RubyGems - aws-sdk-core - Versions diffs - 3.226.3 → 3.240.0 - Mend

aws-sdk-core 3.226.3 → 3.240.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (57) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +118 -0
data/VERSION +1 -1
data/lib/aws-defaults/default_configuration.rb +2 -1
data/lib/aws-sdk-core/assume_role_credentials.rb +8 -8
data/lib/aws-sdk-core/assume_role_web_identity_credentials.rb +2 -2
data/lib/aws-sdk-core/client_stubs.rb +6 -0
data/lib/aws-sdk-core/credential_provider_chain.rb +71 -22
data/lib/aws-sdk-core/ecs_credentials.rb +13 -13
data/lib/aws-sdk-core/endpoints.rb +37 -13
data/lib/aws-sdk-core/errors.rb +3 -0
data/lib/aws-sdk-core/instance_profile_credentials.rb +7 -7
data/lib/aws-sdk-core/login_credentials.rb +229 -0
data/lib/aws-sdk-core/plugins/checksum_algorithm.rb +28 -14
data/lib/aws-sdk-core/plugins/credentials_configuration.rb +75 -59
data/lib/aws-sdk-core/plugins/sign.rb +23 -28
data/lib/aws-sdk-core/plugins/stub_responses.rb +6 -0
data/lib/aws-sdk-core/plugins/user_agent.rb +4 -1
data/lib/aws-sdk-core/refreshing_credentials.rb +8 -11
data/lib/aws-sdk-core/shared_config.rb +30 -0
data/lib/aws-sdk-core/sso_credentials.rb +1 -1
data/lib/aws-sdk-core/static_token_provider.rb +1 -2
data/lib/aws-sdk-core/token.rb +3 -3
data/lib/aws-sdk-core/token_provider.rb +4 -0
data/lib/aws-sdk-core/token_provider_chain.rb +2 -6
data/lib/aws-sdk-core.rb +4 -0
data/lib/aws-sdk-signin/client.rb +604 -0
data/lib/aws-sdk-signin/client_api.rb +119 -0
data/lib/aws-sdk-signin/customizations.rb +1 -0
data/lib/aws-sdk-signin/endpoint_parameters.rb +69 -0
data/lib/aws-sdk-signin/endpoint_provider.rb +59 -0
data/lib/aws-sdk-signin/endpoints.rb +20 -0
data/lib/aws-sdk-signin/errors.rb +122 -0
data/lib/aws-sdk-signin/plugins/endpoints.rb +77 -0
data/lib/aws-sdk-signin/resource.rb +26 -0
data/lib/aws-sdk-signin/types.rb +299 -0
data/lib/aws-sdk-signin.rb +63 -0
data/lib/aws-sdk-sso/client.rb +24 -17
data/lib/aws-sdk-sso/endpoint_parameters.rb +4 -4
data/lib/aws-sdk-sso/endpoint_provider.rb +2 -2
data/lib/aws-sdk-sso.rb +1 -1
data/lib/aws-sdk-ssooidc/client.rb +43 -23
data/lib/aws-sdk-ssooidc/client_api.rb +5 -0
data/lib/aws-sdk-ssooidc/endpoint_parameters.rb +4 -4
data/lib/aws-sdk-ssooidc/errors.rb +10 -0
data/lib/aws-sdk-ssooidc/types.rb +27 -15
data/lib/aws-sdk-ssooidc.rb +1 -1
data/lib/aws-sdk-sts/client.rb +159 -28
data/lib/aws-sdk-sts/client_api.rb +72 -0
data/lib/aws-sdk-sts/customizations.rb +0 -1
data/lib/aws-sdk-sts/endpoint_parameters.rb +5 -5
data/lib/aws-sdk-sts/errors.rb +64 -0
data/lib/aws-sdk-sts/presigner.rb +2 -6
data/lib/aws-sdk-sts/types.rb +175 -6
data/lib/aws-sdk-sts.rb +1 -1
data/lib/seahorse/client/h2/handler.rb +6 -1
metadata +27 -1

data/lib/aws-sdk-core/shared_config.rb CHANGED Viewed

@@ -171,6 +171,16 @@ module Aws
       token
     end
+    # Attempts to load from shared config or shared credentials file.
+    # Will always attempt first to load from the shared credentials
+    # file, if present.
+    def login_credentials_from_config(opts = {})
+      p = opts[:profile] || @profile_name
+      credentials = login_credentials_from_profile(@parsed_credentials, p, opts[:region])
+      credentials ||= login_credentials_from_profile(@parsed_config, p, opts[:region]) if @parsed_config
+      credentials
+    end
     # Source a custom configured endpoint from the shared configuration file
     #
     # @param [Hash] opts
@@ -203,6 +213,7 @@ module Aws
     config_reader(
       :region,
       :account_id_endpoint_mode,
+      :auth_scheme_preference,
       :sigv4a_signing_region_set,
       :ca_bundle,
       :credential_process,
@@ -368,6 +379,15 @@ module Aws
         )
       when 'EcsContainer'
         ECSCredentials.new
+      when 'Environment'
+        creds = Credentials.new(
+          ENV['AWS_ACCESS_KEY_ID'],
+          ENV['AWS_SECRET_ACCESS_KEY'],
+          ENV['AWS_SESSION_TOKEN'],
+          account_id: ENV['AWS_ACCOUNT_ID']
+        )
+        creds.metrics = ['CREDENTIALS_ENV_VARS']
+        creds
       else
         raise Errors::InvalidCredentialSourceError, "Unsupported credential_source: #{credential_source}"
       end
@@ -459,6 +479,16 @@ module Aws
       end
     end
+    def login_credentials_from_profile(cfg, profile, region)
+      return unless @parsed_config && (prof_config = cfg[profile]) && prof_config['login_session']
+      cfg = { login_session: prof_config['login_session'] }
+      cfg[:region] = region if region
+      creds = LoginCredentials.new(cfg)
+      creds.metrics << 'CREDENTIALS_PROFILE_LOGIN'
+      creds
+    end
     def credentials_from_profile(prof_config)
       creds = Credentials.new(
         prof_config['aws_access_key_id'],

data/lib/aws-sdk-core/sso_credentials.rb CHANGED Viewed

@@ -7,7 +7,7 @@ module Aws
   # {Aws::SSOTokenProvider} will be used to refresh the token if possible.
   # This class does NOT implement the SSO login token flow - tokens
   # must generated separately by running `aws login` from the
-  # AWS CLI with the correct profile. The `SSOCredentials` will
+  # AWS CLI with the correct profile. The {SSOCredentials} will
   # auto-refresh the AWS credentials from SSO.
   #
   #     # You must first run aws sso login --profile your-sso-profile

data/lib/aws-sdk-core/static_token_provider.rb CHANGED Viewed

@@ -2,12 +2,11 @@
 module Aws
   class StaticTokenProvider
     include TokenProvider
     # @param [String] token
     # @param [Time] expiration
-    def initialize(token, expiration=nil)
+    def initialize(token, expiration = nil)
       @token = Token.new(token, expiration)
     end
   end

data/lib/aws-sdk-core/token.rb CHANGED Viewed

@@ -3,9 +3,9 @@
 module Aws
   class Token
-    # @param [String] token
-    # @param [Time] expiration
-    def initialize(token, expiration=nil)
+    # @param [String, nil] token
+    # @param [Time, nil] expiration
+    def initialize(token, expiration = nil)
       @token = token
       @expiration = expiration
     end

data/lib/aws-sdk-core/token_provider.rb CHANGED Viewed

@@ -6,6 +6,10 @@ module Aws
     # @return [Token]
     attr_reader :token
+    # @api private
+    # Returns UserAgent metrics for tokens.
+    attr_accessor :metrics
     # @return [Boolean]
     def set?
       !!token && token.set?

data/lib/aws-sdk-core/token_provider_chain.rb CHANGED Viewed

@@ -27,17 +27,13 @@ module Aws
     def static_profile_sso_token(options)
       if Aws.shared_config.config_enabled? && options[:config] && options[:config].profile
-        Aws.shared_config.sso_token_from_config(
-          profile: options[:config].profile
-        )
+        Aws.shared_config.sso_token_from_config(profile: options[:config].profile)
       end
     end
     def sso_token(options)
-      profile_name = determine_profile_name(options)
       if Aws.shared_config.config_enabled?
-        Aws.shared_config.sso_token_from_config(profile: profile_name)
+        Aws.shared_config.sso_token_from_config(profile: determine_profile_name(options))
       end
     rescue Errors::NoSuchProfileError
       nil

data/lib/aws-sdk-core.rb CHANGED Viewed

@@ -25,6 +25,7 @@ module Aws
   autoload :SharedCredentials, 'aws-sdk-core/shared_credentials'
   autoload :ProcessCredentials, 'aws-sdk-core/process_credentials'
   autoload :SSOCredentials, 'aws-sdk-core/sso_credentials'
+  autoload :LoginCredentials, 'aws-sdk-core/login_credentials'
   # tokens and token providers
@@ -175,3 +176,6 @@ require_relative 'aws-sdk-sts'
 # aws-sdk-sso is included to support Aws::SSOCredentials
 require_relative 'aws-sdk-sso'
 require_relative 'aws-sdk-ssooidc'
+# aws-sdk-signin is included to support Aws::SignInCredentials
+require_relative 'aws-sdk-signin'