_cache.rb +75 -0
- data/lib/aws-sdk-core/pageable_response.rb +3 -1
- data/lib/aws-sdk-core/param_validator.rb +9 -4
- data/lib/aws-sdk-core/plugins/bearer_authorization.rb +2 -0
- data/lib/aws-sdk-core/plugins/checksum_algorithm.rb +333 -168
- data/lib/aws-sdk-core/plugins/client_metrics_plugin.rb +1 -1
- data/lib/aws-sdk-core/plugins/client_metrics_send_plugin.rb +14 -2
- data/lib/aws-sdk-core/plugins/credentials_configuration.rb +9 -3
- data/lib/aws-sdk-core/plugins/endpoint_pattern.rb +40 -32
- data/lib/aws-sdk-core/plugins/global_configuration.rb +8 -9
- data/lib/aws-sdk-core/plugins/http_checksum.rb +3 -8
- data/lib/aws-sdk-core/plugins/invocation_id.rb +1 -11
- data/lib/aws-sdk-core/plugins/logging.rb +2 -0
- data/lib/aws-sdk-core/plugins/protocols/api_gateway.rb +3 -1
- data/lib/aws-sdk-core/plugins/protocols/ec2.rb +2 -24
- data/lib/aws-sdk-core/plugins/protocols/json_rpc.rb +6 -8
- data/lib/aws-sdk-core/plugins/protocols/query.rb +4 -2
- data/lib/aws-sdk-core/plugins/protocols/rest_json.rb +3 -15
- data/lib/aws-sdk-core/plugins/protocols/rest_xml.rb +3 -0
- data/lib/aws-sdk-core/plugins/protocols/rpc_v2.rb +17 -0
- data/lib/aws-sdk-core/plugins/regional_endpoint.rb +162 -37
- data/lib/aws-sdk-core/plugins/request_compression.rb +226 -0
- data/lib/aws-sdk-core/plugins/retry_errors.rb +12 -3
- data/lib/aws-sdk-core/plugins/sign.rb +44 -17
- data/lib/aws-sdk-core/plugins/signature_v2.rb +2 -1
- data/lib/aws-sdk-core/plugins/signature_v4.rb +2 -1
- data/lib/aws-sdk-core/plugins/stub_responses.rb +53 -9
- data/lib/aws-sdk-core/plugins/telemetry.rb +75 -0
- data/lib/aws-sdk-core/plugins/transfer_encoding.rb +16 -9
- data/lib/aws-sdk-core/plugins/user_agent.rb +191 -14
- data/lib/aws-sdk-core/plugins.rb +39 -0
- data/lib/aws-sdk-core/process_credentials.rb +48 -29
- data/lib/aws-sdk-core/query/ec2_handler.rb +27 -0
- data/lib/aws-sdk-core/query/ec2_param_builder.rb +5 -7
- data/lib/aws-sdk-core/query/handler.rb +4 -4
- data/lib/aws-sdk-core/query/param_builder.rb +2 -2
- data/lib/aws-sdk-core/query.rb +2 -1
- data/lib/aws-sdk-core/refreshing_credentials.rb +12 -12
- data/lib/aws-sdk-core/resources.rb +8 -0
- data/lib/aws-sdk-core/rest/content_type_handler.rb +60 -0
- data/lib/aws-sdk-core/rest/handler.rb +3 -4
- data/lib/aws-sdk-core/rest/request/body.rb +32 -5
- data/lib/aws-sdk-core/rest/request/endpoint.rb +24 -4
- data/lib/aws-sdk-core/rest/request/headers.rb +15 -7
- data/lib/aws-sdk-core/rest/request/querystring_builder.rb +62 -36
- data/lib/aws-sdk-core/rest/response/body.rb +15 -1
- data/lib/aws-sdk-core/rest/response/header_list_parser.rb +79 -0
- data/lib/aws-sdk-core/rest/response/headers.rb +8 -3
- data/lib/aws-sdk-core/rest.rb +1 -0
- data/lib/aws-sdk-core/rpc_v2/builder.rb +62 -0
- data/lib/aws-sdk-core/rpc_v2/cbor_engine.rb +18 -0
- data/lib/aws-sdk-core/rpc_v2/content_type_handler.rb +47 -0
- data/lib/aws-sdk-core/rpc_v2/error_handler.rb +85 -0
- data/lib/aws-sdk-core/rpc_v2/handler.rb +79 -0
- data/lib/aws-sdk-core/rpc_v2/parser.rb +90 -0
- data/lib/aws-sdk-core/rpc_v2.rb +69 -0
- data/lib/aws-sdk-core/shared_config.rb +125 -39
- data/lib/aws-sdk-core/shared_credentials.rb +1 -7
- data/lib/aws-sdk-core/sso_credentials.rb +5 -2
- data/lib/aws-sdk-core/stubbing/protocols/ec2.rb +12 -11
- data/lib/aws-sdk-core/stubbing/protocols/json.rb +11 -10
- data/lib/aws-sdk-core/stubbing/protocols/query.rb +7 -6
- data/lib/aws-sdk-core/stubbing/protocols/rest.rb +2 -1
- data/lib/aws-sdk-core/stubbing/protocols/rest_json.rb +9 -8
- data/lib/aws-sdk-core/stubbing/protocols/rest_xml.rb +6 -5
- data/lib/aws-sdk-core/stubbing/protocols/rpc_v2.rb +39 -0
- data/lib/aws-sdk-core/stubbing/stub_data.rb +11 -0
- data/lib/aws-sdk-core/stubbing.rb +22 -0
- data/lib/aws-sdk-core/telemetry/base.rb +177 -0
- data/lib/aws-sdk-core/telemetry/no_op.rb +70 -0
- data/lib/aws-sdk-core/telemetry/otel.rb +235 -0
- data/lib/aws-sdk-core/telemetry/span_kind.rb +22 -0
- data/lib/aws-sdk-core/telemetry/span_status.rb +59 -0
- data/lib/aws-sdk-core/telemetry.rb +78 -0
- data/lib/aws-sdk-core/util.rb +39 -0
- data/lib/aws-sdk-core/waiters/poller.rb +12 -5
- data/lib/aws-sdk-core/xml/builder.rb +17 -9
- data/lib/aws-sdk-core/xml/error_handler.rb +32 -42
- data/lib/aws-sdk-core/xml/parser/frame.rb +4 -20
- data/lib/aws-sdk-core/xml/parser/{engines/oga.rb → oga_engine.rb} +2 -0
- data/lib/aws-sdk-core/xml/parser/stack.rb +2 -0
- data/lib/aws-sdk-core/xml/parser.rb +2 -6
- data/lib/aws-sdk-core.rb +82 -107
- data/lib/aws-sdk-sso/client.rb +185 -79
- data/lib/aws-sdk-sso/client_api.rb +7 -0
- data/lib/aws-sdk-sso/endpoint_parameters.rb +9 -6
- data/lib/aws-sdk-sso/endpoint_provider.rb +37 -96
- data/lib/aws-sdk-sso/endpoints.rb +3 -54
- data/lib/aws-sdk-sso/plugins/endpoints.rb +23 -22
- data/lib/aws-sdk-sso/types.rb +1 -0
- data/lib/aws-sdk-sso.rb +15 -11
- data/lib/aws-sdk-ssooidc/client.rb +592 -112
- data/lib/aws-sdk-ssooidc/client_api.rb +89 -1
- data/lib/aws-sdk-ssooidc/endpoint_parameters.rb +9 -6
- data/lib/aws-sdk-ssooidc/endpoint_provider.rb +37 -95
- data/lib/aws-sdk-ssooidc/endpoints.rb +3 -40
- data/lib/aws-sdk-ssooidc/errors.rb +52 -0
- data/lib/aws-sdk-ssooidc/plugins/endpoints.rb +23 -20
- data/lib/aws-sdk-ssooidc/types.rb +407 -53
- data/lib/aws-sdk-ssooidc.rb +15 -11
- data/lib/aws-sdk-sts/client.rb +516 -238
- data/lib/aws-sdk-sts/client_api.rb +48 -11
- data/lib/aws-sdk-sts/customizations.rb +5 -1
- data/lib/aws-sdk-sts/endpoint_parameters.rb +10 -9
- data/lib/aws-sdk-sts/endpoint_provider.rb +91 -213
- data/lib/aws-sdk-sts/endpoints.rb +3 -118
- data/lib/aws-sdk-sts/errors.rb +16 -0
- data/lib/aws-sdk-sts/plugins/endpoints.rb +23 -30
- data/lib/aws-sdk-sts/presigner.rb +1 -1
- data/lib/aws-sdk-sts/types.rb +217 -36
- data/lib/aws-sdk-sts.rb +15 -11
- data/lib/seahorse/client/async_base.rb +4 -5
- data/lib/seahorse/client/async_response.rb +19 -0
- data/lib/seahorse/client/base.rb +18 -21
- data/lib/seahorse/client/configuration.rb +0 -4
- data/lib/seahorse/client/h2/connection.rb +25 -31
- data/lib/seahorse/client/h2/handler.rb +14 -3
- data/lib/seahorse/client/handler.rb +1 -1
- data/lib/seahorse/client/http/response.rb +1 -1
- data/lib/seahorse/client/net_http/connection_pool.rb +13 -11
- data/lib/seahorse/client/net_http/handler.rb +21 -9
- data/lib/seahorse/client/net_http/patches.rb +1 -4
- data/lib/seahorse/client/networking_error.rb +1 -1
- data/lib/seahorse/client/plugin.rb +9 -0
- data/lib/seahorse/client/plugins/endpoint.rb +0 -1
- data/lib/seahorse/client/plugins/h2.rb +4 -4
- data/lib/seahorse/client/plugins/net_http.rb +57 -16
- data/lib/seahorse/client/plugins/request_callback.rb +31 -0
- data/lib/seahorse/client/request_context.rb +8 -1
- data/lib/seahorse/client/response.rb +8 -0
- data/lib/seahorse/model/operation.rb +3 -0
- data/lib/seahorse/model/shapes.rb +2 -2
- data/sig/aws-sdk-core/async_client_stubs.rbs +21 -0
- data/sig/aws-sdk-core/client_stubs.rbs +10 -0
- data/sig/aws-sdk-core/errors.rbs +22 -0
- data/sig/aws-sdk-core/resources/collection.rbs +21 -0
- data/sig/aws-sdk-core/structure.rbs +4 -0
- data/sig/aws-sdk-core/telemetry/base.rbs +46 -0
- data/sig/aws-sdk-core/telemetry/otel.rbs +22 -0
- data/sig/aws-sdk-core/telemetry/span_kind.rbs +15 -0
- data/sig/aws-sdk-core/telemetry/span_status.rbs +24 -0
- data/sig/aws-sdk-core/waiters/errors.rbs +20 -0
- data/sig/aws-sdk-core.rbs +7 -0
- data/sig/seahorse/client/async_base.rbs +18 -0
- data/sig/seahorse/client/base.rbs +25 -0
- data/sig/seahorse/client/handler_builder.rbs +16 -0
- data/sig/seahorse/client/response.rbs +61 -0
- metadata +92 -23
- /data/lib/aws-sdk-core/xml/parser/{engines/libxml.rb → libxml_engine.rb} +0 -0
- /data/lib/aws-sdk-core/xml/parser/{engines/nokogiri.rb → nokogiri_engine.rb} +0 -0
- /data/lib/aws-sdk-core/xml/parser/{engines/ox.rb → ox_engine.rb} +0 -0
- /data/lib/aws-sdk-core/xml/parser/{engines/rexml.rb → rexml_engine.rb} +0 -0
|
@@ -4,7 +4,92 @@ module Aws
|
|
|
4
4
|
module Plugins
|
|
5
5
|
# @api private
|
|
6
6
|
class UserAgent < Seahorse::Client::Plugin
|
|
7
|
+
METRICS = Aws::Json.load(<<-METRICS)
|
|
8
|
+
{
|
|
9
|
+
"RESOURCE_MODEL": "A",
|
|
10
|
+
"WAITER": "B",
|
|
11
|
+
"PAGINATOR": "C",
|
|
12
|
+
"RETRY_MODE_LEGACY": "D",
|
|
13
|
+
"RETRY_MODE_STANDARD": "E",
|
|
14
|
+
"RETRY_MODE_ADAPTIVE": "F",
|
|
15
|
+
"S3_TRANSFER": "G",
|
|
16
|
+
"S3_CRYPTO_V1N": "H",
|
|
17
|
+
"S3_CRYPTO_V2": "I",
|
|
18
|
+
"S3_EXPRESS_BUCKET": "J",
|
|
19
|
+
"S3_ACCESS_GRANTS": "K",
|
|
20
|
+
"GZIP_REQUEST_COMPRESSION": "L",
|
|
21
|
+
"PROTOCOL_RPC_V2_CBOR": "M",
|
|
22
|
+
"ENDPOINT_OVERRIDE": "N",
|
|
23
|
+
"ACCOUNT_ID_ENDPOINT": "O",
|
|
24
|
+
"ACCOUNT_ID_MODE_PREFERRED": "P",
|
|
25
|
+
"ACCOUNT_ID_MODE_DISABLED": "Q",
|
|
26
|
+
"ACCOUNT_ID_MODE_REQUIRED": "R",
|
|
27
|
+
"SIGV4A_SIGNING": "S",
|
|
28
|
+
"RESOLVED_ACCOUNT_ID": "T",
|
|
29
|
+
"FLEXIBLE_CHECKSUMS_REQ_CRC32" : "U",
|
|
30
|
+
"FLEXIBLE_CHECKSUMS_REQ_CRC32C" : "V",
|
|
31
|
+
"FLEXIBLE_CHECKSUMS_REQ_CRC64" : "W",
|
|
32
|
+
"FLEXIBLE_CHECKSUMS_REQ_SHA1" : "X",
|
|
33
|
+
"FLEXIBLE_CHECKSUMS_REQ_SHA256" : "Y",
|
|
34
|
+
"FLEXIBLE_CHECKSUMS_REQ_WHEN_SUPPORTED" : "Z",
|
|
35
|
+
"FLEXIBLE_CHECKSUMS_REQ_WHEN_REQUIRED" : "a",
|
|
36
|
+
"FLEXIBLE_CHECKSUMS_RES_WHEN_SUPPORTED" : "b",
|
|
37
|
+
"FLEXIBLE_CHECKSUMS_RES_WHEN_REQUIRED" : "c",
|
|
38
|
+
"DDB_MAPPER": "d",
|
|
39
|
+
"CREDENTIALS_CODE" : "e",
|
|
40
|
+
"CREDENTIALS_ENV_VARS" : "g",
|
|
41
|
+
"CREDENTIALS_ENV_VARS_STS_WEB_ID_TOKEN" : "h",
|
|
42
|
+
"CREDENTIALS_STS_ASSUME_ROLE" : "i",
|
|
43
|
+
"CREDENTIALS_STS_ASSUME_ROLE_WEB_ID" : "k",
|
|
44
|
+
"CREDENTIALS_PROFILE" : "n",
|
|
45
|
+
"CREDENTIALS_PROFILE_SOURCE_PROFILE" : "o",
|
|
46
|
+
"CREDENTIALS_PROFILE_NAMED_PROVIDER" : "p",
|
|
47
|
+
"CREDENTIALS_PROFILE_STS_WEB_ID_TOKEN" : "q",
|
|
48
|
+
"CREDENTIALS_PROFILE_SSO" : "r",
|
|
49
|
+
"CREDENTIALS_SSO" : "s",
|
|
50
|
+
"CREDENTIALS_PROFILE_SSO_LEGACY" : "t",
|
|
51
|
+
"CREDENTIALS_SSO_LEGACY" : "u",
|
|
52
|
+
"CREDENTIALS_PROFILE_PROCESS" : "v",
|
|
53
|
+
"CREDENTIALS_PROCESS" : "w",
|
|
54
|
+
"CREDENTIALS_HTTP" : "z",
|
|
55
|
+
"CREDENTIALS_IMDS" : "0",
|
|
56
|
+
"SSO_LOGIN_DEVICE" : "1",
|
|
57
|
+
"SSO_LOGIN_AUTH" : "2"
|
|
58
|
+
}
|
|
59
|
+
METRICS
|
|
60
|
+
|
|
61
|
+
# @api private
|
|
7
62
|
option(:user_agent_suffix)
|
|
63
|
+
# @api private
|
|
64
|
+
option(:user_agent_frameworks, default: [])
|
|
65
|
+
|
|
66
|
+
option(
|
|
67
|
+
:sdk_ua_app_id,
|
|
68
|
+
doc_type: 'String',
|
|
69
|
+
docstring: <<-DOCS) do |cfg|
|
|
70
|
+
A unique and opaque application ID that is appended to the
|
|
71
|
+
User-Agent header as app/sdk_ua_app_id. It should have a
|
|
72
|
+
maximum length of 50. This variable is sourced from environment
|
|
73
|
+
variable AWS_SDK_UA_APP_ID or the shared config profile attribute sdk_ua_app_id.
|
|
74
|
+
DOCS
|
|
75
|
+
app_id = ENV['AWS_SDK_UA_APP_ID']
|
|
76
|
+
app_id ||= Aws.shared_config.sdk_ua_app_id(profile: cfg.profile)
|
|
77
|
+
app_id
|
|
78
|
+
end
|
|
79
|
+
|
|
80
|
+
# Deprecated - must exist for old service gems
|
|
81
|
+
def self.feature(_feature, &block)
|
|
82
|
+
block.call
|
|
83
|
+
end
|
|
84
|
+
|
|
85
|
+
def self.metric(*metrics, &block)
|
|
86
|
+
Thread.current[:aws_sdk_core_user_agent_metric] ||= []
|
|
87
|
+
metrics = metrics.map { |metric| METRICS[metric] }.compact
|
|
88
|
+
Thread.current[:aws_sdk_core_user_agent_metric].concat(metrics)
|
|
89
|
+
block.call
|
|
90
|
+
ensure
|
|
91
|
+
Thread.current[:aws_sdk_core_user_agent_metric].pop(metrics.size)
|
|
92
|
+
end
|
|
8
93
|
|
|
9
94
|
# @api private
|
|
10
95
|
class Handler < Seahorse::Client::Handler
|
|
@@ -14,33 +99,125 @@ module Aws
|
|
|
14
99
|
end
|
|
15
100
|
|
|
16
101
|
def set_user_agent(context)
|
|
17
|
-
|
|
102
|
+
context.http_request.headers['User-Agent'] = UserAgent.new(context).to_s
|
|
103
|
+
end
|
|
104
|
+
|
|
105
|
+
class UserAgent
|
|
106
|
+
def initialize(context)
|
|
107
|
+
@context = context
|
|
108
|
+
end
|
|
109
|
+
|
|
110
|
+
def to_s
|
|
111
|
+
ua = "aws-sdk-ruby3/#{CORE_GEM_VERSION}"
|
|
112
|
+
ua += ' ua/2.1'
|
|
113
|
+
if (api_m = api_metadata)
|
|
114
|
+
ua += " #{api_m}"
|
|
115
|
+
end
|
|
116
|
+
ua += " #{os_metadata}"
|
|
117
|
+
ua += " #{language_metadata}"
|
|
118
|
+
if (env_m = env_metadata)
|
|
119
|
+
ua += " #{env_m}"
|
|
120
|
+
end
|
|
121
|
+
if (app_id_m = app_id_metadata)
|
|
122
|
+
ua += " #{app_id_m}"
|
|
123
|
+
end
|
|
124
|
+
if (framework_m = framework_metadata)
|
|
125
|
+
ua += " #{framework_m}"
|
|
126
|
+
end
|
|
127
|
+
if (metric_m = metric_metadata)
|
|
128
|
+
ua += " #{metric_m}"
|
|
129
|
+
end
|
|
130
|
+
if @context.config.user_agent_suffix
|
|
131
|
+
ua += " #{@context.config.user_agent_suffix}"
|
|
132
|
+
end
|
|
133
|
+
ua.strip
|
|
134
|
+
end
|
|
135
|
+
|
|
136
|
+
private
|
|
18
137
|
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
138
|
+
# Used to be gem_name/gem_version
|
|
139
|
+
def api_metadata
|
|
140
|
+
service_id = @context.config.api.metadata['serviceId']
|
|
141
|
+
return unless service_id
|
|
142
|
+
|
|
143
|
+
service_id = service_id.gsub(' ', '_').downcase
|
|
144
|
+
gem_version = @context[:gem_version]
|
|
145
|
+
"api/#{service_id}##{gem_version}"
|
|
23
146
|
end
|
|
24
147
|
|
|
25
|
-
|
|
148
|
+
# Used to be RUBY_PLATFORM
|
|
149
|
+
def os_metadata
|
|
150
|
+
os =
|
|
151
|
+
case RbConfig::CONFIG['host_os']
|
|
152
|
+
when /mac|darwin/
|
|
153
|
+
'macos'
|
|
154
|
+
when /linux|cygwin/
|
|
155
|
+
'linux'
|
|
156
|
+
when /mingw|mswin/
|
|
157
|
+
'windows'
|
|
158
|
+
else
|
|
159
|
+
'other'
|
|
160
|
+
end
|
|
161
|
+
metadata = "os/#{os}"
|
|
162
|
+
local_version = Gem::Platform.local.version
|
|
163
|
+
metadata += "##{local_version}" if local_version
|
|
164
|
+
metadata += " md/#{RbConfig::CONFIG['host_cpu']}"
|
|
165
|
+
end
|
|
26
166
|
|
|
27
|
-
|
|
28
|
-
|
|
167
|
+
# Used to be RUBY_ENGINE/RUBY_VERSION
|
|
168
|
+
def language_metadata
|
|
169
|
+
"lang/#{RUBY_ENGINE}##{RUBY_ENGINE_VERSION} md/#{RUBY_VERSION}"
|
|
29
170
|
end
|
|
30
171
|
|
|
31
|
-
|
|
32
|
-
|
|
172
|
+
def env_metadata
|
|
173
|
+
return unless (execution_env = ENV['AWS_EXECUTION_ENV'])
|
|
174
|
+
|
|
175
|
+
"exec-env/#{execution_env}"
|
|
33
176
|
end
|
|
34
177
|
|
|
35
|
-
|
|
36
|
-
|
|
178
|
+
def app_id_metadata
|
|
179
|
+
return unless (app_id = @context.config.sdk_ua_app_id)
|
|
180
|
+
|
|
181
|
+
# Sanitize and only allow these characters
|
|
182
|
+
app_id = app_id.gsub(/[^!#$%&'*+\-.^_`|~0-9A-Za-z]/, '-')
|
|
183
|
+
"app/#{app_id}"
|
|
37
184
|
end
|
|
38
185
|
|
|
39
|
-
|
|
186
|
+
def framework_metadata
|
|
187
|
+
if (frameworks_cfg = @context.config.user_agent_frameworks).empty?
|
|
188
|
+
return
|
|
189
|
+
end
|
|
190
|
+
|
|
191
|
+
# Frameworks may be aws-record, aws-sdk-rails, etc.
|
|
192
|
+
regex = /gems\/(?<name>#{frameworks_cfg.join('|')})-(?<version>\d+\.\d+\.\d+)/.freeze
|
|
193
|
+
frameworks = {}
|
|
194
|
+
Kernel.caller.each do |line|
|
|
195
|
+
match = line.match(regex)
|
|
196
|
+
next unless match
|
|
197
|
+
|
|
198
|
+
frameworks[match[:name]] = match[:version]
|
|
199
|
+
end
|
|
200
|
+
frameworks.map { |n, v| "lib/#{n}##{v}" }.join(' ')
|
|
201
|
+
end
|
|
202
|
+
|
|
203
|
+
def metric_metadata
|
|
204
|
+
if Thread.current[:aws_sdk_core_user_agent_metric].nil? ||
|
|
205
|
+
Thread.current[:aws_sdk_core_user_agent_metric].empty?
|
|
206
|
+
return
|
|
207
|
+
end
|
|
208
|
+
|
|
209
|
+
metrics = Thread.current[:aws_sdk_core_user_agent_metric].join(',')
|
|
210
|
+
# Metric metadata is limited to 1024 bytes
|
|
211
|
+
return "m/#{metrics}" if metrics.bytesize <= 1024
|
|
212
|
+
|
|
213
|
+
# Removes the last unfinished metric
|
|
214
|
+
"m/#{metrics[0...metrics[0..1024].rindex(',')]}"
|
|
215
|
+
end
|
|
40
216
|
end
|
|
41
217
|
end
|
|
42
218
|
|
|
43
|
-
|
|
219
|
+
# Priority set to 5 in order to add user agent as late as possible after signing
|
|
220
|
+
handler(Handler, step: :sign, priority: 5)
|
|
44
221
|
end
|
|
45
222
|
end
|
|
46
223
|
end
|
|
@@ -0,0 +1,39 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Aws
|
|
4
|
+
# setup autoloading for Plugins
|
|
5
|
+
# Most plugins are required explicitly from service clients
|
|
6
|
+
# but users may reference them outside of client usage.
|
|
7
|
+
module Plugins
|
|
8
|
+
autoload :ApiKey, 'aws-sdk-core/plugins/api_key'
|
|
9
|
+
autoload :BearerAuthorization, 'aws-sdk-core/plugins/bearer_authorization'
|
|
10
|
+
autoload :ChecksumAlgorithm, 'aws-sdk-core/plugins/checksum_algorithm'
|
|
11
|
+
autoload :ClientMetricsPlugin, 'aws-sdk-core/plugins/client_metrics_plugin'
|
|
12
|
+
autoload :ClientMetricsSendPlugin, 'aws-sdk-core/plugins/client_metrics_send_plugin'
|
|
13
|
+
autoload :CredentialsConfiguration, 'aws-sdk-core/plugins/credentials_configuration'
|
|
14
|
+
autoload :DefaultsMode, 'aws-sdk-core/plugins/defaults_mode'
|
|
15
|
+
autoload :EndpointDiscovery, 'aws-sdk-core/plugins/endpoint_discovery'
|
|
16
|
+
autoload :EndpointPattern, 'aws-sdk-core/plugins/endpoint_pattern'
|
|
17
|
+
autoload :EventStreamConfiguration, 'aws-sdk-core/plugins/event_stream_configuration'
|
|
18
|
+
autoload :GlobalConfiguration, 'aws-sdk-core/plugins/global_configuration'
|
|
19
|
+
autoload :HelpfulSocketErrors, 'aws-sdk-core/plugins/helpful_socket_errors'
|
|
20
|
+
autoload :HttpChecksum, 'aws-sdk-core/plugins/http_checksum'
|
|
21
|
+
autoload :IdempotencyToken, 'aws-sdk-core/plugins/idempotency_token'
|
|
22
|
+
autoload :InvocationId, 'aws-sdk-core/plugins/invocation_id'
|
|
23
|
+
autoload :JsonvalueConverter, 'aws-sdk-core/plugins/jsonvalue_converter'
|
|
24
|
+
autoload :Logging, 'aws-sdk-core/plugins/logging'
|
|
25
|
+
autoload :ParamConverter, 'aws-sdk-core/plugins/param_converter'
|
|
26
|
+
autoload :ParamValidator, 'aws-sdk-core/plugins/param_validator'
|
|
27
|
+
autoload :RecursionDetection, 'aws-sdk-core/plugins/recursion_detection'
|
|
28
|
+
autoload :RegionalEndpoint, 'aws-sdk-core/plugins/regional_endpoint'
|
|
29
|
+
autoload :RequestCompression, 'aws-sdk-core/plugins/request_compression'
|
|
30
|
+
autoload :ResponsePaging, 'aws-sdk-core/plugins/response_paging'
|
|
31
|
+
autoload :RetryErrors, 'aws-sdk-core/plugins/retry_errors'
|
|
32
|
+
autoload :Sign, 'aws-sdk-core/plugins/sign'
|
|
33
|
+
autoload :SignatureV4, 'aws-sdk-core/plugins/signature_v4'
|
|
34
|
+
autoload :StubResponses, 'aws-sdk-core/plugins/stub_responses'
|
|
35
|
+
autoload :Telemetry, 'aws-sdk-core/plugins/telemetry'
|
|
36
|
+
autoload :TransferEncoding, 'aws-sdk-core/plugins/transfer_encoding'
|
|
37
|
+
autoload :UserAgent, 'aws-sdk-core/plugins/user_agent'
|
|
38
|
+
end
|
|
39
|
+
end
|
|
@@ -2,9 +2,15 @@
|
|
|
2
2
|
|
|
3
3
|
module Aws
|
|
4
4
|
# A credential provider that executes a given process and attempts
|
|
5
|
-
# to read its stdout to
|
|
5
|
+
# to read its stdout to receive a JSON payload containing the credentials.
|
|
6
6
|
#
|
|
7
|
-
# credentials = Aws::ProcessCredentials.new('/usr/bin/credential_proc')
|
|
7
|
+
# credentials = Aws::ProcessCredentials.new(['/usr/bin/credential_proc'])
|
|
8
|
+
# ec2 = Aws::EC2::Client.new(credentials: credentials)
|
|
9
|
+
#
|
|
10
|
+
# Arguments should be provided as strings in the array, for example:
|
|
11
|
+
#
|
|
12
|
+
# process = ['/usr/bin/credential_proc', 'arg1', 'arg2']
|
|
13
|
+
# credentials = Aws::ProcessCredentials.new(process)
|
|
8
14
|
# ec2 = Aws::EC2::Client.new(credentials: credentials)
|
|
9
15
|
#
|
|
10
16
|
# Automatically handles refreshing credentials if an Expiration time is
|
|
@@ -19,56 +25,69 @@ module Aws
|
|
|
19
25
|
# Creates a new ProcessCredentials object, which allows an
|
|
20
26
|
# external process to be used as a credential provider.
|
|
21
27
|
#
|
|
22
|
-
# @param [String] process
|
|
23
|
-
#
|
|
28
|
+
# @param [Array<String>, String] process An array of strings including
|
|
29
|
+
# the process name and its arguments to execute, or a single string to be
|
|
30
|
+
# executed by the shell (deprecated and insecure).
|
|
24
31
|
def initialize(process)
|
|
32
|
+
if process.is_a?(String)
|
|
33
|
+
warn('Passing a single string to Aws::ProcessCredentials.new '\
|
|
34
|
+
'is insecure, please use use an array of system arguments instead')
|
|
35
|
+
end
|
|
25
36
|
@process = process
|
|
26
|
-
@credentials = credentials_from_process
|
|
37
|
+
@credentials = credentials_from_process
|
|
27
38
|
@async_refresh = false
|
|
28
|
-
|
|
39
|
+
@metrics = ['CREDENTIALS_PROCESS']
|
|
29
40
|
super
|
|
30
41
|
end
|
|
31
42
|
|
|
32
43
|
private
|
|
33
|
-
|
|
34
|
-
|
|
35
|
-
|
|
36
|
-
|
|
37
|
-
|
|
38
|
-
|
|
44
|
+
|
|
45
|
+
def credentials_from_process
|
|
46
|
+
r, w = IO.pipe
|
|
47
|
+
success = system(*@process, out: w)
|
|
48
|
+
w.close
|
|
49
|
+
raw_out = r.read
|
|
50
|
+
r.close
|
|
51
|
+
|
|
52
|
+
unless success
|
|
53
|
+
raise Errors::InvalidProcessCredentialsPayload.new(
|
|
54
|
+
'credential_process provider failure, the credential process had '\
|
|
55
|
+
'non zero exit status and failed to provide credentials'
|
|
56
|
+
)
|
|
39
57
|
end
|
|
40
58
|
|
|
41
|
-
|
|
42
|
-
|
|
43
|
-
|
|
44
|
-
|
|
45
|
-
raise Errors::InvalidProcessCredentialsPayload.new("Invalid JSON response")
|
|
46
|
-
end
|
|
47
|
-
payload_version = creds_json['Version']
|
|
48
|
-
if payload_version == 1
|
|
49
|
-
_parse_payload_format_v1(creds_json)
|
|
50
|
-
else
|
|
51
|
-
raise Errors::InvalidProcessCredentialsPayload.new("Invalid version #{payload_version} for credentials payload")
|
|
52
|
-
end
|
|
53
|
-
else
|
|
54
|
-
raise Errors::InvalidProcessCredentialsPayload.new('credential_process provider failure, the credential process had non zero exit status and failed to provide credentials')
|
|
59
|
+
begin
|
|
60
|
+
creds_json = Aws::Json.load(raw_out)
|
|
61
|
+
rescue Aws::Json::ParseError
|
|
62
|
+
raise Errors::InvalidProcessCredentialsPayload.new('Invalid JSON response')
|
|
55
63
|
end
|
|
64
|
+
|
|
65
|
+
payload_version = creds_json['Version']
|
|
66
|
+
return _parse_payload_format_v1(creds_json) if payload_version == 1
|
|
67
|
+
|
|
68
|
+
raise Errors::InvalidProcessCredentialsPayload.new(
|
|
69
|
+
"Invalid version #{payload_version} for credentials payload"
|
|
70
|
+
)
|
|
56
71
|
end
|
|
57
72
|
|
|
58
73
|
def _parse_payload_format_v1(creds_json)
|
|
59
74
|
creds = Credentials.new(
|
|
60
75
|
creds_json['AccessKeyId'],
|
|
61
76
|
creds_json['SecretAccessKey'],
|
|
62
|
-
creds_json['SessionToken']
|
|
77
|
+
creds_json['SessionToken'],
|
|
78
|
+
account_id: creds_json['AccountId']
|
|
63
79
|
)
|
|
64
80
|
|
|
65
81
|
@expiration = creds_json['Expiration'] ? Time.iso8601(creds_json['Expiration']) : nil
|
|
66
82
|
return creds if creds.set?
|
|
67
|
-
|
|
83
|
+
|
|
84
|
+
raise Errors::InvalidProcessCredentialsPayload.new(
|
|
85
|
+
'Invalid payload for JSON credentials version 1'
|
|
86
|
+
)
|
|
68
87
|
end
|
|
69
88
|
|
|
70
89
|
def refresh
|
|
71
|
-
@credentials = credentials_from_process
|
|
90
|
+
@credentials = credentials_from_process
|
|
72
91
|
end
|
|
73
92
|
|
|
74
93
|
def near_expiration?(expiration_length)
|
|
@@ -0,0 +1,27 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Aws
|
|
4
|
+
# @api private
|
|
5
|
+
module Query
|
|
6
|
+
class EC2Handler < Aws::Query::Handler
|
|
7
|
+
|
|
8
|
+
def apply_params(param_list, params, rules)
|
|
9
|
+
Aws::Query::EC2ParamBuilder.new(param_list).apply(rules, params)
|
|
10
|
+
end
|
|
11
|
+
|
|
12
|
+
def parse_xml(context)
|
|
13
|
+
if (rules = context.operation.output)
|
|
14
|
+
parser = Xml::Parser.new(rules)
|
|
15
|
+
parser.parse(xml(context)) do |path, value|
|
|
16
|
+
if path.size == 2 && path.last == 'requestId'
|
|
17
|
+
context.metadata[:request_id] = value
|
|
18
|
+
end
|
|
19
|
+
end
|
|
20
|
+
else
|
|
21
|
+
EmptyStructure.new
|
|
22
|
+
end
|
|
23
|
+
end
|
|
24
|
+
|
|
25
|
+
end
|
|
26
|
+
end
|
|
27
|
+
end
|
|
@@ -31,13 +31,11 @@ module Aws
|
|
|
31
31
|
end
|
|
32
32
|
|
|
33
33
|
def list(ref, values, prefix)
|
|
34
|
-
if values.empty?
|
|
35
|
-
|
|
36
|
-
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
format(member_ref, value, "#{prefix}.#{n+1}")
|
|
40
|
-
end
|
|
34
|
+
return if values.empty?
|
|
35
|
+
|
|
36
|
+
member_ref = ref.shape.member
|
|
37
|
+
values.each.with_index do |value, n|
|
|
38
|
+
format(member_ref, value, "#{prefix}.#{n + 1}")
|
|
41
39
|
end
|
|
42
40
|
end
|
|
43
41
|
|
|
@@ -27,13 +27,13 @@ module Aws
|
|
|
27
27
|
# @return [Seahorse::Client::Response]
|
|
28
28
|
def call(context)
|
|
29
29
|
build_request(context)
|
|
30
|
-
@handler.call(context).on_success do |
|
|
31
|
-
|
|
30
|
+
@handler.call(context).on_success do |resp|
|
|
31
|
+
resp.error = nil
|
|
32
32
|
parsed = parse_xml(context)
|
|
33
33
|
if parsed.nil? || parsed == EmptyStructure
|
|
34
|
-
|
|
34
|
+
resp.data = EmptyStructure.new
|
|
35
35
|
else
|
|
36
|
-
|
|
36
|
+
resp.data = parsed
|
|
37
37
|
end
|
|
38
38
|
end
|
|
39
39
|
end
|
|
@@ -36,7 +36,7 @@ module Aws
|
|
|
36
36
|
return
|
|
37
37
|
end
|
|
38
38
|
if flat?(ref)
|
|
39
|
-
if name = query_name(
|
|
39
|
+
if (name = query_name(ref))
|
|
40
40
|
parts = prefix.split('.')
|
|
41
41
|
parts.pop
|
|
42
42
|
parts.push(name)
|
|
@@ -82,7 +82,7 @@ module Aws
|
|
|
82
82
|
end
|
|
83
83
|
|
|
84
84
|
def flat?(ref)
|
|
85
|
-
ref.shape.flattened
|
|
85
|
+
ref[:flattened] || ref.shape.flattened
|
|
86
86
|
end
|
|
87
87
|
|
|
88
88
|
def timestamp(ref, value)
|
data/lib/aws-sdk-core/query.rb
CHANGED
|
@@ -1,7 +1,8 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
require_relative 'query/ec2_param_builder'
|
|
4
3
|
require_relative 'query/handler'
|
|
4
|
+
require_relative 'query/ec2_handler'
|
|
5
5
|
require_relative 'query/param'
|
|
6
6
|
require_relative 'query/param_builder'
|
|
7
|
+
require_relative 'query/ec2_param_builder'
|
|
7
8
|
require_relative 'query/param_list'
|
|
@@ -1,7 +1,5 @@
|
|
|
1
1
|
# frozen_string_literal: true
|
|
2
2
|
|
|
3
|
-
require 'thread'
|
|
4
|
-
|
|
5
3
|
module Aws
|
|
6
4
|
|
|
7
5
|
# Base class used credential classes that can be refreshed. This
|
|
@@ -36,12 +34,6 @@ module Aws
|
|
|
36
34
|
@credentials
|
|
37
35
|
end
|
|
38
36
|
|
|
39
|
-
# @return [Time,nil]
|
|
40
|
-
def expiration
|
|
41
|
-
refresh_if_near_expiration!
|
|
42
|
-
@expiration
|
|
43
|
-
end
|
|
44
|
-
|
|
45
37
|
# Refresh credentials.
|
|
46
38
|
# @return [void]
|
|
47
39
|
def refresh!
|
|
@@ -54,6 +46,14 @@ module Aws
|
|
|
54
46
|
|
|
55
47
|
private
|
|
56
48
|
|
|
49
|
+
def sync_expiration_length
|
|
50
|
+
self.class::SYNC_EXPIRATION_LENGTH
|
|
51
|
+
end
|
|
52
|
+
|
|
53
|
+
def async_expiration_length
|
|
54
|
+
self.class::ASYNC_EXPIRATION_LENGTH
|
|
55
|
+
end
|
|
56
|
+
|
|
57
57
|
# Refreshes credentials asynchronously and synchronously.
|
|
58
58
|
# If we are near to expiration, block while getting new credentials.
|
|
59
59
|
# Otherwise, if we're approaching expiration, use the existing credentials
|
|
@@ -62,18 +62,18 @@ module Aws
|
|
|
62
62
|
# Note: This check is an optimization. Rather than acquire the mutex on every #refresh_if_near_expiration
|
|
63
63
|
# call, we check before doing so, and then we check within the mutex to avoid a race condition.
|
|
64
64
|
# See issue: https://github.com/aws/aws-sdk-ruby/issues/2641 for more info.
|
|
65
|
-
if near_expiration?(
|
|
65
|
+
if near_expiration?(sync_expiration_length)
|
|
66
66
|
@mutex.synchronize do
|
|
67
|
-
if near_expiration?(
|
|
67
|
+
if near_expiration?(sync_expiration_length)
|
|
68
68
|
@before_refresh.call(self) if @before_refresh
|
|
69
69
|
refresh
|
|
70
70
|
end
|
|
71
71
|
end
|
|
72
|
-
elsif @async_refresh && near_expiration?(
|
|
72
|
+
elsif @async_refresh && near_expiration?(async_expiration_length)
|
|
73
73
|
unless @mutex.locked?
|
|
74
74
|
Thread.new do
|
|
75
75
|
@mutex.synchronize do
|
|
76
|
-
if near_expiration?(
|
|
76
|
+
if near_expiration?(async_expiration_length)
|
|
77
77
|
@before_refresh.call(self) if @before_refresh
|
|
78
78
|
refresh
|
|
79
79
|
end
|
|
@@ -0,0 +1,60 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Aws
|
|
4
|
+
module Rest
|
|
5
|
+
# NOTE: headers could be already populated if specified on input shape
|
|
6
|
+
class ContentTypeHandler < Seahorse::Client::Handler
|
|
7
|
+
def call(context)
|
|
8
|
+
if eventstream?(context)
|
|
9
|
+
context.http_request.headers['Content-Type'] ||=
|
|
10
|
+
'application/vnd.amazon.eventstream'
|
|
11
|
+
elsif (payload = context.operation.input[:payload_member])
|
|
12
|
+
case payload.shape
|
|
13
|
+
when Seahorse::Model::Shapes::BlobShape
|
|
14
|
+
context.http_request.headers['Content-Type'] ||=
|
|
15
|
+
'application/octet-stream'
|
|
16
|
+
when Seahorse::Model::Shapes::StringShape
|
|
17
|
+
context.http_request.headers['Content-Type'] ||=
|
|
18
|
+
'text/plain'
|
|
19
|
+
else
|
|
20
|
+
apply_default_content_type(context)
|
|
21
|
+
end
|
|
22
|
+
elsif (body = context.http_request.body) &&
|
|
23
|
+
(!body.respond_to?(:size) || non_empty_body?(body))
|
|
24
|
+
apply_default_content_type(context)
|
|
25
|
+
end
|
|
26
|
+
|
|
27
|
+
@handler.call(context)
|
|
28
|
+
end
|
|
29
|
+
|
|
30
|
+
private
|
|
31
|
+
|
|
32
|
+
def non_empty_body?(body)
|
|
33
|
+
body.respond_to?(:size) && body.size.positive?
|
|
34
|
+
end
|
|
35
|
+
|
|
36
|
+
def eventstream?(context)
|
|
37
|
+
context.operation.input.shape.members.each do |_, ref|
|
|
38
|
+
return true if ref.eventstream
|
|
39
|
+
end
|
|
40
|
+
false
|
|
41
|
+
end
|
|
42
|
+
|
|
43
|
+
# content-type defaults as noted here:
|
|
44
|
+
# rest-json: https://smithy.io/2.0/aws/protocols/aws-restxml-protocol.html#content-type
|
|
45
|
+
# rest-xml: https://smithy.io/2.0/aws/protocols/aws-restxml-protocol.html#content-type
|
|
46
|
+
def apply_default_content_type(context)
|
|
47
|
+
protocol = context.config.api.metadata['protocol']
|
|
48
|
+
case protocol
|
|
49
|
+
when 'rest-json'
|
|
50
|
+
context.http_request.headers['Content-Type'] ||=
|
|
51
|
+
'application/json'
|
|
52
|
+
when 'rest-xml'
|
|
53
|
+
context.http_request.headers['Content-Type'] ||=
|
|
54
|
+
'application/xml'
|
|
55
|
+
else raise "Unsupported protocol #{protocol}"
|
|
56
|
+
end
|
|
57
|
+
end
|
|
58
|
+
end
|
|
59
|
+
end
|
|
60
|
+
end
|
|
@@ -7,10 +7,9 @@ module Aws
|
|
|
7
7
|
|
|
8
8
|
def call(context)
|
|
9
9
|
Rest::Request::Builder.new.apply(context)
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
resp
|
|
10
|
+
response = @handler.call(context)
|
|
11
|
+
response.on(200..299) { |resp| Response::Parser.new.apply(resp) }
|
|
12
|
+
response.on(200..599) { |_resp| apply_request_id(context) }
|
|
14
13
|
end
|
|
15
14
|
|
|
16
15
|
private
|