@aws-sdk/signature-v4-crt 3.54.0 → 3.56.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +24 -0
- package/dist-cjs/CrtSignerV4.js +14 -13
- package/dist-es/CrtSignerV4.js +7 -6
- package/package.json +13 -12
package/CHANGELOG.md
CHANGED
|
@@ -3,6 +3,30 @@
|
|
|
3
3
|
All notable changes to this project will be documented in this file.
|
|
4
4
|
See [Conventional Commits](https://conventionalcommits.org) for commit guidelines.
|
|
5
5
|
|
|
6
|
+
# [3.56.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.55.0...v3.56.0) (2022-03-24)
|
|
7
|
+
|
|
8
|
+
**Note:** Version bump only for package @aws-sdk/signature-v4-crt
|
|
9
|
+
|
|
10
|
+
|
|
11
|
+
|
|
12
|
+
|
|
13
|
+
|
|
14
|
+
# [3.55.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.54.1...v3.55.0) (2022-03-21)
|
|
15
|
+
|
|
16
|
+
**Note:** Version bump only for package @aws-sdk/signature-v4-crt
|
|
17
|
+
|
|
18
|
+
|
|
19
|
+
|
|
20
|
+
|
|
21
|
+
|
|
22
|
+
## [3.54.1](https://github.com/aws/aws-sdk-js-v3/compare/v3.54.0...v3.54.1) (2022-03-15)
|
|
23
|
+
|
|
24
|
+
**Note:** Version bump only for package @aws-sdk/signature-v4-crt
|
|
25
|
+
|
|
26
|
+
|
|
27
|
+
|
|
28
|
+
|
|
29
|
+
|
|
6
30
|
# [3.54.0](https://github.com/aws/aws-sdk-js-v3/compare/v3.53.1...v3.54.0) (2022-03-11)
|
|
7
31
|
|
|
8
32
|
**Note:** Version bump only for package @aws-sdk/signature-v4-crt
|
package/dist-cjs/CrtSignerV4.js
CHANGED
|
@@ -3,14 +3,15 @@ Object.defineProperty(exports, "__esModule", { value: true });
|
|
|
3
3
|
exports.CrtSignerV4 = void 0;
|
|
4
4
|
const querystring_parser_1 = require("@aws-sdk/querystring-parser");
|
|
5
5
|
const signature_v4_1 = require("@aws-sdk/signature-v4");
|
|
6
|
+
const util_middleware_1 = require("@aws-sdk/util-middleware");
|
|
6
7
|
const aws_crt_1 = require("aws-crt");
|
|
7
8
|
const constants_1 = require("./constants");
|
|
8
9
|
const headerUtil_1 = require("./headerUtil");
|
|
9
10
|
function sdkHttpRequest2crtHttpRequest(sdkRequest) {
|
|
10
|
-
headerUtil_1.deleteHeader(constants_1.SHA256_HEADER, sdkRequest.headers);
|
|
11
|
+
(0, headerUtil_1.deleteHeader)(constants_1.SHA256_HEADER, sdkRequest.headers);
|
|
11
12
|
const headersArray = Object.entries(sdkRequest.headers);
|
|
12
13
|
const crtHttpHeaders = new aws_crt_1.http.HttpHeaders(headersArray);
|
|
13
|
-
const queryString = signature_v4_1.getCanonicalQuery(sdkRequest);
|
|
14
|
+
const queryString = (0, signature_v4_1.getCanonicalQuery)(sdkRequest);
|
|
14
15
|
return new aws_crt_1.http.HttpRequest(sdkRequest.method, sdkRequest.path + "?" + queryString, crtHttpHeaders);
|
|
15
16
|
}
|
|
16
17
|
class CrtSignerV4 {
|
|
@@ -20,8 +21,8 @@ class CrtSignerV4 {
|
|
|
20
21
|
this.uriEscapePath = uriEscapePath;
|
|
21
22
|
this.signingAlgorithm = signingAlgorithm;
|
|
22
23
|
this.applyChecksum = applyChecksum;
|
|
23
|
-
this.regionProvider =
|
|
24
|
-
this.credentialProvider =
|
|
24
|
+
this.regionProvider = (0, util_middleware_1.normalizeProvider)(region);
|
|
25
|
+
this.credentialProvider = (0, util_middleware_1.normalizeProvider)(credentials);
|
|
25
26
|
aws_crt_1.io.enable_logging(aws_crt_1.io.LogLevel.ERROR);
|
|
26
27
|
}
|
|
27
28
|
async options2crtConfigure({ signingDate = new Date(), signableHeaders, unsignableHeaders, signingRegion, signingService, } = {}, viaHeader, payloadHash, expiresIn) {
|
|
@@ -54,14 +55,14 @@ class CrtSignerV4 {
|
|
|
54
55
|
if (options.expiresIn && options.expiresIn > constants_1.MAX_PRESIGNED_TTL) {
|
|
55
56
|
return Promise.reject("Signature version 4 presigned URLs" + " must have an expiration date less than one week in" + " the future");
|
|
56
57
|
}
|
|
57
|
-
const request = signature_v4_1.moveHeadersToQuery(signature_v4_1.prepareRequest(originalRequest));
|
|
58
|
-
const crtSignedRequest = await this.signRequest(request, await this.options2crtConfigure(options, false, await signature_v4_1.getPayloadHash(originalRequest, this.sha256), options.expiresIn ? options.expiresIn : 3600));
|
|
58
|
+
const request = (0, signature_v4_1.moveHeadersToQuery)((0, signature_v4_1.prepareRequest)(originalRequest));
|
|
59
|
+
const crtSignedRequest = await this.signRequest(request, await this.options2crtConfigure(options, false, await (0, signature_v4_1.getPayloadHash)(originalRequest, this.sha256), options.expiresIn ? options.expiresIn : 3600));
|
|
59
60
|
request.query = this.getQueryParam(crtSignedRequest.path);
|
|
60
61
|
return request;
|
|
61
62
|
}
|
|
62
63
|
async sign(toSign, options) {
|
|
63
|
-
const request = signature_v4_1.prepareRequest(toSign);
|
|
64
|
-
const crtSignedRequest = await this.signRequest(request, await this.options2crtConfigure(options, true, await signature_v4_1.getPayloadHash(toSign, this.sha256)));
|
|
64
|
+
const request = (0, signature_v4_1.prepareRequest)(toSign);
|
|
65
|
+
const crtSignedRequest = await this.signRequest(request, await this.options2crtConfigure(options, true, await (0, signature_v4_1.getPayloadHash)(toSign, this.sha256)));
|
|
65
66
|
request.headers = crtSignedRequest.headers._flatten().reduce((acc, [key, value]) => ({ ...acc, [key]: value }), {});
|
|
66
67
|
return request;
|
|
67
68
|
}
|
|
@@ -74,7 +75,7 @@ class CrtSignerV4 {
|
|
|
74
75
|
return queryParam;
|
|
75
76
|
}
|
|
76
77
|
const queryString = crtPath.slice(start + 1, end);
|
|
77
|
-
return querystring_parser_1.parseQueryString(queryString);
|
|
78
|
+
return (0, querystring_parser_1.parseQueryString)(queryString);
|
|
78
79
|
}
|
|
79
80
|
async signRequest(requestToSign, crtConfig) {
|
|
80
81
|
const request = sdkHttpRequest2crtHttpRequest(requestToSign);
|
|
@@ -86,9 +87,9 @@ class CrtSignerV4 {
|
|
|
86
87
|
}
|
|
87
88
|
}
|
|
88
89
|
async verifySigv4aSigning(request, signature, expectedCanonicalRequest, eccPubKeyX, eccPubKeyY, options = {}) {
|
|
89
|
-
const sdkRequest = signature_v4_1.prepareRequest(request);
|
|
90
|
+
const sdkRequest = (0, signature_v4_1.prepareRequest)(request);
|
|
90
91
|
const crtRequest = sdkHttpRequest2crtHttpRequest(sdkRequest);
|
|
91
|
-
const payloadHash = await signature_v4_1.getPayloadHash(request, this.sha256);
|
|
92
|
+
const payloadHash = await (0, signature_v4_1.getPayloadHash)(request, this.sha256);
|
|
92
93
|
const crtConfig = await this.options2crtConfigure(options, true, payloadHash);
|
|
93
94
|
return aws_crt_1.auth.aws_verify_sigv4a_signing(crtRequest, crtConfig, expectedCanonicalRequest, signature, eccPubKeyX, eccPubKeyY);
|
|
94
95
|
}
|
|
@@ -96,9 +97,9 @@ class CrtSignerV4 {
|
|
|
96
97
|
if (typeof signature != "string") {
|
|
97
98
|
return false;
|
|
98
99
|
}
|
|
99
|
-
const sdkRequest = signature_v4_1.prepareRequest(request);
|
|
100
|
+
const sdkRequest = (0, signature_v4_1.prepareRequest)(request);
|
|
100
101
|
const crtRequest = sdkHttpRequest2crtHttpRequest(sdkRequest);
|
|
101
|
-
const crtConfig = await this.options2crtConfigure(options, false, await signature_v4_1.getPayloadHash(request, this.sha256), options.expiresIn ? options.expiresIn : 3600);
|
|
102
|
+
const crtConfig = await this.options2crtConfigure(options, false, await (0, signature_v4_1.getPayloadHash)(request, this.sha256), options.expiresIn ? options.expiresIn : 3600);
|
|
102
103
|
return aws_crt_1.auth.aws_verify_sigv4a_signing(crtRequest, crtConfig, expectedCanonicalRequest, signature, eccPubKeyX, eccPubKeyY);
|
|
103
104
|
}
|
|
104
105
|
}
|
package/dist-es/CrtSignerV4.js
CHANGED
|
@@ -1,6 +1,7 @@
|
|
|
1
1
|
import { __assign, __awaiter, __generator, __read, __spreadArray } from "tslib";
|
|
2
2
|
import { parseQueryString } from "@aws-sdk/querystring-parser";
|
|
3
|
-
import { getCanonicalQuery, getPayloadHash, moveHeadersToQuery,
|
|
3
|
+
import { getCanonicalQuery, getPayloadHash, moveHeadersToQuery, prepareRequest, } from "@aws-sdk/signature-v4";
|
|
4
|
+
import { normalizeProvider } from "@aws-sdk/util-middleware";
|
|
4
5
|
import { auth as crtAuth, http as crtHttp, io as crtIO } from "aws-crt";
|
|
5
6
|
import { MAX_PRESIGNED_TTL, SHA256_HEADER } from "./constants";
|
|
6
7
|
import { deleteHeader } from "./headerUtil";
|
|
@@ -19,8 +20,8 @@ var CrtSignerV4 = (function () {
|
|
|
19
20
|
this.uriEscapePath = uriEscapePath;
|
|
20
21
|
this.signingAlgorithm = signingAlgorithm;
|
|
21
22
|
this.applyChecksum = applyChecksum;
|
|
22
|
-
this.regionProvider =
|
|
23
|
-
this.credentialProvider =
|
|
23
|
+
this.regionProvider = normalizeProvider(region);
|
|
24
|
+
this.credentialProvider = normalizeProvider(credentials);
|
|
24
25
|
crtIO.enable_logging(crtIO.LogLevel.ERROR);
|
|
25
26
|
}
|
|
26
27
|
CrtSignerV4.prototype.options2crtConfigure = function (_a, viaHeader, payloadHash, expiresIn) {
|
|
@@ -206,13 +207,13 @@ function getHeadersUnsignable(unsignableHeaders, signableHeaders) {
|
|
|
206
207
|
return [];
|
|
207
208
|
}
|
|
208
209
|
if (!signableHeaders) {
|
|
209
|
-
return __spreadArray([], __read(unsignableHeaders));
|
|
210
|
+
return __spreadArray([], __read(unsignableHeaders), false);
|
|
210
211
|
}
|
|
211
|
-
var result = new Set(__spreadArray([], __read(unsignableHeaders)));
|
|
212
|
+
var result = new Set(__spreadArray([], __read(unsignableHeaders), false));
|
|
212
213
|
for (var it_1 = signableHeaders.values(), val = null; (val = it_1.next().value);) {
|
|
213
214
|
if (result.has(val)) {
|
|
214
215
|
result.delete(val);
|
|
215
216
|
}
|
|
216
217
|
}
|
|
217
|
-
return __spreadArray([], __read(result));
|
|
218
|
+
return __spreadArray([], __read(result), false);
|
|
218
219
|
}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@aws-sdk/signature-v4-crt",
|
|
3
|
-
"version": "3.
|
|
3
|
+
"version": "3.56.0",
|
|
4
4
|
"description": "A revision of AWS Signature V4 request signer based on AWS Common Runtime https://github.com/awslabs/aws-crt-nodejs",
|
|
5
5
|
"main": "./dist-cjs/index.js",
|
|
6
6
|
"module": "./dist-es/index.js",
|
|
@@ -20,25 +20,26 @@
|
|
|
20
20
|
},
|
|
21
21
|
"license": "Apache-2.0",
|
|
22
22
|
"dependencies": {
|
|
23
|
-
"@aws-sdk/is-array-buffer": "3.
|
|
24
|
-
"@aws-sdk/querystring-parser": "3.
|
|
25
|
-
"@aws-sdk/signature-v4": "3.
|
|
26
|
-
"@aws-sdk/util-hex-encoding": "3.
|
|
27
|
-
"@aws-sdk/util-
|
|
28
|
-
"aws-
|
|
29
|
-
"
|
|
23
|
+
"@aws-sdk/is-array-buffer": "3.55.0",
|
|
24
|
+
"@aws-sdk/querystring-parser": "3.55.0",
|
|
25
|
+
"@aws-sdk/signature-v4": "3.56.0",
|
|
26
|
+
"@aws-sdk/util-hex-encoding": "3.55.0",
|
|
27
|
+
"@aws-sdk/util-middleware": "3.55.0",
|
|
28
|
+
"@aws-sdk/util-uri-escape": "3.55.0",
|
|
29
|
+
"aws-crt": "^1.11.3",
|
|
30
|
+
"tslib": "^2.3.1"
|
|
30
31
|
},
|
|
31
32
|
"devDependencies": {
|
|
32
33
|
"@aws-crypto/sha256-js": "2.0.0",
|
|
33
|
-
"@aws-sdk/protocol-http": "3.
|
|
34
|
-
"@aws-sdk/types": "3.
|
|
35
|
-
"@aws-sdk/util-buffer-from": "3.
|
|
34
|
+
"@aws-sdk/protocol-http": "3.55.0",
|
|
35
|
+
"@aws-sdk/types": "3.55.0",
|
|
36
|
+
"@aws-sdk/util-buffer-from": "3.55.0",
|
|
36
37
|
"@tsconfig/recommended": "1.0.1",
|
|
37
38
|
"concurrently": "7.0.0",
|
|
38
39
|
"downlevel-dts": "0.7.0",
|
|
39
40
|
"rimraf": "3.0.2",
|
|
40
41
|
"typedoc": "0.19.2",
|
|
41
|
-
"typescript": "~4.
|
|
42
|
+
"typescript": "~4.6.2"
|
|
42
43
|
},
|
|
43
44
|
"engines": {
|
|
44
45
|
"node": ">= 12.0.0"
|