@aws-sdk/client-sts 3.1030.0 → 3.1032.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (19) hide show
  1. package/dist-cjs/STSClient.js +1 -0
  2. package/dist-cjs/auth/httpAuthSchemeProvider.js +96 -17
  3. package/dist-cjs/runtimeConfig.js +6 -0
  4. package/dist-cjs/runtimeConfig.shared.js +7 -0
  5. package/dist-es/STSClient.js +1 -0
  6. package/dist-es/auth/httpAuthSchemeProvider.js +97 -16
  7. package/dist-es/runtimeConfig.js +7 -1
  8. package/dist-es/runtimeConfig.shared.js +8 -1
  9. package/dist-types/auth/httpAuthSchemeProvider.d.ts +15 -7
  10. package/dist-types/runtimeConfig.browser.d.ts +3 -2
  11. package/dist-types/runtimeConfig.d.ts +10 -4
  12. package/dist-types/runtimeConfig.native.d.ts +3 -2
  13. package/dist-types/runtimeConfig.shared.d.ts +3 -1
  14. package/dist-types/ts3.4/auth/httpAuthSchemeProvider.d.ts +20 -9
  15. package/dist-types/ts3.4/runtimeConfig.browser.d.ts +11 -5
  16. package/dist-types/ts3.4/runtimeConfig.d.ts +35 -16
  17. package/dist-types/ts3.4/runtimeConfig.native.d.ts +11 -5
  18. package/dist-types/ts3.4/runtimeConfig.shared.d.ts +8 -1
  19. package/package.json +35 -34
package/dist-cjs/STSClient.js CHANGED
@@ -43,6 +43,7 @@ class STSClient extends smithy_client_1.Client {
43
43
  httpAuthSchemeParametersProvider: httpAuthSchemeProvider_1.defaultSTSHttpAuthSchemeParametersProvider,
44
44
  identityProviderConfigProvider: async (config) => new core_1.DefaultIdentityProviderConfig({
45
45
  "aws.auth#sigv4": config.credentials,
46
+ "aws.auth#sigv4a": config.credentials,
46
47
  }),
47
48
  }));
48
49
  this.middlewareStack.use((0, core_1.getHttpSigningPlugin)(this.config));
package/dist-cjs/auth/httpAuthSchemeProvider.js CHANGED
@@ -2,9 +2,25 @@
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
3
  exports.resolveHttpAuthSchemeConfig = exports.resolveStsAuthConfig = exports.defaultSTSHttpAuthSchemeProvider = exports.defaultSTSHttpAuthSchemeParametersProvider = void 0;
4
4
  const httpAuthSchemes_1 = require("@aws-sdk/core/httpAuthSchemes");
5
+ const signature_v4_multi_region_1 = require("@aws-sdk/signature-v4-multi-region");
6
+ const middleware_endpoint_1 = require("@smithy/middleware-endpoint");
5
7
  const util_middleware_1 = require("@smithy/util-middleware");
8
+ const endpointResolver_1 = require("../endpoint/endpointResolver");
6
9
  const STSClient_1 = require("../STSClient");
7
- const defaultSTSHttpAuthSchemeParametersProvider = async (config, context, input) => {
10
+ const createEndpointRuleSetHttpAuthSchemeParametersProvider = (defaultHttpAuthSchemeParametersProvider) => async (config, context, input) => {
11
+ if (!input) {
12
+ throw new Error("Could not find `input` for `defaultEndpointRuleSetHttpAuthSchemeParametersProvider`");
13
+ }
14
+ const defaultParameters = await defaultHttpAuthSchemeParametersProvider(config, context, input);
15
+ const instructionsFn = (0, util_middleware_1.getSmithyContext)(context)?.commandInstance?.constructor
16
+ ?.getEndpointParameterInstructions;
17
+ if (!instructionsFn) {
18
+ throw new Error(`getEndpointParameterInstructions() is not defined on '${context.commandName}'`);
19
+ }
20
+ const endpointParameters = await (0, middleware_endpoint_1.resolveParams)(input, { getEndpointParameterInstructions: instructionsFn }, config);
21
+ return Object.assign(defaultParameters, endpointParameters);
22
+ };
23
+ const _defaultSTSHttpAuthSchemeParametersProvider = async (config, context, input) => {
8
24
  return {
9
25
  operation: (0, util_middleware_1.getSmithyContext)(context).operation,
10
26
  region: await (0, util_middleware_1.normalizeProvider)(config.region)() || (() => {
@@ -12,7 +28,7 @@ const defaultSTSHttpAuthSchemeParametersProvider = async (config, context, input
12
28
  })(),
13
29
  };
14
30
  };
15
- exports.defaultSTSHttpAuthSchemeParametersProvider = defaultSTSHttpAuthSchemeParametersProvider;
31
+ exports.defaultSTSHttpAuthSchemeParametersProvider = createEndpointRuleSetHttpAuthSchemeParametersProvider(_defaultSTSHttpAuthSchemeParametersProvider);
16
32
  function createAwsAuthSigv4HttpAuthOption(authParameters) {
17
33
  return {
18
34
  schemeId: "aws.auth#sigv4",
@@ -28,33 +44,95 @@ function createAwsAuthSigv4HttpAuthOption(authParameters) {
28
44
  }),
29
45
  };
30
46
  }
47
+ function createAwsAuthSigv4aHttpAuthOption(authParameters) {
48
+ return {
49
+ schemeId: "aws.auth#sigv4a",
50
+ signingProperties: {
51
+ name: "sts",
52
+ region: authParameters.region,
53
+ },
54
+ propertiesExtractor: (config, context) => ({
55
+ signingProperties: {
56
+ config,
57
+ context,
58
+ },
59
+ }),
60
+ };
61
+ }
31
62
  function createSmithyApiNoAuthHttpAuthOption(authParameters) {
32
63
  return {
33
64
  schemeId: "smithy.api#noAuth",
34
65
  };
35
66
  }
36
- const defaultSTSHttpAuthSchemeProvider = (authParameters) => {
37
- const options = [];
38
- switch (authParameters.operation) {
39
- case "AssumeRoleWithSAML":
40
- {
41
- options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
42
- break;
67
+ const createEndpointRuleSetHttpAuthSchemeProvider = (defaultEndpointResolver, defaultHttpAuthSchemeResolver, createHttpAuthOptionFunctions) => {
68
+ const endpointRuleSetHttpAuthSchemeProvider = (authParameters) => {
69
+ const endpoint = defaultEndpointResolver(authParameters);
70
+ const authSchemes = endpoint.properties?.authSchemes;
71
+ if (!authSchemes) {
72
+ return defaultHttpAuthSchemeResolver(authParameters);
73
+ }
74
+ const options = [];
75
+ for (const scheme of authSchemes) {
76
+ const { name: resolvedName, properties = {}, ...rest } = scheme;
77
+ const name = resolvedName.toLowerCase();
78
+ if (resolvedName !== name) {
79
+ console.warn(`HttpAuthScheme has been normalized with lowercasing: '${resolvedName}' to '${name}'`);
43
80
  }
44
- ;
45
- case "AssumeRoleWithWebIdentity":
46
- {
47
- options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
48
- break;
81
+ let schemeId;
82
+ if (name === "sigv4a") {
83
+ schemeId = "aws.auth#sigv4a";
84
+ const sigv4Present = authSchemes.find((s) => {
85
+ const name = s.name.toLowerCase();
86
+ return name !== "sigv4a" && name.startsWith("sigv4");
87
+ });
88
+ if (signature_v4_multi_region_1.SignatureV4MultiRegion.sigv4aDependency() === "none" && sigv4Present) {
89
+ continue;
90
+ }
49
91
  }
50
- ;
92
+ else if (name.startsWith("sigv4")) {
93
+ schemeId = "aws.auth#sigv4";
94
+ }
95
+ else {
96
+ throw new Error(`Unknown HttpAuthScheme found in '@smithy.rules#endpointRuleSet': '${name}'`);
97
+ }
98
+ const createOption = createHttpAuthOptionFunctions[schemeId];
99
+ if (!createOption) {
100
+ throw new Error(`Could not find HttpAuthOption create function for '${schemeId}'`);
101
+ }
102
+ const option = createOption(authParameters);
103
+ option.schemeId = schemeId;
104
+ option.signingProperties = { ...(option.signingProperties || {}), ...rest, ...properties };
105
+ options.push(option);
106
+ }
107
+ return options;
108
+ };
109
+ return endpointRuleSetHttpAuthSchemeProvider;
110
+ };
111
+ const _defaultSTSHttpAuthSchemeProvider = (authParameters) => {
112
+ const options = [];
113
+ switch (authParameters.operation) {
114
+ case "AssumeRoleWithSAML": {
115
+ options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
116
+ options.push(createAwsAuthSigv4aHttpAuthOption(authParameters));
117
+ break;
118
+ }
119
+ case "AssumeRoleWithWebIdentity": {
120
+ options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
121
+ options.push(createAwsAuthSigv4aHttpAuthOption(authParameters));
122
+ break;
123
+ }
51
124
  default: {
52
125
  options.push(createAwsAuthSigv4HttpAuthOption(authParameters));
126
+ options.push(createAwsAuthSigv4aHttpAuthOption(authParameters));
53
127
  }
54
128
  }
55
129
  return options;
56
130
  };
57
- exports.defaultSTSHttpAuthSchemeProvider = defaultSTSHttpAuthSchemeProvider;
131
+ exports.defaultSTSHttpAuthSchemeProvider = createEndpointRuleSetHttpAuthSchemeProvider(endpointResolver_1.defaultEndpointResolver, _defaultSTSHttpAuthSchemeProvider, {
132
+ "aws.auth#sigv4": createAwsAuthSigv4HttpAuthOption,
133
+ "aws.auth#sigv4a": createAwsAuthSigv4aHttpAuthOption,
134
+ "smithy.api#noAuth": createSmithyApiNoAuthHttpAuthOption,
135
+ });
58
136
  const resolveStsAuthConfig = (input) => Object.assign(input, {
59
137
  stsClientCtor: STSClient_1.STSClient,
60
138
  });
@@ -62,7 +140,8 @@ exports.resolveStsAuthConfig = resolveStsAuthConfig;
62
140
  const resolveHttpAuthSchemeConfig = (config) => {
63
141
  const config_0 = (0, exports.resolveStsAuthConfig)(config);
64
142
  const config_1 = (0, httpAuthSchemes_1.resolveAwsSdkSigV4Config)(config_0);
65
- return Object.assign(config_1, {
143
+ const config_2 = (0, httpAuthSchemes_1.resolveAwsSdkSigV4AConfig)(config_1);
144
+ return Object.assign(config_2, {
66
145
  authSchemePreference: (0, util_middleware_1.normalizeProvider)(config.authSchemePreference ?? []),
67
146
  });
68
147
  };
package/dist-cjs/runtimeConfig.js CHANGED
@@ -43,6 +43,11 @@ const getRuntimeConfig = (config) => {
43
43
  identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4") || (async (idProps) => await (0, credential_provider_node_1.defaultProvider)(idProps?.__config || {})()),
44
44
  signer: new httpAuthSchemes_1.AwsSdkSigV4Signer(),
45
45
  },
46
+ {
47
+ schemeId: "aws.auth#sigv4a",
48
+ identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4a"),
49
+ signer: new httpAuthSchemes_1.AwsSdkSigV4ASigner(),
50
+ },
46
51
  {
47
52
  schemeId: "smithy.api#noAuth",
48
53
  identityProvider: (ipc) => ipc.getIdentityProvider("smithy.api#noAuth") || (async () => ({})),
@@ -58,6 +63,7 @@ const getRuntimeConfig = (config) => {
58
63
  default: async () => (await defaultConfigProvider()).retryMode || util_retry_1.DEFAULT_RETRY_MODE,
59
64
  }, config),
60
65
  sha256: config?.sha256 ?? hash_node_1.Hash.bind(null, "sha256"),
66
+ sigv4aSigningRegionSet: config?.sigv4aSigningRegionSet ?? (0, node_config_provider_1.loadConfig)(httpAuthSchemes_1.NODE_SIGV4A_CONFIG_OPTIONS, loaderConfig),
61
67
  streamCollector: config?.streamCollector ?? node_http_handler_1.streamCollector,
62
68
  useDualstackEndpoint: config?.useDualstackEndpoint ?? (0, node_config_provider_1.loadConfig)(config_resolver_1.NODE_USE_DUALSTACK_ENDPOINT_CONFIG_OPTIONS, loaderConfig),
63
69
  useFipsEndpoint: config?.useFipsEndpoint ?? (0, node_config_provider_1.loadConfig)(config_resolver_1.NODE_USE_FIPS_ENDPOINT_CONFIG_OPTIONS, loaderConfig),
package/dist-cjs/runtimeConfig.shared.js CHANGED
@@ -3,6 +3,7 @@ Object.defineProperty(exports, "__esModule", { value: true });
3
3
  exports.getRuntimeConfig = void 0;
4
4
  const httpAuthSchemes_1 = require("@aws-sdk/core/httpAuthSchemes");
5
5
  const protocols_1 = require("@aws-sdk/core/protocols");
6
+ const signature_v4_multi_region_1 = require("@aws-sdk/signature-v4-multi-region");
6
7
  const core_1 = require("@smithy/core");
7
8
  const smithy_client_1 = require("@smithy/smithy-client");
8
9
  const url_parser_1 = require("@smithy/url-parser");
@@ -26,6 +27,11 @@ const getRuntimeConfig = (config) => {
26
27
  identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4"),
27
28
  signer: new httpAuthSchemes_1.AwsSdkSigV4Signer(),
28
29
  },
30
+ {
31
+ schemeId: "aws.auth#sigv4a",
32
+ identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4a"),
33
+ signer: new httpAuthSchemes_1.AwsSdkSigV4ASigner(),
34
+ },
29
35
  {
30
36
  schemeId: "smithy.api#noAuth",
31
37
  identityProvider: (ipc) => ipc.getIdentityProvider("smithy.api#noAuth") || (async () => ({})),
@@ -42,6 +48,7 @@ const getRuntimeConfig = (config) => {
42
48
  serviceTarget: "AWSSecurityTokenServiceV20110615",
43
49
  },
44
50
  serviceId: config?.serviceId ?? "STS",
51
+ signerConstructor: config?.signerConstructor ?? signature_v4_multi_region_1.SignatureV4MultiRegion,
45
52
  urlParser: config?.urlParser ?? url_parser_1.parseUrl,
46
53
  utf8Decoder: config?.utf8Decoder ?? util_utf8_1.fromUtf8,
47
54
  utf8Encoder: config?.utf8Encoder ?? util_utf8_1.toUtf8,
package/dist-es/STSClient.js CHANGED
@@ -40,6 +40,7 @@ export class STSClient extends __Client {
40
40
  httpAuthSchemeParametersProvider: defaultSTSHttpAuthSchemeParametersProvider,
41
41
  identityProviderConfigProvider: async (config) => new DefaultIdentityProviderConfig({
42
42
  "aws.auth#sigv4": config.credentials,
43
+ "aws.auth#sigv4a": config.credentials,
43
44
  }),
44
45
  }));
45
46
  this.middlewareStack.use(getHttpSigningPlugin(this.config));
package/dist-es/auth/httpAuthSchemeProvider.js CHANGED
@@ -1,7 +1,23 @@
1
- import { resolveAwsSdkSigV4Config, } from "@aws-sdk/core/httpAuthSchemes";
1
+ import { resolveAwsSdkSigV4AConfig, resolveAwsSdkSigV4Config, } from "@aws-sdk/core/httpAuthSchemes";
2
+ import { SignatureV4MultiRegion } from "@aws-sdk/signature-v4-multi-region";
3
+ import { resolveParams } from "@smithy/middleware-endpoint";
2
4
  import { getSmithyContext, normalizeProvider } from "@smithy/util-middleware";
5
+ import { defaultEndpointResolver } from "../endpoint/endpointResolver";
3
6
  import { STSClient } from "../STSClient";
4
- export const defaultSTSHttpAuthSchemeParametersProvider = async (config, context, input) => {
7
+ const createEndpointRuleSetHttpAuthSchemeParametersProvider = (defaultHttpAuthSchemeParametersProvider) => async (config, context, input) => {
8
+ if (!input) {
9
+ throw new Error("Could not find `input` for `defaultEndpointRuleSetHttpAuthSchemeParametersProvider`");
10
+ }
11
+ const defaultParameters = await defaultHttpAuthSchemeParametersProvider(config, context, input);
12
+ const instructionsFn = getSmithyContext(context)?.commandInstance?.constructor
13
+ ?.getEndpointParameterInstructions;
14
+ if (!instructionsFn) {
15
+ throw new Error(`getEndpointParameterInstructions() is not defined on '${context.commandName}'`);
16
+ }
17
+ const endpointParameters = await resolveParams(input, { getEndpointParameterInstructions: instructionsFn }, config);
18
+ return Object.assign(defaultParameters, endpointParameters);
19
+ };
20
+ const _defaultSTSHttpAuthSchemeParametersProvider = async (config, context, input) => {
5
21
  return {
6
22
  operation: getSmithyContext(context).operation,
7
23
  region: await normalizeProvider(config.region)() || (() => {
@@ -9,6 +25,7 @@ export const defaultSTSHttpAuthSchemeParametersProvider = async (config, context
9
25
  })(),
10
26
  };
11
27
  };
28
+ export const defaultSTSHttpAuthSchemeParametersProvider = createEndpointRuleSetHttpAuthSchemeParametersProvider(_defaultSTSHttpAuthSchemeParametersProvider);
12
29
  function createAwsAuthSigv4HttpAuthOption(authParameters) {
13
30
  return {
14
31
  schemeId: "aws.auth#sigv4",
@@ -24,39 +41,103 @@ function createAwsAuthSigv4HttpAuthOption(authParameters) {
24
41
  }),
25
42
  };
26
43
  }
44
+ function createAwsAuthSigv4aHttpAuthOption(authParameters) {
45
+ return {
46
+ schemeId: "aws.auth#sigv4a",
47
+ signingProperties: {
48
+ name: "sts",
49
+ region: authParameters.region,
50
+ },
51
+ propertiesExtractor: (config, context) => ({
52
+ signingProperties: {
53
+ config,
54
+ context,
55
+ },
56
+ }),
57
+ };
58
+ }
27
59
  function createSmithyApiNoAuthHttpAuthOption(authParameters) {
28
60
  return {
29
61
  schemeId: "smithy.api#noAuth",
30
62
  };
31
63
  }
32
- export const defaultSTSHttpAuthSchemeProvider = (authParameters) => {
33
- const options = [];
34
- switch (authParameters.operation) {
35
- case "AssumeRoleWithSAML":
36
- {
37
- options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
38
- break;
64
+ const createEndpointRuleSetHttpAuthSchemeProvider = (defaultEndpointResolver, defaultHttpAuthSchemeResolver, createHttpAuthOptionFunctions) => {
65
+ const endpointRuleSetHttpAuthSchemeProvider = (authParameters) => {
66
+ const endpoint = defaultEndpointResolver(authParameters);
67
+ const authSchemes = endpoint.properties?.authSchemes;
68
+ if (!authSchemes) {
69
+ return defaultHttpAuthSchemeResolver(authParameters);
70
+ }
71
+ const options = [];
72
+ for (const scheme of authSchemes) {
73
+ const { name: resolvedName, properties = {}, ...rest } = scheme;
74
+ const name = resolvedName.toLowerCase();
75
+ if (resolvedName !== name) {
76
+ console.warn(`HttpAuthScheme has been normalized with lowercasing: '${resolvedName}' to '${name}'`);
39
77
  }
40
- ;
41
- case "AssumeRoleWithWebIdentity":
42
- {
43
- options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
44
- break;
78
+ let schemeId;
79
+ if (name === "sigv4a") {
80
+ schemeId = "aws.auth#sigv4a";
81
+ const sigv4Present = authSchemes.find((s) => {
82
+ const name = s.name.toLowerCase();
83
+ return name !== "sigv4a" && name.startsWith("sigv4");
84
+ });
85
+ if (SignatureV4MultiRegion.sigv4aDependency() === "none" && sigv4Present) {
86
+ continue;
87
+ }
45
88
  }
46
- ;
89
+ else if (name.startsWith("sigv4")) {
90
+ schemeId = "aws.auth#sigv4";
91
+ }
92
+ else {
93
+ throw new Error(`Unknown HttpAuthScheme found in '@smithy.rules#endpointRuleSet': '${name}'`);
94
+ }
95
+ const createOption = createHttpAuthOptionFunctions[schemeId];
96
+ if (!createOption) {
97
+ throw new Error(`Could not find HttpAuthOption create function for '${schemeId}'`);
98
+ }
99
+ const option = createOption(authParameters);
100
+ option.schemeId = schemeId;
101
+ option.signingProperties = { ...(option.signingProperties || {}), ...rest, ...properties };
102
+ options.push(option);
103
+ }
104
+ return options;
105
+ };
106
+ return endpointRuleSetHttpAuthSchemeProvider;
107
+ };
108
+ const _defaultSTSHttpAuthSchemeProvider = (authParameters) => {
109
+ const options = [];
110
+ switch (authParameters.operation) {
111
+ case "AssumeRoleWithSAML": {
112
+ options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
113
+ options.push(createAwsAuthSigv4aHttpAuthOption(authParameters));
114
+ break;
115
+ }
116
+ case "AssumeRoleWithWebIdentity": {
117
+ options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
118
+ options.push(createAwsAuthSigv4aHttpAuthOption(authParameters));
119
+ break;
120
+ }
47
121
  default: {
48
122
  options.push(createAwsAuthSigv4HttpAuthOption(authParameters));
123
+ options.push(createAwsAuthSigv4aHttpAuthOption(authParameters));
49
124
  }
50
125
  }
51
126
  return options;
52
127
  };
128
+ export const defaultSTSHttpAuthSchemeProvider = createEndpointRuleSetHttpAuthSchemeProvider(defaultEndpointResolver, _defaultSTSHttpAuthSchemeProvider, {
129
+ "aws.auth#sigv4": createAwsAuthSigv4HttpAuthOption,
130
+ "aws.auth#sigv4a": createAwsAuthSigv4aHttpAuthOption,
131
+ "smithy.api#noAuth": createSmithyApiNoAuthHttpAuthOption,
132
+ });
53
133
  export const resolveStsAuthConfig = (input) => Object.assign(input, {
54
134
  stsClientCtor: STSClient,
55
135
  });
56
136
  export const resolveHttpAuthSchemeConfig = (config) => {
57
137
  const config_0 = resolveStsAuthConfig(config);
58
138
  const config_1 = resolveAwsSdkSigV4Config(config_0);
59
- return Object.assign(config_1, {
139
+ const config_2 = resolveAwsSdkSigV4AConfig(config_1);
140
+ return Object.assign(config_2, {
60
141
  authSchemePreference: normalizeProvider(config.authSchemePreference ?? []),
61
142
  });
62
143
  };
package/dist-es/runtimeConfig.js CHANGED
@@ -1,6 +1,6 @@
1
1
  import packageInfo from "../package.json";
2
2
  import { emitWarningIfUnsupportedVersion as awsCheckVersion } from "@aws-sdk/core/client";
3
- import { AwsSdkSigV4Signer, NODE_AUTH_SCHEME_PREFERENCE_OPTIONS } from "@aws-sdk/core/httpAuthSchemes";
3
+ import { AwsSdkSigV4ASigner, AwsSdkSigV4Signer, NODE_AUTH_SCHEME_PREFERENCE_OPTIONS, NODE_SIGV4A_CONFIG_OPTIONS, } from "@aws-sdk/core/httpAuthSchemes";
4
4
  import { defaultProvider as credentialDefaultProvider } from "@aws-sdk/credential-provider-node";
5
5
  import { createDefaultUserAgentProvider, NODE_APP_ID_CONFIG_OPTIONS } from "@aws-sdk/util-user-agent-node";
6
6
  import { NODE_REGION_CONFIG_FILE_OPTIONS, NODE_REGION_CONFIG_OPTIONS, NODE_USE_DUALSTACK_ENDPOINT_CONFIG_OPTIONS, NODE_USE_FIPS_ENDPOINT_CONFIG_OPTIONS, } from "@smithy/config-resolver";
@@ -39,6 +39,11 @@ export const getRuntimeConfig = (config) => {
39
39
  identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4") || (async (idProps) => await credentialDefaultProvider(idProps?.__config || {})()),
40
40
  signer: new AwsSdkSigV4Signer(),
41
41
  },
42
+ {
43
+ schemeId: "aws.auth#sigv4a",
44
+ identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4a"),
45
+ signer: new AwsSdkSigV4ASigner(),
46
+ },
42
47
  {
43
48
  schemeId: "smithy.api#noAuth",
44
49
  identityProvider: (ipc) => ipc.getIdentityProvider("smithy.api#noAuth") || (async () => ({})),
@@ -54,6 +59,7 @@ export const getRuntimeConfig = (config) => {
54
59
  default: async () => (await defaultConfigProvider()).retryMode || DEFAULT_RETRY_MODE,
55
60
  }, config),
56
61
  sha256: config?.sha256 ?? Hash.bind(null, "sha256"),
62
+ sigv4aSigningRegionSet: config?.sigv4aSigningRegionSet ?? loadNodeConfig(NODE_SIGV4A_CONFIG_OPTIONS, loaderConfig),
57
63
  streamCollector: config?.streamCollector ?? streamCollector,
58
64
  useDualstackEndpoint: config?.useDualstackEndpoint ?? loadNodeConfig(NODE_USE_DUALSTACK_ENDPOINT_CONFIG_OPTIONS, loaderConfig),
59
65
  useFipsEndpoint: config?.useFipsEndpoint ?? loadNodeConfig(NODE_USE_FIPS_ENDPOINT_CONFIG_OPTIONS, loaderConfig),
package/dist-es/runtimeConfig.shared.js CHANGED
@@ -1,5 +1,6 @@
1
- import { AwsSdkSigV4Signer } from "@aws-sdk/core/httpAuthSchemes";
1
+ import { AwsSdkSigV4ASigner, AwsSdkSigV4Signer } from "@aws-sdk/core/httpAuthSchemes";
2
2
  import { AwsQueryProtocol } from "@aws-sdk/core/protocols";
3
+ import { SignatureV4MultiRegion } from "@aws-sdk/signature-v4-multi-region";
3
4
  import { NoAuthSigner } from "@smithy/core";
4
5
  import { NoOpLogger } from "@smithy/smithy-client";
5
6
  import { parseUrl } from "@smithy/url-parser";
@@ -23,6 +24,11 @@ export const getRuntimeConfig = (config) => {
23
24
  identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4"),
24
25
  signer: new AwsSdkSigV4Signer(),
25
26
  },
27
+ {
28
+ schemeId: "aws.auth#sigv4a",
29
+ identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4a"),
30
+ signer: new AwsSdkSigV4ASigner(),
31
+ },
26
32
  {
27
33
  schemeId: "smithy.api#noAuth",
28
34
  identityProvider: (ipc) => ipc.getIdentityProvider("smithy.api#noAuth") || (async () => ({})),
@@ -39,6 +45,7 @@ export const getRuntimeConfig = (config) => {
39
45
  serviceTarget: "AWSSecurityTokenServiceV20110615",
40
46
  },
41
47
  serviceId: config?.serviceId ?? "STS",
48
+ signerConstructor: config?.signerConstructor ?? SignatureV4MultiRegion,
42
49
  urlParser: config?.urlParser ?? parseUrl,
43
50
  utf8Decoder: config?.utf8Decoder ?? fromUtf8,
44
51
  utf8Encoder: config?.utf8Encoder ?? toUtf8,
package/dist-types/auth/httpAuthSchemeProvider.d.ts CHANGED
@@ -1,10 +1,17 @@
1
- import { AwsSdkSigV4AuthInputConfig, AwsSdkSigV4AuthResolvedConfig, AwsSdkSigV4PreviouslyResolved } from "@aws-sdk/core/httpAuthSchemes";
1
+ import { AwsSdkSigV4AAuthInputConfig, AwsSdkSigV4AAuthResolvedConfig, AwsSdkSigV4APreviouslyResolved, AwsSdkSigV4AuthInputConfig, AwsSdkSigV4AuthResolvedConfig, AwsSdkSigV4PreviouslyResolved } from "@aws-sdk/core/httpAuthSchemes";
2
2
  import type { Client, HandlerExecutionContext, HttpAuthScheme, HttpAuthSchemeParameters, HttpAuthSchemeParametersProvider, HttpAuthSchemeProvider, Provider } from "@smithy/types";
3
- import { type STSClientResolvedConfig } from "../STSClient";
3
+ import { EndpointParameters } from "../endpoint/EndpointParameters";
4
+ import { STSClientResolvedConfig } from "../STSClient";
4
5
  /**
5
6
  * @internal
6
7
  */
7
- export interface STSHttpAuthSchemeParameters extends HttpAuthSchemeParameters {
8
+ interface _STSHttpAuthSchemeParameters extends HttpAuthSchemeParameters {
9
+ region?: string;
10
+ }
11
+ /**
12
+ * @internal
13
+ */
14
+ export interface STSHttpAuthSchemeParameters extends _STSHttpAuthSchemeParameters, EndpointParameters {
8
15
  region?: string;
9
16
  }
10
17
  /**
@@ -15,7 +22,7 @@ export interface STSHttpAuthSchemeParametersProvider extends HttpAuthSchemeParam
15
22
  /**
16
23
  * @internal
17
24
  */
18
- export declare const defaultSTSHttpAuthSchemeParametersProvider: (config: STSClientResolvedConfig, context: HandlerExecutionContext, input: object) => Promise<STSHttpAuthSchemeParameters>;
25
+ export declare const defaultSTSHttpAuthSchemeParametersProvider: STSHttpAuthSchemeParametersProvider;
19
26
  /**
20
27
  * @internal
21
28
  */
@@ -38,7 +45,7 @@ export declare const resolveStsAuthConfig: <T>(input: T & StsAuthInputConfig) =>
38
45
  /**
39
46
  * @public
40
47
  */
41
- export interface HttpAuthSchemeInputConfig extends StsAuthInputConfig, AwsSdkSigV4AuthInputConfig {
48
+ export interface HttpAuthSchemeInputConfig extends StsAuthInputConfig, AwsSdkSigV4AuthInputConfig, AwsSdkSigV4AAuthInputConfig {
42
49
  /**
43
50
  * A comma-separated list of case-sensitive auth scheme names.
44
51
  * An auth scheme name is a fully qualified auth scheme ID with the namespace prefix trimmed.
@@ -60,7 +67,7 @@ export interface HttpAuthSchemeInputConfig extends StsAuthInputConfig, AwsSdkSig
60
67
  /**
61
68
  * @internal
62
69
  */
63
- export interface HttpAuthSchemeResolvedConfig extends StsAuthResolvedConfig, AwsSdkSigV4AuthResolvedConfig {
70
+ export interface HttpAuthSchemeResolvedConfig extends StsAuthResolvedConfig, AwsSdkSigV4AuthResolvedConfig, AwsSdkSigV4AAuthResolvedConfig {
64
71
  /**
65
72
  * A comma-separated list of case-sensitive auth scheme names.
66
73
  * An auth scheme name is a fully qualified auth scheme ID with the namespace prefix trimmed.
@@ -82,4 +89,5 @@ export interface HttpAuthSchemeResolvedConfig extends StsAuthResolvedConfig, Aws
82
89
  /**
83
90
  * @internal
84
91
  */
85
- export declare const resolveHttpAuthSchemeConfig: <T>(config: T & HttpAuthSchemeInputConfig & AwsSdkSigV4PreviouslyResolved) => T & HttpAuthSchemeResolvedConfig;
92
+ export declare const resolveHttpAuthSchemeConfig: <T>(config: T & HttpAuthSchemeInputConfig & AwsSdkSigV4PreviouslyResolved & AwsSdkSigV4APreviouslyResolved) => T & HttpAuthSchemeResolvedConfig;
93
+ export {};
package/dist-types/runtimeConfig.browser.d.ts CHANGED
@@ -38,7 +38,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
38
38
  userAgentAppId?: string | undefined | import("@smithy/types").Provider<string | undefined>;
39
39
  retryStrategy?: import("@smithy/types").RetryStrategy | import("@smithy/types").RetryStrategyV2;
40
40
  endpoint?: ((string | import("@smithy/types").Endpoint | import("@smithy/types").Provider<import("@smithy/types").Endpoint> | import("@smithy/types").EndpointV2 | import("@smithy/types").Provider<import("@smithy/types").EndpointV2>) & (string | import("@smithy/types").Provider<string> | import("@smithy/types").Endpoint | import("@smithy/types").Provider<import("@smithy/types").Endpoint> | import("@smithy/types").EndpointV2 | import("@smithy/types").Provider<import("@smithy/types").EndpointV2>)) | undefined;
41
- endpointProvider: (params: import("./endpoint/EndpointParameters").EndpointParameters, context?: {
41
+ endpointProvider: (endpointParams: import("./endpoint/EndpointParameters").EndpointParameters, context?: {
42
42
  logger?: import("@smithy/types").Logger;
43
43
  }) => import("@smithy/types").EndpointV2;
44
44
  tls?: boolean;
@@ -59,6 +59,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
59
59
  signingEscapePath?: boolean;
60
60
  systemClockOffset?: number;
61
61
  signingRegion?: string;
62
- signerConstructor?: new (options: import("@smithy/signature-v4").SignatureV4Init & import("@smithy/signature-v4").SignatureV4CryptoInit) => import("@smithy/types").RequestSigner;
62
+ signerConstructor: (new (options: import("@smithy/signature-v4").SignatureV4Init & import("@smithy/signature-v4").SignatureV4CryptoInit) => import("@smithy/types").RequestSigner) | typeof import("@aws-sdk/signature-v4-multi-region").SignatureV4MultiRegion;
63
+ sigv4aSigningRegionSet?: string[] | undefined | import("@smithy/types").Provider<string[] | undefined>;
63
64
  useGlobalEndpoint?: boolean | undefined | import("@smithy/types").Provider<boolean | undefined>;
64
65
  };
package/dist-types/runtimeConfig.d.ts CHANGED
@@ -1,3 +1,4 @@
1
+ import { AwsSdkSigV4ASigner } from "@aws-sdk/core/httpAuthSchemes";
1
2
  import { NoAuthSigner } from "@smithy/core";
2
3
  import { NodeHttpHandler as RequestHandler } from "@smithy/node-http-handler";
3
4
  import type { IdentityProviderConfig } from "@smithy/types";
@@ -12,16 +13,21 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
12
13
  bodyLengthChecker: import("@smithy/types").BodyLengthCalculator;
13
14
  credentialDefaultProvider: ((input: any) => import("@smithy/types").AwsCredentialIdentityProvider) | ((init?: import("@aws-sdk/credential-provider-node").DefaultProviderInit) => import("@aws-sdk/credential-provider-node/dist-types/runtime/memoize-chain").MemoizedRuntimeConfigAwsCredentialIdentityProvider);
14
15
  defaultUserAgentProvider: (config?: import("@aws-sdk/util-user-agent-node").PreviouslyResolved) => Promise<import("@smithy/types").UserAgent>;
15
- httpAuthSchemes: import("@smithy/types").HttpAuthScheme[] | {
16
+ httpAuthSchemes: import("@smithy/types").HttpAuthScheme[] | ({
17
+ schemeId: string;
18
+ identityProvider: (ipc: IdentityProviderConfig) => import("@smithy/types").IdentityProvider<import("@smithy/types").Identity> | undefined;
19
+ signer: AwsSdkSigV4ASigner;
20
+ } | {
16
21
  schemeId: string;
17
22
  identityProvider: (ipc: IdentityProviderConfig) => import("@smithy/types").IdentityProvider<import("@smithy/types").Identity> | (() => Promise<{}>);
18
23
  signer: NoAuthSigner;
19
- }[];
24
+ })[];
20
25
  maxAttempts: number | import("@smithy/types").Provider<number>;
21
26
  region: string | import("@smithy/types").Provider<string>;
22
27
  requestHandler: RequestHandler | import("@smithy/protocol-http").HttpHandler<any>;
23
28
  retryMode: string | import("@smithy/types").Provider<string>;
24
29
  sha256: import("@smithy/types").HashConstructor;
30
+ sigv4aSigningRegionSet: string[] | import("@smithy/types").Provider<string[] | undefined>;
25
31
  streamCollector: import("@smithy/types").StreamCollector;
26
32
  useDualstackEndpoint: boolean | import("@smithy/types").Provider<boolean>;
27
33
  useFipsEndpoint: boolean | import("@smithy/types").Provider<boolean>;
@@ -46,7 +52,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
46
52
  customUserAgent?: string | import("@smithy/types").UserAgent;
47
53
  retryStrategy?: import("@smithy/types").RetryStrategy | import("@smithy/types").RetryStrategyV2;
48
54
  endpoint?: ((string | import("@smithy/types").Endpoint | import("@smithy/types").Provider<import("@smithy/types").Endpoint> | import("@smithy/types").EndpointV2 | import("@smithy/types").Provider<import("@smithy/types").EndpointV2>) & (string | import("@smithy/types").Provider<string> | import("@smithy/types").Endpoint | import("@smithy/types").Provider<import("@smithy/types").Endpoint> | import("@smithy/types").EndpointV2 | import("@smithy/types").Provider<import("@smithy/types").EndpointV2>)) | undefined;
49
- endpointProvider: (params: import("./endpoint/EndpointParameters").EndpointParameters, context?: {
55
+ endpointProvider: (endpointParams: import("./endpoint/EndpointParameters").EndpointParameters, context?: {
50
56
  logger?: import("@smithy/types").Logger;
51
57
  }) => import("@smithy/types").EndpointV2;
52
58
  tls?: boolean;
@@ -57,6 +63,6 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
57
63
  signingEscapePath?: boolean;
58
64
  systemClockOffset?: number;
59
65
  signingRegion?: string;
60
- signerConstructor?: new (options: import("@smithy/signature-v4").SignatureV4Init & import("@smithy/signature-v4").SignatureV4CryptoInit) => import("@smithy/types").RequestSigner;
66
+ signerConstructor: (new (options: import("@smithy/signature-v4").SignatureV4Init & import("@smithy/signature-v4").SignatureV4CryptoInit) => import("@smithy/types").RequestSigner) | typeof import("@aws-sdk/signature-v4-multi-region").SignatureV4MultiRegion;
61
67
  useGlobalEndpoint?: boolean | undefined | import("@smithy/types").Provider<boolean | undefined>;
62
68
  };
package/dist-types/runtimeConfig.native.d.ts CHANGED
@@ -37,7 +37,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
37
37
  userAgentAppId?: string | undefined | import("@smithy/types").Provider<string | undefined>;
38
38
  retryStrategy?: import("@smithy/types").RetryStrategy | import("@smithy/types").RetryStrategyV2;
39
39
  endpoint?: ((string | import("@smithy/types").Endpoint | import("@smithy/types").Provider<import("@smithy/types").Endpoint> | import("@smithy/types").EndpointV2 | import("@smithy/types").Provider<import("@smithy/types").EndpointV2>) & (string | import("@smithy/types").Provider<string> | import("@smithy/types").Endpoint | import("@smithy/types").Provider<import("@smithy/types").Endpoint> | import("@smithy/types").EndpointV2 | import("@smithy/types").Provider<import("@smithy/types").EndpointV2>)) | undefined;
40
- endpointProvider: (params: import("./endpoint/EndpointParameters").EndpointParameters, context?: {
40
+ endpointProvider: (endpointParams: import("./endpoint/EndpointParameters").EndpointParameters, context?: {
41
41
  logger?: import("@smithy/types").Logger;
42
42
  }) => import("@smithy/types").EndpointV2;
43
43
  tls?: boolean;
@@ -58,6 +58,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
58
58
  signingEscapePath?: boolean;
59
59
  systemClockOffset?: number;
60
60
  signingRegion?: string;
61
- signerConstructor?: new (options: import("@smithy/signature-v4").SignatureV4Init & import("@smithy/signature-v4").SignatureV4CryptoInit) => import("@smithy/types").RequestSigner;
61
+ signerConstructor: (new (options: import("@smithy/signature-v4").SignatureV4Init & import("@smithy/signature-v4").SignatureV4CryptoInit) => import("@smithy/types").RequestSigner) | typeof import("@aws-sdk/signature-v4-multi-region").SignatureV4MultiRegion;
62
+ sigv4aSigningRegionSet?: string[] | undefined | import("@smithy/types").Provider<string[] | undefined>;
62
63
  useGlobalEndpoint?: boolean | undefined | import("@smithy/types").Provider<boolean | undefined>;
63
64
  };
package/dist-types/runtimeConfig.shared.d.ts CHANGED
@@ -1,5 +1,6 @@
1
1
  import { AwsSdkSigV4Signer } from "@aws-sdk/core/httpAuthSchemes";
2
2
  import { AwsQueryProtocol } from "@aws-sdk/core/protocols";
3
+ import { SignatureV4MultiRegion } from "@aws-sdk/signature-v4-multi-region";
3
4
  import { NoAuthSigner } from "@smithy/core";
4
5
  import type { IdentityProviderConfig } from "@smithy/types";
5
6
  import type { STSClientConfig } from "./STSClient";
@@ -11,7 +12,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
11
12
  base64Decoder: import("@smithy/types").Decoder;
12
13
  base64Encoder: (_input: Uint8Array | string) => string;
13
14
  disableHostPrefix: boolean;
14
- endpointProvider: (params: import("./endpoint/EndpointParameters").EndpointParameters, context?: {
15
+ endpointProvider: (endpointParams: import("./endpoint/EndpointParameters").EndpointParameters, context?: {
15
16
  logger?: import("@smithy/types").Logger;
16
17
  }) => import("@smithy/types").EndpointV2;
17
18
  extensions: import("./runtimeExtensions").RuntimeExtension[];
@@ -32,6 +33,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
32
33
  defaultNamespace?: string;
33
34
  };
34
35
  serviceId: string;
36
+ signerConstructor: (new (options: import("@smithy/signature-v4").SignatureV4Init & import("@smithy/signature-v4").SignatureV4CryptoInit) => import("@smithy/types").RequestSigner) | typeof SignatureV4MultiRegion;
35
37
  urlParser: import("@smithy/types").UrlParser;
36
38
  utf8Decoder: import("@smithy/types").Decoder;
37
39
  utf8Encoder: (input: Uint8Array | string) => string;
package/dist-types/ts3.4/auth/httpAuthSchemeProvider.d.ts CHANGED
@@ -1,4 +1,7 @@
1
1
  import {
2
+ AwsSdkSigV4AAuthInputConfig,
3
+ AwsSdkSigV4AAuthResolvedConfig,
4
+ AwsSdkSigV4APreviouslyResolved,
2
5
  AwsSdkSigV4AuthInputConfig,
3
6
  AwsSdkSigV4AuthResolvedConfig,
4
7
  AwsSdkSigV4PreviouslyResolved,
@@ -12,8 +15,14 @@ import {
12
15
  HttpAuthSchemeProvider,
13
16
  Provider,
14
17
  } from "@smithy/types";
18
+ import { EndpointParameters } from "../endpoint/EndpointParameters";
15
19
  import { STSClientResolvedConfig } from "../STSClient";
16
- export interface STSHttpAuthSchemeParameters extends HttpAuthSchemeParameters {
20
+ interface _STSHttpAuthSchemeParameters extends HttpAuthSchemeParameters {
21
+ region?: string;
22
+ }
23
+ export interface STSHttpAuthSchemeParameters
24
+ extends _STSHttpAuthSchemeParameters,
25
+ EndpointParameters {
17
26
  region?: string;
18
27
  }
19
28
  export interface STSHttpAuthSchemeParametersProvider
@@ -23,11 +32,7 @@ export interface STSHttpAuthSchemeParametersProvider
23
32
  STSHttpAuthSchemeParameters,
24
33
  object
25
34
  > {}
26
- export declare const defaultSTSHttpAuthSchemeParametersProvider: (
27
- config: STSClientResolvedConfig,
28
- context: HandlerExecutionContext,
29
- input: object
30
- ) => Promise<STSHttpAuthSchemeParameters>;
35
+ export declare const defaultSTSHttpAuthSchemeParametersProvider: STSHttpAuthSchemeParametersProvider;
31
36
  export interface STSHttpAuthSchemeProvider
32
37
  extends HttpAuthSchemeProvider<STSHttpAuthSchemeParameters> {}
33
38
  export declare const defaultSTSHttpAuthSchemeProvider: STSHttpAuthSchemeProvider;
@@ -40,18 +45,24 @@ export declare const resolveStsAuthConfig: <T>(
40
45
  ) => T & StsAuthResolvedConfig;
41
46
  export interface HttpAuthSchemeInputConfig
42
47
  extends StsAuthInputConfig,
43
- AwsSdkSigV4AuthInputConfig {
48
+ AwsSdkSigV4AuthInputConfig,
49
+ AwsSdkSigV4AAuthInputConfig {
44
50
  authSchemePreference?: string[] | Provider<string[]>;
45
51
  httpAuthSchemes?: HttpAuthScheme[];
46
52
  httpAuthSchemeProvider?: STSHttpAuthSchemeProvider;
47
53
  }
48
54
  export interface HttpAuthSchemeResolvedConfig
49
55
  extends StsAuthResolvedConfig,
50
- AwsSdkSigV4AuthResolvedConfig {
56
+ AwsSdkSigV4AuthResolvedConfig,
57
+ AwsSdkSigV4AAuthResolvedConfig {
51
58
  readonly authSchemePreference: Provider<string[]>;
52
59
  readonly httpAuthSchemes: HttpAuthScheme[];
53
60
  readonly httpAuthSchemeProvider: STSHttpAuthSchemeProvider;
54
61
  }
55
62
  export declare const resolveHttpAuthSchemeConfig: <T>(
56
- config: T & HttpAuthSchemeInputConfig & AwsSdkSigV4PreviouslyResolved
63
+ config: T &
64
+ HttpAuthSchemeInputConfig &
65
+ AwsSdkSigV4PreviouslyResolved &
66
+ AwsSdkSigV4APreviouslyResolved
57
67
  ) => T & HttpAuthSchemeResolvedConfig;
68
+ export {};
package/dist-types/ts3.4/runtimeConfig.browser.d.ts CHANGED
@@ -72,7 +72,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
72
72
  ))
73
73
  | undefined;
74
74
  endpointProvider: (
75
- params: import("./endpoint/EndpointParameters").EndpointParameters,
75
+ endpointParams: import("./endpoint/EndpointParameters").EndpointParameters,
76
76
  context?: {
77
77
  logger?: import("@smithy/types").Logger;
78
78
  }
@@ -118,10 +118,16 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
118
118
  signingEscapePath?: boolean;
119
119
  systemClockOffset?: number;
120
120
  signingRegion?: string;
121
- signerConstructor?: new (
122
- options: import("@smithy/signature-v4").SignatureV4Init &
123
- import("@smithy/signature-v4").SignatureV4CryptoInit
124
- ) => import("@smithy/types").RequestSigner;
121
+ signerConstructor:
122
+ | (new (
123
+ options: import("@smithy/signature-v4").SignatureV4Init &
124
+ import("@smithy/signature-v4").SignatureV4CryptoInit
125
+ ) => import("@smithy/types").RequestSigner)
126
+ | typeof import("@aws-sdk/signature-v4-multi-region").SignatureV4MultiRegion;
127
+ sigv4aSigningRegionSet?:
128
+ | string[]
129
+ | undefined
130
+ | import("@smithy/types").Provider<string[] | undefined>;
125
131
  useGlobalEndpoint?:
126
132
  | boolean
127
133
  | undefined
package/dist-types/ts3.4/runtimeConfig.d.ts CHANGED
@@ -1,3 +1,4 @@
1
+ import { AwsSdkSigV4ASigner } from "@aws-sdk/core/httpAuthSchemes";
1
2
  import { NoAuthSigner } from "@smithy/core";
2
3
  import { NodeHttpHandler as RequestHandler } from "@smithy/node-http-handler";
3
4
  import { IdentityProviderConfig } from "@smithy/types";
@@ -19,17 +20,30 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
19
20
  ) => Promise<import("@smithy/types").UserAgent>;
20
21
  httpAuthSchemes:
21
22
  | import("@smithy/types").HttpAuthScheme[]
22
- | {
23
- schemeId: string;
24
- identityProvider: (
25
- ipc: IdentityProviderConfig
26
- ) =>
27
- | import("@smithy/types").IdentityProvider<
28
- import("@smithy/types").Identity
29
- >
30
- | (() => Promise<{}>);
31
- signer: NoAuthSigner;
32
- }[];
23
+ | (
24
+ | {
25
+ schemeId: string;
26
+ identityProvider: (
27
+ ipc: IdentityProviderConfig
28
+ ) =>
29
+ | import("@smithy/types").IdentityProvider<
30
+ import("@smithy/types").Identity
31
+ >
32
+ | undefined;
33
+ signer: AwsSdkSigV4ASigner;
34
+ }
35
+ | {
36
+ schemeId: string;
37
+ identityProvider: (
38
+ ipc: IdentityProviderConfig
39
+ ) =>
40
+ | import("@smithy/types").IdentityProvider<
41
+ import("@smithy/types").Identity
42
+ >
43
+ | (() => Promise<{}>);
44
+ signer: NoAuthSigner;
45
+ }
46
+ )[];
33
47
  maxAttempts: number | import("@smithy/types").Provider<number>;
34
48
  region: string | import("@smithy/types").Provider<string>;
35
49
  requestHandler:
@@ -37,6 +51,9 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
37
51
  | import("@smithy/protocol-http").HttpHandler<any>;
38
52
  retryMode: string | import("@smithy/types").Provider<string>;
39
53
  sha256: import("@smithy/types").HashConstructor;
54
+ sigv4aSigningRegionSet:
55
+ | string[]
56
+ | import("@smithy/types").Provider<string[] | undefined>;
40
57
  streamCollector: import("@smithy/types").StreamCollector;
41
58
  useDualstackEndpoint: boolean | import("@smithy/types").Provider<boolean>;
42
59
  useFipsEndpoint: boolean | import("@smithy/types").Provider<boolean>;
@@ -83,7 +100,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
83
100
  ))
84
101
  | undefined;
85
102
  endpointProvider: (
86
- params: import("./endpoint/EndpointParameters").EndpointParameters,
103
+ endpointParams: import("./endpoint/EndpointParameters").EndpointParameters,
87
104
  context?: {
88
105
  logger?: import("@smithy/types").Logger;
89
106
  }
@@ -102,10 +119,12 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
102
119
  signingEscapePath?: boolean;
103
120
  systemClockOffset?: number;
104
121
  signingRegion?: string;
105
- signerConstructor?: new (
106
- options: import("@smithy/signature-v4").SignatureV4Init &
107
- import("@smithy/signature-v4").SignatureV4CryptoInit
108
- ) => import("@smithy/types").RequestSigner;
122
+ signerConstructor:
123
+ | (new (
124
+ options: import("@smithy/signature-v4").SignatureV4Init &
125
+ import("@smithy/signature-v4").SignatureV4CryptoInit
126
+ ) => import("@smithy/types").RequestSigner)
127
+ | typeof import("@aws-sdk/signature-v4-multi-region").SignatureV4MultiRegion;
109
128
  useGlobalEndpoint?:
110
129
  | boolean
111
130
  | undefined
package/dist-types/ts3.4/runtimeConfig.native.d.ts CHANGED
@@ -76,7 +76,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
76
76
  ))
77
77
  | undefined;
78
78
  endpointProvider: (
79
- params: import("./endpoint/EndpointParameters").EndpointParameters,
79
+ endpointParams: import("./endpoint/EndpointParameters").EndpointParameters,
80
80
  context?: {
81
81
  logger?: import("@smithy/types").Logger;
82
82
  }
@@ -122,10 +122,16 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
122
122
  signingEscapePath?: boolean;
123
123
  systemClockOffset?: number;
124
124
  signingRegion?: string;
125
- signerConstructor?: new (
126
- options: import("@smithy/signature-v4").SignatureV4Init &
127
- import("@smithy/signature-v4").SignatureV4CryptoInit
128
- ) => import("@smithy/types").RequestSigner;
125
+ signerConstructor:
126
+ | (new (
127
+ options: import("@smithy/signature-v4").SignatureV4Init &
128
+ import("@smithy/signature-v4").SignatureV4CryptoInit
129
+ ) => import("@smithy/types").RequestSigner)
130
+ | typeof import("@aws-sdk/signature-v4-multi-region").SignatureV4MultiRegion;
131
+ sigv4aSigningRegionSet?:
132
+ | string[]
133
+ | undefined
134
+ | import("@smithy/types").Provider<string[] | undefined>;
129
135
  useGlobalEndpoint?:
130
136
  | boolean
131
137
  | undefined
package/dist-types/ts3.4/runtimeConfig.shared.d.ts CHANGED
@@ -1,5 +1,6 @@
1
1
  import { AwsSdkSigV4Signer } from "@aws-sdk/core/httpAuthSchemes";
2
2
  import { AwsQueryProtocol } from "@aws-sdk/core/protocols";
3
+ import { SignatureV4MultiRegion } from "@aws-sdk/signature-v4-multi-region";
3
4
  import { NoAuthSigner } from "@smithy/core";
4
5
  import { IdentityProviderConfig } from "@smithy/types";
5
6
  import { STSClientConfig } from "./STSClient";
@@ -9,7 +10,7 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
9
10
  base64Encoder: (_input: Uint8Array | string) => string;
10
11
  disableHostPrefix: boolean;
11
12
  endpointProvider: (
12
- params: import("./endpoint/EndpointParameters").EndpointParameters,
13
+ endpointParams: import("./endpoint/EndpointParameters").EndpointParameters,
13
14
  context?: {
14
15
  logger?: import("@smithy/types").Logger;
15
16
  }
@@ -52,6 +53,12 @@ export declare const getRuntimeConfig: (config: STSClientConfig) => {
52
53
  defaultNamespace?: string;
53
54
  };
54
55
  serviceId: string;
56
+ signerConstructor:
57
+ | (new (
58
+ options: import("@smithy/signature-v4").SignatureV4Init &
59
+ import("@smithy/signature-v4").SignatureV4CryptoInit
60
+ ) => import("@smithy/types").RequestSigner)
61
+ | typeof SignatureV4MultiRegion;
55
62
  urlParser: import("@smithy/types").UrlParser;
56
63
  utf8Decoder: import("@smithy/types").Decoder;
57
64
  utf8Encoder: (input: Uint8Array | string) => string;
package/package.json CHANGED
@@ -1,7 +1,7 @@
1
1
  {
2
2
  "name": "@aws-sdk/client-sts",
3
3
  "description": "AWS SDK for JavaScript Sts Client for Node.js, Browser and React Native",
4
- "version": "3.1030.0",
4
+ "version": "3.1032.0",
5
5
  "scripts": {
6
6
  "build": "concurrently 'yarn:build:types' 'yarn:build:es' && yarn build:cjs",
7
7
  "build:cjs": "node ../../scripts/compilation/inline client-sts",
@@ -27,46 +27,47 @@
27
27
  "dependencies": {
28
28
  "@aws-crypto/sha256-browser": "5.2.0",
29
29
  "@aws-crypto/sha256-js": "5.2.0",
30
- "@aws-sdk/core": "^3.973.27",
31
- "@aws-sdk/credential-provider-node": "^3.972.30",
32
- "@aws-sdk/middleware-host-header": "^3.972.9",
33
- "@aws-sdk/middleware-logger": "^3.972.9",
34
- "@aws-sdk/middleware-recursion-detection": "^3.972.10",
35
- "@aws-sdk/middleware-user-agent": "^3.972.29",
36
- "@aws-sdk/region-config-resolver": "^3.972.11",
37
- "@aws-sdk/types": "^3.973.7",
38
- "@aws-sdk/util-endpoints": "^3.996.6",
39
- "@aws-sdk/util-user-agent-browser": "^3.972.9",
40
- "@aws-sdk/util-user-agent-node": "^3.973.15",
41
- "@smithy/config-resolver": "^4.4.14",
42
- "@smithy/core": "^3.23.14",
43
- "@smithy/fetch-http-handler": "^5.3.16",
44
- "@smithy/hash-node": "^4.2.13",
45
- "@smithy/invalid-dependency": "^4.2.13",
46
- "@smithy/middleware-content-length": "^4.2.13",
47
- "@smithy/middleware-endpoint": "^4.4.29",
48
- "@smithy/middleware-retry": "^4.5.0",
49
- "@smithy/middleware-serde": "^4.2.17",
50
- "@smithy/middleware-stack": "^4.2.13",
51
- "@smithy/node-config-provider": "^4.3.13",
52
- "@smithy/node-http-handler": "^4.5.2",
53
- "@smithy/protocol-http": "^5.3.13",
54
- "@smithy/smithy-client": "^4.12.9",
55
- "@smithy/types": "^4.14.0",
56
- "@smithy/url-parser": "^4.2.13",
30
+ "@aws-sdk/core": "^3.974.1",
31
+ "@aws-sdk/credential-provider-node": "^3.972.32",
32
+ "@aws-sdk/middleware-host-header": "^3.972.10",
33
+ "@aws-sdk/middleware-logger": "^3.972.10",
34
+ "@aws-sdk/middleware-recursion-detection": "^3.972.11",
35
+ "@aws-sdk/middleware-user-agent": "^3.972.31",
36
+ "@aws-sdk/region-config-resolver": "^3.972.12",
37
+ "@aws-sdk/signature-v4-multi-region": "^3.996.18",
38
+ "@aws-sdk/types": "^3.973.8",
39
+ "@aws-sdk/util-endpoints": "^3.996.7",
40
+ "@aws-sdk/util-user-agent-browser": "^3.972.10",
41
+ "@aws-sdk/util-user-agent-node": "^3.973.17",
42
+ "@smithy/config-resolver": "^4.4.16",
43
+ "@smithy/core": "^3.23.15",
44
+ "@smithy/fetch-http-handler": "^5.3.17",
45
+ "@smithy/hash-node": "^4.2.14",
46
+ "@smithy/invalid-dependency": "^4.2.14",
47
+ "@smithy/middleware-content-length": "^4.2.14",
48
+ "@smithy/middleware-endpoint": "^4.4.30",
49
+ "@smithy/middleware-retry": "^4.5.3",
50
+ "@smithy/middleware-serde": "^4.2.18",
51
+ "@smithy/middleware-stack": "^4.2.14",
52
+ "@smithy/node-config-provider": "^4.3.14",
53
+ "@smithy/node-http-handler": "^4.5.3",
54
+ "@smithy/protocol-http": "^5.3.14",
55
+ "@smithy/smithy-client": "^4.12.11",
56
+ "@smithy/types": "^4.14.1",
57
+ "@smithy/url-parser": "^4.2.14",
57
58
  "@smithy/util-base64": "^4.3.2",
58
59
  "@smithy/util-body-length-browser": "^4.2.2",
59
60
  "@smithy/util-body-length-node": "^4.2.3",
60
- "@smithy/util-defaults-mode-browser": "^4.3.45",
61
- "@smithy/util-defaults-mode-node": "^4.2.49",
62
- "@smithy/util-endpoints": "^3.3.4",
63
- "@smithy/util-middleware": "^4.2.13",
64
- "@smithy/util-retry": "^4.3.0",
61
+ "@smithy/util-defaults-mode-browser": "^4.3.47",
62
+ "@smithy/util-defaults-mode-node": "^4.2.52",
63
+ "@smithy/util-endpoints": "^3.4.1",
64
+ "@smithy/util-middleware": "^4.2.14",
65
+ "@smithy/util-retry": "^4.3.2",
65
66
  "@smithy/util-utf8": "^4.2.2",
66
67
  "tslib": "^2.6.2"
67
68
  },
68
69
  "devDependencies": {
69
- "@smithy/snapshot-testing": "^2.0.5",
70
+ "@smithy/snapshot-testing": "^2.0.6",
70
71
  "@tsconfig/node20": "20.1.8",
71
72
  "@types/node": "^20.14.8",
72
73
  "concurrently": "7.0.0",