aws-sdk-core 3.90.0 → 3.90.1
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/VERSION +1 -1
- data/lib/aws-sdk-core/credential_provider_chain.rb +13 -4
- data/lib/aws-sdk-core/log/param_filter.rb +2 -2
- data/lib/aws-sdk-core/shared_config.rb +9 -7
- data/lib/aws-sdk-sts.rb +1 -1
- data/lib/aws-sdk-sts/client.rb +1 -1
- metadata +2 -2
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: b55b3e3cd1c9ec04bc1d375d08ca93de5a8c0212
|
4
|
+
data.tar.gz: 7e9f75a40eb67070b4fa0d5696193fb011196211
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: c3dde38d099f43ae112d5b7887c38bca099897df24295c871581a9d888f7f9d95adf908caf9976cba6b195211b7d1ee9e1d7defd1b908c9bcc2cec4e6b2a8a11
|
7
|
+
data.tar.gz: 1c7d52fbbb564fd92a209d37c25e7f37a27206ec1461953b1f9aa0dee251379195af93494a9fb0a2d7e4d142ba4567fe69e334096b970fbacd9e36b2ca95e31d
|
data/VERSION
CHANGED
@@ -1 +1 @@
|
|
1
|
-
3.90.
|
1
|
+
3.90.1
|
@@ -44,7 +44,10 @@ module Aws
|
|
44
44
|
|
45
45
|
def static_profile_assume_role_web_identity_credentials(options)
|
46
46
|
if Aws.shared_config.config_enabled? && options[:config] && options[:config].profile
|
47
|
-
Aws.shared_config.assume_role_web_identity_credentials_from_config(
|
47
|
+
Aws.shared_config.assume_role_web_identity_credentials_from_config(
|
48
|
+
profile: options[:config].profile,
|
49
|
+
region: options[:config].region
|
50
|
+
)
|
48
51
|
end
|
49
52
|
end
|
50
53
|
|
@@ -113,15 +116,21 @@ module Aws
|
|
113
116
|
end
|
114
117
|
|
115
118
|
def assume_role_web_identity_credentials(options)
|
119
|
+
region = options[:config].region if options[:config]
|
116
120
|
if (role_arn = ENV['AWS_ROLE_ARN']) && (token_file = ENV['AWS_WEB_IDENTITY_TOKEN_FILE'])
|
117
|
-
|
121
|
+
cfg = {
|
118
122
|
role_arn: role_arn,
|
119
123
|
web_identity_token_file: token_file,
|
120
124
|
role_session_name: ENV['AWS_ROLE_SESSION_NAME']
|
121
|
-
|
125
|
+
}
|
126
|
+
cfg[:region] = region if region
|
127
|
+
AssumeRoleWebIdentityCredentials.new(cfg)
|
122
128
|
elsif Aws.shared_config.config_enabled?
|
123
129
|
profile = options[:config].profile if options[:config]
|
124
|
-
Aws.shared_config.assume_role_web_identity_credentials_from_config(
|
130
|
+
Aws.shared_config.assume_role_web_identity_credentials_from_config(
|
131
|
+
profile: profile,
|
132
|
+
region: region
|
133
|
+
)
|
125
134
|
end
|
126
135
|
end
|
127
136
|
|
@@ -7,7 +7,7 @@ module Aws
|
|
7
7
|
|
8
8
|
# A managed list of sensitive parameters that should be filtered from
|
9
9
|
# logs. This is updated automatically as part of each release. See the
|
10
|
-
# `tasks/sensitive.rake` for more information.
|
10
|
+
# `tasks/update-sensitive-params.rake` for more information.
|
11
11
|
#
|
12
12
|
# @api private
|
13
13
|
# begin
|
@@ -31,7 +31,7 @@ module Aws
|
|
31
31
|
def filter_hash(values)
|
32
32
|
filtered = {}
|
33
33
|
values.each_pair do |key, value|
|
34
|
-
filtered[key] = @filters.
|
34
|
+
filtered[key] = @filters.any? { |f| f.to_s.casecmp(key.to_s).zero? } ? '[FILTERED]' : filter(value)
|
35
35
|
end
|
36
36
|
filtered
|
37
37
|
end
|
@@ -117,16 +117,18 @@ module Aws
|
|
117
117
|
credentials
|
118
118
|
end
|
119
119
|
|
120
|
-
def assume_role_web_identity_credentials_from_config(
|
121
|
-
p = profile || @profile_name
|
120
|
+
def assume_role_web_identity_credentials_from_config(opts = {})
|
121
|
+
p = opts[:profile] || @profile_name
|
122
122
|
if @config_enabled && @parsed_config
|
123
123
|
entry = @parsed_config.fetch(p, {})
|
124
124
|
if entry['web_identity_token_file'] && entry['role_arn']
|
125
|
-
|
125
|
+
cfg = {
|
126
126
|
role_arn: entry['role_arn'],
|
127
127
|
web_identity_token_file: entry['web_identity_token_file'],
|
128
128
|
role_session_name: entry['role_session_name']
|
129
|
-
|
129
|
+
}
|
130
|
+
cfg[:region] = opts[:region] if opts[:region]
|
131
|
+
AssumeRoleWebIdentityCredentials.new(cfg)
|
130
132
|
end
|
131
133
|
end
|
132
134
|
end
|
@@ -182,7 +184,7 @@ module Aws
|
|
182
184
|
'a credential_source. For assume role credentials, must '\
|
183
185
|
'provide only source_profile or credential_source, not both.'
|
184
186
|
elsif opts[:source_profile]
|
185
|
-
opts[:credentials] = resolve_source_profile(opts[:source_profile])
|
187
|
+
opts[:credentials] = resolve_source_profile(opts[:source_profile], opts)
|
186
188
|
if opts[:credentials]
|
187
189
|
opts[:role_session_name] ||= prof_cfg['role_session_name']
|
188
190
|
opts[:role_session_name] ||= 'default_session'
|
@@ -220,10 +222,10 @@ module Aws
|
|
220
222
|
end
|
221
223
|
end
|
222
224
|
|
223
|
-
def resolve_source_profile(profile)
|
225
|
+
def resolve_source_profile(profile, opts = {})
|
224
226
|
if (creds = credentials(profile: profile))
|
225
227
|
creds # static credentials
|
226
|
-
elsif (provider = assume_role_web_identity_credentials_from_config(profile))
|
228
|
+
elsif (provider = assume_role_web_identity_credentials_from_config(opts.merge(profile: profile)))
|
227
229
|
provider.credentials if provider.credentials.set?
|
228
230
|
elsif (provider = assume_role_process_credentials_from_config(profile))
|
229
231
|
provider.credentials if provider.credentials.set?
|
data/lib/aws-sdk-sts.rb
CHANGED
data/lib/aws-sdk-sts/client.rb
CHANGED
metadata
CHANGED
@@ -1,14 +1,14 @@
|
|
1
1
|
--- !ruby/object:Gem::Specification
|
2
2
|
name: aws-sdk-core
|
3
3
|
version: !ruby/object:Gem::Version
|
4
|
-
version: 3.90.
|
4
|
+
version: 3.90.1
|
5
5
|
platform: ruby
|
6
6
|
authors:
|
7
7
|
- Amazon Web Services
|
8
8
|
autorequire:
|
9
9
|
bindir: bin
|
10
10
|
cert_chain: []
|
11
|
-
date: 2020-02-
|
11
|
+
date: 2020-02-14 00:00:00.000000000 Z
|
12
12
|
dependencies:
|
13
13
|
- !ruby/object:Gem::Dependency
|
14
14
|
name: jmespath
|