aws-sdk-core 3.31.0 → 3.168.4
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/CHANGELOG.md +1573 -0
- data/LICENSE.txt +202 -0
- data/VERSION +1 -1
- data/lib/aws-defaults/default_configuration.rb +153 -0
- data/lib/aws-defaults/defaults_mode_config_resolver.rb +107 -0
- data/lib/aws-defaults.rb +3 -0
- data/lib/aws-sdk-core/arn.rb +105 -0
- data/lib/aws-sdk-core/arn_parser.rb +40 -0
- data/lib/aws-sdk-core/assume_role_credentials.rb +23 -7
- data/lib/aws-sdk-core/assume_role_web_identity_credentials.rb +108 -0
- data/lib/aws-sdk-core/async_client_stubs.rb +82 -0
- data/lib/aws-sdk-core/binary/decode_handler.rb +11 -1
- data/lib/aws-sdk-core/binary/encode_handler.rb +45 -0
- data/lib/aws-sdk-core/binary/event_builder.rb +124 -0
- data/lib/aws-sdk-core/binary/event_parser.rb +50 -18
- data/lib/aws-sdk-core/binary/event_stream_decoder.rb +7 -2
- data/lib/aws-sdk-core/binary/event_stream_encoder.rb +55 -0
- data/lib/aws-sdk-core/binary.rb +5 -0
- data/lib/aws-sdk-core/client_side_monitoring/publisher.rb +11 -1
- data/lib/aws-sdk-core/client_side_monitoring/request_metrics.rb +71 -9
- data/lib/aws-sdk-core/client_stubs.rb +21 -14
- data/lib/aws-sdk-core/credential_provider.rb +1 -30
- data/lib/aws-sdk-core/credential_provider_chain.rb +107 -43
- data/lib/aws-sdk-core/credentials.rb +2 -0
- data/lib/aws-sdk-core/deprecations.rb +17 -11
- data/lib/aws-sdk-core/eager_loader.rb +2 -0
- data/lib/aws-sdk-core/ec2_metadata.rb +238 -0
- data/lib/aws-sdk-core/ecs_credentials.rb +24 -9
- data/lib/aws-sdk-core/endpoint_cache.rb +193 -0
- data/lib/aws-sdk-core/endpoints/condition.rb +36 -0
- data/lib/aws-sdk-core/endpoints/endpoint.rb +17 -0
- data/lib/aws-sdk-core/endpoints/endpoint_rule.rb +71 -0
- data/lib/aws-sdk-core/endpoints/error_rule.rb +37 -0
- data/lib/aws-sdk-core/endpoints/function.rb +75 -0
- data/lib/aws-sdk-core/endpoints/matchers.rb +127 -0
- data/lib/aws-sdk-core/endpoints/reference.rb +26 -0
- data/lib/aws-sdk-core/endpoints/rule.rb +20 -0
- data/lib/aws-sdk-core/endpoints/rule_set.rb +47 -0
- data/lib/aws-sdk-core/endpoints/rules_provider.rb +32 -0
- data/lib/aws-sdk-core/endpoints/templater.rb +52 -0
- data/lib/aws-sdk-core/endpoints/tree_rule.rb +40 -0
- data/lib/aws-sdk-core/endpoints/url.rb +59 -0
- data/lib/aws-sdk-core/endpoints.rb +74 -0
- data/lib/aws-sdk-core/errors.rb +172 -12
- data/lib/aws-sdk-core/event_emitter.rb +44 -0
- data/lib/aws-sdk-core/ini_parser.rb +2 -0
- data/lib/aws-sdk-core/instance_profile_credentials.rb +231 -42
- data/lib/aws-sdk-core/json/builder.rb +2 -0
- data/lib/aws-sdk-core/json/error_handler.rb +31 -3
- data/lib/aws-sdk-core/json/handler.rb +21 -1
- data/lib/aws-sdk-core/json/json_engine.rb +12 -8
- data/lib/aws-sdk-core/json/oj_engine.rb +35 -6
- data/lib/aws-sdk-core/json/parser.rb +10 -0
- data/lib/aws-sdk-core/json.rb +11 -28
- data/lib/aws-sdk-core/log/formatter.rb +16 -4
- data/lib/aws-sdk-core/log/handler.rb +2 -0
- data/lib/aws-sdk-core/log/param_filter.rb +38 -13
- data/lib/aws-sdk-core/log/param_formatter.rb +2 -0
- data/lib/aws-sdk-core/pageable_response.rb +118 -47
- data/lib/aws-sdk-core/pager.rb +5 -0
- data/lib/aws-sdk-core/param_converter.rb +2 -0
- data/lib/aws-sdk-core/param_validator.rb +63 -7
- data/lib/aws-sdk-core/plugins/api_key.rb +5 -1
- data/lib/aws-sdk-core/plugins/apig_authorizer_token.rb +2 -0
- data/lib/aws-sdk-core/plugins/apig_credentials_configuration.rb +2 -0
- data/lib/aws-sdk-core/plugins/apig_user_agent.rb +2 -0
- data/lib/aws-sdk-core/plugins/bearer_authorization.rb +67 -0
- data/lib/aws-sdk-core/plugins/checksum_algorithm.rb +340 -0
- data/lib/aws-sdk-core/plugins/client_metrics_plugin.rb +65 -6
- data/lib/aws-sdk-core/plugins/client_metrics_send_plugin.rb +10 -4
- data/lib/aws-sdk-core/plugins/credentials_configuration.rb +50 -7
- data/lib/aws-sdk-core/plugins/defaults_mode.rb +40 -0
- data/lib/aws-sdk-core/plugins/endpoint_discovery.rb +172 -0
- data/lib/aws-sdk-core/plugins/endpoint_pattern.rb +65 -0
- data/lib/aws-sdk-core/plugins/event_stream_configuration.rb +16 -0
- data/lib/aws-sdk-core/plugins/global_configuration.rb +2 -0
- data/lib/aws-sdk-core/plugins/helpful_socket_errors.rb +2 -0
- data/lib/aws-sdk-core/plugins/http_checksum.rb +64 -0
- data/lib/aws-sdk-core/plugins/idempotency_token.rb +2 -0
- data/lib/aws-sdk-core/plugins/invocation_id.rb +35 -0
- data/lib/aws-sdk-core/plugins/jsonvalue_converter.rb +36 -6
- data/lib/aws-sdk-core/plugins/logging.rb +2 -0
- data/lib/aws-sdk-core/plugins/param_converter.rb +2 -0
- data/lib/aws-sdk-core/plugins/param_validator.rb +2 -0
- data/lib/aws-sdk-core/plugins/protocols/api_gateway.rb +19 -0
- data/lib/aws-sdk-core/plugins/protocols/ec2.rb +2 -0
- data/lib/aws-sdk-core/plugins/protocols/json_rpc.rb +2 -0
- data/lib/aws-sdk-core/plugins/protocols/query.rb +2 -0
- data/lib/aws-sdk-core/plugins/protocols/rest_json.rb +18 -1
- data/lib/aws-sdk-core/plugins/protocols/rest_xml.rb +2 -0
- data/lib/aws-sdk-core/plugins/recursion_detection.rb +38 -0
- data/lib/aws-sdk-core/plugins/regional_endpoint.rb +81 -16
- data/lib/aws-sdk-core/plugins/response_paging.rb +3 -1
- data/lib/aws-sdk-core/plugins/retries/client_rate_limiter.rb +139 -0
- data/lib/aws-sdk-core/plugins/retries/clock_skew.rb +100 -0
- data/lib/aws-sdk-core/plugins/retries/error_inspector.rb +147 -0
- data/lib/aws-sdk-core/plugins/retries/retry_quota.rb +59 -0
- data/lib/aws-sdk-core/plugins/retry_errors.rb +312 -92
- data/lib/aws-sdk-core/plugins/sign.rb +200 -0
- data/lib/aws-sdk-core/plugins/signature_v2.rb +3 -0
- data/lib/aws-sdk-core/plugins/signature_v4.rb +42 -32
- data/lib/aws-sdk-core/plugins/stub_responses.rb +28 -7
- data/lib/aws-sdk-core/plugins/transfer_encoding.rb +53 -0
- data/lib/aws-sdk-core/plugins/user_agent.rb +9 -5
- data/lib/aws-sdk-core/process_credentials.rb +20 -15
- data/lib/aws-sdk-core/query/ec2_param_builder.rb +2 -0
- data/lib/aws-sdk-core/query/handler.rb +8 -1
- data/lib/aws-sdk-core/query/param.rb +2 -0
- data/lib/aws-sdk-core/query/param_builder.rb +2 -0
- data/lib/aws-sdk-core/query/param_list.rb +2 -0
- data/lib/aws-sdk-core/query.rb +2 -0
- data/lib/aws-sdk-core/refreshing_credentials.rb +45 -12
- data/lib/aws-sdk-core/refreshing_token.rb +71 -0
- data/lib/aws-sdk-core/resources/collection.rb +3 -1
- data/lib/aws-sdk-core/rest/handler.rb +3 -1
- data/lib/aws-sdk-core/rest/request/body.rb +21 -1
- data/lib/aws-sdk-core/rest/request/builder.rb +2 -0
- data/lib/aws-sdk-core/rest/request/endpoint.rb +10 -3
- data/lib/aws-sdk-core/rest/request/headers.rb +16 -6
- data/lib/aws-sdk-core/rest/request/querystring_builder.rb +4 -2
- data/lib/aws-sdk-core/rest/response/body.rb +2 -0
- data/lib/aws-sdk-core/rest/response/headers.rb +6 -3
- data/lib/aws-sdk-core/rest/response/parser.rb +2 -0
- data/lib/aws-sdk-core/rest/response/status_code.rb +2 -0
- data/lib/aws-sdk-core/rest.rb +2 -0
- data/lib/aws-sdk-core/shared_config.rb +222 -118
- data/lib/aws-sdk-core/shared_credentials.rb +9 -1
- data/lib/aws-sdk-core/sso_credentials.rb +172 -0
- data/lib/aws-sdk-core/sso_token_provider.rb +135 -0
- data/lib/aws-sdk-core/static_token_provider.rb +14 -0
- data/lib/aws-sdk-core/structure.rb +24 -7
- data/lib/aws-sdk-core/stubbing/data_applicator.rb +2 -0
- data/lib/aws-sdk-core/stubbing/empty_stub.rb +2 -0
- data/lib/aws-sdk-core/stubbing/protocols/api_gateway.rb +2 -0
- data/lib/aws-sdk-core/stubbing/protocols/ec2.rb +2 -0
- data/lib/aws-sdk-core/stubbing/protocols/json.rb +3 -1
- data/lib/aws-sdk-core/stubbing/protocols/query.rb +4 -2
- data/lib/aws-sdk-core/stubbing/protocols/rest.rb +52 -7
- data/lib/aws-sdk-core/stubbing/protocols/rest_json.rb +3 -1
- data/lib/aws-sdk-core/stubbing/protocols/rest_xml.rb +2 -2
- data/lib/aws-sdk-core/stubbing/stub_data.rb +15 -4
- data/lib/aws-sdk-core/stubbing/xml_error.rb +2 -0
- data/lib/aws-sdk-core/token.rb +31 -0
- data/lib/aws-sdk-core/token_provider.rb +15 -0
- data/lib/aws-sdk-core/token_provider_chain.rb +51 -0
- data/lib/aws-sdk-core/type_builder.rb +2 -0
- data/lib/aws-sdk-core/util.rb +24 -0
- data/lib/aws-sdk-core/waiters/errors.rb +2 -0
- data/lib/aws-sdk-core/waiters/poller.rb +2 -0
- data/lib/aws-sdk-core/waiters/waiter.rb +4 -2
- data/lib/aws-sdk-core/waiters.rb +2 -0
- data/lib/aws-sdk-core/xml/builder.rb +5 -3
- data/lib/aws-sdk-core/xml/default_list.rb +2 -0
- data/lib/aws-sdk-core/xml/default_map.rb +2 -0
- data/lib/aws-sdk-core/xml/doc_builder.rb +15 -4
- data/lib/aws-sdk-core/xml/error_handler.rb +36 -4
- data/lib/aws-sdk-core/xml/parser/engines/libxml.rb +2 -0
- data/lib/aws-sdk-core/xml/parser/engines/nokogiri.rb +2 -0
- data/lib/aws-sdk-core/xml/parser/engines/oga.rb +2 -0
- data/lib/aws-sdk-core/xml/parser/engines/ox.rb +3 -1
- data/lib/aws-sdk-core/xml/parser/engines/rexml.rb +4 -1
- data/lib/aws-sdk-core/xml/parser/frame.rb +25 -0
- data/lib/aws-sdk-core/xml/parser/parsing_error.rb +2 -0
- data/lib/aws-sdk-core/xml/parser/stack.rb +2 -0
- data/lib/aws-sdk-core/xml/parser.rb +7 -0
- data/lib/aws-sdk-core/xml.rb +2 -0
- data/lib/aws-sdk-core.rb +42 -4
- data/lib/aws-sdk-sso/client.rb +610 -0
- data/lib/aws-sdk-sso/client_api.rb +190 -0
- data/lib/aws-sdk-sso/customizations.rb +1 -0
- data/lib/aws-sdk-sso/endpoint_parameters.rb +66 -0
- data/lib/aws-sdk-sso/endpoint_provider.rb +112 -0
- data/lib/aws-sdk-sso/endpoints.rb +71 -0
- data/lib/aws-sdk-sso/errors.rb +102 -0
- data/lib/aws-sdk-sso/plugins/endpoints.rb +76 -0
- data/lib/aws-sdk-sso/resource.rb +26 -0
- data/lib/aws-sdk-sso/types.rb +317 -0
- data/lib/aws-sdk-sso.rb +59 -0
- data/lib/aws-sdk-ssooidc/client.rb +606 -0
- data/lib/aws-sdk-ssooidc/client_api.rb +216 -0
- data/lib/aws-sdk-ssooidc/customizations.rb +1 -0
- data/lib/aws-sdk-ssooidc/endpoint_parameters.rb +66 -0
- data/lib/aws-sdk-ssooidc/endpoint_provider.rb +111 -0
- data/lib/aws-sdk-ssooidc/endpoints.rb +57 -0
- data/lib/aws-sdk-ssooidc/errors.rb +290 -0
- data/lib/aws-sdk-ssooidc/plugins/endpoints.rb +74 -0
- data/lib/aws-sdk-ssooidc/resource.rb +26 -0
- data/lib/aws-sdk-ssooidc/types.rb +502 -0
- data/lib/aws-sdk-ssooidc.rb +59 -0
- data/lib/aws-sdk-sts/client.rb +1426 -616
- data/lib/aws-sdk-sts/client_api.rb +76 -1
- data/lib/aws-sdk-sts/customizations.rb +4 -0
- data/lib/aws-sdk-sts/endpoint_parameters.rb +78 -0
- data/lib/aws-sdk-sts/endpoint_provider.rb +229 -0
- data/lib/aws-sdk-sts/endpoints.rb +135 -0
- data/lib/aws-sdk-sts/errors.rb +153 -1
- data/lib/aws-sdk-sts/plugins/endpoints.rb +84 -0
- data/lib/aws-sdk-sts/plugins/sts_regional_endpoints.rb +38 -0
- data/lib/aws-sdk-sts/presigner.rb +73 -0
- data/lib/aws-sdk-sts/resource.rb +4 -1
- data/lib/aws-sdk-sts/types.rb +918 -296
- data/lib/aws-sdk-sts.rb +20 -6
- data/lib/seahorse/client/async_base.rb +51 -0
- data/lib/seahorse/client/async_response.rb +64 -0
- data/lib/seahorse/client/base.rb +7 -2
- data/lib/seahorse/client/block_io.rb +6 -2
- data/lib/seahorse/client/configuration.rb +17 -3
- data/lib/seahorse/client/events.rb +3 -1
- data/lib/seahorse/client/h2/connection.rb +247 -0
- data/lib/seahorse/client/h2/handler.rb +152 -0
- data/lib/seahorse/client/handler.rb +2 -0
- data/lib/seahorse/client/handler_builder.rb +2 -0
- data/lib/seahorse/client/handler_list.rb +2 -0
- data/lib/seahorse/client/handler_list_entry.rb +6 -4
- data/lib/seahorse/client/http/async_response.rb +44 -0
- data/lib/seahorse/client/http/headers.rb +2 -0
- data/lib/seahorse/client/http/request.rb +5 -3
- data/lib/seahorse/client/http/response.rb +18 -11
- data/lib/seahorse/client/logging/formatter.rb +6 -2
- data/lib/seahorse/client/logging/handler.rb +2 -0
- data/lib/seahorse/client/managed_file.rb +2 -0
- data/lib/seahorse/client/net_http/connection_pool.rb +30 -23
- data/lib/seahorse/client/net_http/handler.rb +24 -7
- data/lib/seahorse/client/net_http/patches.rb +16 -79
- data/lib/seahorse/client/networking_error.rb +30 -0
- data/lib/seahorse/client/plugin.rb +10 -7
- data/lib/seahorse/client/plugin_list.rb +2 -0
- data/lib/seahorse/client/plugins/content_length.rb +14 -3
- data/lib/seahorse/client/plugins/endpoint.rb +4 -2
- data/lib/seahorse/client/plugins/h2.rb +69 -0
- data/lib/seahorse/client/plugins/logging.rb +2 -0
- data/lib/seahorse/client/plugins/net_http.rb +39 -3
- data/lib/seahorse/client/plugins/operation_methods.rb +2 -0
- data/lib/seahorse/client/plugins/raise_response_errors.rb +2 -0
- data/lib/seahorse/client/plugins/request_callback.rb +110 -0
- data/lib/seahorse/client/plugins/response_target.rb +23 -14
- data/lib/seahorse/client/request.rb +2 -0
- data/lib/seahorse/client/request_context.rb +2 -0
- data/lib/seahorse/client/response.rb +5 -5
- data/lib/seahorse/model/api.rb +14 -0
- data/lib/seahorse/model/authorizer.rb +2 -0
- data/lib/seahorse/model/operation.rb +21 -0
- data/lib/seahorse/model/shapes.rb +29 -2
- data/lib/seahorse/util.rb +12 -1
- data/lib/seahorse/version.rb +2 -0
- data/lib/seahorse.rb +12 -0
- metadata +117 -16
|
@@ -0,0 +1,135 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Aws
|
|
4
|
+
class SSOTokenProvider
|
|
5
|
+
|
|
6
|
+
include TokenProvider
|
|
7
|
+
include RefreshingToken
|
|
8
|
+
|
|
9
|
+
# @api private
|
|
10
|
+
SSO_REQUIRED_OPTS = [:sso_region, :sso_session].freeze
|
|
11
|
+
|
|
12
|
+
# @api private
|
|
13
|
+
SSO_LOGIN_GUIDANCE = 'The SSO session associated with this profile has '\
|
|
14
|
+
'expired or is otherwise invalid. To refresh this SSO session run '\
|
|
15
|
+
'aws sso login with the corresponding profile.'.freeze
|
|
16
|
+
|
|
17
|
+
# @option options [required, String] :sso_region The AWS region where the
|
|
18
|
+
# SSO directory for the given sso_start_url is hosted.
|
|
19
|
+
#
|
|
20
|
+
# @option options [required, String] :sso_session The SSO Session used to
|
|
21
|
+
# for fetching this token.
|
|
22
|
+
#
|
|
23
|
+
# @option options [SSOOIDC::Client] :client Optional `SSOOIDC::Client`. If not
|
|
24
|
+
# provided, a client will be constructed.
|
|
25
|
+
#
|
|
26
|
+
# @option options [Callable] before_refresh Proc called before
|
|
27
|
+
# credentials are refreshed. `before_refresh` is called
|
|
28
|
+
# with an instance of this object when
|
|
29
|
+
# AWS credentials are required and need to be refreshed.
|
|
30
|
+
def initialize(options = {})
|
|
31
|
+
|
|
32
|
+
missing_keys = SSO_REQUIRED_OPTS.select { |k| options[k].nil? }
|
|
33
|
+
unless missing_keys.empty?
|
|
34
|
+
raise ArgumentError, "Missing required keys: #{missing_keys}"
|
|
35
|
+
end
|
|
36
|
+
|
|
37
|
+
@sso_session = options.delete(:sso_session)
|
|
38
|
+
@sso_region = options.delete(:sso_region)
|
|
39
|
+
|
|
40
|
+
options[:region] = @sso_region
|
|
41
|
+
options[:credentials] = nil
|
|
42
|
+
options[:token_provider] = nil
|
|
43
|
+
@client = options[:client] || Aws::SSOOIDC::Client.new(options)
|
|
44
|
+
|
|
45
|
+
super
|
|
46
|
+
end
|
|
47
|
+
|
|
48
|
+
# @return [SSOOIDC::Client]
|
|
49
|
+
attr_reader :client
|
|
50
|
+
|
|
51
|
+
private
|
|
52
|
+
|
|
53
|
+
def refresh
|
|
54
|
+
# token is valid and not in refresh window - do not refresh it.
|
|
55
|
+
return if @token && @token.expiration && !near_expiration?
|
|
56
|
+
|
|
57
|
+
# token may not exist or is out of the expiration window
|
|
58
|
+
# attempt to refresh from disk first (another process/application may have refreshed already)
|
|
59
|
+
token_json = read_cached_token
|
|
60
|
+
@token = Token.new(token_json['accessToken'], token_json['expiresAt'])
|
|
61
|
+
return if @token && @token.expiration && !near_expiration?
|
|
62
|
+
|
|
63
|
+
# The token is expired and needs to be refreshed
|
|
64
|
+
if can_refresh_token?(token_json)
|
|
65
|
+
begin
|
|
66
|
+
current_time = Time.now
|
|
67
|
+
resp = @client.create_token(
|
|
68
|
+
grant_type: 'refresh_token',
|
|
69
|
+
client_id: token_json['clientId'],
|
|
70
|
+
client_secret: token_json['clientSecret'],
|
|
71
|
+
refresh_token: token_json['refreshToken']
|
|
72
|
+
)
|
|
73
|
+
token_json['accessToken'] = resp.access_token
|
|
74
|
+
token_json['expiresAt'] = current_time + resp.expires_in
|
|
75
|
+
@token = Token.new(token_json['accessToken'], token_json['expiresAt'])
|
|
76
|
+
|
|
77
|
+
if resp.refresh_token
|
|
78
|
+
token_json['refreshToken'] = resp.refresh_token
|
|
79
|
+
else
|
|
80
|
+
token_json.delete('refreshToken')
|
|
81
|
+
end
|
|
82
|
+
|
|
83
|
+
update_token_cache(token_json)
|
|
84
|
+
rescue
|
|
85
|
+
# refresh has failed, continue attempting to use the token if its not hard expired
|
|
86
|
+
end
|
|
87
|
+
end
|
|
88
|
+
|
|
89
|
+
if !@token.expiration || @token.expiration < Time.now
|
|
90
|
+
# Token is hard expired, raise an exception
|
|
91
|
+
raise Errors::InvalidSSOToken, 'Token is invalid and failed to refresh.'
|
|
92
|
+
end
|
|
93
|
+
end
|
|
94
|
+
|
|
95
|
+
def read_cached_token
|
|
96
|
+
cached_token = Json.load(File.read(sso_cache_file))
|
|
97
|
+
# validation
|
|
98
|
+
unless cached_token['accessToken'] && cached_token['expiresAt']
|
|
99
|
+
raise ArgumentError, 'Missing required field(s)'
|
|
100
|
+
end
|
|
101
|
+
cached_token['expiresAt'] = Time.parse(cached_token['expiresAt'])
|
|
102
|
+
cached_token
|
|
103
|
+
rescue Errno::ENOENT, Aws::Json::ParseError, ArgumentError
|
|
104
|
+
raise Errors::InvalidSSOToken, SSO_LOGIN_GUIDANCE
|
|
105
|
+
end
|
|
106
|
+
|
|
107
|
+
def update_token_cache(token_json)
|
|
108
|
+
cached_token = token_json.dup
|
|
109
|
+
cached_token['expiresAt'] = cached_token['expiresAt'].iso8601
|
|
110
|
+
File.write(sso_cache_file, Json.dump(cached_token))
|
|
111
|
+
end
|
|
112
|
+
|
|
113
|
+
def sso_cache_file
|
|
114
|
+
sso_session_sha1 = OpenSSL::Digest::SHA1.hexdigest(@sso_session.encode('utf-8'))
|
|
115
|
+
File.join(Dir.home, '.aws', 'sso', 'cache', "#{sso_session_sha1}.json")
|
|
116
|
+
rescue ArgumentError
|
|
117
|
+
# Dir.home raises ArgumentError when ENV['home'] is not set
|
|
118
|
+
raise ArgumentError, "Unable to load sso_cache_file: ENV['HOME'] is not set."
|
|
119
|
+
end
|
|
120
|
+
|
|
121
|
+
# return true if all required fields are present
|
|
122
|
+
# return false if registrationExpiresAt exists and is later than now
|
|
123
|
+
def can_refresh_token?(token_json)
|
|
124
|
+
if token_json['clientId'] &&
|
|
125
|
+
token_json['clientSecret'] &&
|
|
126
|
+
token_json['refreshToken']
|
|
127
|
+
|
|
128
|
+
return !token_json['registrationExpiresAt'] ||
|
|
129
|
+
Time.parse(token_json['registrationExpiresAt']) > Time.now
|
|
130
|
+
else
|
|
131
|
+
false
|
|
132
|
+
end
|
|
133
|
+
end
|
|
134
|
+
end
|
|
135
|
+
end
|
|
@@ -0,0 +1,14 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Aws
|
|
4
|
+
class StaticTokenProvider
|
|
5
|
+
|
|
6
|
+
include TokenProvider
|
|
7
|
+
|
|
8
|
+
# @param [String] token
|
|
9
|
+
# @param [Time] expiration
|
|
10
|
+
def initialize(token, expiration=nil)
|
|
11
|
+
@token = Token.new(token, expiration)
|
|
12
|
+
end
|
|
13
|
+
end
|
|
14
|
+
end
|
|
@@ -1,3 +1,5 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
1
3
|
module Aws
|
|
2
4
|
# @api private
|
|
3
5
|
module Structure
|
|
@@ -26,25 +28,31 @@ module Aws
|
|
|
26
28
|
# in stdlib Struct.
|
|
27
29
|
#
|
|
28
30
|
# @return [Hash]
|
|
29
|
-
def to_h(obj = self)
|
|
31
|
+
def to_h(obj = self, options = {})
|
|
30
32
|
case obj
|
|
31
33
|
when Struct
|
|
32
|
-
obj.
|
|
33
|
-
|
|
34
|
-
hash[member] = to_hash(value) unless value.nil?
|
|
34
|
+
obj.each_pair.with_object({}) do |(member, value), hash|
|
|
35
|
+
member = member.to_s if options[:as_json]
|
|
36
|
+
hash[member] = to_hash(value, options) unless value.nil?
|
|
35
37
|
end
|
|
36
38
|
when Hash
|
|
37
39
|
obj.each.with_object({}) do |(key, value), hash|
|
|
38
|
-
|
|
40
|
+
key = key.to_s if options[:as_json]
|
|
41
|
+
hash[key] = to_hash(value, options)
|
|
39
42
|
end
|
|
40
43
|
when Array
|
|
41
|
-
obj.collect { |value| to_hash(value) }
|
|
44
|
+
obj.collect { |value| to_hash(value, options) }
|
|
42
45
|
else
|
|
43
46
|
obj
|
|
44
47
|
end
|
|
45
48
|
end
|
|
46
49
|
alias to_hash to_h
|
|
47
50
|
|
|
51
|
+
# Wraps the default #to_s logic with filtering of sensitive parameters.
|
|
52
|
+
def to_s(obj = self)
|
|
53
|
+
Aws::Log::ParamFilter.new.filter(obj, obj.class).to_s
|
|
54
|
+
end
|
|
55
|
+
|
|
48
56
|
class << self
|
|
49
57
|
|
|
50
58
|
# @api private
|
|
@@ -64,11 +72,20 @@ module Aws
|
|
|
64
72
|
end
|
|
65
73
|
|
|
66
74
|
end
|
|
75
|
+
|
|
76
|
+
module Union
|
|
77
|
+
def member
|
|
78
|
+
self.members.select { |k| self[k] != nil }.first
|
|
79
|
+
end
|
|
80
|
+
|
|
81
|
+
def value
|
|
82
|
+
self[member] if member
|
|
83
|
+
end
|
|
84
|
+
end
|
|
67
85
|
end
|
|
68
86
|
|
|
69
87
|
# @api private
|
|
70
88
|
class EmptyStructure < Struct.new('AwsEmptyStructure')
|
|
71
89
|
include(Aws::Structure)
|
|
72
90
|
end
|
|
73
|
-
|
|
74
91
|
end
|
|
@@ -1,3 +1,5 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
1
3
|
module Aws
|
|
2
4
|
module Stubbing
|
|
3
5
|
module Protocols
|
|
@@ -27,7 +29,7 @@ module Aws
|
|
|
27
29
|
private
|
|
28
30
|
|
|
29
31
|
def content_type(api)
|
|
30
|
-
"application/x-amz-json-#{api.metadata['
|
|
32
|
+
"application/x-amz-json-#{api.metadata['jsonVersion']}"
|
|
31
33
|
end
|
|
32
34
|
|
|
33
35
|
def build_body(operation, data)
|
|
@@ -1,3 +1,5 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
1
3
|
module Aws
|
|
2
4
|
module Stubbing
|
|
3
5
|
module Protocols
|
|
@@ -23,9 +25,9 @@ module Aws
|
|
|
23
25
|
xml = []
|
|
24
26
|
builder = Aws::Xml::DocBuilder.new(target: xml, indent: ' ')
|
|
25
27
|
builder.node(operation.name + 'Response', xmlns: xmlns(api)) do
|
|
26
|
-
if rules = operation.output
|
|
28
|
+
if (rules = operation.output)
|
|
27
29
|
rules.location_name = operation.name + 'Result'
|
|
28
|
-
Xml::Builder.new(rules, target:xml, pad:' ').to_xml(data)
|
|
30
|
+
Xml::Builder.new(rules, target: xml, pad:' ').to_xml(data)
|
|
29
31
|
end
|
|
30
32
|
builder.node('ResponseMetadata') do
|
|
31
33
|
builder.node('RequestId', 'stubbed-request-id')
|
|
@@ -1,3 +1,5 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
1
3
|
require 'aws-eventstream'
|
|
2
4
|
|
|
3
5
|
module Aws
|
|
@@ -43,7 +45,7 @@ module Aws
|
|
|
43
45
|
def build_body(api, operation, data)
|
|
44
46
|
rules = operation.output
|
|
45
47
|
if head_operation(operation)
|
|
46
|
-
|
|
48
|
+
''
|
|
47
49
|
elsif streaming?(rules)
|
|
48
50
|
data[rules[:payload]]
|
|
49
51
|
elsif rules[:payload]
|
|
@@ -73,7 +75,7 @@ module Aws
|
|
|
73
75
|
end
|
|
74
76
|
|
|
75
77
|
def head_operation(operation)
|
|
76
|
-
operation.http_method ==
|
|
78
|
+
operation.http_method == 'HEAD'
|
|
77
79
|
end
|
|
78
80
|
|
|
79
81
|
def eventstream?(rules)
|
|
@@ -94,9 +96,9 @@ module Aws
|
|
|
94
96
|
# Pending
|
|
95
97
|
raise 'Stubbing :exception event is not supported'
|
|
96
98
|
end
|
|
97
|
-
stream
|
|
98
|
-
Aws::EventStream::Message.new(opts)
|
|
99
|
-
|
|
99
|
+
[stream, Aws::EventStream::Encoder.new.encode(
|
|
100
|
+
Aws::EventStream::Message.new(opts)
|
|
101
|
+
)].pack('a*a*')
|
|
100
102
|
end
|
|
101
103
|
end
|
|
102
104
|
|
|
@@ -116,8 +118,41 @@ module Aws
|
|
|
116
118
|
opts
|
|
117
119
|
end
|
|
118
120
|
|
|
119
|
-
def
|
|
120
|
-
|
|
121
|
+
def encode_unknown_event(opts, event_type, event_data)
|
|
122
|
+
# right now h2 events are only rest_json
|
|
123
|
+
opts[:payload] = StringIO.new(Aws::Json.dump(event_data))
|
|
124
|
+
opts[:headers][':event-type'] = Aws::EventStream::HeaderValue.new(
|
|
125
|
+
value: event_type.to_s,
|
|
126
|
+
type: 'string'
|
|
127
|
+
)
|
|
128
|
+
opts[:headers][':message-type'] = Aws::EventStream::HeaderValue.new(
|
|
129
|
+
value: 'event',
|
|
130
|
+
type: 'string'
|
|
131
|
+
)
|
|
132
|
+
opts
|
|
133
|
+
end
|
|
134
|
+
|
|
135
|
+
def encode_modeled_event(opts, rules, event_type, event_data, builder)
|
|
136
|
+
event_ref = rules.shape.member(event_type)
|
|
137
|
+
explicit_payload = false
|
|
138
|
+
implicit_payload_members = {}
|
|
139
|
+
event_ref.shape.members.each do |name, ref|
|
|
140
|
+
if ref.eventpayload
|
|
141
|
+
explicit_payload = true
|
|
142
|
+
else
|
|
143
|
+
implicit_payload_members[name] = ref
|
|
144
|
+
end
|
|
145
|
+
end
|
|
146
|
+
|
|
147
|
+
if !explicit_payload && !implicit_payload_members.empty?
|
|
148
|
+
unless implicit_payload_members.size > 1
|
|
149
|
+
m_name, _ = implicit_payload_members.first
|
|
150
|
+
value = {}
|
|
151
|
+
value[m_name] = event_data[m_name]
|
|
152
|
+
opts[:payload] = StringIO.new(builder.new(event_ref).serialize(value))
|
|
153
|
+
end
|
|
154
|
+
end
|
|
155
|
+
|
|
121
156
|
event_data.each do |k, v|
|
|
122
157
|
member_ref = event_ref.shape.member(k)
|
|
123
158
|
if member_ref.eventheader
|
|
@@ -147,6 +182,16 @@ module Aws
|
|
|
147
182
|
opts
|
|
148
183
|
end
|
|
149
184
|
|
|
185
|
+
def encode_event(opts, rules, event_data, builder)
|
|
186
|
+
event_type = event_data.delete(:event_type)
|
|
187
|
+
|
|
188
|
+
if rules.shape.member?(event_type)
|
|
189
|
+
encode_modeled_event(opts, rules, event_type, event_data, builder)
|
|
190
|
+
else
|
|
191
|
+
encode_unknown_event(opts, event_type, event_data)
|
|
192
|
+
end
|
|
193
|
+
end
|
|
194
|
+
|
|
150
195
|
end
|
|
151
196
|
end
|
|
152
197
|
end
|
|
@@ -1,9 +1,11 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
1
3
|
module Aws
|
|
2
4
|
module Stubbing
|
|
3
5
|
module Protocols
|
|
4
6
|
class RestJson < Rest
|
|
5
7
|
|
|
6
|
-
def body_for(
|
|
8
|
+
def body_for(_a, _b, rules, data)
|
|
7
9
|
if eventstream?(rules)
|
|
8
10
|
encode_eventstream_response(rules, data, Aws::Json::Builder)
|
|
9
11
|
else
|
|
@@ -1,10 +1,10 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
1
3
|
module Aws
|
|
2
4
|
module Stubbing
|
|
3
5
|
module Protocols
|
|
4
6
|
class RestXml < Rest
|
|
5
7
|
|
|
6
|
-
include Seahorse::Model::Shapes
|
|
7
|
-
|
|
8
8
|
def body_for(api, operation, rules, data)
|
|
9
9
|
if eventstream?(rules)
|
|
10
10
|
encode_eventstream_response(rules, data, Xml::Builder)
|
|
@@ -1,3 +1,5 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
1
3
|
module Aws
|
|
2
4
|
# @api private
|
|
3
5
|
module Stubbing
|
|
@@ -20,17 +22,26 @@ module Aws
|
|
|
20
22
|
def remove_paging_tokens(stub)
|
|
21
23
|
if @pager
|
|
22
24
|
@pager.instance_variable_get("@tokens").keys.each do |path|
|
|
23
|
-
|
|
24
|
-
|
|
25
|
+
if divide = (path[' || '] || path[' or '])
|
|
26
|
+
path = path.split(divide)[0]
|
|
27
|
+
end
|
|
28
|
+
parts = path.split(/\b/)
|
|
29
|
+
# if nested struct/expression, EmptyStub auto-pop "string"
|
|
30
|
+
# currently not support remove "string" for nested/expression
|
|
31
|
+
# as it requires reverse JMESPATH search
|
|
32
|
+
stub[parts[0]] = nil if parts.size == 1
|
|
25
33
|
end
|
|
26
34
|
if more_results = @pager.instance_variable_get('@more_results')
|
|
27
|
-
|
|
35
|
+
parts = more_results.split(/\b/)
|
|
36
|
+
# if nested struct/expression, EmptyStub auto-pop false value
|
|
37
|
+
# no further work needed
|
|
38
|
+
stub[parts[0]] = false if parts.size == 1
|
|
28
39
|
end
|
|
29
40
|
end
|
|
30
41
|
end
|
|
31
42
|
|
|
32
43
|
def apply_data(data, stub)
|
|
33
|
-
ParamValidator.new(@rules, validate_required:false).validate!(data)
|
|
44
|
+
ParamValidator.new(@rules, validate_required: false, input: false).validate!(data)
|
|
34
45
|
DataApplicator.new(@rules).apply_data(data, stub)
|
|
35
46
|
end
|
|
36
47
|
end
|
|
@@ -0,0 +1,31 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Aws
|
|
4
|
+
class Token
|
|
5
|
+
|
|
6
|
+
# @param [String] token
|
|
7
|
+
# @param [Time] expiration
|
|
8
|
+
def initialize(token, expiration=nil)
|
|
9
|
+
@token = token
|
|
10
|
+
@expiration = expiration
|
|
11
|
+
end
|
|
12
|
+
|
|
13
|
+
# @return [String, nil]
|
|
14
|
+
attr_reader :token
|
|
15
|
+
|
|
16
|
+
# @return [Time, nil]
|
|
17
|
+
attr_reader :expiration
|
|
18
|
+
|
|
19
|
+
# @return [Boolean] Returns `true` if token is set
|
|
20
|
+
def set?
|
|
21
|
+
!token.nil? && !token.empty?
|
|
22
|
+
end
|
|
23
|
+
|
|
24
|
+
# Removing the token from the default inspect string.
|
|
25
|
+
# @api private
|
|
26
|
+
def inspect
|
|
27
|
+
"#<#{self.class.name} token=[FILTERED]> expiration=#{expiration}>"
|
|
28
|
+
end
|
|
29
|
+
|
|
30
|
+
end
|
|
31
|
+
end
|
|
@@ -0,0 +1,51 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
3
|
+
module Aws
|
|
4
|
+
# @api private
|
|
5
|
+
class TokenProviderChain
|
|
6
|
+
def initialize(config = nil)
|
|
7
|
+
@config = config
|
|
8
|
+
end
|
|
9
|
+
|
|
10
|
+
# @return [TokenProvider, nil]
|
|
11
|
+
def resolve
|
|
12
|
+
providers.each do |method_name, options|
|
|
13
|
+
provider = send(method_name, options.merge(config: @config))
|
|
14
|
+
return provider if provider && provider.set?
|
|
15
|
+
end
|
|
16
|
+
nil
|
|
17
|
+
end
|
|
18
|
+
|
|
19
|
+
private
|
|
20
|
+
|
|
21
|
+
def providers
|
|
22
|
+
[
|
|
23
|
+
[:static_profile_sso_token, {}],
|
|
24
|
+
[:sso_token, {}]
|
|
25
|
+
]
|
|
26
|
+
end
|
|
27
|
+
|
|
28
|
+
def static_profile_sso_token(options)
|
|
29
|
+
if Aws.shared_config.config_enabled? && options[:config] && options[:config].profile
|
|
30
|
+
Aws.shared_config.sso_token_from_config(
|
|
31
|
+
profile: options[:config].profile
|
|
32
|
+
)
|
|
33
|
+
end
|
|
34
|
+
end
|
|
35
|
+
|
|
36
|
+
|
|
37
|
+
def sso_token(options)
|
|
38
|
+
profile_name = determine_profile_name(options)
|
|
39
|
+
if Aws.shared_config.config_enabled?
|
|
40
|
+
Aws.shared_config.sso_token_from_config(profile: profile_name)
|
|
41
|
+
end
|
|
42
|
+
rescue Errors::NoSuchProfileError
|
|
43
|
+
nil
|
|
44
|
+
end
|
|
45
|
+
|
|
46
|
+
def determine_profile_name(options)
|
|
47
|
+
(options[:config] && options[:config].profile) || ENV['AWS_PROFILE'] || ENV['AWS_DEFAULT_PROFILE'] || 'default'
|
|
48
|
+
end
|
|
49
|
+
|
|
50
|
+
end
|
|
51
|
+
end
|
data/lib/aws-sdk-core/util.rb
CHANGED
|
@@ -1,3 +1,5 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
1
3
|
require 'cgi'
|
|
2
4
|
|
|
3
5
|
module Aws
|
|
@@ -43,6 +45,28 @@ module Aws
|
|
|
43
45
|
end
|
|
44
46
|
end
|
|
45
47
|
end
|
|
48
|
+
|
|
49
|
+
def monotonic_milliseconds
|
|
50
|
+
if defined?(Process::CLOCK_MONOTONIC)
|
|
51
|
+
Process.clock_gettime(Process::CLOCK_MONOTONIC, :millisecond)
|
|
52
|
+
else
|
|
53
|
+
DateTime.now.strftime('%Q').to_i
|
|
54
|
+
end
|
|
55
|
+
end
|
|
56
|
+
|
|
57
|
+
def monotonic_seconds
|
|
58
|
+
monotonic_milliseconds / 1000.0
|
|
59
|
+
end
|
|
60
|
+
|
|
61
|
+
def str_2_bool(str)
|
|
62
|
+
case str.to_s
|
|
63
|
+
when "true" then true
|
|
64
|
+
when "false" then false
|
|
65
|
+
else
|
|
66
|
+
nil
|
|
67
|
+
end
|
|
68
|
+
end
|
|
69
|
+
|
|
46
70
|
end
|
|
47
71
|
end
|
|
48
72
|
end
|
|
@@ -1,3 +1,5 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
1
3
|
module Aws
|
|
2
4
|
module Waiters
|
|
3
5
|
# @api private
|
|
@@ -50,7 +52,7 @@ module Aws
|
|
|
50
52
|
#
|
|
51
53
|
# @yieldparam [Integer] attempts The number of attempts made.
|
|
52
54
|
def before_attempt(&block)
|
|
53
|
-
@before_attempt <<
|
|
55
|
+
@before_attempt << block if block_given?
|
|
54
56
|
end
|
|
55
57
|
|
|
56
58
|
# Register a callback that is invoked after an attempt but before
|
|
@@ -81,7 +83,7 @@ module Aws
|
|
|
81
83
|
# @yieldparam [Seahorse::Client::Response] response The response from
|
|
82
84
|
# the previous polling attempts.
|
|
83
85
|
def before_wait(&block)
|
|
84
|
-
@before_wait <<
|
|
86
|
+
@before_wait << block if block_given?
|
|
85
87
|
end
|
|
86
88
|
|
|
87
89
|
# @option options [Client] :client
|
data/lib/aws-sdk-core/waiters.rb
CHANGED
|
@@ -1,3 +1,5 @@
|
|
|
1
|
+
# frozen_string_literal: true
|
|
2
|
+
|
|
1
3
|
require 'base64'
|
|
2
4
|
|
|
3
5
|
module Aws
|
|
@@ -9,9 +11,9 @@ module Aws
|
|
|
9
11
|
def initialize(rules, options = {})
|
|
10
12
|
@rules = rules
|
|
11
13
|
@xml = options[:target] || []
|
|
12
|
-
indent = options[:indent] || '
|
|
14
|
+
indent = options[:indent] || ''
|
|
13
15
|
pad = options[:pad] || ''
|
|
14
|
-
@builder = DocBuilder.new(target
|
|
16
|
+
@builder = DocBuilder.new(target: @xml, indent: indent, pad: pad)
|
|
15
17
|
end
|
|
16
18
|
|
|
17
19
|
def to_xml(params)
|
|
@@ -46,7 +48,7 @@ module Aws
|
|
|
46
48
|
end
|
|
47
49
|
|
|
48
50
|
def list(name, ref, values)
|
|
49
|
-
if ref.shape.flattened
|
|
51
|
+
if ref[:flattened] || ref.shape.flattened
|
|
50
52
|
values.each do |value|
|
|
51
53
|
member(ref.shape.member.location_name || name, ref.shape.member, value)
|
|
52
54
|
end
|