@aws-cdk/toolkit-lib 0.3.1 → 0.3.3

package/lib/api/aws-auth/tracing.js

@@ -0,0 +1,60 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.setSdkTracing = setSdkTracing;
+exports.callTrace = callTrace;
+exports.traceMemberMethods = traceMemberMethods;
+let ENABLED = false;
+let INDENT = 0;
+function setSdkTracing(enabled) {
+    ENABLED = enabled;
+}
+/**
+ * Method decorator to trace a single static or member method, any time it's called
+ */
+function callTrace(fn, className, logger) {
+    if (!ENABLED || !logger) {
+        return;
+    }
+    logger.info(`[trace] ${' '.repeat(INDENT)}${className || '(anonymous)'}#${fn}()`);
+}
+/**
+ * Method decorator to trace a single member method any time it's called
+ */
+function traceCall(receiver, _propertyKey, descriptor, parentClassName) {
+    const fn = descriptor.value;
+    const className = typeof receiver === 'function' ? receiver.name : parentClassName;
+    descriptor.value = function (...args) {
+        const logger = this.logger;
+        if (!ENABLED || typeof logger?.info !== 'function') {
+            return fn.apply(this, args);
+        }
+        logger.info.apply(logger, [`[trace] ${' '.repeat(INDENT)}${className || this.constructor.name || '(anonymous)'}#${fn.name}()`]);
+        INDENT += 2;
+        const ret = fn.apply(this, args);
+        if (ret instanceof Promise) {
+            return ret.finally(() => {
+                INDENT -= 2;
+            });
+        }
+        else {
+            INDENT -= 2;
+            return ret;
+        }
+    };
+    return descriptor;
+}
+/**
+ * Class decorator, enable tracing for all member methods on this class
+ * @deprecated this doesn't work well with localized logging instances, don't use
+ */
+function traceMemberMethods(constructor) {
+    // Instance members
+    for (const [name, descriptor] of Object.entries(Object.getOwnPropertyDescriptors(constructor.prototype))) {
+        if (typeof descriptor.value !== 'function') {
+            continue;
+        }
+        const newDescriptor = traceCall(constructor.prototype, name, descriptor, constructor.name) ?? descriptor;
+        Object.defineProperty(constructor.prototype, name, newDescriptor);
+    }
+}
+//# sourceMappingURL=data:application/json;base64,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

package/lib/api/aws-auth/types.d.ts

@@ -1,11 +1,20 @@
+import type { AwsCredentialIdentityProvider } from '@smithy/types';
+import type { SdkProviderServices } from '../shared-private';
 /**
  * Options for the default SDK provider
  */
 export interface SdkConfig {
     /**
-     * Profile to read from ~/.aws
+     * The base credentials and region used to seed the Toolkit with
+     *
+     * @default BaseCredentials.awsCliCompatible()
+     */
+    readonly baseCredentials?: BaseCredentials;
+    /**
+     * Profile to read from ~/.aws for base credentials
      *
      * @default - No profile
+     * @deprecated Use `baseCredentials` instead
      */
     readonly profile?: string;
     /**
@@ -30,3 +39,72 @@ export interface SdkHttpOptions {
      */
     readonly caBundlePath?: string;
 }
+export declare abstract class BaseCredentials {
+    /**
+     * Use no base credentials
+     *
+     * There will be no current account and no current region during synthesis. To
+     * successfully deploy with this set of base credentials:
+     *
+     * - The CDK app must provide concrete accounts and regions during synthesis
+     * - Credential plugins must be installed to provide credentials for those
+     *   accounts.
+     */
+    static none(): BaseCredentials;
+    /**
+     * Obtain base credentials and base region the same way the AWS CLI would
+     *
+     * Credentials and region will be read from the environment first, falling back
+     * to INI files or other sources if available.
+     *
+     * The profile name is configurable.
+     */
+    static awsCliCompatible(options?: AwsCliCompatibleOptions): BaseCredentials;
+    /**
+     * Use a custom SDK identity provider for the base credentials
+     *
+     * If your provider uses STS calls to obtain base credentials, you must make
+     * sure to also configure the necessary HTTP options (like proxy and user
+     * agent) and the region on the STS client directly; the toolkit code cannot
+     * do this for you.
+     */
+    static custom(options: CustomBaseCredentialsOption): BaseCredentials;
+    /**
+     * Make SDK config from the BaseCredentials settings
+     */
+    abstract makeSdkConfig(services: SdkProviderServices): Promise<SdkBaseConfig>;
+}
+export interface AwsCliCompatibleOptions {
+    /**
+     * The profile to read from `~/.aws/credentials`.
+     *
+     * If not supplied the environment variable AWS_PROFILE will be used.
+     *
+     * @default - Use environment variable if set.
+     */
+    readonly profile?: string;
+}
+export interface CustomBaseCredentialsOption {
+    /**
+     * The credentials provider to use to obtain base credentials
+     *
+     * If your provider uses STS calls to obtain base credentials, you must make
+     * sure to also configure the necessary HTTP options (like proxy and user
+     * agent) on the STS client directly; the toolkit code cannot do this for you.
+     */
+    readonly provider: AwsCredentialIdentityProvider;
+    /**
+     * The default region to synthesize for
+     *
+     * CDK applications can override this region. NOTE: this region will *not*
+     * affect any STS calls made by the given provider, if any. You need to configure
+     * your credential provider separately.
+     *
+     * @default 'us-east-1'
+     */
+    readonly region?: string;
+}
+export interface SdkBaseConfig {
+    readonly credentialProvider: AwsCredentialIdentityProvider;
+    readonly defaultRegion?: string;
+}

package/lib/api/aws-auth/types.js

@@ -1,3 +1,76 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
-//# sourceMappingURL=data:application/json;base64,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
+exports.BaseCredentials = void 0;
+const shared_private_1 = require("../shared-private");
+class BaseCredentials {
+    /**
+     * Use no base credentials
+     *
+     * There will be no current account and no current region during synthesis. To
+     * successfully deploy with this set of base credentials:
+     *
+     * - The CDK app must provide concrete accounts and regions during synthesis
+     * - Credential plugins must be installed to provide credentials for those
+     *   accounts.
+     */
+    static none() {
+        return new class extends BaseCredentials {
+            async makeSdkConfig() {
+                return {
+                    credentialProvider: () => {
+                        // eslint-disable-next-line @cdklabs/no-throw-default-error
+                        throw new Error('No credentials available due to BaseCredentials.none()');
+                    },
+                };
+            }
+            toString() {
+                return 'BaseCredentials.none()';
+            }
+        };
+    }
+    /**
+     * Obtain base credentials and base region the same way the AWS CLI would
+     *
+     * Credentials and region will be read from the environment first, falling back
+     * to INI files or other sources if available.
+     *
+     * The profile name is configurable.
+     */
+    static awsCliCompatible(options = {}) {
+        return new class extends BaseCredentials {
+            makeSdkConfig(services) {
+                const awsCli = new shared_private_1.AwsCliCompatible(services.ioHelper, services.requestHandler ?? {}, services.logger);
+                return awsCli.baseConfig(options.profile);
+            }
+            toString() {
+                return `BaseCredentials.awsCliCompatible(${JSON.stringify(options)})`;
+            }
+        };
+    }
+    /**
+     * Use a custom SDK identity provider for the base credentials
+     *
+     * If your provider uses STS calls to obtain base credentials, you must make
+     * sure to also configure the necessary HTTP options (like proxy and user
+     * agent) and the region on the STS client directly; the toolkit code cannot
+     * do this for you.
+     */
+    static custom(options) {
+        return new class extends BaseCredentials {
+            makeSdkConfig() {
+                return Promise.resolve({
+                    credentialProvider: options.provider,
+                    defaultRegion: options.region,
+                });
+            }
+            toString() {
+                return `BaseCredentials.custom(${JSON.stringify({
+                    ...options,
+                    provider: '...',
+                })})`;
+            }
+        };
+    }
+}
+exports.BaseCredentials = BaseCredentials;
+//# sourceMappingURL=data:application/json;base64,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

package/lib/api/aws-auth/user-agent.d.ts

@@ -0,0 +1,7 @@
+/**
+ * Find the package.json from the main toolkit.
+ *
+ * If we can't read it for some reason, try to do something reasonable anyway.
+ * Fall back to argv[1], or a standard string if that is undefined for some reason.
+ */
+export declare function defaultCliUserAgent(): string;

package/lib/api/aws-auth/user-agent.js

@@ -0,0 +1,20 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.defaultCliUserAgent = defaultCliUserAgent;
+const path = require("path");
+const util_1 = require("./util");
+const util_2 = require("../../util");
+/**
+ * Find the package.json from the main toolkit.
+ *
+ * If we can't read it for some reason, try to do something reasonable anyway.
+ * Fall back to argv[1], or a standard string if that is undefined for some reason.
+ */
+function defaultCliUserAgent() {
+    const root = (0, util_2.bundledPackageRootDir)(__dirname, false);
+    const pkg = JSON.parse((root ? (0, util_1.readIfPossible)(path.join(root, 'package.json')) : undefined) ?? '{}');
+    const name = pkg.name ?? path.basename(process.argv[1] ?? 'cdk-cli');
+    const version = pkg.version ?? '<unknown>';
+    return `${name}/${version}`;
+}
+//# sourceMappingURL=data:application/json;base64,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

package/lib/api/aws-auth/util.d.ts

@@ -0,0 +1,6 @@
+/**
+ * Read a file if it exists, or return undefined
+ *
+ * Not async because it is used in the constructor
+ */
+export declare function readIfPossible(filename: string): string | undefined;

package/lib/api/aws-auth/util.js

@@ -0,0 +1,21 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.readIfPossible = readIfPossible;
+const fs = require("fs-extra");
+/**
+ * Read a file if it exists, or return undefined
+ *
+ * Not async because it is used in the constructor
+ */
+function readIfPossible(filename) {
+    try {
+        if (!fs.pathExistsSync(filename)) {
+            return undefined;
+        }
+        return fs.readFileSync(filename, { encoding: 'utf-8' });
+    }
+    catch (e) {
+        return undefined;
+    }
+}
+//# sourceMappingURL=data:application/json;base64,eyJ2ZXJzaW9uIjozLCJmaWxlIjoidXRpbC5qcyIsInNvdXJjZVJvb3QiOiIiLCJzb3VyY2VzIjpbInV0aWwudHMiXSwibmFtZXMiOltdLCJtYXBwaW5ncyI6Ijs7QUFPQSx3Q0FTQztBQWhCRCwrQkFBK0I7QUFFL0I7Ozs7R0FJRztBQUNILFNBQWdCLGNBQWMsQ0FBQyxRQUFnQjtJQUM3QyxJQUFJLENBQUM7UUFDSCxJQUFJLENBQUMsRUFBRSxDQUFDLGNBQWMsQ0FBQyxRQUFRLENBQUMsRUFBRSxDQUFDO1lBQ2pDLE9BQU8sU0FBUyxDQUFDO1FBQ25CLENBQUM7UUFDRCxPQUFPLEVBQUUsQ0FBQyxZQUFZLENBQUMsUUFBUSxFQUFFLEVBQUUsUUFBUSxFQUFFLE9BQU8sRUFBRSxDQUFDLENBQUM7SUFDMUQsQ0FBQztJQUFDLE9BQU8sQ0FBTSxFQUFFLENBQUM7UUFDaEIsT0FBTyxTQUFTLENBQUM7SUFDbkIsQ0FBQztBQUNILENBQUMiLCJzb3VyY2VzQ29udGVudCI6WyJpbXBvcnQgKiBhcyBmcyBmcm9tICdmcy1leHRyYSc7XG5cbi8qKlxuICogUmVhZCBhIGZpbGUgaWYgaXQgZXhpc3RzLCBvciByZXR1cm4gdW5kZWZpbmVkXG4gKlxuICogTm90IGFzeW5jIGJlY2F1c2UgaXQgaXMgdXNlZCBpbiB0aGUgY29uc3RydWN0b3JcbiAqL1xuZXhwb3J0IGZ1bmN0aW9uIHJlYWRJZlBvc3NpYmxlKGZpbGVuYW1lOiBzdHJpbmcpOiBzdHJpbmcgfCB1bmRlZmluZWQge1xuICB0cnkge1xuICAgIGlmICghZnMucGF0aEV4aXN0c1N5bmMoZmlsZW5hbWUpKSB7XG4gICAgICByZXR1cm4gdW5kZWZpbmVkO1xuICAgIH1cbiAgICByZXR1cm4gZnMucmVhZEZpbGVTeW5jKGZpbGVuYW1lLCB7IGVuY29kaW5nOiAndXRmLTgnIH0pO1xuICB9IGNhdGNoIChlOiBhbnkpIHtcbiAgICByZXR1cm4gdW5kZWZpbmVkO1xuICB9XG59XG4iXX0=

package/lib/api/bootstrap/bootstrap-environment.d.ts

@@ -0,0 +1,35 @@
+import type * as cxapi from '@aws-cdk/cx-api';
+import type { BootstrapEnvironmentOptions } from './bootstrap-props';
+import type { SdkProvider } from '../aws-auth/private';
+import type { SuccessfulDeployStackResult } from '../deployments';
+import { type IoHelper } from '../io/private';
+export type BootstrapSource = {
+    source: 'legacy';
+} | {
+    source: 'default';
+} | {
+    source: 'custom';
+    templateFile: string;
+};
+export declare class Bootstrapper {
+    private readonly source;
+    private readonly ioHelper;
+    constructor(source: BootstrapSource | undefined, ioHelper: IoHelper);
+    bootstrapEnvironment(environment: cxapi.Environment, sdkProvider: SdkProvider, options?: BootstrapEnvironmentOptions): Promise<SuccessfulDeployStackResult>;
+    showTemplate(json: boolean): Promise<void>;
+    /**
+     * Deploy legacy bootstrap stack
+     *
+     */
+    private legacyBootstrap;
+    /**
+     * Deploy CI/CD-ready bootstrap stack from template
+     *
+     */
+    private modernBootstrap;
+    private getPolicyName;
+    private getExamplePermissionsBoundary;
+    private validatePolicyName;
+    private customBootstrap;
+    private loadTemplate;
+}