aws-sdk-core 3.197.2 → 3.225.1
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- checksums.yaml +4 -4
- data/CHANGELOG.md +355 -0
- data/VERSION +1 -1
- data/lib/aws-defaults/default_configuration.rb +1 -2
- data/lib/aws-defaults.rb +4 -1
- data/lib/aws-sdk-core/arn.rb +1 -3
- data/lib/aws-sdk-core/assume_role_credentials.rb +13 -5
- data/lib/aws-sdk-core/assume_role_web_identity_credentials.rb +14 -7
- data/lib/aws-sdk-core/binary/decode_handler.rb +3 -4
- data/lib/aws-sdk-core/binary/encode_handler.rb +1 -1
- data/lib/aws-sdk-core/binary/event_stream_decoder.rb +1 -0
- data/lib/aws-sdk-core/binary/event_stream_encoder.rb +4 -3
- data/lib/aws-sdk-core/cbor/decoder.rb +308 -0
- data/lib/aws-sdk-core/cbor/encoder.rb +243 -0
- data/lib/aws-sdk-core/cbor.rb +53 -0
- data/lib/aws-sdk-core/client_side_monitoring.rb +9 -0
- data/lib/aws-sdk-core/client_stubs.rb +30 -55
- data/lib/aws-sdk-core/credential_provider.rb +4 -0
- data/lib/aws-sdk-core/credential_provider_chain.rb +37 -10
- data/lib/aws-sdk-core/credentials.rb +19 -6
- data/lib/aws-sdk-core/ecs_credentials.rb +1 -0
- data/lib/aws-sdk-core/endpoints/endpoint.rb +3 -1
- data/lib/aws-sdk-core/endpoints/matchers.rb +1 -8
- data/lib/aws-sdk-core/endpoints.rb +74 -18
- data/lib/aws-sdk-core/error_handler.rb +41 -0
- data/lib/aws-sdk-core/errors.rb +11 -2
- data/lib/aws-sdk-core/instance_profile_credentials.rb +1 -0
- data/lib/aws-sdk-core/json/error_handler.rb +8 -9
- data/lib/aws-sdk-core/json/handler.rb +6 -6
- data/lib/aws-sdk-core/json/json_engine.rb +3 -1
- data/lib/aws-sdk-core/json/oj_engine.rb +7 -1
- data/lib/aws-sdk-core/json/parser.rb +2 -0
- data/lib/aws-sdk-core/json.rb +43 -14
- data/lib/aws-sdk-core/log/param_filter.rb +2 -2
- data/lib/aws-sdk-core/log/param_formatter.rb +7 -3
- data/lib/aws-sdk-core/log.rb +10 -0
- data/lib/aws-sdk-core/param_validator.rb +1 -1
- data/lib/aws-sdk-core/plugins/bearer_authorization.rb +2 -0
- data/lib/aws-sdk-core/plugins/checksum_algorithm.rb +332 -169
- data/lib/aws-sdk-core/plugins/client_metrics_plugin.rb +0 -1
- data/lib/aws-sdk-core/plugins/credentials_configuration.rb +7 -3
- data/lib/aws-sdk-core/plugins/endpoint_pattern.rb +40 -32
- data/lib/aws-sdk-core/plugins/global_configuration.rb +8 -9
- data/lib/aws-sdk-core/plugins/http_checksum.rb +2 -8
- data/lib/aws-sdk-core/plugins/protocols/api_gateway.rb +3 -1
- data/lib/aws-sdk-core/plugins/protocols/ec2.rb +2 -24
- data/lib/aws-sdk-core/plugins/protocols/json_rpc.rb +6 -8
- data/lib/aws-sdk-core/plugins/protocols/query.rb +4 -2
- data/lib/aws-sdk-core/plugins/protocols/rest_json.rb +4 -3
- data/lib/aws-sdk-core/plugins/protocols/rest_xml.rb +5 -1
- data/lib/aws-sdk-core/plugins/protocols/rpc_v2.rb +17 -0
- data/lib/aws-sdk-core/plugins/regional_endpoint.rb +74 -25
- data/lib/aws-sdk-core/plugins/retry_errors.rb +0 -1
- data/lib/aws-sdk-core/plugins/sign.rb +28 -12
- data/lib/aws-sdk-core/plugins/signature_v2.rb +2 -1
- data/lib/aws-sdk-core/plugins/signature_v4.rb +2 -1
- data/lib/aws-sdk-core/plugins/stub_responses.rb +52 -9
- data/lib/aws-sdk-core/plugins/telemetry.rb +75 -0
- data/lib/aws-sdk-core/plugins/transfer_encoding.rb +16 -9
- data/lib/aws-sdk-core/plugins/user_agent.rb +48 -9
- data/lib/aws-sdk-core/plugins.rb +39 -0
- data/lib/aws-sdk-core/process_credentials.rb +3 -2
- data/lib/aws-sdk-core/query/ec2_handler.rb +27 -0
- data/lib/aws-sdk-core/query/handler.rb +4 -4
- data/lib/aws-sdk-core/query.rb +2 -1
- data/lib/aws-sdk-core/resources.rb +8 -0
- data/lib/aws-sdk-core/rest/{request/content_type.rb → content_type_handler.rb} +1 -1
- data/lib/aws-sdk-core/rest/handler.rb +3 -4
- data/lib/aws-sdk-core/rest/request/headers.rb +3 -3
- data/lib/aws-sdk-core/rest.rb +1 -1
- data/lib/aws-sdk-core/rpc_v2/builder.rb +62 -0
- data/lib/aws-sdk-core/rpc_v2/cbor_engine.rb +18 -0
- data/lib/aws-sdk-core/rpc_v2/content_type_handler.rb +47 -0
- data/lib/aws-sdk-core/rpc_v2/error_handler.rb +85 -0
- data/lib/aws-sdk-core/rpc_v2/handler.rb +79 -0
- data/lib/aws-sdk-core/rpc_v2/parser.rb +98 -0
- data/lib/aws-sdk-core/rpc_v2.rb +69 -0
- data/lib/aws-sdk-core/shared_config.rb +78 -22
- data/lib/aws-sdk-core/shared_credentials.rb +1 -7
- data/lib/aws-sdk-core/sso_credentials.rb +4 -1
- data/lib/aws-sdk-core/stubbing/protocols/ec2.rb +12 -11
- data/lib/aws-sdk-core/stubbing/protocols/json.rb +11 -10
- data/lib/aws-sdk-core/stubbing/protocols/query.rb +7 -6
- data/lib/aws-sdk-core/stubbing/protocols/rest.rb +2 -1
- data/lib/aws-sdk-core/stubbing/protocols/rest_json.rb +9 -8
- data/lib/aws-sdk-core/stubbing/protocols/rest_xml.rb +6 -5
- data/lib/aws-sdk-core/stubbing/protocols/rpc_v2.rb +39 -0
- data/lib/aws-sdk-core/stubbing.rb +22 -0
- data/lib/aws-sdk-core/telemetry/base.rb +177 -0
- data/lib/aws-sdk-core/telemetry/no_op.rb +70 -0
- data/lib/aws-sdk-core/telemetry/otel.rb +235 -0
- data/lib/aws-sdk-core/telemetry/span_kind.rb +22 -0
- data/lib/aws-sdk-core/telemetry/span_status.rb +59 -0
- data/lib/aws-sdk-core/telemetry.rb +78 -0
- data/lib/aws-sdk-core/waiters/poller.rb +9 -4
- data/lib/aws-sdk-core/xml/error_handler.rb +11 -37
- data/lib/aws-sdk-core/xml/parser.rb +2 -6
- data/lib/aws-sdk-core.rb +82 -108
- data/lib/aws-sdk-sso/client.rb +100 -39
- data/lib/aws-sdk-sso/client_api.rb +7 -0
- data/lib/aws-sdk-sso/endpoint_parameters.rb +9 -6
- data/lib/aws-sdk-sso/endpoint_provider.rb +14 -18
- data/lib/aws-sdk-sso/endpoints.rb +2 -54
- data/lib/aws-sdk-sso/plugins/endpoints.rb +19 -20
- data/lib/aws-sdk-sso/types.rb +1 -0
- data/lib/aws-sdk-sso.rb +15 -11
- data/lib/aws-sdk-ssooidc/client.rb +137 -59
- data/lib/aws-sdk-ssooidc/client_api.rb +11 -0
- data/lib/aws-sdk-ssooidc/endpoint_parameters.rb +9 -6
- data/lib/aws-sdk-ssooidc/endpoint_provider.rb +14 -18
- data/lib/aws-sdk-ssooidc/endpoints.rb +2 -54
- data/lib/aws-sdk-ssooidc/plugins/endpoints.rb +19 -20
- data/lib/aws-sdk-ssooidc/types.rb +49 -16
- data/lib/aws-sdk-ssooidc.rb +15 -11
- data/lib/aws-sdk-sts/client.rb +308 -91
- data/lib/aws-sdk-sts/client_api.rb +36 -10
- data/lib/aws-sdk-sts/customizations.rb +5 -1
- data/lib/aws-sdk-sts/endpoint_parameters.rb +10 -9
- data/lib/aws-sdk-sts/endpoint_provider.rb +50 -55
- data/lib/aws-sdk-sts/endpoints.rb +2 -118
- data/lib/aws-sdk-sts/errors.rb +16 -0
- data/lib/aws-sdk-sts/plugins/endpoints.rb +19 -28
- data/lib/aws-sdk-sts/types.rb +171 -28
- data/lib/aws-sdk-sts.rb +15 -11
- data/lib/seahorse/client/async_base.rb +4 -5
- data/lib/seahorse/client/base.rb +17 -21
- data/lib/seahorse/client/h2/connection.rb +18 -28
- data/lib/seahorse/client/h2/handler.rb +13 -3
- data/lib/seahorse/client/handler.rb +1 -1
- data/lib/seahorse/client/http/response.rb +1 -1
- data/lib/seahorse/client/net_http/connection_pool.rb +10 -2
- data/lib/seahorse/client/net_http/handler.rb +21 -9
- data/lib/seahorse/client/networking_error.rb +1 -1
- data/lib/seahorse/client/plugins/endpoint.rb +0 -1
- data/lib/seahorse/client/plugins/h2.rb +4 -4
- data/lib/seahorse/client/plugins/net_http.rb +9 -0
- data/lib/seahorse/client/request_context.rb +8 -1
- data/lib/seahorse/client/response.rb +2 -0
- data/sig/aws-sdk-core/async_client_stubs.rbs +21 -0
- data/sig/aws-sdk-core/telemetry/base.rbs +46 -0
- data/sig/aws-sdk-core/telemetry/otel.rbs +22 -0
- data/sig/aws-sdk-core/telemetry/span_kind.rbs +15 -0
- data/sig/aws-sdk-core/telemetry/span_status.rbs +24 -0
- data/sig/seahorse/client/async_base.rbs +18 -0
- metadata +80 -24
- /data/lib/aws-sdk-core/xml/parser/{engines/libxml.rb → libxml_engine.rb} +0 -0
- /data/lib/aws-sdk-core/xml/parser/{engines/nokogiri.rb → nokogiri_engine.rb} +0 -0
- /data/lib/aws-sdk-core/xml/parser/{engines/oga.rb → oga_engine.rb} +0 -0
- /data/lib/aws-sdk-core/xml/parser/{engines/ox.rb → ox_engine.rb} +0 -0
- /data/lib/aws-sdk-core/xml/parser/{engines/rexml.rb → rexml_engine.rb} +0 -0
|
@@ -0,0 +1,85 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Aws
|
|
4
|
+
module RpcV2
|
|
5
|
+
class ErrorHandler < Aws::ErrorHandler
|
|
6
|
+
|
|
7
|
+
def call(context)
|
|
8
|
+
# Malformed responses should throw an http based error, so we check
|
|
9
|
+
# 200 range for error handling only for this case.
|
|
10
|
+
@handler.call(context).on(200..599) do |response|
|
|
11
|
+
if !valid_response?(context)
|
|
12
|
+
code, message, data = http_status_error(context)
|
|
13
|
+
response.error = build_error(context, code, message, data)
|
|
14
|
+
elsif (300..599).cover?(context.http_response.status_code)
|
|
15
|
+
response.error = error(context)
|
|
16
|
+
end
|
|
17
|
+
response.data = nil
|
|
18
|
+
end
|
|
19
|
+
end
|
|
20
|
+
|
|
21
|
+
private
|
|
22
|
+
|
|
23
|
+
def valid_response?(context)
|
|
24
|
+
req_header = context.http_request.headers['smithy-protocol']
|
|
25
|
+
resp_header = context.http_response.headers['smithy-protocol']
|
|
26
|
+
req_header == resp_header
|
|
27
|
+
end
|
|
28
|
+
|
|
29
|
+
def extract_error(body, context)
|
|
30
|
+
data = RpcV2.decode(body)
|
|
31
|
+
code = error_code(data, context)
|
|
32
|
+
message = data['message']
|
|
33
|
+
data = parse_error_data(context, body, code)
|
|
34
|
+
[code, message, data]
|
|
35
|
+
rescue Cbor::Error
|
|
36
|
+
[http_status_error_code(context), '', EmptyStructure.new]
|
|
37
|
+
end
|
|
38
|
+
|
|
39
|
+
def error_code(data, context)
|
|
40
|
+
code =
|
|
41
|
+
if aws_query_error?(context)
|
|
42
|
+
query_header = context.http_response.headers['x-amzn-query-error']
|
|
43
|
+
error, _type = query_header.split(';') # type not supported
|
|
44
|
+
remove_prefix(error, context)
|
|
45
|
+
else
|
|
46
|
+
data['__type']
|
|
47
|
+
end
|
|
48
|
+
if code
|
|
49
|
+
code.split('#').last
|
|
50
|
+
else
|
|
51
|
+
http_status_error_code(context)
|
|
52
|
+
end
|
|
53
|
+
end
|
|
54
|
+
|
|
55
|
+
def parse_error_data(context, body, code)
|
|
56
|
+
data = EmptyStructure.new
|
|
57
|
+
if (error_rules = context.operation.errors)
|
|
58
|
+
error_rules.each do |rule|
|
|
59
|
+
# match modeled shape name with the type(code) only
|
|
60
|
+
# some type(code) might contains invalid characters
|
|
61
|
+
# such as ':' (efs) etc
|
|
62
|
+
match = rule.shape.name == code.gsub(/[^^a-zA-Z0-9]/, '')
|
|
63
|
+
next unless match && rule.shape.members.any?
|
|
64
|
+
|
|
65
|
+
data = Parser.new(rule).parse(body)
|
|
66
|
+
end
|
|
67
|
+
end
|
|
68
|
+
data
|
|
69
|
+
end
|
|
70
|
+
|
|
71
|
+
def aws_query_error?(context)
|
|
72
|
+
context.config.api.metadata['awsQueryCompatible'] &&
|
|
73
|
+
context.http_response.headers['x-amzn-query-error']
|
|
74
|
+
end
|
|
75
|
+
|
|
76
|
+
def remove_prefix(error_code, context)
|
|
77
|
+
if (prefix = context.config.api.metadata['errorPrefix'])
|
|
78
|
+
error_code.sub(/^#{prefix}/, '')
|
|
79
|
+
else
|
|
80
|
+
error_code
|
|
81
|
+
end
|
|
82
|
+
end
|
|
83
|
+
end
|
|
84
|
+
end
|
|
85
|
+
end
|
|
@@ -0,0 +1,79 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Aws
|
|
4
|
+
module RpcV2
|
|
5
|
+
class Handler < Seahorse::Client::Handler
|
|
6
|
+
# @param [Seahorse::Client::RequestContext] context
|
|
7
|
+
# @return [Seahorse::Client::Response]
|
|
8
|
+
def call(context)
|
|
9
|
+
build_request(context)
|
|
10
|
+
response = with_metric { @handler.call(context) }
|
|
11
|
+
response.on(200..299) { |resp| resp.data = parse_body(context) }
|
|
12
|
+
response.on(200..599) { |_resp| apply_request_id(context) }
|
|
13
|
+
response
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
private
|
|
17
|
+
|
|
18
|
+
def with_metric(&block)
|
|
19
|
+
Aws::Plugins::UserAgent.metric('PROTOCOL_RPC_V2_CBOR', &block)
|
|
20
|
+
end
|
|
21
|
+
|
|
22
|
+
def build_request(context)
|
|
23
|
+
context.http_request.headers['Smithy-Protocol'] = 'rpc-v2-cbor'
|
|
24
|
+
context.http_request.headers['X-Amzn-Query-Mode'] = 'true' if query_compatible?(context)
|
|
25
|
+
context.http_request.http_method = 'POST'
|
|
26
|
+
context.http_request.body = build_body(context)
|
|
27
|
+
build_url(context)
|
|
28
|
+
end
|
|
29
|
+
|
|
30
|
+
def build_url(context)
|
|
31
|
+
base = context.http_request.endpoint
|
|
32
|
+
service_name = context.config.api.metadata['targetPrefix']
|
|
33
|
+
base.path += "/service/#{service_name}/operation/#{context.operation.name}"
|
|
34
|
+
end
|
|
35
|
+
|
|
36
|
+
def build_body(context)
|
|
37
|
+
Builder.new(context.operation.input).serialize(context.params)
|
|
38
|
+
end
|
|
39
|
+
|
|
40
|
+
def parse_body(context)
|
|
41
|
+
cbor = context.http_response.body_contents
|
|
42
|
+
if (rules = context.operation.output)
|
|
43
|
+
if cbor.is_a?(Array)
|
|
44
|
+
# an array of emitted events
|
|
45
|
+
if cbor[0].respond_to?(:response)
|
|
46
|
+
# initial response exists
|
|
47
|
+
# it must be the first event arrived
|
|
48
|
+
resp_struct = cbor.shift.response
|
|
49
|
+
else
|
|
50
|
+
resp_struct = context.operation.output.shape.struct_class.new
|
|
51
|
+
end
|
|
52
|
+
|
|
53
|
+
rules.shape.members.each do |name, ref|
|
|
54
|
+
if ref.eventstream
|
|
55
|
+
resp_struct.send("#{name}=", cbor.to_enum)
|
|
56
|
+
end
|
|
57
|
+
end
|
|
58
|
+
resp_struct
|
|
59
|
+
else
|
|
60
|
+
Parser.new(
|
|
61
|
+
rules,
|
|
62
|
+
query_compatible: query_compatible?(context)
|
|
63
|
+
).parse(cbor)
|
|
64
|
+
end
|
|
65
|
+
else
|
|
66
|
+
EmptyStructure.new
|
|
67
|
+
end
|
|
68
|
+
end
|
|
69
|
+
|
|
70
|
+
def apply_request_id(context)
|
|
71
|
+
context[:request_id] = context.http_response.headers['x-amzn-requestid']
|
|
72
|
+
end
|
|
73
|
+
|
|
74
|
+
def query_compatible?(context)
|
|
75
|
+
context.config.api.metadata.key?('awsQueryCompatible')
|
|
76
|
+
end
|
|
77
|
+
end
|
|
78
|
+
end
|
|
79
|
+
end
|
|
@@ -0,0 +1,98 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require 'time'
|
|
4
|
+
|
|
5
|
+
module Aws
|
|
6
|
+
module RpcV2
|
|
7
|
+
class Parser
|
|
8
|
+
include Seahorse::Model::Shapes
|
|
9
|
+
|
|
10
|
+
# @param [Seahorse::Model::ShapeRef] rules
|
|
11
|
+
def initialize(rules, query_compatible: false)
|
|
12
|
+
@rules = rules
|
|
13
|
+
@query_compatible = query_compatible
|
|
14
|
+
end
|
|
15
|
+
|
|
16
|
+
def parse(cbor, target = nil)
|
|
17
|
+
return {} if cbor.empty?
|
|
18
|
+
|
|
19
|
+
parse_ref(@rules, RpcV2.decode(cbor), target)
|
|
20
|
+
end
|
|
21
|
+
|
|
22
|
+
private
|
|
23
|
+
|
|
24
|
+
def structure(ref, values, target = nil)
|
|
25
|
+
shape = ref.shape
|
|
26
|
+
target = ref.shape.struct_class.new if target.nil?
|
|
27
|
+
values.each do |key, value|
|
|
28
|
+
member_name, member_ref = shape.member_by_location_name(key)
|
|
29
|
+
if member_ref
|
|
30
|
+
target[member_name] = parse_ref(member_ref, value)
|
|
31
|
+
elsif shape.union && key != '__type'
|
|
32
|
+
target[:unknown] = { 'name' => key, 'value' => value }
|
|
33
|
+
end
|
|
34
|
+
end
|
|
35
|
+
# In services that were previously Query/XML, members that were
|
|
36
|
+
# "flattened" defaulted to empty lists. In JSON, these values are nil,
|
|
37
|
+
# which is backwards incompatible. To preserve backwards compatibility,
|
|
38
|
+
# we set a default value of [] for these members.
|
|
39
|
+
if @query_compatible
|
|
40
|
+
ref.shape.members.each do |member_name, member_target|
|
|
41
|
+
next unless target[member_name].nil?
|
|
42
|
+
|
|
43
|
+
if flattened_list?(member_target.shape)
|
|
44
|
+
target[member_name] = []
|
|
45
|
+
elsif flattened_map?(member_target.shape)
|
|
46
|
+
target[member_name] = {}
|
|
47
|
+
end
|
|
48
|
+
end
|
|
49
|
+
end
|
|
50
|
+
|
|
51
|
+
if shape.union
|
|
52
|
+
# convert to subclass
|
|
53
|
+
member_subclass = shape.member_subclass(target.member).new
|
|
54
|
+
member_subclass[target.member] = target.value
|
|
55
|
+
target = member_subclass
|
|
56
|
+
end
|
|
57
|
+
target
|
|
58
|
+
end
|
|
59
|
+
|
|
60
|
+
def list(ref, values, target = nil)
|
|
61
|
+
target = [] if target.nil?
|
|
62
|
+
values.each do |value|
|
|
63
|
+
target << parse_ref(ref.shape.member, value)
|
|
64
|
+
end
|
|
65
|
+
target
|
|
66
|
+
end
|
|
67
|
+
|
|
68
|
+
def map(ref, values, target = nil)
|
|
69
|
+
target = {} if target.nil?
|
|
70
|
+
values.each do |key, value|
|
|
71
|
+
target[key] = parse_ref(ref.shape.value, value) unless value.nil?
|
|
72
|
+
end
|
|
73
|
+
target
|
|
74
|
+
end
|
|
75
|
+
|
|
76
|
+
def parse_ref(ref, value, target = nil)
|
|
77
|
+
if value.nil?
|
|
78
|
+
nil
|
|
79
|
+
else
|
|
80
|
+
case ref.shape
|
|
81
|
+
when StructureShape then structure(ref, value, target)
|
|
82
|
+
when ListShape then list(ref, value, target)
|
|
83
|
+
when MapShape then map(ref, value, target)
|
|
84
|
+
else value
|
|
85
|
+
end
|
|
86
|
+
end
|
|
87
|
+
end
|
|
88
|
+
|
|
89
|
+
def flattened_list?(shape)
|
|
90
|
+
shape.is_a?(ListShape) && shape.flattened
|
|
91
|
+
end
|
|
92
|
+
|
|
93
|
+
def flattened_map?(shape)
|
|
94
|
+
shape.is_a?(MapShape) && shape.flattened
|
|
95
|
+
end
|
|
96
|
+
end
|
|
97
|
+
end
|
|
98
|
+
end
|
|
@@ -0,0 +1,69 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
require_relative 'cbor'
|
|
4
|
+
require_relative 'rpc_v2/builder'
|
|
5
|
+
require_relative 'rpc_v2/content_type_handler'
|
|
6
|
+
require_relative 'rpc_v2/error_handler'
|
|
7
|
+
require_relative 'rpc_v2/handler'
|
|
8
|
+
require_relative 'rpc_v2/parser'
|
|
9
|
+
|
|
10
|
+
module Aws
|
|
11
|
+
# @api private
|
|
12
|
+
module RpcV2
|
|
13
|
+
class << self
|
|
14
|
+
# @param [Symbol,Class] engine
|
|
15
|
+
# Must be one of the following values:
|
|
16
|
+
#
|
|
17
|
+
# * :cbor
|
|
18
|
+
#
|
|
19
|
+
def engine=(engine)
|
|
20
|
+
@engine = Class === engine ? engine : load_engine(engine)
|
|
21
|
+
end
|
|
22
|
+
|
|
23
|
+
# @return [Class] Returns the default engine.
|
|
24
|
+
# One of:
|
|
25
|
+
#
|
|
26
|
+
# * {CborEngine}
|
|
27
|
+
#
|
|
28
|
+
def engine
|
|
29
|
+
set_default_engine unless @engine
|
|
30
|
+
@engine
|
|
31
|
+
end
|
|
32
|
+
|
|
33
|
+
def encode(data)
|
|
34
|
+
@engine.encode(data)
|
|
35
|
+
end
|
|
36
|
+
|
|
37
|
+
def decode(bytes)
|
|
38
|
+
bytes.force_encoding(Encoding::BINARY)
|
|
39
|
+
@engine.decode(bytes)
|
|
40
|
+
end
|
|
41
|
+
|
|
42
|
+
def set_default_engine
|
|
43
|
+
[:cbor].each do |name|
|
|
44
|
+
@engine ||= try_load_engine(name)
|
|
45
|
+
end
|
|
46
|
+
|
|
47
|
+
unless @engine
|
|
48
|
+
raise 'Unable to find a compatible cbor library.'
|
|
49
|
+
end
|
|
50
|
+
end
|
|
51
|
+
|
|
52
|
+
private
|
|
53
|
+
|
|
54
|
+
def load_engine(name)
|
|
55
|
+
require "aws-sdk-core/rpc_v2/#{name}_engine"
|
|
56
|
+
const_name = name[0].upcase + name[1..-1] + 'Engine'
|
|
57
|
+
const_get(const_name)
|
|
58
|
+
end
|
|
59
|
+
|
|
60
|
+
def try_load_engine(name)
|
|
61
|
+
load_engine(name)
|
|
62
|
+
rescue LoadError
|
|
63
|
+
false
|
|
64
|
+
end
|
|
65
|
+
end
|
|
66
|
+
|
|
67
|
+
set_default_engine
|
|
68
|
+
end
|
|
69
|
+
end
|
|
@@ -138,7 +138,11 @@ module Aws
|
|
|
138
138
|
role_session_name: entry['role_session_name']
|
|
139
139
|
}
|
|
140
140
|
cfg[:region] = opts[:region] if opts[:region]
|
|
141
|
-
|
|
141
|
+
with_metrics('CREDENTIALS_PROFILE_STS_WEB_ID_TOKEN') do
|
|
142
|
+
creds = AssumeRoleWebIdentityCredentials.new(cfg)
|
|
143
|
+
creds.metrics << 'CREDENTIALS_PROFILE_STS_WEB_ID_TOKEN'
|
|
144
|
+
creds
|
|
145
|
+
end
|
|
142
146
|
end
|
|
143
147
|
end
|
|
144
148
|
end
|
|
@@ -198,6 +202,8 @@ module Aws
|
|
|
198
202
|
|
|
199
203
|
config_reader(
|
|
200
204
|
:region,
|
|
205
|
+
:account_id_endpoint_mode,
|
|
206
|
+
:sigv4a_signing_region_set,
|
|
201
207
|
:ca_bundle,
|
|
202
208
|
:credential_process,
|
|
203
209
|
:endpoint_discovery_enabled,
|
|
@@ -206,10 +212,13 @@ module Aws
|
|
|
206
212
|
:ec2_metadata_service_endpoint,
|
|
207
213
|
:ec2_metadata_service_endpoint_mode,
|
|
208
214
|
:ec2_metadata_v1_disabled,
|
|
215
|
+
:disable_host_prefix_injection,
|
|
209
216
|
:max_attempts,
|
|
210
217
|
:retry_mode,
|
|
211
218
|
:adaptive_retry_wait_to_fill,
|
|
212
219
|
:correct_clock_skew,
|
|
220
|
+
:request_checksum_calculation,
|
|
221
|
+
:response_checksum_validation,
|
|
213
222
|
:csm_client_id,
|
|
214
223
|
:csm_enabled,
|
|
215
224
|
:csm_host,
|
|
@@ -251,8 +260,8 @@ module Aws
|
|
|
251
260
|
'provide only source_profile or credential_source, not both.'
|
|
252
261
|
elsif opts[:source_profile]
|
|
253
262
|
opts[:visited_profiles] ||= Set.new
|
|
254
|
-
|
|
255
|
-
if opts[:credentials]
|
|
263
|
+
provider = resolve_source_profile(opts[:source_profile], opts)
|
|
264
|
+
if provider && (opts[:credentials] = provider.credentials)
|
|
256
265
|
opts[:role_session_name] ||= prof_cfg['role_session_name']
|
|
257
266
|
opts[:role_session_name] ||= 'default_session'
|
|
258
267
|
opts[:role_arn] ||= prof_cfg['role_arn']
|
|
@@ -261,17 +270,28 @@ module Aws
|
|
|
261
270
|
opts[:serial_number] ||= prof_cfg['mfa_serial']
|
|
262
271
|
opts[:profile] = opts.delete(:source_profile)
|
|
263
272
|
opts.delete(:visited_profiles)
|
|
264
|
-
|
|
273
|
+
|
|
274
|
+
metrics = provider.metrics
|
|
275
|
+
if provider.is_a?(AssumeRoleCredentials)
|
|
276
|
+
opts[:credentials] = provider
|
|
277
|
+
metrics.delete('CREDENTIALS_STS_ASSUME_ROLE')
|
|
278
|
+
else
|
|
279
|
+
metrics << 'CREDENTIALS_PROFILE_SOURCE_PROFILE'
|
|
280
|
+
end
|
|
281
|
+
# Set the original credentials metrics to [] to prevent duplicate metrics during sign plugin
|
|
282
|
+
opts[:credentials].metrics = []
|
|
283
|
+
with_metrics(metrics) do
|
|
284
|
+
creds = AssumeRoleCredentials.new(opts)
|
|
285
|
+
creds.metrics.push(*metrics)
|
|
286
|
+
creds
|
|
287
|
+
end
|
|
265
288
|
else
|
|
266
289
|
raise Errors::NoSourceProfileError,
|
|
267
290
|
"Profile #{profile} has a role_arn, and source_profile, but the"\
|
|
268
291
|
' source_profile does not have credentials.'
|
|
269
292
|
end
|
|
270
293
|
elsif credential_source
|
|
271
|
-
opts[:credentials] = credentials_from_source(
|
|
272
|
-
credential_source,
|
|
273
|
-
chain_config
|
|
274
|
-
)
|
|
294
|
+
opts[:credentials] = credentials_from_source(credential_source, chain_config)
|
|
275
295
|
if opts[:credentials]
|
|
276
296
|
opts[:role_session_name] ||= prof_cfg['role_session_name']
|
|
277
297
|
opts[:role_session_name] ||= 'default_session'
|
|
@@ -280,7 +300,16 @@ module Aws
|
|
|
280
300
|
opts[:external_id] ||= prof_cfg['external_id']
|
|
281
301
|
opts[:serial_number] ||= prof_cfg['mfa_serial']
|
|
282
302
|
opts.delete(:source_profile) # Cleanup
|
|
283
|
-
|
|
303
|
+
|
|
304
|
+
metrics = opts[:credentials].metrics
|
|
305
|
+
metrics << 'CREDENTIALS_PROFILE_NAMED_PROVIDER'
|
|
306
|
+
# Set the original credentials metrics to [] to prevent duplicate metrics during sign plugin
|
|
307
|
+
opts[:credentials].metrics = []
|
|
308
|
+
with_metrics(metrics) do
|
|
309
|
+
creds = AssumeRoleCredentials.new(opts)
|
|
310
|
+
creds.metrics.push(*metrics)
|
|
311
|
+
creds
|
|
312
|
+
end
|
|
284
313
|
else
|
|
285
314
|
raise Errors::NoSourceCredentials,
|
|
286
315
|
"Profile #{profile} could not get source credentials from"\
|
|
@@ -308,12 +337,24 @@ module Aws
|
|
|
308
337
|
elsif profile_config && profile_config['source_profile']
|
|
309
338
|
opts.delete(:source_profile)
|
|
310
339
|
assume_role_credentials_from_config(opts.merge(profile: profile))
|
|
311
|
-
elsif (provider =
|
|
312
|
-
provider
|
|
340
|
+
elsif (provider = assume_role_web_identity_credentials_from_config_with_metrics(opts.merge(profile: profile)))
|
|
341
|
+
provider if provider.credentials.set?
|
|
313
342
|
elsif (provider = assume_role_process_credentials_from_config(profile))
|
|
314
|
-
provider
|
|
315
|
-
elsif (provider =
|
|
316
|
-
provider
|
|
343
|
+
provider if provider.credentials.set?
|
|
344
|
+
elsif (provider = sso_credentials_from_config_with_metrics(profile))
|
|
345
|
+
provider if provider.credentials.set?
|
|
346
|
+
end
|
|
347
|
+
end
|
|
348
|
+
|
|
349
|
+
def assume_role_web_identity_credentials_from_config_with_metrics(opts)
|
|
350
|
+
with_metrics('CREDENTIALS_PROFILE_SOURCE_PROFILE') do
|
|
351
|
+
assume_role_web_identity_credentials_from_config(opts)
|
|
352
|
+
end
|
|
353
|
+
end
|
|
354
|
+
|
|
355
|
+
def sso_credentials_from_config_with_metrics(profile)
|
|
356
|
+
with_metrics('CREDENTIALS_PROFILE_SOURCE_PROFILE') do
|
|
357
|
+
sso_credentials_from_config(profile: profile)
|
|
317
358
|
end
|
|
318
359
|
end
|
|
319
360
|
|
|
@@ -338,7 +379,11 @@ module Aws
|
|
|
338
379
|
if @parsed_config
|
|
339
380
|
credential_process ||= @parsed_config.fetch(profile, {})['credential_process']
|
|
340
381
|
end
|
|
341
|
-
|
|
382
|
+
if credential_process
|
|
383
|
+
creds = ProcessCredentials.new([credential_process])
|
|
384
|
+
creds.metrics << 'CREDENTIALS_PROFILE_PROCESS'
|
|
385
|
+
creds
|
|
386
|
+
end
|
|
342
387
|
end
|
|
343
388
|
|
|
344
389
|
def credentials_from_shared(profile, _opts)
|
|
@@ -382,13 +427,18 @@ module Aws
|
|
|
382
427
|
sso_start_url = prof_config['sso_start_url']
|
|
383
428
|
end
|
|
384
429
|
|
|
385
|
-
|
|
386
|
-
|
|
387
|
-
|
|
388
|
-
|
|
389
|
-
|
|
390
|
-
|
|
430
|
+
metric = prof_config['sso_session'] ? 'CREDENTIALS_PROFILE_SSO' : 'CREDENTIALS_PROFILE_SSO_LEGACY'
|
|
431
|
+
with_metrics(metric) do
|
|
432
|
+
creds = SSOCredentials.new(
|
|
433
|
+
sso_account_id: prof_config['sso_account_id'],
|
|
434
|
+
sso_role_name: prof_config['sso_role_name'],
|
|
435
|
+
sso_session: prof_config['sso_session'],
|
|
436
|
+
sso_region: sso_region,
|
|
437
|
+
sso_start_url: sso_start_url
|
|
391
438
|
)
|
|
439
|
+
creds.metrics << metric
|
|
440
|
+
creds
|
|
441
|
+
end
|
|
392
442
|
end
|
|
393
443
|
end
|
|
394
444
|
|
|
@@ -413,8 +463,10 @@ module Aws
|
|
|
413
463
|
creds = Credentials.new(
|
|
414
464
|
prof_config['aws_access_key_id'],
|
|
415
465
|
prof_config['aws_secret_access_key'],
|
|
416
|
-
prof_config['aws_session_token']
|
|
466
|
+
prof_config['aws_session_token'],
|
|
467
|
+
account_id: prof_config['aws_account_id']
|
|
417
468
|
)
|
|
469
|
+
creds.metrics = ['CREDENTIALS_PROFILE']
|
|
418
470
|
creds if creds.set?
|
|
419
471
|
end
|
|
420
472
|
|
|
@@ -475,5 +527,9 @@ module Aws
|
|
|
475
527
|
|
|
476
528
|
sso_session
|
|
477
529
|
end
|
|
530
|
+
|
|
531
|
+
def with_metrics(metrics, &block)
|
|
532
|
+
Aws::Plugins::UserAgent.metric(*metrics, &block)
|
|
533
|
+
end
|
|
478
534
|
end
|
|
479
535
|
end
|
|
@@ -7,13 +7,6 @@ module Aws
|
|
|
7
7
|
|
|
8
8
|
include CredentialProvider
|
|
9
9
|
|
|
10
|
-
# @api private
|
|
11
|
-
KEY_MAP = {
|
|
12
|
-
'aws_access_key_id' => 'access_key_id',
|
|
13
|
-
'aws_secret_access_key' => 'secret_access_key',
|
|
14
|
-
'aws_session_token' => 'session_token',
|
|
15
|
-
}
|
|
16
|
-
|
|
17
10
|
# Constructs a new SharedCredentials object. This will load static
|
|
18
11
|
# (access_key_id, secret_access_key and session_token) AWS access
|
|
19
12
|
# credentials from an ini file, which supports profiles. The default
|
|
@@ -47,6 +40,7 @@ module Aws
|
|
|
47
40
|
)
|
|
48
41
|
@credentials = config.credentials(profile: @profile_name)
|
|
49
42
|
end
|
|
43
|
+
@metrics = ['CREDENTIALS_CODE']
|
|
50
44
|
end
|
|
51
45
|
|
|
52
46
|
# @return [String]
|
|
@@ -91,6 +91,7 @@ module Aws
|
|
|
91
91
|
client_opts[:credentials] = nil
|
|
92
92
|
@client = Aws::SSO::Client.new(client_opts)
|
|
93
93
|
end
|
|
94
|
+
@metrics = ['CREDENTIALS_SSO']
|
|
94
95
|
else # legacy behavior
|
|
95
96
|
missing_keys = LEGACY_REQUIRED_OPTS.select { |k| options[k].nil? }
|
|
96
97
|
unless missing_keys.empty?
|
|
@@ -111,6 +112,7 @@ module Aws
|
|
|
111
112
|
client_opts[:credentials] = nil
|
|
112
113
|
|
|
113
114
|
@client = options[:client] || Aws::SSO::Client.new(client_opts)
|
|
115
|
+
@metrics = ['CREDENTIALS_SSO_LEGACY']
|
|
114
116
|
end
|
|
115
117
|
|
|
116
118
|
@async_refresh = true
|
|
@@ -156,7 +158,8 @@ module Aws
|
|
|
156
158
|
@credentials = Credentials.new(
|
|
157
159
|
c.access_key_id,
|
|
158
160
|
c.secret_access_key,
|
|
159
|
-
c.session_token
|
|
161
|
+
c.session_token,
|
|
162
|
+
account_id: @sso_account_id
|
|
160
163
|
)
|
|
161
164
|
@expiration = Time.at(c.expiration / 1000.0)
|
|
162
165
|
end
|
|
@@ -3,6 +3,7 @@
|
|
|
3
3
|
module Aws
|
|
4
4
|
module Stubbing
|
|
5
5
|
module Protocols
|
|
6
|
+
# @api private
|
|
6
7
|
class EC2
|
|
7
8
|
|
|
8
9
|
def stub_data(api, operation, data)
|
|
@@ -16,17 +17,17 @@ module Aws
|
|
|
16
17
|
end
|
|
17
18
|
|
|
18
19
|
def stub_error(error_code)
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
<ErrorResponse>
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
</ErrorResponse>
|
|
20
|
+
resp = Seahorse::Client::Http::Response.new
|
|
21
|
+
resp.status_code = 400
|
|
22
|
+
resp.body = <<~XML.strip
|
|
23
|
+
<ErrorResponse>
|
|
24
|
+
<Error>
|
|
25
|
+
<Code>#{error_code}</Code>
|
|
26
|
+
<Message>stubbed-response-error-message</Message>
|
|
27
|
+
</Error>
|
|
28
|
+
</ErrorResponse>
|
|
28
29
|
XML
|
|
29
|
-
|
|
30
|
+
resp
|
|
30
31
|
end
|
|
31
32
|
|
|
32
33
|
private
|
|
@@ -37,7 +38,7 @@ module Aws
|
|
|
37
38
|
xml.shift
|
|
38
39
|
xml.pop
|
|
39
40
|
xmlns = "http://ec2.amazonaws.com/doc/#{api.version}/".inspect
|
|
40
|
-
xml.unshift(
|
|
41
|
+
xml.unshift(' <requestId>stubbed-request-id</requestId>')
|
|
41
42
|
xml.unshift("<#{operation.name}Response xmlns=#{xmlns}>\n")
|
|
42
43
|
xml.push("</#{operation.name}Response>\n")
|
|
43
44
|
xml.join
|
|
@@ -3,27 +3,28 @@
|
|
|
3
3
|
module Aws
|
|
4
4
|
module Stubbing
|
|
5
5
|
module Protocols
|
|
6
|
+
# @api private
|
|
6
7
|
class Json
|
|
7
8
|
|
|
8
9
|
def stub_data(api, operation, data)
|
|
9
10
|
resp = Seahorse::Client::Http::Response.new
|
|
10
11
|
resp.status_code = 200
|
|
11
|
-
resp.headers[
|
|
12
|
-
resp.headers[
|
|
12
|
+
resp.headers['Content-Type'] = content_type(api)
|
|
13
|
+
resp.headers['x-amzn-RequestId'] = 'stubbed-request-id'
|
|
13
14
|
resp.body = build_body(operation, data)
|
|
14
15
|
resp
|
|
15
16
|
end
|
|
16
17
|
|
|
17
18
|
def stub_error(error_code)
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
{
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
}
|
|
19
|
+
resp = Seahorse::Client::Http::Response.new
|
|
20
|
+
resp.status_code = 400
|
|
21
|
+
resp.body = <<~JSON.strip
|
|
22
|
+
{
|
|
23
|
+
"code": #{error_code.inspect},
|
|
24
|
+
"message": "stubbed-response-error-message"
|
|
25
|
+
}
|
|
25
26
|
JSON
|
|
26
|
-
|
|
27
|
+
resp
|
|
27
28
|
end
|
|
28
29
|
|
|
29
30
|
private
|
|
@@ -3,6 +3,7 @@
|
|
|
3
3
|
module Aws
|
|
4
4
|
module Stubbing
|
|
5
5
|
module Protocols
|
|
6
|
+
# @api private
|
|
6
7
|
class Query
|
|
7
8
|
|
|
8
9
|
def stub_data(api, operation, data)
|
|
@@ -13,10 +14,10 @@ module Aws
|
|
|
13
14
|
end
|
|
14
15
|
|
|
15
16
|
def stub_error(error_code)
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
17
|
+
resp = Seahorse::Client::Http::Response.new
|
|
18
|
+
resp.status_code = 400
|
|
19
|
+
resp.body = XmlError.new(error_code).to_xml
|
|
20
|
+
resp
|
|
20
21
|
end
|
|
21
22
|
|
|
22
23
|
private
|
|
@@ -24,9 +25,9 @@ module Aws
|
|
|
24
25
|
def build_body(api, operation, data)
|
|
25
26
|
xml = []
|
|
26
27
|
builder = Aws::Xml::DocBuilder.new(target: xml, indent: ' ')
|
|
27
|
-
builder.node(operation.name
|
|
28
|
+
builder.node("#{operation.name}Response", xmlns: xmlns(api)) do
|
|
28
29
|
if (rules = operation.output)
|
|
29
|
-
rules.location_name = operation.name
|
|
30
|
+
rules.location_name = "#{operation.name}Result"
|
|
30
31
|
Xml::Builder.new(rules, target: xml, pad:' ').to_xml(data)
|
|
31
32
|
end
|
|
32
33
|
builder.node('ResponseMetadata') do
|