npm - @aws-sdk/middleware-sdk-s3 - Versions diffs - 3.460.0 → 3.465.0 - Mend

@aws-sdk/middleware-sdk-s3 3.460.0 → 3.465.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (45) hide show

package/dist-cjs/index.js CHANGED Viewed

@@ -4,6 +4,7 @@ const tslib_1 = require("tslib");
 tslib_1.__exportStar(require("./check-content-length-header"), exports);
 tslib_1.__exportStar(require("./region-redirect-endpoint-middleware"), exports);
 tslib_1.__exportStar(require("./region-redirect-middleware"), exports);
+tslib_1.__exportStar(require("./s3-express/index"), exports);
 tslib_1.__exportStar(require("./s3Configuration"), exports);
 tslib_1.__exportStar(require("./throw-200-exceptions"), exports);
 tslib_1.__exportStar(require("./validate-bucket-name"), exports);

package/dist-cjs/s3-express/classes/S3ExpressIdentityCache.js ADDED Viewed

@@ -0,0 +1,42 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.S3ExpressIdentityCache = void 0;
+class S3ExpressIdentityCache {
+    constructor(data = {}) {
+        this.data = data;
+        this.lastPurgeTime = Date.now();
+    }
+    get(key) {
+        const entry = this.data[key];
+        if (!entry) {
+            return;
+        }
+        return entry;
+    }
+    set(key, entry) {
+        this.data[key] = entry;
+        return entry;
+    }
+    delete(key) {
+        delete this.data[key];
+    }
+    async purgeExpired() {
+        const now = Date.now();
+        if (this.lastPurgeTime + S3ExpressIdentityCache.EXPIRED_CREDENTIAL_PURGE_INTERVAL_MS > now) {
+            return;
+        }
+        for (const key in this.data) {
+            const entry = this.data[key];
+            if (!entry.isRefreshing) {
+                const credential = await entry.identity;
+                if (credential.expiration) {
+                    if (credential.expiration.getTime() < now) {
+                        delete this.data[key];
+                    }
+                }
+            }
+        }
+    }
+}
+exports.S3ExpressIdentityCache = S3ExpressIdentityCache;
+S3ExpressIdentityCache.EXPIRED_CREDENTIAL_PURGE_INTERVAL_MS = 30000;

package/dist-cjs/s3-express/classes/S3ExpressIdentityCacheEntry.js ADDED Viewed

@@ -0,0 +1,15 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.S3ExpressIdentityCacheEntry = void 0;
+class S3ExpressIdentityCacheEntry {
+    constructor(_identity, isRefreshing = false, accessed = Date.now()) {
+        this._identity = _identity;
+        this.isRefreshing = isRefreshing;
+        this.accessed = accessed;
+    }
+    get identity() {
+        this.accessed = Date.now();
+        return this._identity;
+    }
+}
+exports.S3ExpressIdentityCacheEntry = S3ExpressIdentityCacheEntry;

package/dist-cjs/s3-express/classes/S3ExpressIdentityProviderImpl.js ADDED Viewed

@@ -0,0 +1,53 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.S3ExpressIdentityProviderImpl = void 0;
+const S3ExpressIdentityCache_1 = require("./S3ExpressIdentityCache");
+const S3ExpressIdentityCacheEntry_1 = require("./S3ExpressIdentityCacheEntry");
+class S3ExpressIdentityProviderImpl {
+    constructor(createSessionFn, cache = new S3ExpressIdentityCache_1.S3ExpressIdentityCache()) {
+        this.createSessionFn = createSessionFn;
+        this.cache = cache;
+    }
+    async getS3ExpressIdentity(awsIdentity, identityProperties) {
+        const key = identityProperties.Bucket;
+        const { cache } = this;
+        const entry = cache.get(key);
+        if (entry) {
+            return entry.identity.then((identity) => {
+                var _a, _b, _c, _d;
+                const isExpired = ((_b = (_a = identity.expiration) === null || _a === void 0 ? void 0 : _a.getTime()) !== null && _b !== void 0 ? _b : 0) < Date.now();
+                if (isExpired) {
+                    return cache.set(key, new S3ExpressIdentityCacheEntry_1.S3ExpressIdentityCacheEntry(this.getIdentity(key))).identity;
+                }
+                const isExpiringSoon = ((_d = (_c = identity.expiration) === null || _c === void 0 ? void 0 : _c.getTime()) !== null && _d !== void 0 ? _d : 0) < Date.now() + S3ExpressIdentityProviderImpl.REFRESH_WINDOW_MS;
+                if (isExpiringSoon && !entry.isRefreshing) {
+                    entry.isRefreshing = true;
+                    this.getIdentity(key).then((id) => {
+                        cache.set(key, new S3ExpressIdentityCacheEntry_1.S3ExpressIdentityCacheEntry(Promise.resolve(id)));
+                    });
+                }
+                return identity;
+            });
+        }
+        return cache.set(key, new S3ExpressIdentityCacheEntry_1.S3ExpressIdentityCacheEntry(this.getIdentity(key))).identity;
+    }
+    async getIdentity(key) {
+        var _a, _b;
+        await this.cache.purgeExpired().catch((error) => {
+            console.warn("Error while clearing expired entries in S3ExpressIdentityCache: \n" + error);
+        });
+        const session = await this.createSessionFn(key);
+        if (!((_a = session.Credentials) === null || _a === void 0 ? void 0 : _a.AccessKeyId) || !((_b = session.Credentials) === null || _b === void 0 ? void 0 : _b.SecretAccessKey)) {
+            throw new Error("s3#createSession response credential missing AccessKeyId or SecretAccessKey.");
+        }
+        const identity = {
+            accessKeyId: session.Credentials.AccessKeyId,
+            secretAccessKey: session.Credentials.SecretAccessKey,
+            sessionToken: session.Credentials.SessionToken,
+            expiration: session.Credentials.Expiration ? new Date(session.Credentials.Expiration) : undefined,
+        };
+        return identity;
+    }
+}
+exports.S3ExpressIdentityProviderImpl = S3ExpressIdentityProviderImpl;
+S3ExpressIdentityProviderImpl.REFRESH_WINDOW_MS = 60000;

package/dist-cjs/s3-express/classes/SignatureV4S3Express.js ADDED Viewed

@@ -0,0 +1,46 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.SignatureV4S3Express = void 0;
+const signature_v4_1 = require("@smithy/signature-v4");
+const constants_1 = require("../constants");
+class SignatureV4S3Express extends signature_v4_1.SignatureV4 {
+    async signWithCredentials(requestToSign, credentials, options) {
+        const credentialsWithoutSessionToken = getCredentialsWithoutSessionToken(credentials);
+        requestToSign.headers[constants_1.SESSION_TOKEN_HEADER] = credentials.sessionToken;
+        const privateAccess = this;
+        setSingleOverride(privateAccess, credentialsWithoutSessionToken);
+        return privateAccess.signRequest(requestToSign, options !== null && options !== void 0 ? options : {});
+    }
+    async presignWithCredentials(requestToSign, credentials, options) {
+        var _a;
+        const credentialsWithoutSessionToken = getCredentialsWithoutSessionToken(credentials);
+        delete requestToSign.headers[constants_1.SESSION_TOKEN_HEADER];
+        requestToSign.headers[constants_1.SESSION_TOKEN_QUERY_PARAM] = credentials.sessionToken;
+        requestToSign.query = (_a = requestToSign.query) !== null && _a !== void 0 ? _a : {};
+        requestToSign.query[constants_1.SESSION_TOKEN_QUERY_PARAM] = credentials.sessionToken;
+        const privateAccess = this;
+        setSingleOverride(privateAccess, credentialsWithoutSessionToken);
+        return this.presign(requestToSign, options);
+    }
+}
+exports.SignatureV4S3Express = SignatureV4S3Express;
+function getCredentialsWithoutSessionToken(credentials) {
+    const credentialsWithoutSessionToken = {
+        accessKeyId: credentials.accessKeyId,
+        secretAccessKey: credentials.secretAccessKey,
+        expiration: credentials.expiration,
+    };
+    return credentialsWithoutSessionToken;
+}
+function setSingleOverride(privateAccess, credentialsWithoutSessionToken) {
+    const id = setTimeout(() => {
+        throw new Error("SignatureV4S3Express credential override was created but not called.");
+    }, 10);
+    const currentCredentialProvider = privateAccess.credentialProvider;
+    const overrideCredentialsProviderOnce = () => {
+        clearTimeout(id);
+        privateAccess.credentialProvider = currentCredentialProvider;
+        return Promise.resolve(credentialsWithoutSessionToken);
+    };
+    privateAccess.credentialProvider = overrideCredentialsProviderOnce;
+}

package/dist-cjs/s3-express/constants.js ADDED Viewed

@@ -0,0 +1,16 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS = exports.NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_INI_NAME = exports.NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_ENV_NAME = exports.SESSION_TOKEN_HEADER = exports.SESSION_TOKEN_QUERY_PARAM = exports.S3_EXPRESS_AUTH_SCHEME = exports.S3_EXPRESS_BACKEND = exports.S3_EXPRESS_BUCKET_TYPE = void 0;
+const util_config_provider_1 = require("@smithy/util-config-provider");
+exports.S3_EXPRESS_BUCKET_TYPE = "Directory";
+exports.S3_EXPRESS_BACKEND = "S3Express";
+exports.S3_EXPRESS_AUTH_SCHEME = "sigv4-s3express";
+exports.SESSION_TOKEN_QUERY_PARAM = "X-Amz-S3session-Token";
+exports.SESSION_TOKEN_HEADER = exports.SESSION_TOKEN_QUERY_PARAM.toLowerCase();
+exports.NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_ENV_NAME = "AWS_S3_DISABLE_EXPRESS_SESSION_AUTH";
+exports.NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_INI_NAME = "s3_disable_express_session_auth";
+exports.NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS = {
+    environmentVariableSelector: (env) => (0, util_config_provider_1.booleanSelector)(env, exports.NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_ENV_NAME, util_config_provider_1.SelectorType.ENV),
+    configFileSelector: (profile) => (0, util_config_provider_1.booleanSelector)(profile, exports.NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_INI_NAME, util_config_provider_1.SelectorType.CONFIG),
+    default: false,
+};

package/dist-cjs/s3-express/functions/s3ExpressMiddleware.js ADDED Viewed

@@ -0,0 +1,45 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getS3ExpressPlugin = exports.s3ExpressMiddlewareOptions = exports.s3ExpressMiddleware = void 0;
+const protocol_http_1 = require("@smithy/protocol-http");
+const constants_1 = require("../constants");
+const s3ExpressMiddleware = (options) => {
+    return (next, context) => async (args) => {
+        var _a, _b, _c, _d, _e;
+        if (context.endpointV2) {
+            const endpoint = context.endpointV2;
+            const isS3ExpressAuth = ((_c = (_b = (_a = endpoint.properties) === null || _a === void 0 ? void 0 : _a.authSchemes) === null || _b === void 0 ? void 0 : _b[0]) === null || _c === void 0 ? void 0 : _c.name) === constants_1.S3_EXPRESS_AUTH_SCHEME;
+            const isS3ExpressBucket = ((_d = endpoint.properties) === null || _d === void 0 ? void 0 : _d.backend) === constants_1.S3_EXPRESS_BACKEND ||
+                ((_e = endpoint.properties) === null || _e === void 0 ? void 0 : _e.bucketType) === constants_1.S3_EXPRESS_BUCKET_TYPE;
+            if (isS3ExpressBucket) {
+                context.isS3ExpressBucket = true;
+            }
+            if (isS3ExpressAuth) {
+                const requestBucket = args.input.Bucket;
+                if (requestBucket) {
+                    const s3ExpressIdentity = await options.s3ExpressIdentityProvider.getS3ExpressIdentity(await options.credentials(), {
+                        Bucket: requestBucket,
+                    });
+                    context.s3ExpressIdentity = s3ExpressIdentity;
+                    if (protocol_http_1.HttpRequest.isInstance(args.request) && s3ExpressIdentity.sessionToken) {
+                        args.request.headers[constants_1.SESSION_TOKEN_HEADER] = s3ExpressIdentity.sessionToken;
+                    }
+                }
+            }
+        }
+        return next(args);
+    };
+};
+exports.s3ExpressMiddleware = s3ExpressMiddleware;
+exports.s3ExpressMiddlewareOptions = {
+    name: "s3ExpressMiddleware",
+    step: "build",
+    tags: ["S3", "S3_EXPRESS"],
+    override: true,
+};
+const getS3ExpressPlugin = (options) => ({
+    applyToStack: (clientStack) => {
+        clientStack.add((0, exports.s3ExpressMiddleware)(options), exports.s3ExpressMiddlewareOptions);
+    },
+});
+exports.getS3ExpressPlugin = getS3ExpressPlugin;

package/dist-cjs/s3-express/index.js ADDED Viewed

@@ -0,0 +1,17 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.s3ExpressMiddlewareOptions = exports.s3ExpressMiddleware = exports.getS3ExpressPlugin = exports.NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS = exports.SignatureV4S3Express = exports.S3ExpressIdentityProviderImpl = exports.S3ExpressIdentityCacheEntry = exports.S3ExpressIdentityCache = void 0;
+var S3ExpressIdentityCache_1 = require("./classes/S3ExpressIdentityCache");
+Object.defineProperty(exports, "S3ExpressIdentityCache", { enumerable: true, get: function () { return S3ExpressIdentityCache_1.S3ExpressIdentityCache; } });
+var S3ExpressIdentityCacheEntry_1 = require("./classes/S3ExpressIdentityCacheEntry");
+Object.defineProperty(exports, "S3ExpressIdentityCacheEntry", { enumerable: true, get: function () { return S3ExpressIdentityCacheEntry_1.S3ExpressIdentityCacheEntry; } });
+var S3ExpressIdentityProviderImpl_1 = require("./classes/S3ExpressIdentityProviderImpl");
+Object.defineProperty(exports, "S3ExpressIdentityProviderImpl", { enumerable: true, get: function () { return S3ExpressIdentityProviderImpl_1.S3ExpressIdentityProviderImpl; } });
+var SignatureV4S3Express_1 = require("./classes/SignatureV4S3Express");
+Object.defineProperty(exports, "SignatureV4S3Express", { enumerable: true, get: function () { return SignatureV4S3Express_1.SignatureV4S3Express; } });
+var constants_1 = require("./constants");
+Object.defineProperty(exports, "NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS", { enumerable: true, get: function () { return constants_1.NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS; } });
+var s3ExpressMiddleware_1 = require("./functions/s3ExpressMiddleware");
+Object.defineProperty(exports, "getS3ExpressPlugin", { enumerable: true, get: function () { return s3ExpressMiddleware_1.getS3ExpressPlugin; } });
+Object.defineProperty(exports, "s3ExpressMiddleware", { enumerable: true, get: function () { return s3ExpressMiddleware_1.s3ExpressMiddleware; } });
+Object.defineProperty(exports, "s3ExpressMiddlewareOptions", { enumerable: true, get: function () { return s3ExpressMiddleware_1.s3ExpressMiddlewareOptions; } });

package/dist-cjs/s3-express/interfaces/S3ExpressIdentity.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist-cjs/s3-express/interfaces/S3ExpressIdentityProvider.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ "use strict";
2	+ Object.defineProperty(exports, "__esModule", { value: true });

package/dist-cjs/s3Configuration.js CHANGED Viewed

@@ -1,14 +1,20 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.resolveS3Config = void 0;
-const resolveS3Config = (input) => {
-    var _a, _b, _c, _d;
-    return ({
+const s3_express_1 = require("./s3-express");
+const resolveS3Config = (input, { session, }) => {
+    var _a, _b, _c, _d, _e;
+    const [s3ClientProvider, CreateSessionCommandCtor] = session;
+    return {
         ...input,
         forcePathStyle: (_a = input.forcePathStyle) !== null && _a !== void 0 ? _a : false,
         useAccelerateEndpoint: (_b = input.useAccelerateEndpoint) !== null && _b !== void 0 ? _b : false,
         disableMultiregionAccessPoints: (_c = input.disableMultiregionAccessPoints) !== null && _c !== void 0 ? _c : false,
         followRegionRedirects: (_d = input.followRegionRedirects) !== null && _d !== void 0 ? _d : false,
-    });
+        s3ExpressIdentityProvider: (_e = input.s3ExpressIdentityProvider) !== null && _e !== void 0 ? _e : new s3_express_1.S3ExpressIdentityProviderImpl(async (key) => s3ClientProvider().send(new CreateSessionCommandCtor({
+            Bucket: key,
+            SessionMode: "ReadWrite",
+        }))),
+    };
 };
 exports.resolveS3Config = resolveS3Config;

package/dist-es/index.js CHANGED Viewed

@@ -1,6 +1,7 @@
 export * from "./check-content-length-header";
 export * from "./region-redirect-endpoint-middleware";
 export * from "./region-redirect-middleware";
+export * from "./s3-express/index";
 export * from "./s3Configuration";
 export * from "./throw-200-exceptions";
 export * from "./validate-bucket-name";

package/dist-es/s3-express/classes/S3ExpressIdentityCache.js ADDED Viewed

@@ -0,0 +1,38 @@
+export class S3ExpressIdentityCache {
+    constructor(data = {}) {
+        this.data = data;
+        this.lastPurgeTime = Date.now();
+    }
+    get(key) {
+        const entry = this.data[key];
+        if (!entry) {
+            return;
+        }
+        return entry;
+    }
+    set(key, entry) {
+        this.data[key] = entry;
+        return entry;
+    }
+    delete(key) {
+        delete this.data[key];
+    }
+    async purgeExpired() {
+        const now = Date.now();
+        if (this.lastPurgeTime + S3ExpressIdentityCache.EXPIRED_CREDENTIAL_PURGE_INTERVAL_MS > now) {
+            return;
+        }
+        for (const key in this.data) {
+            const entry = this.data[key];
+            if (!entry.isRefreshing) {
+                const credential = await entry.identity;
+                if (credential.expiration) {
+                    if (credential.expiration.getTime() < now) {
+                        delete this.data[key];
+                    }
+                }
+            }
+        }
+    }
+}
+S3ExpressIdentityCache.EXPIRED_CREDENTIAL_PURGE_INTERVAL_MS = 30000;

package/dist-es/s3-express/classes/S3ExpressIdentityCacheEntry.js ADDED Viewed

@@ -0,0 +1,11 @@
+export class S3ExpressIdentityCacheEntry {
+    constructor(_identity, isRefreshing = false, accessed = Date.now()) {
+        this._identity = _identity;
+        this.isRefreshing = isRefreshing;
+        this.accessed = accessed;
+    }
+    get identity() {
+        this.accessed = Date.now();
+        return this._identity;
+    }
+}

package/dist-es/s3-express/classes/S3ExpressIdentityProviderImpl.js ADDED Viewed

@@ -0,0 +1,47 @@
+import { S3ExpressIdentityCache } from "./S3ExpressIdentityCache";
+import { S3ExpressIdentityCacheEntry } from "./S3ExpressIdentityCacheEntry";
+export class S3ExpressIdentityProviderImpl {
+    constructor(createSessionFn, cache = new S3ExpressIdentityCache()) {
+        this.createSessionFn = createSessionFn;
+        this.cache = cache;
+    }
+    async getS3ExpressIdentity(awsIdentity, identityProperties) {
+        const key = identityProperties.Bucket;
+        const { cache } = this;
+        const entry = cache.get(key);
+        if (entry) {
+            return entry.identity.then((identity) => {
+                const isExpired = (identity.expiration?.getTime() ?? 0) < Date.now();
+                if (isExpired) {
+                    return cache.set(key, new S3ExpressIdentityCacheEntry(this.getIdentity(key))).identity;
+                }
+                const isExpiringSoon = (identity.expiration?.getTime() ?? 0) < Date.now() + S3ExpressIdentityProviderImpl.REFRESH_WINDOW_MS;
+                if (isExpiringSoon && !entry.isRefreshing) {
+                    entry.isRefreshing = true;
+                    this.getIdentity(key).then((id) => {
+                        cache.set(key, new S3ExpressIdentityCacheEntry(Promise.resolve(id)));
+                    });
+                }
+                return identity;
+            });
+        }
+        return cache.set(key, new S3ExpressIdentityCacheEntry(this.getIdentity(key))).identity;
+    }
+    async getIdentity(key) {
+        await this.cache.purgeExpired().catch((error) => {
+            console.warn("Error while clearing expired entries in S3ExpressIdentityCache: \n" + error);
+        });
+        const session = await this.createSessionFn(key);
+        if (!session.Credentials?.AccessKeyId || !session.Credentials?.SecretAccessKey) {
+            throw new Error("s3#createSession response credential missing AccessKeyId or SecretAccessKey.");
+        }
+        const identity = {
+            accessKeyId: session.Credentials.AccessKeyId,
+            secretAccessKey: session.Credentials.SecretAccessKey,
+            sessionToken: session.Credentials.SessionToken,
+            expiration: session.Credentials.Expiration ? new Date(session.Credentials.Expiration) : undefined,
+        };
+        return identity;
+    }
+}
+S3ExpressIdentityProviderImpl.REFRESH_WINDOW_MS = 60000;

package/dist-es/s3-express/classes/SignatureV4S3Express.js ADDED Viewed

@@ -0,0 +1,41 @@
+import { SignatureV4 } from "@smithy/signature-v4";
+import { SESSION_TOKEN_HEADER, SESSION_TOKEN_QUERY_PARAM } from "../constants";
+export class SignatureV4S3Express extends SignatureV4 {
+    async signWithCredentials(requestToSign, credentials, options) {
+        const credentialsWithoutSessionToken = getCredentialsWithoutSessionToken(credentials);
+        requestToSign.headers[SESSION_TOKEN_HEADER] = credentials.sessionToken;
+        const privateAccess = this;
+        setSingleOverride(privateAccess, credentialsWithoutSessionToken);
+        return privateAccess.signRequest(requestToSign, options ?? {});
+    }
+    async presignWithCredentials(requestToSign, credentials, options) {
+        const credentialsWithoutSessionToken = getCredentialsWithoutSessionToken(credentials);
+        delete requestToSign.headers[SESSION_TOKEN_HEADER];
+        requestToSign.headers[SESSION_TOKEN_QUERY_PARAM] = credentials.sessionToken;
+        requestToSign.query = requestToSign.query ?? {};
+        requestToSign.query[SESSION_TOKEN_QUERY_PARAM] = credentials.sessionToken;
+        const privateAccess = this;
+        setSingleOverride(privateAccess, credentialsWithoutSessionToken);
+        return this.presign(requestToSign, options);
+    }
+}
+function getCredentialsWithoutSessionToken(credentials) {
+    const credentialsWithoutSessionToken = {
+        accessKeyId: credentials.accessKeyId,
+        secretAccessKey: credentials.secretAccessKey,
+        expiration: credentials.expiration,
+    };
+    return credentialsWithoutSessionToken;
+}
+function setSingleOverride(privateAccess, credentialsWithoutSessionToken) {
+    const id = setTimeout(() => {
+        throw new Error("SignatureV4S3Express credential override was created but not called.");
+    }, 10);
+    const currentCredentialProvider = privateAccess.credentialProvider;
+    const overrideCredentialsProviderOnce = () => {
+        clearTimeout(id);
+        privateAccess.credentialProvider = currentCredentialProvider;
+        return Promise.resolve(credentialsWithoutSessionToken);
+    };
+    privateAccess.credentialProvider = overrideCredentialsProviderOnce;
+}

package/dist-es/s3-express/constants.js ADDED Viewed

@@ -0,0 +1,13 @@
+import { booleanSelector, SelectorType } from "@smithy/util-config-provider";
+export const S3_EXPRESS_BUCKET_TYPE = "Directory";
+export const S3_EXPRESS_BACKEND = "S3Express";
+export const S3_EXPRESS_AUTH_SCHEME = "sigv4-s3express";
+export const SESSION_TOKEN_QUERY_PARAM = "X-Amz-S3session-Token";
+export const SESSION_TOKEN_HEADER = SESSION_TOKEN_QUERY_PARAM.toLowerCase();
+export const NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_ENV_NAME = "AWS_S3_DISABLE_EXPRESS_SESSION_AUTH";
+export const NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_INI_NAME = "s3_disable_express_session_auth";
+export const NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS = {
+    environmentVariableSelector: (env) => booleanSelector(env, NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_ENV_NAME, SelectorType.ENV),
+    configFileSelector: (profile) => booleanSelector(profile, NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_INI_NAME, SelectorType.CONFIG),
+    default: false,
+};

package/dist-es/s3-express/functions/s3ExpressMiddleware.js ADDED Viewed

@@ -0,0 +1,39 @@
+import { HttpRequest } from "@smithy/protocol-http";
+import { S3_EXPRESS_AUTH_SCHEME, S3_EXPRESS_BACKEND, S3_EXPRESS_BUCKET_TYPE, SESSION_TOKEN_HEADER } from "../constants";
+export const s3ExpressMiddleware = (options) => {
+    return (next, context) => async (args) => {
+        if (context.endpointV2) {
+            const endpoint = context.endpointV2;
+            const isS3ExpressAuth = endpoint.properties?.authSchemes?.[0]?.name === S3_EXPRESS_AUTH_SCHEME;
+            const isS3ExpressBucket = endpoint.properties?.backend === S3_EXPRESS_BACKEND ||
+                endpoint.properties?.bucketType === S3_EXPRESS_BUCKET_TYPE;
+            if (isS3ExpressBucket) {
+                context.isS3ExpressBucket = true;
+            }
+            if (isS3ExpressAuth) {
+                const requestBucket = args.input.Bucket;
+                if (requestBucket) {
+                    const s3ExpressIdentity = await options.s3ExpressIdentityProvider.getS3ExpressIdentity(await options.credentials(), {
+                        Bucket: requestBucket,
+                    });
+                    context.s3ExpressIdentity = s3ExpressIdentity;
+                    if (HttpRequest.isInstance(args.request) && s3ExpressIdentity.sessionToken) {
+                        args.request.headers[SESSION_TOKEN_HEADER] = s3ExpressIdentity.sessionToken;
+                    }
+                }
+            }
+        }
+        return next(args);
+    };
+};
+export const s3ExpressMiddlewareOptions = {
+    name: "s3ExpressMiddleware",
+    step: "build",
+    tags: ["S3", "S3_EXPRESS"],
+    override: true,
+};
+export const getS3ExpressPlugin = (options) => ({
+    applyToStack: (clientStack) => {
+        clientStack.add(s3ExpressMiddleware(options), s3ExpressMiddlewareOptions);
+    },
+});

package/dist-es/s3-express/index.js ADDED Viewed

@@ -0,0 +1,6 @@
+export { S3ExpressIdentityCache } from "./classes/S3ExpressIdentityCache";
+export { S3ExpressIdentityCacheEntry } from "./classes/S3ExpressIdentityCacheEntry";
+export { S3ExpressIdentityProviderImpl } from "./classes/S3ExpressIdentityProviderImpl";
+export { SignatureV4S3Express } from "./classes/SignatureV4S3Express";
+export { NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS } from "./constants";
+export { getS3ExpressPlugin, s3ExpressMiddleware, s3ExpressMiddlewareOptions } from "./functions/s3ExpressMiddleware";

package/dist-es/s3-express/interfaces/S3ExpressIdentity.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export {};

package/dist-es/s3-express/interfaces/S3ExpressIdentityProvider.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export {};

package/dist-es/s3Configuration.js CHANGED Viewed

@@ -1,7 +1,16 @@
-export const resolveS3Config = (input) => ({
-    ...input,
-    forcePathStyle: input.forcePathStyle ?? false,
-    useAccelerateEndpoint: input.useAccelerateEndpoint ?? false,
-    disableMultiregionAccessPoints: input.disableMultiregionAccessPoints ?? false,
-    followRegionRedirects: input.followRegionRedirects ?? false,
-});
+import { S3ExpressIdentityProviderImpl } from "./s3-express";
+export const resolveS3Config = (input, { session, }) => {
+    const [s3ClientProvider, CreateSessionCommandCtor] = session;
+    return {
+        ...input,
+        forcePathStyle: input.forcePathStyle ?? false,
+        useAccelerateEndpoint: input.useAccelerateEndpoint ?? false,
+        disableMultiregionAccessPoints: input.disableMultiregionAccessPoints ?? false,
+        followRegionRedirects: input.followRegionRedirects ?? false,
+        s3ExpressIdentityProvider: input.s3ExpressIdentityProvider ??
+            new S3ExpressIdentityProviderImpl(async (key) => s3ClientProvider().send(new CreateSessionCommandCtor({
+                Bucket: key,
+                SessionMode: "ReadWrite",
+            }))),
+    };
+};

package/dist-types/index.d.ts CHANGED Viewed

@@ -1,6 +1,7 @@
 export * from "./check-content-length-header";
 export * from "./region-redirect-endpoint-middleware";
 export * from "./region-redirect-middleware";
+export * from "./s3-express/index";
 export * from "./s3Configuration";
 export * from "./throw-200-exceptions";
 export * from "./validate-bucket-name";

package/dist-types/s3-express/classes/S3ExpressIdentityCache.d.ts ADDED Viewed

@@ -0,0 +1,16 @@
+import { S3ExpressIdentityCacheEntry } from "./S3ExpressIdentityCacheEntry";
+/**
+ * @internal
+ *
+ * Stores identities by key.
+ */
+export declare class S3ExpressIdentityCache {
+    private data;
+    private lastPurgeTime;
+    static EXPIRED_CREDENTIAL_PURGE_INTERVAL_MS: number;
+    constructor(data?: Record<string, S3ExpressIdentityCacheEntry>);
+    get(key: string): undefined | S3ExpressIdentityCacheEntry;
+    set(key: string, entry: S3ExpressIdentityCacheEntry): S3ExpressIdentityCacheEntry;
+    delete(key: string): void;
+    purgeExpired(): Promise<void>;
+}

package/dist-types/s3-express/classes/S3ExpressIdentityCacheEntry.d.ts ADDED Viewed

@@ -0,0 +1,16 @@
+import { S3ExpressIdentity } from "../interfaces/S3ExpressIdentity";
+/**
+ * @internal
+ */
+export declare class S3ExpressIdentityCacheEntry {
+    private _identity;
+    isRefreshing: boolean;
+    accessed: number;
+    /**
+     * @param identity - stored identity.
+     * @param accessed - timestamp of last access in epoch ms.
+     * @param isRefreshing - this key is currently in the process of being refreshed (background).
+     */
+    constructor(_identity: Promise<S3ExpressIdentity>, isRefreshing?: boolean, accessed?: number);
+    get identity(): Promise<S3ExpressIdentity>;
+}

package/dist-types/s3-express/classes/S3ExpressIdentityProviderImpl.d.ts ADDED Viewed

@@ -0,0 +1,32 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { S3ExpressIdentity } from "../interfaces/S3ExpressIdentity";
+import { S3ExpressIdentityProvider } from "../interfaces/S3ExpressIdentityProvider";
+import { S3ExpressIdentityCache } from "./S3ExpressIdentityCache";
+/**
+ * @internal
+ *
+ * This should match S3::CreateSessionCommandOutput::SessionCredentials
+ * but it is not imported since that would create a circular dependency.
+ */
+type Credentials = {
+    AccessKeyId: string | undefined;
+    SecretAccessKey: string | undefined;
+    SessionToken: string | undefined;
+    Expiration: Date | undefined;
+};
+/**
+ * @internal
+ */
+export declare class S3ExpressIdentityProviderImpl implements S3ExpressIdentityProvider {
+    private createSessionFn;
+    private cache;
+    static REFRESH_WINDOW_MS: number;
+    constructor(createSessionFn: (key: string) => Promise<{
+        Credentials: Credentials;
+    }>, cache?: S3ExpressIdentityCache);
+    getS3ExpressIdentity(awsIdentity: AwsCredentialIdentity, identityProperties: {
+        Bucket: string;
+    } & Record<string, string>): Promise<S3ExpressIdentity>;
+    private getIdentity;
+}
+export {};

package/dist-types/s3-express/classes/SignatureV4S3Express.d.ts ADDED Viewed

@@ -0,0 +1,17 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { SignatureV4 } from "@smithy/signature-v4";
+import { HttpRequest as IHttpRequest, RequestPresigningArguments, RequestSigningArguments } from "@smithy/types";
+export declare class SignatureV4S3Express extends SignatureV4 {
+    /**
+     * Signs with alternate provided credentials instead of those provided in the
+     * constructor.
+     *
+     * Additionally omits the credential sessionToken and assigns it to the
+     * alternate header field for S3 Express.
+     */
+    signWithCredentials(requestToSign: IHttpRequest, credentials: AwsCredentialIdentity, options?: RequestSigningArguments): Promise<IHttpRequest>;
+    /**
+     * Similar to {@link SignatureV4S3Express#signWithCredentials} but for presigning.
+     */
+    presignWithCredentials(requestToSign: IHttpRequest, credentials: AwsCredentialIdentity, options?: RequestPresigningArguments): Promise<IHttpRequest>;
+}

package/dist-types/s3-express/constants.d.ts ADDED Viewed

@@ -0,0 +1,37 @@
+import type { LoadedConfigSelectors } from "@smithy/node-config-provider";
+/**
+ * @internal
+ *
+ * @deprecated will be replaced by backend.
+ *
+ * TODO(s3-express): non-beta value, backend == S3Express.
+ */
+export declare const S3_EXPRESS_BUCKET_TYPE = "Directory";
+/**
+ * @internal
+ */
+export declare const S3_EXPRESS_BACKEND = "S3Express";
+/**
+ * @internal
+ */
+export declare const S3_EXPRESS_AUTH_SCHEME = "sigv4-s3express";
+/**
+ * @internal
+ */
+export declare const SESSION_TOKEN_QUERY_PARAM = "X-Amz-S3session-Token";
+/**
+ * @internal
+ */
+export declare const SESSION_TOKEN_HEADER: string;
+/**
+ * @internal
+ */
+export declare const NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_ENV_NAME = "AWS_S3_DISABLE_EXPRESS_SESSION_AUTH";
+/**
+ * @internal
+ */
+export declare const NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_INI_NAME = "s3_disable_express_session_auth";
+/**
+ * @internal
+ */
+export declare const NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS: LoadedConfigSelectors<boolean>;

package/dist-types/s3-express/functions/s3ExpressMiddleware.d.ts ADDED Viewed

@@ -0,0 +1,32 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { BuildHandlerOptions, BuildMiddleware, Logger, MemoizedProvider, Pluggable } from "@smithy/types";
+import { S3ExpressIdentity } from "../interfaces/S3ExpressIdentity";
+import { S3ExpressIdentityProvider } from "../interfaces/S3ExpressIdentityProvider";
+declare module "@smithy/types" {
+    interface HandlerExecutionContext {
+        /**
+         * Reserved key, only when using S3.
+         */
+        s3ExpressIdentity?: S3ExpressIdentity;
+    }
+}
+/**
+ * @internal
+ */
+export interface S3ExpressResolvedConfig {
+    logger?: Logger;
+    s3ExpressIdentityProvider: S3ExpressIdentityProvider;
+    credentials: MemoizedProvider<AwsCredentialIdentity>;
+}
+/**
+ * @internal
+ */
+export declare const s3ExpressMiddleware: (options: S3ExpressResolvedConfig) => BuildMiddleware<any, any>;
+/**
+ * @internal
+ */
+export declare const s3ExpressMiddlewareOptions: BuildHandlerOptions;
+/**
+ * @internal
+ */
+export declare const getS3ExpressPlugin: (options: S3ExpressResolvedConfig) => Pluggable<any, any>;

package/dist-types/s3-express/index.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+export { S3ExpressIdentityCache } from "./classes/S3ExpressIdentityCache";
+export { S3ExpressIdentityCacheEntry } from "./classes/S3ExpressIdentityCacheEntry";
+export { S3ExpressIdentityProviderImpl } from "./classes/S3ExpressIdentityProviderImpl";
+export { SignatureV4S3Express } from "./classes/SignatureV4S3Express";
+export { NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS } from "./constants";
+export { getS3ExpressPlugin, s3ExpressMiddleware, s3ExpressMiddlewareOptions } from "./functions/s3ExpressMiddleware";
+export { S3ExpressIdentity } from "./interfaces/S3ExpressIdentity";
+export { S3ExpressIdentityProvider } from "./interfaces/S3ExpressIdentityProvider";

package/dist-types/s3-express/interfaces/S3ExpressIdentity.d.ts ADDED Viewed

@@ -0,0 +1,6 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+/**
+ * @public
+ */
+export interface S3ExpressIdentity extends AwsCredentialIdentity {
+}

package/dist-types/s3-express/interfaces/S3ExpressIdentityProvider.d.ts ADDED Viewed

@@ -0,0 +1,12 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { S3ExpressIdentity } from "./S3ExpressIdentity";
+/**
+ * @public
+ */
+export interface S3ExpressIdentityProvider {
+    /**
+     * @param awsIdentity - pre-existing credentials.
+     * @param identityProperties - unknown.
+     */
+    getS3ExpressIdentity(awsIdentity: AwsCredentialIdentity, identityProperties: Record<string, string>): Promise<S3ExpressIdentity>;
+}

package/dist-types/s3Configuration.d.ts CHANGED Viewed

@@ -1,3 +1,5 @@
+import type { Client, Command } from "@smithy/types";
+import { S3ExpressIdentityProvider } from "./s3-express";
 /**
  * @public
  *
@@ -24,11 +26,30 @@ export interface S3InputConfig {
      * This feature should only be used as a last resort if you do not know the region of your bucket(s) ahead of time.
      */
     followRegionRedirects?: boolean;
+    s3ExpressIdentityProvider?: S3ExpressIdentityProvider;
 }
+/**
+ * @internal
+ * This is a placeholder for the actual
+ * S3Client type from \@aws-sdk/client-s3. It is not explicitly
+ * imported to avoid a circular dependency.
+ */
+type PlaceholderS3Client = Client<any, any, any> & any;
+/**
+ * @internal
+ * Placeholder for the constructor for CreateSessionCommand.
+ */
+type PlaceholderCreateSessionCommandCtor = {
+    new (args: any): Command<any, any, any, any, any>;
+};
 export interface S3ResolvedConfig {
     forcePathStyle: boolean;
     useAccelerateEndpoint: boolean;
     disableMultiregionAccessPoints: boolean;
     followRegionRedirects: boolean;
+    s3ExpressIdentityProvider: S3ExpressIdentityProvider;
 }
-export declare const resolveS3Config: <T>(input: T & S3InputConfig) => T & S3ResolvedConfig;
+export declare const resolveS3Config: <T>(input: T & S3InputConfig, { session, }: {
+    session: [() => PlaceholderS3Client, PlaceholderCreateSessionCommandCtor];
+}) => T & S3ResolvedConfig;
+export {};

package/dist-types/ts3.4/index.d.ts CHANGED Viewed

@@ -1,6 +1,7 @@
 export * from "./check-content-length-header";
 export * from "./region-redirect-endpoint-middleware";
 export * from "./region-redirect-middleware";
+export * from "./s3-express/index";
 export * from "./s3Configuration";
 export * from "./throw-200-exceptions";
 export * from "./validate-bucket-name";

package/dist-types/ts3.4/s3-express/classes/S3ExpressIdentityCache.d.ts ADDED Viewed

@@ -0,0 +1,14 @@
+import { S3ExpressIdentityCacheEntry } from "./S3ExpressIdentityCacheEntry";
+export declare class S3ExpressIdentityCache {
+  private data;
+  private lastPurgeTime;
+  static EXPIRED_CREDENTIAL_PURGE_INTERVAL_MS: number;
+  constructor(data?: Record<string, S3ExpressIdentityCacheEntry>);
+  get(key: string): undefined | S3ExpressIdentityCacheEntry;
+  set(
+    key: string,
+    entry: S3ExpressIdentityCacheEntry
+  ): S3ExpressIdentityCacheEntry;
+  delete(key: string): void;
+  purgeExpired(): Promise<void>;
+}

package/dist-types/ts3.4/s3-express/classes/S3ExpressIdentityCacheEntry.d.ts ADDED Viewed

@@ -0,0 +1,12 @@
+import { S3ExpressIdentity } from "../interfaces/S3ExpressIdentity";
+export declare class S3ExpressIdentityCacheEntry {
+  private _identity;
+  isRefreshing: boolean;
+  accessed: number;
+  constructor(
+    _identity: Promise<S3ExpressIdentity>,
+    isRefreshing?: boolean,
+    accessed?: number
+  );
+  readonly identity: Promise<S3ExpressIdentity>;
+}

package/dist-types/ts3.4/s3-express/classes/S3ExpressIdentityProviderImpl.d.ts ADDED Viewed

@@ -0,0 +1,31 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { S3ExpressIdentity } from "../interfaces/S3ExpressIdentity";
+import { S3ExpressIdentityProvider } from "../interfaces/S3ExpressIdentityProvider";
+import { S3ExpressIdentityCache } from "./S3ExpressIdentityCache";
+type Credentials = {
+  AccessKeyId: string | undefined;
+  SecretAccessKey: string | undefined;
+  SessionToken: string | undefined;
+  Expiration: Date | undefined;
+};
+export declare class S3ExpressIdentityProviderImpl
+  implements S3ExpressIdentityProvider
+{
+  private createSessionFn;
+  private cache;
+  static REFRESH_WINDOW_MS: number;
+  constructor(
+    createSessionFn: (key: string) => Promise<{
+      Credentials: Credentials;
+    }>,
+    cache?: S3ExpressIdentityCache
+  );
+  getS3ExpressIdentity(
+    awsIdentity: AwsCredentialIdentity,
+    identityProperties: {
+      Bucket: string;
+    } & Record<string, string>
+  ): Promise<S3ExpressIdentity>;
+  private getIdentity;
+}
+export {};

package/dist-types/ts3.4/s3-express/classes/SignatureV4S3Express.d.ts ADDED Viewed

@@ -0,0 +1,19 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { SignatureV4 } from "@smithy/signature-v4";
+import {
+  HttpRequest as IHttpRequest,
+  RequestPresigningArguments,
+  RequestSigningArguments,
+} from "@smithy/types";
+export declare class SignatureV4S3Express extends SignatureV4 {
+  signWithCredentials(
+    requestToSign: IHttpRequest,
+    credentials: AwsCredentialIdentity,
+    options?: RequestSigningArguments
+  ): Promise<IHttpRequest>;
+  presignWithCredentials(
+    requestToSign: IHttpRequest,
+    credentials: AwsCredentialIdentity,
+    options?: RequestPresigningArguments
+  ): Promise<IHttpRequest>;
+}

package/dist-types/ts3.4/s3-express/constants.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import { LoadedConfigSelectors } from "@smithy/node-config-provider";
+export declare const S3_EXPRESS_BUCKET_TYPE = "Directory";
+export declare const S3_EXPRESS_BACKEND = "S3Express";
+export declare const S3_EXPRESS_AUTH_SCHEME = "sigv4-s3express";
+export declare const SESSION_TOKEN_QUERY_PARAM = "X-Amz-S3session-Token";
+export declare const SESSION_TOKEN_HEADER: string;
+export declare const NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_ENV_NAME =
+  "AWS_S3_DISABLE_EXPRESS_SESSION_AUTH";
+export declare const NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_INI_NAME =
+  "s3_disable_express_session_auth";
+export declare const NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS: LoadedConfigSelectors<boolean>;

package/dist-types/ts3.4/s3-express/functions/s3ExpressMiddleware.d.ts ADDED Viewed

@@ -0,0 +1,27 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import {
+  BuildHandlerOptions,
+  BuildMiddleware,
+  Logger,
+  MemoizedProvider,
+  Pluggable,
+} from "@smithy/types";
+import { S3ExpressIdentity } from "../interfaces/S3ExpressIdentity";
+import { S3ExpressIdentityProvider } from "../interfaces/S3ExpressIdentityProvider";
+declare module "@smithy/types" {
+  interface HandlerExecutionContext {
+    s3ExpressIdentity?: S3ExpressIdentity;
+  }
+}
+export interface S3ExpressResolvedConfig {
+  logger?: Logger;
+  s3ExpressIdentityProvider: S3ExpressIdentityProvider;
+  credentials: MemoizedProvider<AwsCredentialIdentity>;
+}
+export declare const s3ExpressMiddleware: (
+  options: S3ExpressResolvedConfig
+) => BuildMiddleware<any, any>;
+export declare const s3ExpressMiddlewareOptions: BuildHandlerOptions;
+export declare const getS3ExpressPlugin: (
+  options: S3ExpressResolvedConfig
+) => Pluggable<any, any>;

package/dist-types/ts3.4/s3-express/index.d.ts ADDED Viewed

@@ -0,0 +1,12 @@
+export { S3ExpressIdentityCache } from "./classes/S3ExpressIdentityCache";
+export { S3ExpressIdentityCacheEntry } from "./classes/S3ExpressIdentityCacheEntry";
+export { S3ExpressIdentityProviderImpl } from "./classes/S3ExpressIdentityProviderImpl";
+export { SignatureV4S3Express } from "./classes/SignatureV4S3Express";
+export { NODE_DISABLE_S3_EXPRESS_SESSION_AUTH_OPTIONS } from "./constants";
+export {
+  getS3ExpressPlugin,
+  s3ExpressMiddleware,
+  s3ExpressMiddlewareOptions,
+} from "./functions/s3ExpressMiddleware";
+export { S3ExpressIdentity } from "./interfaces/S3ExpressIdentity";
+export { S3ExpressIdentityProvider } from "./interfaces/S3ExpressIdentityProvider";

package/dist-types/ts3.4/s3-express/interfaces/S3ExpressIdentity.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { AwsCredentialIdentity } from "@aws-sdk/types";
2	+ export interface S3ExpressIdentity extends AwsCredentialIdentity {}

package/dist-types/ts3.4/s3-express/interfaces/S3ExpressIdentityProvider.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { S3ExpressIdentity } from "./S3ExpressIdentity";
+export interface S3ExpressIdentityProvider {
+  getS3ExpressIdentity(
+    awsIdentity: AwsCredentialIdentity,
+    identityProperties: Record<string, string>
+  ): Promise<S3ExpressIdentity>;
+}

package/dist-types/ts3.4/s3Configuration.d.ts CHANGED Viewed

@@ -1,15 +1,29 @@
+import { Client, Command } from "@smithy/types";
+import { S3ExpressIdentityProvider } from "./s3-express";
 export interface S3InputConfig {
   forcePathStyle?: boolean;
   useAccelerateEndpoint?: boolean;
   disableMultiregionAccessPoints?: boolean;
   followRegionRedirects?: boolean;
+  s3ExpressIdentityProvider?: S3ExpressIdentityProvider;
 }
+type PlaceholderS3Client = Client<any, any, any> & any;
+type PlaceholderCreateSessionCommandCtor = {
+  new (args: any): Command<any, any, any, any, any>;
+};
 export interface S3ResolvedConfig {
   forcePathStyle: boolean;
   useAccelerateEndpoint: boolean;
   disableMultiregionAccessPoints: boolean;
   followRegionRedirects: boolean;
+  s3ExpressIdentityProvider: S3ExpressIdentityProvider;
 }
 export declare const resolveS3Config: <T>(
-  input: T & S3InputConfig
+  input: T & S3InputConfig,
+  {
+    session,
+  }: {
+    session: [() => PlaceholderS3Client, PlaceholderCreateSessionCommandCtor];
+  }
 ) => T & S3ResolvedConfig;
+export {};

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/middleware-sdk-s3",
-  "version": "3.460.0",
+  "version": "3.465.0",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
     "build:cjs": "tsc -p tsconfig.cjs.json",
@@ -23,11 +23,14 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/types": "3.460.0",
-    "@aws-sdk/util-arn-parser": "3.310.0",
+    "@aws-sdk/types": "3.465.0",
+    "@aws-sdk/util-arn-parser": "3.465.0",
+    "@smithy/node-config-provider": "^2.1.5",
     "@smithy/protocol-http": "^3.0.9",
+    "@smithy/signature-v4": "^2.0.0",
     "@smithy/smithy-client": "^2.1.15",
     "@smithy/types": "^2.5.0",
+    "@smithy/util-config-provider": "^2.0.0",
     "tslib": "^2.5.0"
   },
   "devDependencies": {
@@ -35,7 +38,6 @@
     "concurrently": "7.0.0",
     "downlevel-dts": "0.10.1",
     "rimraf": "3.0.2",
-    "typedoc": "0.23.23",
     "typescript": "~4.9.5"
   },
   "engines": {
@@ -56,8 +58,5 @@
     "type": "git",
     "url": "https://github.com/aws/aws-sdk-js-v3.git",
     "directory": "packages/middleware-sdk-s3"
-  },
-  "typedoc": {
-    "entryPoint": "src/index.ts"
   }
 }