aws-sdk-core 3.89.1 → 3.90.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: 1276b6391ee9efb2f5431b60dc9dd4da4a81e339
-  data.tar.gz: be1514be183e08a3c01d7a8f4ef0d859981adcfc
+  metadata.gz: 48e9cc30981ca093ed5e512279083c45f59f879a
+  data.tar.gz: 8dd4d2ca90e11bdc5df94f34091a03e6dd06bf00
 SHA512:
-  metadata.gz: 4f43b95c970d6956c688d815ae409a64123a0b332c70cd138733c3a0704c823e9fc9f846dd523e3e6a8ccbd7095ede57e537cbc99a8f9fdb56e089d099a848a2
-  data.tar.gz: 8edd46ef45895d8e898b58533629e092eac359f8180952f79a996b23238872cc3f8da702a1345a45d68e3b44129520857180b3f6cc9ec16696c0f2738ace7ac3
+  metadata.gz: aded2038fb2a36b8816f4f70d8342298a1dd1166272afe3c18f15cc8fd0e2f4368d6064f28f2009b401b0d9fbf9ecf827c77e87719839a538172613d422fab3d
+  data.tar.gz: fb9850aae375081eb31fddb3ea14df5c52d1cc73d2f86f2dd654fd1ff620f3e897bfe14e176afee48d13dfdae62d84e8fb968fa3fbe4d3b35849ee149908ed32

data/VERSION

@@ -1 +1 @@
-3.89.1
+3.90.0

data/lib/aws-sdk-core/credential_provider_chain.rb

@@ -1,7 +1,6 @@
 module Aws
   # @api private
   class CredentialProviderChain
-
     def initialize(config = nil)
       @config = config
     end
@@ -20,16 +19,16 @@ module Aws
     def providers
       [
         [:static_credentials, {}],
+        [:static_profile_assume_role_web_identity_credentials, {}],
+        [:static_profile_assume_role_credentials, {}],
+        [:static_profile_credentials, {}],
+        [:static_profile_process_credentials, {}],
         [:env_credentials, {}],
         [:assume_role_web_identity_credentials, {}],
         [:assume_role_credentials, {}],
         [:shared_credentials, {}],
         [:process_credentials, {}],
-        [:instance_profile_credentials, {
-          retries: @config ? @config.instance_profile_credentials_retries : 0,
-          http_open_timeout: @config ? @config.instance_profile_credentials_timeout : 1,
-          http_read_timeout: @config ? @config.instance_profile_credentials_timeout : 1,
-        }],
+        [:instance_profile_credentials, {}]
       ]
     end
 
@@ -38,24 +37,50 @@ module Aws
         Credentials.new(
           options[:config].access_key_id,
           options[:config].secret_access_key,
-          options[:config].session_token)
-      else
-        nil
+          options[:config].session_token
+        )
+      end
+    end
+
+    def static_profile_assume_role_web_identity_credentials(options)
+      if Aws.shared_config.config_enabled? && options[:config] && options[:config].profile
+        Aws.shared_config.assume_role_web_identity_credentials_from_config(options[:config].profile)
+      end
+    end
+
+    def static_profile_assume_role_credentials(options)
+      if Aws.shared_config.config_enabled? && options[:config] && options[:config].profile
+        assume_role_with_profile(options, options[:config].profile)
+      end
+    end
+
+    def static_profile_credentials(options)
+      if options[:config] && options[:config].profile
+        SharedCredentials.new(profile_name: options[:config].profile)
       end
+    rescue Errors::NoSuchProfileError
+      nil
+    end
+
+    def static_profile_process_credentials(options)
+      if Aws.shared_config.config_enabled? && options[:config] && options[:config].profile
+        process_provider = Aws.shared_config.credential_process(profile: options[:config].profile)
+        ProcessCredentials.new(process_provider) if process_provider
+      end
+    rescue Errors::NoSuchProfileError
+      nil
     end
 
-    def env_credentials(options)
-      key =    %w(AWS_ACCESS_KEY_ID     AMAZON_ACCESS_KEY_ID     AWS_ACCESS_KEY)
-      secret = %w(AWS_SECRET_ACCESS_KEY AMAZON_SECRET_ACCESS_KEY AWS_SECRET_KEY)
-      token =  %w(AWS_SESSION_TOKEN     AMAZON_SESSION_TOKEN)
+    def env_credentials(_options)
+      key =    %w[AWS_ACCESS_KEY_ID AMAZON_ACCESS_KEY_ID AWS_ACCESS_KEY]
+      secret = %w[AWS_SECRET_ACCESS_KEY AMAZON_SECRET_ACCESS_KEY AWS_SECRET_KEY]
+      token =  %w[AWS_SESSION_TOKEN AMAZON_SESSION_TOKEN]
       Credentials.new(envar(key), envar(secret), envar(token))
     end
 
     def envar(keys)
       keys.each do |key|
-        if ENV.key?(key)
-          return ENV[key]
-        end
+        return ENV[key] if ENV.key?(key)
       end
       nil
     end
@@ -72,12 +97,10 @@ module Aws
     end
 
     def process_credentials(options)
-      config = Aws.shared_config
       profile_name = determine_profile_name(options)
-      if config.config_enabled? && process_provider = config.credentials_process(profile_name)
+      if Aws.shared_config.config_enabled? &&
+         (process_provider = Aws.shared_config.credential_process(profile: profile_name))
         ProcessCredentials.new(process_provider)
-      else
-        nil
       end
     rescue Errors::NoSuchProfileError
       nil
@@ -85,15 +108,12 @@ module Aws
 
     def assume_role_credentials(options)
       if Aws.shared_config.config_enabled?
-        assume_role_with_profile(options)
-      else
-        nil
+        assume_role_with_profile(options, determine_profile_name(options))
       end
     end
 
     def assume_role_web_identity_credentials(options)
-      if (role_arn = ENV['AWS_ROLE_ARN']) &&
-        (token_file = ENV['AWS_WEB_IDENTITY_TOKEN_FILE'])
+      if (role_arn = ENV['AWS_ROLE_ARN']) && (token_file = ENV['AWS_WEB_IDENTITY_TOKEN_FILE'])
         AssumeRoleWebIdentityCredentials.new(
           role_arn: role_arn,
           web_identity_token_file: token_file,
@@ -102,21 +122,18 @@ module Aws
       elsif Aws.shared_config.config_enabled?
         profile = options[:config].profile if options[:config]
         Aws.shared_config.assume_role_web_identity_credentials_from_config(profile)
-      else
-        nil
       end
     end
 
     def instance_profile_credentials(options)
-      if ENV["AWS_CONTAINER_CREDENTIALS_RELATIVE_URI"]
+      if ENV['AWS_CONTAINER_CREDENTIALS_RELATIVE_URI']
         ECSCredentials.new(options)
       else
         InstanceProfileCredentials.new(options)
       end
     end
 
-    def assume_role_with_profile(options)
-      profile_name = determine_profile_name(options)
+    def assume_role_with_profile(options, profile_name)
       region = (options[:config] && options[:config].region)
       Aws.shared_config.assume_role_credentials_from_config(
         profile: profile_name,
@@ -124,6 +141,5 @@ module Aws
         chain_config: @config
       )
     end
-
   end
 end

data/lib/aws-sdk-core/errors.rb

@@ -222,8 +222,8 @@ This is typically the result of an invalid `:region` option or a
 poorly formatted `:endpoint` option.
 
 * Avoid configuring the `:endpoint` option directly. Endpoints are constructed
-  from the `:region`. The `:endpoint` option is reserved for connecting to
-  non-standard test endpoints.
+  from the `:region`. The `:endpoint` option is reserved for certain services
+  or for connecting to non-standard test endpoints.
 
 * Not every service is available in every region.
 

data/lib/aws-sdk-core/log/param_filter.rb

@@ -11,7 +11,7 @@ module Aws
       #
       # @api private
       # begin
-      SENSITIVE = [:access_token, :account_name, :account_password, :address, :admin_contact, :admin_password, :alexa_for_business_room_arn, :artifact_credentials, :auth_code, :authentication_token, :authorization_result, :backup_plan_tags, :backup_vault_tags, :base_32_string_seed, :block, :block_address, :block_data, :blocks, :body, :bot_configuration, :bot_email, :calling_name, :cause, :client_id, :client_request_token, :client_secret, :comment, :configuration, :copy_source_sse_customer_key, :credentials, :current_password, :custom_attributes, :custom_private_key, :db_password, :default_phone_number, :definition, :description, :destination_access_token, :digest_tip_address, :display_name, :domain_signing_private_key, :e164_phone_number, :email, :email_address, :email_message, :embed_url, :error, :external_model_endpoint_data_blobs, :external_user_id, :feedback_token, :file, :first_name, :full_name, :host_key, :id, :id_token, :input, :input_text, :ion_text, :join_token, :key_id, :key_material, :key_store_password, :kms_key_id, :kms_master_key_id, :lambda_function_arn, :last_name, :local_console_password, :master_account_email, :master_user_password, :meeting_host_id, :message, :metadata, :name, :new_password, :next_password, :notes, :number, :old_password, :outbound_events_https_endpoint, :output, :owner_information, :parameters, :passphrase, :password, :payload, :phone_number, :plaintext, :previous_password, :primary_email, :primary_provisioned_number, :private_key, :private_key_plaintext, :proof, :proposed_password, :public_key, :qr_code_png, :query, :random_password, :recovery_point_tags, :refresh_token, :registrant_contact, :request_attributes, :restore_metadata, :revision, :search_query, :secret_access_key, :secret_binary, :secret_code, :secret_hash, :secret_string, :secret_to_authenticate_initiator, :secret_to_authenticate_target, :security_token, :service_password, :session_attributes, :session_token, :share_notes, :shared_secret, :slots, :sns_topic_arn, :source_access_token, :sqs_queue_arn, :sse_customer_key, :ssekms_encryption_context, :ssekms_key_id, :status_message, :tag_key_list, :tags, :target_address, :task_parameters, :tech_contact, :temporary_password, :text, :token, :trust_password, :type, :upload_credentials, :upload_url, :uri, :user_data, :user_email, :user_name, :user_password, :username, :value, :values, :variables, :vpn_psk, :zip_file]
+      SENSITIVE = [:access_token, :account_name, :account_password, :address, :admin_contact, :admin_password, :alexa_for_business_room_arn, :artifact_credentials, :auth_code, :authentication_token, :authorization_result, :backup_plan_tags, :backup_vault_tags, :base_32_string_seed, :block, :block_address, :block_data, :blocks, :body, :bot_configuration, :bot_email, :calling_name, :cause, :client_id, :client_request_token, :client_secret, :comment, :configuration, :copy_source_sse_customer_key, :credentials, :current_password, :custom_attributes, :custom_private_key, :db_password, :default_phone_number, :definition, :description, :destination_access_token, :digest_tip_address, :display_name, :domain_signing_private_key, :e164_phone_number, :email, :email_address, :email_message, :embed_url, :error, :external_model_endpoint_data_blobs, :external_user_id, :feedback_token, :file, :first_name, :full_name, :host_key, :id, :id_token, :input, :input_text, :ion_text, :join_token, :key_id, :key_material, :key_store_password, :kms_key_id, :kms_master_key_id, :lambda_function_arn, :last_name, :local_console_password, :master_account_email, :master_user_name, :master_user_password, :meeting_host_id, :message, :metadata, :name, :new_password, :next_password, :notes, :number, :old_password, :outbound_events_https_endpoint, :output, :owner_information, :parameters, :passphrase, :password, :payload, :phone_number, :plaintext, :previous_password, :primary_email, :primary_provisioned_number, :private_key, :private_key_plaintext, :proof, :proposed_password, :public_key, :qr_code_png, :query, :random_password, :recovery_point_tags, :refresh_token, :registrant_contact, :request_attributes, :restore_metadata, :revision, :search_query, :secret_access_key, :secret_binary, :secret_code, :secret_hash, :secret_string, :secret_to_authenticate_initiator, :secret_to_authenticate_target, :security_token, :service_password, :session_attributes, :session_token, :share_notes, :shared_secret, :slots, :sns_topic_arn, :source_access_token, :sqs_queue_arn, :sse_customer_key, :ssekms_encryption_context, :ssekms_key_id, :status_message, :tag_key_list, :tags, :target_address, :task_parameters, :tech_contact, :temporary_password, :text, :token, :trust_password, :type, :upload_credentials, :upload_url, :uri, :user_data, :user_email, :user_name, :user_password, :username, :value, :values, :variables, :vpn_psk, :zip_file]
       # end
 
       def initialize(options = {})

data/lib/aws-sdk-core/param_validator.rb

@@ -142,7 +142,7 @@ module Aws
         end
       when BlobShape
         unless value.is_a?(String) || io_like?(value)
-          errors << expected_got(context, "a String or File object", value)
+          errors << expected_got(context, "a String or IO object", value)
         end
       else
         raise "unhandled shape type: #{ref.shape.class.name}"
@@ -166,8 +166,7 @@ module Aws
     end
 
     def io_like?(value)
-      value.respond_to?(:read) && value.respond_to?(:rewind) &&
-        value.respond_to?(:size)
+      value.respond_to?(:read) && value.respond_to?(:rewind)
     end
 
     def error_messages(errors)

data/lib/aws-sdk-core/plugins/endpoint_discovery.rb

@@ -151,7 +151,7 @@ the background every 60 secs (default). Defaults to `false`.
 
       def self.resolve_endpoint_discovery(cfg)
         env = ENV['AWS_ENABLE_ENDPOINT_DISCOVERY']
-        shared_cfg = Aws.shared_config.endpoint_discovery(profile: cfg.profile)
+        shared_cfg = Aws.shared_config.endpoint_discovery_enabled(profile: cfg.profile)
         Aws::Util.str_2_bool(env) || Aws::Util.str_2_bool(shared_cfg)
       end
 

data/lib/aws-sdk-core/plugins/transfer_encoding.rb

@@ -8,12 +8,10 @@ module Aws
 
       # @api private
       class Handler < Seahorse::Client::Handler
-
         def call(context)
           if streaming?(context.operation.input)
-            begin
-              context.http_request.body.size
-            rescue
+            # If it's an IO object and not a File / String / String IO
+            unless context.http_request.body.respond_to?(:size)
               if requires_length?(context.operation.input)
                 # if size of the IO is not available but required
                 raise Aws::Errors::MissingContentLength.new

data/lib/aws-sdk-core/shared_config.rb

@@ -1,8 +1,6 @@
 module Aws
-
   # @api private
   class SharedConfig
-
     # @return [String]
     attr_reader :credentials_path
 
@@ -48,7 +46,7 @@ module Aws
       @profile_name = determine_profile(options)
       @config_enabled = options[:config_enabled]
       @credentials_path = options[:credentials_path] ||
-        determine_credentials_path
+                          determine_credentials_path
       @parsed_credentials = {}
       load_credentials_file if loadable?(@credentials_path)
       if @config_enabled
@@ -67,7 +65,7 @@ module Aws
       @config_enabled = options[:config_enabled] ? true : false
       @profile_name = determine_profile(options)
       @credentials_path = options[:credentials_path] ||
-        determine_credentials_path
+                          determine_credentials_path
       load_credentials_file if loadable?(@credentials_path)
       if @config_enabled
         @config_path = options[:config_path] || determine_config_path
@@ -123,155 +121,51 @@ module Aws
       p = profile || @profile_name
       if @config_enabled && @parsed_config
         entry = @parsed_config.fetch(p, {})
-        if entry['web_identity_token_file'] &&
-          entry['role_arn']
+        if entry['web_identity_token_file'] && entry['role_arn']
           AssumeRoleWebIdentityCredentials.new(
             role_arn: entry['role_arn'],
             web_identity_token_file: entry['web_identity_token_file'],
             role_session_name: entry['role_session_name']
           )
-        else
-          nil
-        end
-      else
-        nil
-      end
-    end
-
-    def region(opts = {})
-      p = opts[:profile] || @profile_name
-      if @config_enabled
-        if @parsed_credentials
-          region = @parsed_credentials.fetch(p, {})["region"]
-        end
-        if @parsed_config
-          region ||= @parsed_config.fetch(p, {})["region"]
-        end
-        region
-      else
-        nil
-      end
-    end
-
-    def sts_regional_endpoints(opts = {})
-      p = opts[:profile] || @profile_name
-      if @config_enabled
-        if @parsed_credentials
-          mode = @parsed_credentials.fetch(p, {})["sts_regional_endpoints"]
-        end
-        if @parsed_config
-          mode ||= @parsed_config.fetch(p, {})["sts_regional_endpoints"]
-        end
-        mode
-      else
-        nil
-      end
-    end
-
-    def s3_us_east_1_regional_endpoint(opts = {})
-      p = opts[:profile] || @profile_name
-      if @config_enabled
-        if @parsed_credentials
-          mode = @parsed_credentials.fetch(p, {})["s3_us_east_1_regional_endpoint"]
-        end
-        if @parsed_config
-          mode ||= @parsed_config.fetch(p, {})["s3_us_east_1_regional_endpoint"]
         end
-        mode
-      else
-        nil
       end
     end
 
-    def s3_use_arn_region(opts = {})
-      p = opts[:profile] || @profile_name
-      if @config_enabled
-        if @parsed_credentials
-          value = @parsed_credentials.fetch(p, {})["s3_use_arn_region"]
-        end
-        if @parsed_config
-          value ||= @parsed_config.fetch(p, {})["s3_use_arn_region"]
-        end
-        value
-      else
-        nil
+    # Add an accessor method (similar to attr_reader) to return a configuration value
+    # Uses the get_config_value below to control where
+    # values are loaded from
+    def self.config_reader(*attrs)
+      attrs.each do |attr|
+        define_method(attr) { |opts = {}| get_config_value(attr.to_s, opts) }
       end
     end
 
-    def endpoint_discovery(opts = {})
-      p = opts[:profile] || @profile_name
-      if @config_enabled && @parsed_config
-        @parsed_config.fetch(p, {})["endpoint_discovery_enabled"]
-      end
-    end
-
-    def credentials_process(profile)
-      validate_profile_exists(profile)
-      @parsed_config[profile]['credential_process']
-    end
+    config_reader(
+      :credential_process,
+      :csm_client_id,
+      :csm_enabled,
+      :csm_host,
+      :csm_port,
+      :endpoint_discovery_enabled,
+      :region,
+      :s3_use_arn_region,
+      :s3_us_east_1_regional_endpoint,
+      :sts_regional_endpoints
+    )
 
-    def csm_enabled(opts = {})
-      p = opts[:profile] || @profile_name
-      if @config_enabled
-        if @parsed_credentials
-          value = @parsed_credentials.fetch(p, {})["csm_enabled"]
-        end
-        if @parsed_config
-          value ||= @parsed_config.fetch(p, {})["csm_enabled"]
-        end
-        value
-      else
-        nil
-      end
-    end
+    private
 
-    def csm_client_id(opts = {})
+    # Get a config value from from shared credential/config files.
+    # Only loads a value when config_enabled is true
+    # Return a value from credentials preferentially over config
+    def get_config_value(key, opts)
       p = opts[:profile] || @profile_name
-      if @config_enabled
-        if @parsed_credentials
-          value = @parsed_credentials.fetch(p, {})["csm_client_id"]
-        end
-        if @parsed_config
-          value ||= @parsed_config.fetch(p, {})["csm_client_id"]
-        end
-        value
-      else
-        nil
-      end
-    end
 
-    def csm_port(opts = {})
-      p = opts[:profile] || @profile_name
-      if @config_enabled
-        if @parsed_credentials
-          value = @parsed_credentials.fetch(p, {})["csm_port"]
-        end
-        if @parsed_config
-          value ||= @parsed_config.fetch(p, {})["csm_port"]
-        end
-        value
-      else
-        nil
-      end
+      value = @parsed_credentials.fetch(p, {})[key] if @parsed_credentials
+      value ||= @parsed_config.fetch(p, {})[key] if @config_enabled && @parsed_config
+      value
     end
 
-    def csm_host(opts = {})
-      p = opts[:profile] || @profile_name
-      if @config_enabled
-        if @parsed_credentials
-          value = @parsed_credentials.fetch(p, {})["csm_host"]
-        end
-        if @parsed_config
-          value ||= @parsed_config.fetch(p, {})["csm_host"]
-        end
-        value
-      else
-        nil
-      end
-    end
-
-    private
-
     def credentials_present?
       (@parsed_credentials && !@parsed_credentials.empty?) ||
         (@parsed_config && !@parsed_config.empty?)
@@ -279,31 +173,28 @@ module Aws
 
     def assume_role_from_profile(cfg, profile, opts, chain_config)
       if cfg && prof_cfg = cfg[profile]
-        opts[:source_profile] ||= prof_cfg["source_profile"]
+        opts[:source_profile] ||= prof_cfg['source_profile']
         credential_source = opts.delete(:credential_source)
-        credential_source ||= prof_cfg["credential_source"]
+        credential_source ||= prof_cfg['credential_source']
         if opts[:source_profile] && credential_source
-          raise Errors::CredentialSourceConflictError.new(
-            "Profile #{profile} has a source_profile, and "\
-              "a credential_source. For assume role credentials, must "\
-              "provide only source_profile or credential_source, not both."
-          )
+          raise Errors::CredentialSourceConflictError,
+                "Profile #{profile} has a source_profile, and "\
+                'a credential_source. For assume role credentials, must '\
+                'provide only source_profile or credential_source, not both.'
         elsif opts[:source_profile]
           opts[:credentials] = resolve_source_profile(opts[:source_profile])
           if opts[:credentials]
-            opts[:role_session_name] ||= prof_cfg["role_session_name"]
-            opts[:role_session_name] ||= "default_session"
-            opts[:role_arn] ||= prof_cfg["role_arn"]
-            opts[:duration_seconds] ||= prof_cfg["duration_seconds"]
-            opts[:external_id] ||= prof_cfg["external_id"]
-            opts[:serial_number] ||= prof_cfg["mfa_serial"]
+            opts[:role_session_name] ||= prof_cfg['role_session_name']
+            opts[:role_session_name] ||= 'default_session'
+            opts[:role_arn] ||= prof_cfg['role_arn']
+            opts[:duration_seconds] ||= prof_cfg['duration_seconds']
+            opts[:external_id] ||= prof_cfg['external_id']
+            opts[:serial_number] ||= prof_cfg['mfa_serial']
             opts[:profile] = opts.delete(:source_profile)
             AssumeRoleCredentials.new(opts)
           else
-            raise Errors::NoSourceProfileError.new(
-              "Profile #{profile} has a role_arn, and source_profile, but the"\
-                " source_profile does not have credentials."
-            )
+            raise Errors::NoSourceProfileError, "Profile #{profile} has a role_arn, and source_profile, but the"\
+                ' source_profile does not have credentials.'
           end
         elsif credential_source
           opts[:credentials] = credentials_from_source(
@@ -311,29 +202,21 @@ module Aws
             chain_config
           )
           if opts[:credentials]
-            opts[:role_session_name] ||= prof_cfg["role_session_name"]
-            opts[:role_session_name] ||= "default_session"
-            opts[:role_arn] ||= prof_cfg["role_arn"]
-            opts[:duration_seconds] ||= prof_cfg["duration_seconds"]
-            opts[:external_id] ||= prof_cfg["external_id"]
-            opts[:serial_number] ||= prof_cfg["mfa_serial"]
+            opts[:role_session_name] ||= prof_cfg['role_session_name']
+            opts[:role_session_name] ||= 'default_session'
+            opts[:role_arn] ||= prof_cfg['role_arn']
+            opts[:duration_seconds] ||= prof_cfg['duration_seconds']
+            opts[:external_id] ||= prof_cfg['external_id']
+            opts[:serial_number] ||= prof_cfg['mfa_serial']
             opts.delete(:source_profile) # Cleanup
             AssumeRoleCredentials.new(opts)
           else
-            raise Errors::NoSourceCredentials.new(
-              "Profile #{profile} could not get source credentials from"\
+            raise Errors::NoSourceCredentials, "Profile #{profile} could not get source credentials from"\
                 " provider #{credential_source}"
-            )
           end
-        elsif prof_cfg["role_arn"]
-          raise Errors::NoSourceProfileError.new(
-            "Profile #{profile} has a role_arn, but no source_profile."
-          )
-        else
-          nil
+        elsif prof_cfg['role_arn']
+          raise Errors::NoSourceProfileError, "Profile #{profile} has a role_arn, but no source_profile."
         end
-      else
-        nil
       end
     end
 
@@ -341,51 +224,42 @@ module Aws
       if (creds = credentials(profile: profile))
         creds # static credentials
       elsif (provider = assume_role_web_identity_credentials_from_config(profile))
-        if provider.credentials.set?
-          provider.credentials
-        end
+        provider.credentials if provider.credentials.set?
       elsif (provider = assume_role_process_credentials_from_config(profile))
-        if provider.credentials.set?
-          provider.credentials
-        end
+        provider.credentials if provider.credentials.set?
       end
     end
 
     def credentials_from_source(credential_source, config)
       case credential_source
-      when "Ec2InstanceMetadata"
+      when 'Ec2InstanceMetadata'
         InstanceProfileCredentials.new(
           retries: config ? config.instance_profile_credentials_retries : 0,
           http_open_timeout: config ? config.instance_profile_credentials_timeout : 1,
           http_read_timeout: config ? config.instance_profile_credentials_timeout : 1
         )
-      when "EcsContainer"
+      when 'EcsContainer'
         ECSCredentials.new
       else
-        raise Errors::InvalidCredentialSourceError.new(
-          "Unsupported credential_source: #{credential_source}"
-        )
+        raise Errors::InvalidCredentialSourceError, "Unsupported credential_source: #{credential_source}"
       end
     end
 
     def assume_role_process_credentials_from_config(profile)
-      credential_process = credentials_process(profile)
+      validate_profile_exists(profile)
+      credential_process = @parsed_config[profile]['credential_process']
       ProcessCredentials.new(credential_process) if credential_process
     end
 
-    def credentials_from_shared(profile, opts)
+    def credentials_from_shared(profile, _opts)
       if @parsed_credentials && prof_config = @parsed_credentials[profile]
         credentials_from_profile(prof_config)
-      else
-        nil
       end
     end
 
-    def credentials_from_config(profile, opts)
+    def credentials_from_config(profile, _opts)
       if @parsed_config && prof_config = @parsed_config[profile]
         credentials_from_profile(prof_config)
-      else
-        nil
       end
     end
 
@@ -395,15 +269,7 @@ module Aws
         prof_config['aws_secret_access_key'],
         prof_config['aws_session_token']
       )
-      if credentials_complete(creds)
-        creds
-      else
-        nil
-      end
-    end
-
-    def credentials_complete(creds)
-      creds.set?
+      creds if creds.set?
     end
 
     def load_credentials_file
@@ -433,19 +299,18 @@ module Aws
 
     def validate_profile_exists(profile)
       unless (@parsed_credentials && @parsed_credentials[profile]) ||
-          (@parsed_config && @parsed_config[profile])
+             (@parsed_config && @parsed_config[profile])
         msg = "Profile `#{profile}' not found in #{@credentials_path}"
         msg << " or #{@config_path}" if @config_path
-        raise Errors::NoSuchProfileError.new(msg)
+        raise Errors::NoSuchProfileError, msg
       end
     end
 
     def determine_profile(options)
       ret = options[:profile_name]
-      ret ||= ENV["AWS_PROFILE"]
-      ret ||= "default"
+      ret ||= ENV['AWS_PROFILE']
+      ret ||= 'default'
       ret
     end
-
   end
 end

data/lib/aws-sdk-sts.rb

@@ -40,6 +40,6 @@ require_relative 'aws-sdk-sts/customizations'
 # @service
 module Aws::STS
 
-  GEM_VERSION = '3.89.1'
+  GEM_VERSION = '3.90.0'
 
 end

data/lib/aws-sdk-sts/client.rb

@@ -2131,7 +2131,7 @@ module Aws::STS
         params: params,
         config: config)
       context[:gem_name] = 'aws-sdk-core'
-      context[:gem_version] = '3.89.1'
+      context[:gem_version] = '3.90.0'
       Seahorse::Client::Request.new(handlers, context)
     end
 

data/lib/seahorse/client/net_http/connection_pool.rb

@@ -306,10 +306,7 @@ module Seahorse
           now = Aws::Util.monotonic_milliseconds
           @pool.each_pair do |endpoint,sessions|
             sessions.delete_if do |session|
-              if
-                session.last_used.nil? or
-                now - session.last_used > http_idle_timeout * 1000
-              then
+              if session.last_used.nil? or now - session.last_used > http_idle_timeout * 1000
                 session.finish
                 true
               end

data/lib/seahorse/client/plugins/content_length.rb

@@ -7,12 +7,10 @@ module Seahorse
         class Handler < Client::Handler
 
           def call(context)
-            begin
+            # If it's an IO object and not a File / String / String IO
+            if context.http_request.body.respond_to?(:size)
               length = context.http_request.body.size
               context.http_request.headers['Content-Length'] = length
-            rescue
-              # allowing `Content-Length` failed to be set
-              # see Aws::Plugins::TransferEncoding
             end
             @handler.call(context)
           end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: aws-sdk-core
 version: !ruby/object:Gem::Version
-  version: 3.89.1
+  version: 3.90.0
 platform: ruby
 authors:
 - Amazon Web Services
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2020-01-14 00:00:00.000000000 Z
+date: 2020-02-12 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: jmespath