npm - @backstage/integration - Versions diffs - 1.17.1-next.1 → 1.18.0-next.0 - Mend

@backstage/integration 1.17.1-next.1 → 1.18.0-next.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (97) hide show

package/dist/azure/CachedAzureDevOpsCredentialsProvider.esm.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"CachedAzureDevOpsCredentialsProvider.esm.js","sources":["../../src/azure/CachedAzureDevOpsCredentialsProvider.ts"],"sourcesContent":["/\n Copyright 2023 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport { AzureDevOpsCredential, PersonalAccessTokenCredential } from './config';\nimport {\n ClientAssertionCredential,\n ClientSecretCredential,\n ManagedIdentityCredential,\n TokenCredential,\n} from '@azure/identity';\nimport {\n AzureDevOpsCredentials,\n AzureDevOpsCredentialsProvider,\n} from './types';\nimport { ManagedIdentityClientAssertion } from './ManagedIdentityClientAssertion';\n\ntype CachedAzureDevOpsCredentials = AzureDevOpsCredentials & {\n expiresAt?: number;\n};\n\nfunction exhaustiveCheck(_param: never) {}\n\nconst tenMinutes = 1000 60 * 10;\n\n/*\n A credentials provider that caches the credentials for as long as it is valid.\n \n @public\n */\nexport class CachedAzureDevOpsCredentialsProvider\n implements AzureDevOpsCredentialsProvider\n{\n azureDevOpsScope = '499b84ac-1321-427f-aa17-267ca6975798/.default';\n cached: CachedAzureDevOpsCredentials \| undefined;\n\n static fromAzureDevOpsCredential(\n credential: AzureDevOpsCredential,\n ): CachedAzureDevOpsCredentialsProvider {\n switch (credential.kind) {\n case 'PersonalAccessToken':\n return CachedAzureDevOpsCredentialsProvider.fromPersonalAccessTokenCredential(\n credential,\n );\n case 'ClientSecret':\n return CachedAzureDevOpsCredentialsProvider.fromTokenCredential(\n new ClientSecretCredential(\n credential.tenantId,\n credential.clientId,\n credential.clientSecret,\n ),\n );\n\n case 'ManagedIdentityClientAssertion': {\n const clientAssertion = new ManagedIdentityClientAssertion({\n clientId: credential.managedIdentityClientId,\n });\n\n return CachedAzureDevOpsCredentialsProvider.fromTokenCredential(\n new ClientAssertionCredential(\n credential.tenantId,\n credential.clientId,\n () => clientAssertion.getSignedAssertion(),\n ),\n );\n }\n\n case 'ManagedIdentity':\n return CachedAzureDevOpsCredentialsProvider.fromTokenCredential(\n credential.clientId === 'system-assigned'\n ? new ManagedIdentityCredential()\n : new ManagedIdentityCredential(credential.clientId),\n );\n default:\n exhaustiveCheck(credential);\n\n throw new Error(\n `Credential kind '${(credential as any).kind}' not supported`,\n );\n }\n }\n\n static fromTokenCredential(\n credential: TokenCredential,\n ): CachedAzureDevOpsCredentialsProvider {\n return new CachedAzureDevOpsCredentialsProvider(credential);\n }\n\n static fromPersonalAccessTokenCredential(\n credential: PersonalAccessTokenCredential,\n ) {\n return new CachedAzureDevOpsCredentialsProvider(\n credential.personalAccessToken,\n );\n }\n\n private constructor(private readonly credential: TokenCredential \| string) {}\n\n async getCredentials(): Promise<AzureDevOpsCredentials> {\n if (\n this.cached === undefined \|\|\n (this.cached.expiresAt !== undefined &&\n Date.now() > this.cached.expiresAt)\n ) {\n if (typeof this.credential === 'string') {\n this.cached = {\n headers: {\n Authorization: `Basic ${btoa(`:${this.credential}`)}`,\n },\n type: 'pat',\n token: this.credential,\n };\n } else {\n const accessToken = await this.credential.getToken(\n this.azureDevOpsScope,\n );\n\n if (!accessToken) {\n throw new Error('Failed to retrieve access token');\n }\n\n this.cached = {\n expiresAt: accessToken.expiresOnTimestamp - tenMinutes,\n headers: {\n Authorization: `Bearer ${accessToken.token}`,\n },\n type: 'bearer',\n token: accessToken.token,\n };\n }\n }\n\n return this.cached;\n }\n}\n"],"names":[],"mappings":";;;AAkCA,MAAM,UAAA,GAAa,MAAO,~~EAAK~~,~~GAAA~~,EAAA;AAOxB,MAAM,~~oCAEb~~,~~CAAA~~;AAAA,EAgEU,YAA6B,~~UAAsC~~,~~EAAA~~;AAAtC,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AAAA;~~AAAuC~~,EA/D5E,~~gBAAmB~~,~~GAAA~~,+CAAA;AAAA,EACnB,MAAA;AAAA,EAEA,OAAO,0BACL,~~UACsC~~,~~EAAA~~;AACtC,IAAA,QAAQ,WAAW,~~IAAM~~;~~AAAA~~,MACvB,KAAK,qBAAA;AACH,QAAA,OAAO,~~oCAAqC~~,~~CAAA~~,iCAAA;AAAA,UAC1C;AAAA,SACF;AAAA,MACF,KAAK,cAAA;AACH,QAAA,OAAO,~~oCAAqC~~,~~CAAA~~,mBAAA;AAAA,UAC1C,IAAI,sBAAA;AAAA,YACF,~~UAAW~~,~~CAAA~~,QAAA;AAAA,YACX,~~UAAW~~,~~CAAA~~,QAAA;AAAA,YACX,~~UAAW~~,~~CAAA~~;AAAA;AACb,SACF;AAAA,MAEF,KAAK,~~gCAAkC~~,~~EAAA~~;AACrC,~~QAAM~~,~~MAAA~~,eAAA,GAAkB,IAAI,~~8BAA~~+B~~,CAAA~~;AAAA,UACzD,UAAU,~~UAAW~~,~~CAAA~~;AAAA,SACtB,CAAA;AAED,QAAA,OAAO,~~oCAAqC~~,~~CAAA~~,mBAAA;AAAA,UAC1C,IAAI,yBAAA;AAAA,YACF,~~UAAW~~,~~CAAA~~,QAAA;AAAA,YACX,~~UAAW~~,~~CAAA~~,QAAA;AAAA,YACX,MAAM,gBAAgB,~~kBAAmB~~;~~AAAA~~;AAC3C,SACF;AAAA;~~AACF~~,MAEA,KAAK,iBAAA;AACH,QAAA,OAAO,~~oCAAqC~~,~~CAAA~~,mBAAA;AAAA,UAC1C,UAAA,CAAW,aAAa,~~iBACpB~~,~~GAAA~~,IAAI,~~2BACJ~~,~~GAAA~~,IAAI,~~yBAA0B~~,~~CAAA~~,UAAA,CAAW,QAAQ;AAAA,SACvD;AAAA,MACF;AAGE,QAAA,MAAM,IAAI,KAAA;AAAA,UACR,CAAA,iBAAA,EAAqB,WAAmB,IAAI,CAAA,eAAA;AAAA,SAC9C;AAAA;AACJ;~~AACF~~,EAEA,OAAO,oBACL,~~UACsC~~,~~EAAA~~;AACtC,~~IAAO~~,~~OAAA~~,IAAI,qCAAqC,UAAU,CAAA;AAAA;~~AAC5D~~,EAEA,OAAO,kCACL,~~UACA~~,~~EAAA~~;AACA,IAAA,OAAO,IAAI,oCAAA;AAAA,MACT,~~UAAW~~,~~CAAA~~;AAAA,KACb;AAAA;~~AACF~~,EAIA,MAAM,~~cAAkD~~,~~GAAA~~;AACtD,IAAA,IACE,~~IAAK~~,~~CAAA~~,MAAA,KAAW,~~KACf~~,~~CAAA~~,IAAA,~~IAAA,~~CAAK,~~MAAO~~,~~CAAA~~,SAAA,KAAc,~~KACzB~~,~~CAAA~~,IAAA,~~IAAA,~~CAAK,~~GAAI~~,~~EAAA~~,GAAI,~~IAAK~~,~~CAAA~~,MAAA,CAAO,~~SAC3B~~,~~EAAA~~;AACA,~~MAAI~~,~~IAAA~~,OAAO,~~IAAK~~,~~CAAA~~,UAAA,KAAe,~~QAAU~~,~~EAAA~~;AACvC,QAAA,IAAA,CAAK,~~MAAS~~,~~GAAA~~;AAAA,UACZ,~~OAAS~~,~~EAAA~~;AAAA,YACP,eAAe,~~CAAS~~,MAAA,~~EAAA~~,IAAA,CAAK,IAAI,~~IAAK~~,~~CAAA~~,UAAU,EAAE,CAAC,CAAA;AAAA,WACrD;AAAA,UACA,~~IAAM~~,~~EAAA~~,KAAA;AAAA,UACN,OAAO,~~IAAK~~,~~CAAA~~;AAAA,SACd;AAAA,~~OACK~~,~~MAAA~~;AACL,~~QAAM~~,~~MAAA~~,WAAA,GAAc,MAAM,IAAA,CAAK,~~UAAW~~,~~CAAA~~,QAAA;AAAA,UACxC,~~IAAK~~,~~CAAA~~;AAAA,SACP;AAEA,QAAA,IAAI,CAAC,~~WAAa~~,~~EAAA~~;AAChB,~~UAAM~~,~~MAAA~~,IAAI,MAAM,iCAAiC,CAAA;AAAA;~~AAGnD~~,QAAA,IAAA,CAAK,~~MAAS~~,~~GAAA~~;AAAA,UACZ,SAAA,EAAW,YAAY,~~kBAAqB~~,~~GAAA~~,UAAA;AAAA,UAC5C,~~OAAS~~,~~EAAA~~;AAAA,YACP,aAAA,EAAe,~~CAAU~~,OAAA,~~EAAA~~,WAAA,CAAY,KAAK,CAAA;AAAA,WAC5C;AAAA,UACA,~~IAAM~~,~~EAAA~~,QAAA;AAAA,UACN,OAAO,~~WAAY~~,~~CAAA~~;AAAA,SACrB;AAAA;~~AACF~~;~~AAGF~~,IAAA,OAAO,~~IAAK~~,~~CAAA~~,MAAA;AAAA;~~AAEhB~~;;;;"}
1	+ {"version":3,"file":"CachedAzureDevOpsCredentialsProvider.esm.js","sources":["../../src/azure/CachedAzureDevOpsCredentialsProvider.ts"],"sourcesContent":["/\n Copyright 2023 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport { AzureDevOpsCredential, PersonalAccessTokenCredential } from './config';\nimport {\n ClientAssertionCredential,\n ClientSecretCredential,\n ManagedIdentityCredential,\n TokenCredential,\n} from '@azure/identity';\nimport {\n AzureDevOpsCredentials,\n AzureDevOpsCredentialsProvider,\n} from './types';\nimport { ManagedIdentityClientAssertion } from './ManagedIdentityClientAssertion';\n\ntype CachedAzureDevOpsCredentials = AzureDevOpsCredentials & {\n expiresAt?: number;\n};\n\nfunction exhaustiveCheck(_param: never) {}\n\nconst tenMinutes = 1000 60 * 10;\n\n/*\n A credentials provider that caches the credentials for as long as it is valid.\n \n @public\n */\nexport class CachedAzureDevOpsCredentialsProvider\n implements AzureDevOpsCredentialsProvider\n{\n azureDevOpsScope = '499b84ac-1321-427f-aa17-267ca6975798/.default';\n cached: CachedAzureDevOpsCredentials \| undefined;\n\n static fromAzureDevOpsCredential(\n credential: AzureDevOpsCredential,\n ): CachedAzureDevOpsCredentialsProvider {\n switch (credential.kind) {\n case 'PersonalAccessToken':\n return CachedAzureDevOpsCredentialsProvider.fromPersonalAccessTokenCredential(\n credential,\n );\n case 'ClientSecret':\n return CachedAzureDevOpsCredentialsProvider.fromTokenCredential(\n new ClientSecretCredential(\n credential.tenantId,\n credential.clientId,\n credential.clientSecret,\n ),\n );\n\n case 'ManagedIdentityClientAssertion': {\n const clientAssertion = new ManagedIdentityClientAssertion({\n clientId: credential.managedIdentityClientId,\n });\n\n return CachedAzureDevOpsCredentialsProvider.fromTokenCredential(\n new ClientAssertionCredential(\n credential.tenantId,\n credential.clientId,\n () => clientAssertion.getSignedAssertion(),\n ),\n );\n }\n\n case 'ManagedIdentity':\n return CachedAzureDevOpsCredentialsProvider.fromTokenCredential(\n credential.clientId === 'system-assigned'\n ? new ManagedIdentityCredential()\n : new ManagedIdentityCredential(credential.clientId),\n );\n default:\n exhaustiveCheck(credential);\n\n throw new Error(\n `Credential kind '${(credential as any).kind}' not supported`,\n );\n }\n }\n\n static fromTokenCredential(\n credential: TokenCredential,\n ): CachedAzureDevOpsCredentialsProvider {\n return new CachedAzureDevOpsCredentialsProvider(credential);\n }\n\n static fromPersonalAccessTokenCredential(\n credential: PersonalAccessTokenCredential,\n ) {\n return new CachedAzureDevOpsCredentialsProvider(\n credential.personalAccessToken,\n );\n }\n\n private constructor(private readonly credential: TokenCredential \| string) {}\n\n async getCredentials(): Promise<AzureDevOpsCredentials> {\n if (\n this.cached === undefined \|\|\n (this.cached.expiresAt !== undefined &&\n Date.now() > this.cached.expiresAt)\n ) {\n if (typeof this.credential === 'string') {\n this.cached = {\n headers: {\n Authorization: `Basic ${btoa(`:${this.credential}`)}`,\n },\n type: 'pat',\n token: this.credential,\n };\n } else {\n const accessToken = await this.credential.getToken(\n this.azureDevOpsScope,\n );\n\n if (!accessToken) {\n throw new Error('Failed to retrieve access token');\n }\n\n this.cached = {\n expiresAt: accessToken.expiresOnTimestamp - tenMinutes,\n headers: {\n Authorization: `Bearer ${accessToken.token}`,\n },\n type: 'bearer',\n token: accessToken.token,\n };\n }\n }\n\n return this.cached;\n }\n}\n"],"names":[],"mappings":";;;AAkCA,MAAM,UAAA,GAAa,MAAO,EAAA,GAAK,EAAA;AAOxB,MAAM,oCAAA,CAEb;AAAA,EAgEU,YAA6B,UAAA,EAAsC;AAAtC,IAAA,IAAA,CAAA,UAAA,GAAA,UAAA;AAAA,EAAuC;AAAA,EA/D5E,gBAAA,GAAmB,+CAAA;AAAA,EACnB,MAAA;AAAA,EAEA,OAAO,0BACL,UAAA,EACsC;AACtC,IAAA,QAAQ,WAAW,IAAA;AAAM,MACvB,KAAK,qBAAA;AACH,QAAA,OAAO,oCAAA,CAAqC,iCAAA;AAAA,UAC1C;AAAA,SACF;AAAA,MACF,KAAK,cAAA;AACH,QAAA,OAAO,oCAAA,CAAqC,mBAAA;AAAA,UAC1C,IAAI,sBAAA;AAAA,YACF,UAAA,CAAW,QAAA;AAAA,YACX,UAAA,CAAW,QAAA;AAAA,YACX,UAAA,CAAW;AAAA;AACb,SACF;AAAA,MAEF,KAAK,gCAAA,EAAkC;AACrC,QAAA,MAAM,eAAA,GAAkB,IAAI,8BAAA,CAA+B;AAAA,UACzD,UAAU,UAAA,CAAW;AAAA,SACtB,CAAA;AAED,QAAA,OAAO,oCAAA,CAAqC,mBAAA;AAAA,UAC1C,IAAI,yBAAA;AAAA,YACF,UAAA,CAAW,QAAA;AAAA,YACX,UAAA,CAAW,QAAA;AAAA,YACX,MAAM,gBAAgB,kBAAA;AAAmB;AAC3C,SACF;AAAA,MACF;AAAA,MAEA,KAAK,iBAAA;AACH,QAAA,OAAO,oCAAA,CAAqC,mBAAA;AAAA,UAC1C,UAAA,CAAW,aAAa,iBAAA,GACpB,IAAI,2BAA0B,GAC9B,IAAI,yBAAA,CAA0B,UAAA,CAAW,QAAQ;AAAA,SACvD;AAAA,MACF;AAGE,QAAA,MAAM,IAAI,KAAA;AAAA,UACR,CAAA,iBAAA,EAAqB,WAAmB,IAAI,CAAA,eAAA;AAAA,SAC9C;AAAA;AACJ,EACF;AAAA,EAEA,OAAO,oBACL,UAAA,EACsC;AACtC,IAAA,OAAO,IAAI,qCAAqC,UAAU,CAAA;AAAA,EAC5D;AAAA,EAEA,OAAO,kCACL,UAAA,EACA;AACA,IAAA,OAAO,IAAI,oCAAA;AAAA,MACT,UAAA,CAAW;AAAA,KACb;AAAA,EACF;AAAA,EAIA,MAAM,cAAA,GAAkD;AACtD,IAAA,IACE,IAAA,CAAK,MAAA,KAAW,MAAA,IACf,IAAA,CAAK,MAAA,CAAO,SAAA,KAAc,MAAA,IACzB,IAAA,CAAK,GAAA,EAAI,GAAI,IAAA,CAAK,MAAA,CAAO,SAAA,EAC3B;AACA,MAAA,IAAI,OAAO,IAAA,CAAK,UAAA,KAAe,QAAA,EAAU;AACvC,QAAA,IAAA,CAAK,MAAA,GAAS;AAAA,UACZ,OAAA,EAAS;AAAA,YACP,eAAe,CAAA,MAAA,EAAS,IAAA,CAAK,IAAI,IAAA,CAAK,UAAU,EAAE,CAAC,CAAA;AAAA,WACrD;AAAA,UACA,IAAA,EAAM,KAAA;AAAA,UACN,OAAO,IAAA,CAAK;AAAA,SACd;AAAA,MACF,CAAA,MAAO;AACL,QAAA,MAAM,WAAA,GAAc,MAAM,IAAA,CAAK,UAAA,CAAW,QAAA;AAAA,UACxC,IAAA,CAAK;AAAA,SACP;AAEA,QAAA,IAAI,CAAC,WAAA,EAAa;AAChB,UAAA,MAAM,IAAI,MAAM,iCAAiC,CAAA;AAAA,QACnD;AAEA,QAAA,IAAA,CAAK,MAAA,GAAS;AAAA,UACZ,SAAA,EAAW,YAAY,kBAAA,GAAqB,UAAA;AAAA,UAC5C,OAAA,EAAS;AAAA,YACP,aAAA,EAAe,CAAA,OAAA,EAAU,WAAA,CAAY,KAAK,CAAA;AAAA,WAC5C;AAAA,UACA,IAAA,EAAM,QAAA;AAAA,UACN,OAAO,WAAA,CAAY;AAAA,SACrB;AAAA,MACF;AAAA,IACF;AAEA,IAAA,OAAO,IAAA,CAAK,MAAA;AAAA,EACd;AACF;;;;"}

package/dist/azure/DefaultAzureDevOpsCredentialsProvider.cjs.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"DefaultAzureDevOpsCredentialsProvider.cjs.js","sources":["../../src/azure/DefaultAzureDevOpsCredentialsProvider.ts"],"sourcesContent":["/\n Copyright 2023 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport {\n AzureDevOpsCredentials,\n AzureDevOpsCredentialsProvider,\n} from './types';\nimport { CachedAzureDevOpsCredentialsProvider } from './CachedAzureDevOpsCredentialsProvider';\nimport { ScmIntegrationRegistry } from '../registry';\nimport { DefaultAzureCredential } from '@azure/identity';\n\n/\n Default implementation of AzureDevOpsCredentialsProvider.\n * @public\n */\nexport class DefaultAzureDevOpsCredentialsProvider\n implements AzureDevOpsCredentialsProvider\n{\n static fromIntegrations(\n integrations: ScmIntegrationRegistry,\n ): DefaultAzureDevOpsCredentialsProvider {\n const providers = integrations.azure.list().reduce((acc, integration) => {\n integration.config.credentials?.forEach(credential => {\n if (\n credential.organizations === undefined \|\|\n credential.organizations.length === 0\n ) {\n if (acc.get(integration.config.host) === undefined) {\n acc.set(\n integration.config.host,\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credential,\n ),\n );\n }\n } else {\n const provider =\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credential,\n );\n credential.organizations?.forEach(organization => {\n acc.set(`${integration.config.host}/${organization}`, provider);\n });\n }\n });\n\n if (\n integration.config.host === 'dev.azure.com' &&\n acc.get(integration.config.host) === undefined\n ) {\n acc.set(\n integration.config.host,\n CachedAzureDevOpsCredentialsProvider.fromTokenCredential(\n new DefaultAzureCredential(),\n ),\n );\n }\n\n return acc;\n }, new Map<string, CachedAzureDevOpsCredentialsProvider>());\n\n return new DefaultAzureDevOpsCredentialsProvider(providers);\n }\n\n private constructor(\n private readonly providers: Map<\n string,\n CachedAzureDevOpsCredentialsProvider\n >,\n ) {}\n\n private forAzureDevOpsServerOrganization(\n url: URL,\n ): AzureDevOpsCredentialsProvider \| undefined {\n const parts = url.pathname.split('/').filter(part => part !== '');\n if (url.host !== 'dev.azure.com' && parts.length > 0) {\n if (parts[0] !== 'tfs') {\n // url format: https://{host}/{organization}\n return this.providers.get(`${url.host}/${parts[0]}`);\n } else if (parts[0] === 'tfs' && parts.length > 1) {\n // url format: https://{host}/tfs/{organization}\n return this.providers.get(`${url.host}/${parts[1]}`);\n }\n }\n\n return undefined;\n }\n\n private forAzureDevOpsOrganization(\n url: URL,\n ): AzureDevOpsCredentialsProvider \| undefined {\n const parts = url.pathname.split('/').filter(part => part !== '');\n if (url.host === 'dev.azure.com' && parts.length > 0) {\n // url format: https://{host}/{organization}\n return this.providers.get(`${url.host}/${parts[0]}`);\n }\n\n return undefined;\n }\n\n private forHost(url: URL): AzureDevOpsCredentialsProvider \| undefined {\n return this.providers.get(url.host);\n }\n\n async getCredentials(opts: {\n url: string;\n }): Promise<AzureDevOpsCredentials \| undefined> {\n const url = new URL(opts.url);\n const provider =\n this.forAzureDevOpsOrganization(url) ??\n this.forAzureDevOpsServerOrganization(url) ??\n this.forHost(url);\n\n if (provider === undefined) {\n return undefined;\n }\n\n return provider.getCredentials(opts);\n }\n}\n"],"names":["CachedAzureDevOpsCredentialsProvider","DefaultAzureCredential"],"mappings":";;;;;AA2BO,MAAM,~~qCAEb~~,~~CAAA~~;AAAA,EA+CU,YACW,~~SAIjB~~,~~EAAA~~;AAJiB,IAAA,IAAA,CAAA,SAAA,GAAA,SAAA;AAAA;~~AAIhB~~,EAnDH,OAAO,iBACL,~~YACuC~~,~~EAAA~~;AACvC,~~IAAM~~,~~MAAA~~,SAAA,GAAY,aAAa,~~KAAM~~,~~CAAA~~,IAAA,GAAO,~~MAAO~~,~~CAAA~~,CAAC,KAAK,~~WAAgB~~,~~KAAA~~;AACvE,~~MAAY~~,WAAA,~~CAAA~~,MAAA,CAAO,~~WAAa~~,~~EAAA~~,OAAA,CAAQ,~~CAAc~~,UAAA,~~KAAA~~;AACpD,QAAA,IACE,WAAW,~~aAAkB~~,~~KAAA~~,~~KAAA~~,~~CAAA,~~IAC7B,~~UAAW~~,~~CAAA~~,aAAA,CAAc,WAAW,~~CACpC~~,~~EAAA~~;AACA,UAAA,IAAI,IAAI,~~GAAI~~,~~CAAA~~,WAAA,CAAY,~~MAAO~~,~~CAAA~~,IAAI,MAAM,~~KAAW~~,~~CAAA,EAAA~~;AAClD,~~YAAI~~,GAAA,~~CAAA~~,GAAA;AAAA,cACF,YAAY,~~MAAO~~,~~CAAA~~,IAAA;AAAA,cACnBA,~~yEAAqC~~,~~CAAA~~,yBAAA;AAAA,gBACnC;AAAA;AACF,aACF;AAAA;~~AACF~~,~~SACK~~,~~MAAA~~;AACL,UAAA,MAAM,WACJA,~~yEAAqC~~,~~CAAA~~,yBAAA;AAAA,YACnC;AAAA,WACF;AACF,~~UAAW~~,UAAA,~~CAAA~~,aAAA,EAAe,QAAQ,~~CAAgB~~,YAAA,~~KAAA~~;AAChD,~~YAAI~~,GAAA,~~CAAA~~,GAAA,CAAI,GAAG,~~WAAY~~,~~CAAA~~,MAAA,CAAO,IAAI,~~CAAI~~,CAAA,~~EAAA~~,YAAY,IAAI,QAAQ,CAAA;AAAA,~~WAC/D~~,CAAA;AAAA;~~AACH~~,~~OACD~~,CAAA;AAED,~~MACE~~,~~IAAA~~,WAAA,CAAY,~~MAAO~~,~~CAAA~~,IAAA,KAAS,~~eAC5B~~,~~IAAA~~,GAAA,CAAI,IAAI,~~WAAY~~,~~CAAA~~,MAAA,CAAO,IAAI,CAAA,KAAM,~~KACrC~~,~~CAAA,EAAA~~;AACA,~~QAAI~~,GAAA,~~CAAA~~,GAAA;AAAA,UACF,YAAY,~~MAAO~~,~~CAAA~~,IAAA;AAAA,UACnBA,~~yEAAqC~~,~~CAAA~~,mBAAA;AAAA,YACnC,IAAIC,+~~BAAuB~~;~~AAAA~~;AAC7B,SACF;AAAA;~~AAGF~~,~~MAAO~~,~~OAAA~~,GAAA;AAAA,~~KACT~~,~~kBAAO~~,~~IAAA~~,GAAA,EAAmD,CAAA;AAE1D,~~IAAO~~,~~OAAA~~,IAAI,sCAAsC,SAAS,CAAA;AAAA;~~AAC5D~~,EASQ,iCACN,~~GAC4C~~,~~EAAA~~;AAC5C,~~IAAM~~,~~MAAA~~,KAAA,GAAQ,IAAI,~~QAAS~~,~~CAAA~~,KAAA,CAAM,GAAG,CAAE,~~CAAA,~~MAAA,CAAO,~~CAAQ~~,IAAA,~~KAAA~~,IAAA,KAAS,EAAE,CAAA;AAChE,IAAA,IAAI,~~GAAI~~,~~CAAA~~,IAAA,KAAS,~~eAAmB~~,~~IAAA~~,KAAA,CAAM,SAAS,~~CAAG~~,~~EAAA~~;AACpD,~~MAAI~~,~~IAAA~~,KAAA,CAAM,CAAC,CAAA,KAAM,~~KAAO~~,~~EAAA~~;AAEtB,~~QAAO~~,~~OAAA~~,IAAA,CAAK,~~SAAU~~,~~CAAA~~,GAAA,CAAI,~~CAAG~~,~~EAAA~~,GAAA,CAAI,IAAI,~~CAAI~~,CAAA,~~EAAA~~,KAAA,CAAM,CAAC,CAAC,CAAE,CAAA~~,CAAA~~;AAAA,~~iBAC1C~~,~~KAAM~~,~~CAAA~~,CAAC,MAAM,~~KAAS~~,~~IAAA~~,KAAA,CAAM,SAAS,~~CAAG~~,~~EAAA~~;AAEjD,~~QAAO~~,~~OAAA~~,IAAA,CAAK,~~SAAU~~,~~CAAA~~,GAAA,CAAI,~~CAAG~~,~~EAAA~~,GAAA,CAAI,IAAI,~~CAAI~~,CAAA,~~EAAA~~,KAAA,CAAM,CAAC,CAAC,CAAE,CAAA,~~CAAA~~;AAAA;~~AACrD;AAGF~~,~~IAAO~~,~~OAAA~~,~~KAAA~~,~~CAAA~~;AAAA~~;AACT~~,EAEQ,2BACN,~~GAC4C~~,~~EAAA~~;AAC5C,~~IAAM~~,~~MAAA~~,KAAA,GAAQ,IAAI,~~QAAS~~,~~CAAA~~,KAAA,CAAM,GAAG,CAAE,~~CAAA,~~MAAA,CAAO,~~CAAQ~~,IAAA,~~KAAA~~,IAAA,KAAS,EAAE,CAAA;AAChE,IAAA,IAAI,~~GAAI~~,~~CAAA~~,IAAA,KAAS,~~eAAmB~~,~~IAAA~~,KAAA,CAAM,SAAS,~~CAAG~~,~~EAAA~~;AAEpD,~~MAAO~~,~~OAAA~~,IAAA,CAAK,~~SAAU~~,~~CAAA~~,GAAA,CAAI,~~CAAG~~,~~EAAA~~,GAAA,CAAI,IAAI,~~CAAI~~,CAAA,~~EAAA~~,KAAA,CAAM,CAAC,CAAC,CAAE,CAAA~~,CAAA~~;AAAA;~~AAGrD~~,~~IAAO~~,~~OAAA~~,~~KAAA~~,~~CAAA~~;AAAA~~;AACT~~,EAEQ,QAAQ,~~GAAsD~~,~~EAAA~~;AACpE,IAAA,OAAO,~~IAAK~~,~~CAAA~~,SAAA,CAAU,~~GAAI~~,~~CAAA~~,GAAA,CAAI,IAAI,CAAA;AAAA;~~AACpC~~,EAEA,MAAM,eAAe,~~IAE2B~~,~~EAAA~~;AAC9C,IAAA,MAAM,GAAM,~~GAAA,~~IAAI,~~GAAI~~,~~CAAA~~,IAAA,CAAK,GAAG,CAAA;AAC5B,~~IAAM~~,~~MAAA~~,QAAA,GACJ,~~IAAK~~,~~CAAA~~,0BAAA,CAA2B,GAAG,CAAA,IACnC,~~IAAK~~,~~CAAA~~,gCAAA,CAAiC,GAAG,CAAA,IACzC,~~IAAK~~,~~CAAA~~,OAAA,CAAQ,GAAG,CAAA;AAElB,IAAA,IAAI,aAAa,~~KAAW~~,~~CAAA,EAAA~~;AAC1B,~~MAAO~~,~~OAAA~~,~~KAAA,CAAA~~;AAAA;~~AAGT~~,~~IAAO~~,~~OAAA~~,QAAA,CAAS,eAAe,IAAI,CAAA;AAAA;~~AAEvC~~;;;;"}
1	+ {"version":3,"file":"DefaultAzureDevOpsCredentialsProvider.cjs.js","sources":["../../src/azure/DefaultAzureDevOpsCredentialsProvider.ts"],"sourcesContent":["/\n Copyright 2023 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport {\n AzureDevOpsCredentials,\n AzureDevOpsCredentialsProvider,\n} from './types';\nimport { CachedAzureDevOpsCredentialsProvider } from './CachedAzureDevOpsCredentialsProvider';\nimport { ScmIntegrationRegistry } from '../registry';\nimport { DefaultAzureCredential } from '@azure/identity';\n\n/\n Default implementation of AzureDevOpsCredentialsProvider.\n * @public\n */\nexport class DefaultAzureDevOpsCredentialsProvider\n implements AzureDevOpsCredentialsProvider\n{\n static fromIntegrations(\n integrations: ScmIntegrationRegistry,\n ): DefaultAzureDevOpsCredentialsProvider {\n const providers = integrations.azure.list().reduce((acc, integration) => {\n integration.config.credentials?.forEach(credential => {\n if (\n credential.organizations === undefined \|\|\n credential.organizations.length === 0\n ) {\n if (acc.get(integration.config.host) === undefined) {\n acc.set(\n integration.config.host,\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credential,\n ),\n );\n }\n } else {\n const provider =\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credential,\n );\n credential.organizations?.forEach(organization => {\n acc.set(`${integration.config.host}/${organization}`, provider);\n });\n }\n });\n\n if (\n integration.config.host === 'dev.azure.com' &&\n acc.get(integration.config.host) === undefined\n ) {\n acc.set(\n integration.config.host,\n CachedAzureDevOpsCredentialsProvider.fromTokenCredential(\n new DefaultAzureCredential(),\n ),\n );\n }\n\n return acc;\n }, new Map<string, CachedAzureDevOpsCredentialsProvider>());\n\n return new DefaultAzureDevOpsCredentialsProvider(providers);\n }\n\n private constructor(\n private readonly providers: Map<\n string,\n CachedAzureDevOpsCredentialsProvider\n >,\n ) {}\n\n private forAzureDevOpsServerOrganization(\n url: URL,\n ): AzureDevOpsCredentialsProvider \| undefined {\n const parts = url.pathname.split('/').filter(part => part !== '');\n if (url.host !== 'dev.azure.com' && parts.length > 0) {\n if (parts[0] !== 'tfs') {\n // url format: https://{host}/{organization}\n return this.providers.get(`${url.host}/${parts[0]}`);\n } else if (parts[0] === 'tfs' && parts.length > 1) {\n // url format: https://{host}/tfs/{organization}\n return this.providers.get(`${url.host}/${parts[1]}`);\n }\n }\n\n return undefined;\n }\n\n private forAzureDevOpsOrganization(\n url: URL,\n ): AzureDevOpsCredentialsProvider \| undefined {\n const parts = url.pathname.split('/').filter(part => part !== '');\n if (url.host === 'dev.azure.com' && parts.length > 0) {\n // url format: https://{host}/{organization}\n return this.providers.get(`${url.host}/${parts[0]}`);\n }\n\n return undefined;\n }\n\n private forHost(url: URL): AzureDevOpsCredentialsProvider \| undefined {\n return this.providers.get(url.host);\n }\n\n async getCredentials(opts: {\n url: string;\n }): Promise<AzureDevOpsCredentials \| undefined> {\n const url = new URL(opts.url);\n const provider =\n this.forAzureDevOpsOrganization(url) ??\n this.forAzureDevOpsServerOrganization(url) ??\n this.forHost(url);\n\n if (provider === undefined) {\n return undefined;\n }\n\n return provider.getCredentials(opts);\n }\n}\n"],"names":["CachedAzureDevOpsCredentialsProvider","DefaultAzureCredential"],"mappings":";;;;;AA2BO,MAAM,qCAAA,CAEb;AAAA,EA+CU,YACW,SAAA,EAIjB;AAJiB,IAAA,IAAA,CAAA,SAAA,GAAA,SAAA;AAAA,EAIhB;AAAA,EAnDH,OAAO,iBACL,YAAA,EACuC;AACvC,IAAA,MAAM,SAAA,GAAY,aAAa,KAAA,CAAM,IAAA,GAAO,MAAA,CAAO,CAAC,KAAK,WAAA,KAAgB;AACvE,MAAA,WAAA,CAAY,MAAA,CAAO,WAAA,EAAa,OAAA,CAAQ,CAAA,UAAA,KAAc;AACpD,QAAA,IACE,WAAW,aAAA,KAAkB,MAAA,IAC7B,UAAA,CAAW,aAAA,CAAc,WAAW,CAAA,EACpC;AACA,UAAA,IAAI,IAAI,GAAA,CAAI,WAAA,CAAY,MAAA,CAAO,IAAI,MAAM,MAAA,EAAW;AAClD,YAAA,GAAA,CAAI,GAAA;AAAA,cACF,YAAY,MAAA,CAAO,IAAA;AAAA,cACnBA,yEAAA,CAAqC,yBAAA;AAAA,gBACnC;AAAA;AACF,aACF;AAAA,UACF;AAAA,QACF,CAAA,MAAO;AACL,UAAA,MAAM,WACJA,yEAAA,CAAqC,yBAAA;AAAA,YACnC;AAAA,WACF;AACF,UAAA,UAAA,CAAW,aAAA,EAAe,QAAQ,CAAA,YAAA,KAAgB;AAChD,YAAA,GAAA,CAAI,GAAA,CAAI,GAAG,WAAA,CAAY,MAAA,CAAO,IAAI,CAAA,CAAA,EAAI,YAAY,IAAI,QAAQ,CAAA;AAAA,UAChE,CAAC,CAAA;AAAA,QACH;AAAA,MACF,CAAC,CAAA;AAED,MAAA,IACE,WAAA,CAAY,MAAA,CAAO,IAAA,KAAS,eAAA,IAC5B,GAAA,CAAI,IAAI,WAAA,CAAY,MAAA,CAAO,IAAI,CAAA,KAAM,MAAA,EACrC;AACA,QAAA,GAAA,CAAI,GAAA;AAAA,UACF,YAAY,MAAA,CAAO,IAAA;AAAA,UACnBA,yEAAA,CAAqC,mBAAA;AAAA,YACnC,IAAIC,+BAAA;AAAuB;AAC7B,SACF;AAAA,MACF;AAEA,MAAA,OAAO,GAAA;AAAA,IACT,CAAA,kBAAG,IAAI,GAAA,EAAmD,CAAA;AAE1D,IAAA,OAAO,IAAI,sCAAsC,SAAS,CAAA;AAAA,EAC5D;AAAA,EASQ,iCACN,GAAA,EAC4C;AAC5C,IAAA,MAAM,KAAA,GAAQ,IAAI,QAAA,CAAS,KAAA,CAAM,GAAG,CAAA,CAAE,MAAA,CAAO,CAAA,IAAA,KAAQ,IAAA,KAAS,EAAE,CAAA;AAChE,IAAA,IAAI,GAAA,CAAI,IAAA,KAAS,eAAA,IAAmB,KAAA,CAAM,SAAS,CAAA,EAAG;AACpD,MAAA,IAAI,KAAA,CAAM,CAAC,CAAA,KAAM,KAAA,EAAO;AAEtB,QAAA,OAAO,IAAA,CAAK,SAAA,CAAU,GAAA,CAAI,CAAA,EAAG,GAAA,CAAI,IAAI,CAAA,CAAA,EAAI,KAAA,CAAM,CAAC,CAAC,CAAA,CAAE,CAAA;AAAA,MACrD,WAAW,KAAA,CAAM,CAAC,MAAM,KAAA,IAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAEjD,QAAA,OAAO,IAAA,CAAK,SAAA,CAAU,GAAA,CAAI,CAAA,EAAG,GAAA,CAAI,IAAI,CAAA,CAAA,EAAI,KAAA,CAAM,CAAC,CAAC,CAAA,CAAE,CAAA;AAAA,MACrD;AAAA,IACF;AAEA,IAAA,OAAO,MAAA;AAAA,EACT;AAAA,EAEQ,2BACN,GAAA,EAC4C;AAC5C,IAAA,MAAM,KAAA,GAAQ,IAAI,QAAA,CAAS,KAAA,CAAM,GAAG,CAAA,CAAE,MAAA,CAAO,CAAA,IAAA,KAAQ,IAAA,KAAS,EAAE,CAAA;AAChE,IAAA,IAAI,GAAA,CAAI,IAAA,KAAS,eAAA,IAAmB,KAAA,CAAM,SAAS,CAAA,EAAG;AAEpD,MAAA,OAAO,IAAA,CAAK,SAAA,CAAU,GAAA,CAAI,CAAA,EAAG,GAAA,CAAI,IAAI,CAAA,CAAA,EAAI,KAAA,CAAM,CAAC,CAAC,CAAA,CAAE,CAAA;AAAA,IACrD;AAEA,IAAA,OAAO,MAAA;AAAA,EACT;AAAA,EAEQ,QAAQ,GAAA,EAAsD;AACpE,IAAA,OAAO,IAAA,CAAK,SAAA,CAAU,GAAA,CAAI,GAAA,CAAI,IAAI,CAAA;AAAA,EACpC;AAAA,EAEA,MAAM,eAAe,IAAA,EAE2B;AAC9C,IAAA,MAAM,GAAA,GAAM,IAAI,GAAA,CAAI,IAAA,CAAK,GAAG,CAAA;AAC5B,IAAA,MAAM,QAAA,GACJ,IAAA,CAAK,0BAAA,CAA2B,GAAG,CAAA,IACnC,IAAA,CAAK,gCAAA,CAAiC,GAAG,CAAA,IACzC,IAAA,CAAK,OAAA,CAAQ,GAAG,CAAA;AAElB,IAAA,IAAI,aAAa,MAAA,EAAW;AAC1B,MAAA,OAAO,MAAA;AAAA,IACT;AAEA,IAAA,OAAO,QAAA,CAAS,eAAe,IAAI,CAAA;AAAA,EACrC;AACF;;;;"}

package/dist/azure/DefaultAzureDevOpsCredentialsProvider.esm.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"DefaultAzureDevOpsCredentialsProvider.esm.js","sources":["../../src/azure/DefaultAzureDevOpsCredentialsProvider.ts"],"sourcesContent":["/\n Copyright 2023 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport {\n AzureDevOpsCredentials,\n AzureDevOpsCredentialsProvider,\n} from './types';\nimport { CachedAzureDevOpsCredentialsProvider } from './CachedAzureDevOpsCredentialsProvider';\nimport { ScmIntegrationRegistry } from '../registry';\nimport { DefaultAzureCredential } from '@azure/identity';\n\n/\n Default implementation of AzureDevOpsCredentialsProvider.\n * @public\n */\nexport class DefaultAzureDevOpsCredentialsProvider\n implements AzureDevOpsCredentialsProvider\n{\n static fromIntegrations(\n integrations: ScmIntegrationRegistry,\n ): DefaultAzureDevOpsCredentialsProvider {\n const providers = integrations.azure.list().reduce((acc, integration) => {\n integration.config.credentials?.forEach(credential => {\n if (\n credential.organizations === undefined \|\|\n credential.organizations.length === 0\n ) {\n if (acc.get(integration.config.host) === undefined) {\n acc.set(\n integration.config.host,\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credential,\n ),\n );\n }\n } else {\n const provider =\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credential,\n );\n credential.organizations?.forEach(organization => {\n acc.set(`${integration.config.host}/${organization}`, provider);\n });\n }\n });\n\n if (\n integration.config.host === 'dev.azure.com' &&\n acc.get(integration.config.host) === undefined\n ) {\n acc.set(\n integration.config.host,\n CachedAzureDevOpsCredentialsProvider.fromTokenCredential(\n new DefaultAzureCredential(),\n ),\n );\n }\n\n return acc;\n }, new Map<string, CachedAzureDevOpsCredentialsProvider>());\n\n return new DefaultAzureDevOpsCredentialsProvider(providers);\n }\n\n private constructor(\n private readonly providers: Map<\n string,\n CachedAzureDevOpsCredentialsProvider\n >,\n ) {}\n\n private forAzureDevOpsServerOrganization(\n url: URL,\n ): AzureDevOpsCredentialsProvider \| undefined {\n const parts = url.pathname.split('/').filter(part => part !== '');\n if (url.host !== 'dev.azure.com' && parts.length > 0) {\n if (parts[0] !== 'tfs') {\n // url format: https://{host}/{organization}\n return this.providers.get(`${url.host}/${parts[0]}`);\n } else if (parts[0] === 'tfs' && parts.length > 1) {\n // url format: https://{host}/tfs/{organization}\n return this.providers.get(`${url.host}/${parts[1]}`);\n }\n }\n\n return undefined;\n }\n\n private forAzureDevOpsOrganization(\n url: URL,\n ): AzureDevOpsCredentialsProvider \| undefined {\n const parts = url.pathname.split('/').filter(part => part !== '');\n if (url.host === 'dev.azure.com' && parts.length > 0) {\n // url format: https://{host}/{organization}\n return this.providers.get(`${url.host}/${parts[0]}`);\n }\n\n return undefined;\n }\n\n private forHost(url: URL): AzureDevOpsCredentialsProvider \| undefined {\n return this.providers.get(url.host);\n }\n\n async getCredentials(opts: {\n url: string;\n }): Promise<AzureDevOpsCredentials \| undefined> {\n const url = new URL(opts.url);\n const provider =\n this.forAzureDevOpsOrganization(url) ??\n this.forAzureDevOpsServerOrganization(url) ??\n this.forHost(url);\n\n if (provider === undefined) {\n return undefined;\n }\n\n return provider.getCredentials(opts);\n }\n}\n"],"names":[],"mappings":";;;AA2BO,MAAM,~~qCAEb~~,~~CAAA~~;AAAA,EA+CU,YACW,~~SAIjB~~,~~EAAA~~;AAJiB,IAAA,IAAA,CAAA,SAAA,GAAA,SAAA;AAAA;~~AAIhB~~,EAnDH,OAAO,iBACL,~~YACuC~~,~~EAAA~~;AACvC,~~IAAM~~,~~MAAA~~,SAAA,GAAY,aAAa,~~KAAM~~,~~CAAA~~,IAAA,GAAO,~~MAAO~~,~~CAAA~~,CAAC,KAAK,~~WAAgB~~,~~KAAA~~;AACvE,~~MAAY~~,WAAA,~~CAAA~~,MAAA,CAAO,~~WAAa~~,~~EAAA~~,OAAA,CAAQ,~~CAAc~~,UAAA,~~KAAA~~;AACpD,QAAA,IACE,WAAW,~~aAAkB~~,~~KAAA~~,~~KAAA~~,~~CAAA,~~IAC7B,~~UAAW~~,~~CAAA~~,aAAA,CAAc,WAAW,~~CACpC~~,~~EAAA~~;AACA,UAAA,IAAI,IAAI,~~GAAI~~,~~CAAA~~,WAAA,CAAY,~~MAAO~~,~~CAAA~~,IAAI,MAAM,~~KAAW~~,~~CAAA,EAAA~~;AAClD,~~YAAI~~,GAAA,~~CAAA~~,GAAA;AAAA,cACF,YAAY,~~MAAO~~,~~CAAA~~,IAAA;AAAA,cACnB,~~oCAAqC~~,~~CAAA~~,yBAAA;AAAA,gBACnC;AAAA;AACF,aACF;AAAA;~~AACF~~,~~SACK~~,~~MAAA~~;AACL,UAAA,MAAM,WACJ,~~oCAAqC~~,~~CAAA~~,yBAAA;AAAA,YACnC;AAAA,WACF;AACF,~~UAAW~~,UAAA,~~CAAA~~,aAAA,EAAe,QAAQ,~~CAAgB~~,YAAA,~~KAAA~~;AAChD,~~YAAI~~,GAAA,~~CAAA~~,GAAA,CAAI,GAAG,~~WAAY~~,~~CAAA~~,MAAA,CAAO,IAAI,~~CAAI~~,CAAA,~~EAAA~~,YAAY,IAAI,QAAQ,CAAA;AAAA,~~WAC/D~~,CAAA;AAAA;~~AACH~~,~~OACD~~,CAAA;AAED,~~MACE~~,~~IAAA~~,WAAA,CAAY,~~MAAO~~,~~CAAA~~,IAAA,KAAS,~~eAC5B~~,~~IAAA~~,GAAA,CAAI,IAAI,~~WAAY~~,~~CAAA~~,MAAA,CAAO,IAAI,CAAA,KAAM,~~KACrC~~,~~CAAA,EAAA~~;AACA,~~QAAI~~,GAAA,~~CAAA~~,GAAA;AAAA,UACF,YAAY,~~MAAO~~,~~CAAA~~,IAAA;AAAA,UACnB,~~oCAAqC~~,~~CAAA~~,mBAAA;AAAA,YACnC,IAAI,~~sBAAuB~~;~~AAAA~~;AAC7B,SACF;AAAA;~~AAGF~~,~~MAAO~~,~~OAAA~~,GAAA;AAAA,~~KACT~~,~~kBAAO~~,~~IAAA~~,GAAA,EAAmD,CAAA;AAE1D,~~IAAO~~,~~OAAA~~,IAAI,sCAAsC,SAAS,CAAA;AAAA;~~AAC5D~~,EASQ,iCACN,~~GAC4C~~,~~EAAA~~;AAC5C,~~IAAM~~,~~MAAA~~,KAAA,GAAQ,IAAI,~~QAAS~~,~~CAAA~~,KAAA,CAAM,GAAG,CAAE,~~CAAA,~~MAAA,CAAO,~~CAAQ~~,IAAA,~~KAAA~~,IAAA,KAAS,EAAE,CAAA;AAChE,IAAA,IAAI,~~GAAI~~,~~CAAA~~,IAAA,KAAS,~~eAAmB~~,~~IAAA~~,KAAA,CAAM,SAAS,~~CAAG~~,~~EAAA~~;AACpD,~~MAAI~~,~~IAAA~~,KAAA,CAAM,CAAC,CAAA,KAAM,~~KAAO~~,~~EAAA~~;AAEtB,~~QAAO~~,~~OAAA~~,IAAA,CAAK,~~SAAU~~,~~CAAA~~,GAAA,CAAI,~~CAAG~~,~~EAAA~~,GAAA,CAAI,IAAI,~~CAAI~~,CAAA,~~EAAA~~,KAAA,CAAM,CAAC,CAAC,CAAE,CAAA~~,CAAA~~;AAAA,~~iBAC1C~~,~~KAAM~~,~~CAAA~~,CAAC,MAAM,~~KAAS~~,~~IAAA~~,KAAA,CAAM,SAAS,~~CAAG~~,~~EAAA~~;AAEjD,~~QAAO~~,~~OAAA~~,IAAA,CAAK,~~SAAU~~,~~CAAA~~,GAAA,CAAI,~~CAAG~~,~~EAAA~~,GAAA,CAAI,IAAI,~~CAAI~~,CAAA,~~EAAA~~,KAAA,CAAM,CAAC,CAAC,CAAE,CAAA,~~CAAA~~;AAAA;~~AACrD;AAGF~~,~~IAAO~~,~~OAAA~~,~~KAAA~~,~~CAAA~~;AAAA~~;AACT~~,EAEQ,2BACN,~~GAC4C~~,~~EAAA~~;AAC5C,~~IAAM~~,~~MAAA~~,KAAA,GAAQ,IAAI,~~QAAS~~,~~CAAA~~,KAAA,CAAM,GAAG,CAAE,~~CAAA,~~MAAA,CAAO,~~CAAQ~~,IAAA,~~KAAA~~,IAAA,KAAS,EAAE,CAAA;AAChE,IAAA,IAAI,~~GAAI~~,~~CAAA~~,IAAA,KAAS,~~eAAmB~~,~~IAAA~~,KAAA,CAAM,SAAS,~~CAAG~~,~~EAAA~~;AAEpD,~~MAAO~~,~~OAAA~~,IAAA,CAAK,~~SAAU~~,~~CAAA~~,GAAA,CAAI,~~CAAG~~,~~EAAA~~,GAAA,CAAI,IAAI,~~CAAI~~,CAAA,~~EAAA~~,KAAA,CAAM,CAAC,CAAC,CAAE,CAAA~~,CAAA~~;AAAA;~~AAGrD~~,~~IAAO~~,~~OAAA~~,~~KAAA~~,~~CAAA~~;AAAA~~;AACT~~,EAEQ,QAAQ,~~GAAsD~~,~~EAAA~~;AACpE,IAAA,OAAO,~~IAAK~~,~~CAAA~~,SAAA,CAAU,~~GAAI~~,~~CAAA~~,GAAA,CAAI,IAAI,CAAA;AAAA;~~AACpC~~,EAEA,MAAM,eAAe,~~IAE2B~~,~~EAAA~~;AAC9C,IAAA,MAAM,GAAM,~~GAAA,~~IAAI,~~GAAI~~,~~CAAA~~,IAAA,CAAK,GAAG,CAAA;AAC5B,~~IAAM~~,~~MAAA~~,QAAA,GACJ,~~IAAK~~,~~CAAA~~,0BAAA,CAA2B,GAAG,CAAA,IACnC,~~IAAK~~,~~CAAA~~,gCAAA,CAAiC,GAAG,CAAA,IACzC,~~IAAK~~,~~CAAA~~,OAAA,CAAQ,GAAG,CAAA;AAElB,IAAA,IAAI,aAAa,~~KAAW~~,~~CAAA,EAAA~~;AAC1B,~~MAAO~~,~~OAAA~~,~~KAAA,CAAA~~;AAAA;~~AAGT~~,~~IAAO~~,~~OAAA~~,QAAA,CAAS,eAAe,IAAI,CAAA;AAAA;~~AAEvC~~;;;;"}
1	+ {"version":3,"file":"DefaultAzureDevOpsCredentialsProvider.esm.js","sources":["../../src/azure/DefaultAzureDevOpsCredentialsProvider.ts"],"sourcesContent":["/\n Copyright 2023 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport {\n AzureDevOpsCredentials,\n AzureDevOpsCredentialsProvider,\n} from './types';\nimport { CachedAzureDevOpsCredentialsProvider } from './CachedAzureDevOpsCredentialsProvider';\nimport { ScmIntegrationRegistry } from '../registry';\nimport { DefaultAzureCredential } from '@azure/identity';\n\n/\n Default implementation of AzureDevOpsCredentialsProvider.\n * @public\n */\nexport class DefaultAzureDevOpsCredentialsProvider\n implements AzureDevOpsCredentialsProvider\n{\n static fromIntegrations(\n integrations: ScmIntegrationRegistry,\n ): DefaultAzureDevOpsCredentialsProvider {\n const providers = integrations.azure.list().reduce((acc, integration) => {\n integration.config.credentials?.forEach(credential => {\n if (\n credential.organizations === undefined \|\|\n credential.organizations.length === 0\n ) {\n if (acc.get(integration.config.host) === undefined) {\n acc.set(\n integration.config.host,\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credential,\n ),\n );\n }\n } else {\n const provider =\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credential,\n );\n credential.organizations?.forEach(organization => {\n acc.set(`${integration.config.host}/${organization}`, provider);\n });\n }\n });\n\n if (\n integration.config.host === 'dev.azure.com' &&\n acc.get(integration.config.host) === undefined\n ) {\n acc.set(\n integration.config.host,\n CachedAzureDevOpsCredentialsProvider.fromTokenCredential(\n new DefaultAzureCredential(),\n ),\n );\n }\n\n return acc;\n }, new Map<string, CachedAzureDevOpsCredentialsProvider>());\n\n return new DefaultAzureDevOpsCredentialsProvider(providers);\n }\n\n private constructor(\n private readonly providers: Map<\n string,\n CachedAzureDevOpsCredentialsProvider\n >,\n ) {}\n\n private forAzureDevOpsServerOrganization(\n url: URL,\n ): AzureDevOpsCredentialsProvider \| undefined {\n const parts = url.pathname.split('/').filter(part => part !== '');\n if (url.host !== 'dev.azure.com' && parts.length > 0) {\n if (parts[0] !== 'tfs') {\n // url format: https://{host}/{organization}\n return this.providers.get(`${url.host}/${parts[0]}`);\n } else if (parts[0] === 'tfs' && parts.length > 1) {\n // url format: https://{host}/tfs/{organization}\n return this.providers.get(`${url.host}/${parts[1]}`);\n }\n }\n\n return undefined;\n }\n\n private forAzureDevOpsOrganization(\n url: URL,\n ): AzureDevOpsCredentialsProvider \| undefined {\n const parts = url.pathname.split('/').filter(part => part !== '');\n if (url.host === 'dev.azure.com' && parts.length > 0) {\n // url format: https://{host}/{organization}\n return this.providers.get(`${url.host}/${parts[0]}`);\n }\n\n return undefined;\n }\n\n private forHost(url: URL): AzureDevOpsCredentialsProvider \| undefined {\n return this.providers.get(url.host);\n }\n\n async getCredentials(opts: {\n url: string;\n }): Promise<AzureDevOpsCredentials \| undefined> {\n const url = new URL(opts.url);\n const provider =\n this.forAzureDevOpsOrganization(url) ??\n this.forAzureDevOpsServerOrganization(url) ??\n this.forHost(url);\n\n if (provider === undefined) {\n return undefined;\n }\n\n return provider.getCredentials(opts);\n }\n}\n"],"names":[],"mappings":";;;AA2BO,MAAM,qCAAA,CAEb;AAAA,EA+CU,YACW,SAAA,EAIjB;AAJiB,IAAA,IAAA,CAAA,SAAA,GAAA,SAAA;AAAA,EAIhB;AAAA,EAnDH,OAAO,iBACL,YAAA,EACuC;AACvC,IAAA,MAAM,SAAA,GAAY,aAAa,KAAA,CAAM,IAAA,GAAO,MAAA,CAAO,CAAC,KAAK,WAAA,KAAgB;AACvE,MAAA,WAAA,CAAY,MAAA,CAAO,WAAA,EAAa,OAAA,CAAQ,CAAA,UAAA,KAAc;AACpD,QAAA,IACE,WAAW,aAAA,KAAkB,MAAA,IAC7B,UAAA,CAAW,aAAA,CAAc,WAAW,CAAA,EACpC;AACA,UAAA,IAAI,IAAI,GAAA,CAAI,WAAA,CAAY,MAAA,CAAO,IAAI,MAAM,MAAA,EAAW;AAClD,YAAA,GAAA,CAAI,GAAA;AAAA,cACF,YAAY,MAAA,CAAO,IAAA;AAAA,cACnB,oCAAA,CAAqC,yBAAA;AAAA,gBACnC;AAAA;AACF,aACF;AAAA,UACF;AAAA,QACF,CAAA,MAAO;AACL,UAAA,MAAM,WACJ,oCAAA,CAAqC,yBAAA;AAAA,YACnC;AAAA,WACF;AACF,UAAA,UAAA,CAAW,aAAA,EAAe,QAAQ,CAAA,YAAA,KAAgB;AAChD,YAAA,GAAA,CAAI,GAAA,CAAI,GAAG,WAAA,CAAY,MAAA,CAAO,IAAI,CAAA,CAAA,EAAI,YAAY,IAAI,QAAQ,CAAA;AAAA,UAChE,CAAC,CAAA;AAAA,QACH;AAAA,MACF,CAAC,CAAA;AAED,MAAA,IACE,WAAA,CAAY,MAAA,CAAO,IAAA,KAAS,eAAA,IAC5B,GAAA,CAAI,IAAI,WAAA,CAAY,MAAA,CAAO,IAAI,CAAA,KAAM,MAAA,EACrC;AACA,QAAA,GAAA,CAAI,GAAA;AAAA,UACF,YAAY,MAAA,CAAO,IAAA;AAAA,UACnB,oCAAA,CAAqC,mBAAA;AAAA,YACnC,IAAI,sBAAA;AAAuB;AAC7B,SACF;AAAA,MACF;AAEA,MAAA,OAAO,GAAA;AAAA,IACT,CAAA,kBAAG,IAAI,GAAA,EAAmD,CAAA;AAE1D,IAAA,OAAO,IAAI,sCAAsC,SAAS,CAAA;AAAA,EAC5D;AAAA,EASQ,iCACN,GAAA,EAC4C;AAC5C,IAAA,MAAM,KAAA,GAAQ,IAAI,QAAA,CAAS,KAAA,CAAM,GAAG,CAAA,CAAE,MAAA,CAAO,CAAA,IAAA,KAAQ,IAAA,KAAS,EAAE,CAAA;AAChE,IAAA,IAAI,GAAA,CAAI,IAAA,KAAS,eAAA,IAAmB,KAAA,CAAM,SAAS,CAAA,EAAG;AACpD,MAAA,IAAI,KAAA,CAAM,CAAC,CAAA,KAAM,KAAA,EAAO;AAEtB,QAAA,OAAO,IAAA,CAAK,SAAA,CAAU,GAAA,CAAI,CAAA,EAAG,GAAA,CAAI,IAAI,CAAA,CAAA,EAAI,KAAA,CAAM,CAAC,CAAC,CAAA,CAAE,CAAA;AAAA,MACrD,WAAW,KAAA,CAAM,CAAC,MAAM,KAAA,IAAS,KAAA,CAAM,SAAS,CAAA,EAAG;AAEjD,QAAA,OAAO,IAAA,CAAK,SAAA,CAAU,GAAA,CAAI,CAAA,EAAG,GAAA,CAAI,IAAI,CAAA,CAAA,EAAI,KAAA,CAAM,CAAC,CAAC,CAAA,CAAE,CAAA;AAAA,MACrD;AAAA,IACF;AAEA,IAAA,OAAO,MAAA;AAAA,EACT;AAAA,EAEQ,2BACN,GAAA,EAC4C;AAC5C,IAAA,MAAM,KAAA,GAAQ,IAAI,QAAA,CAAS,KAAA,CAAM,GAAG,CAAA,CAAE,MAAA,CAAO,CAAA,IAAA,KAAQ,IAAA,KAAS,EAAE,CAAA;AAChE,IAAA,IAAI,GAAA,CAAI,IAAA,KAAS,eAAA,IAAmB,KAAA,CAAM,SAAS,CAAA,EAAG;AAEpD,MAAA,OAAO,IAAA,CAAK,SAAA,CAAU,GAAA,CAAI,CAAA,EAAG,GAAA,CAAI,IAAI,CAAA,CAAA,EAAI,KAAA,CAAM,CAAC,CAAC,CAAA,CAAE,CAAA;AAAA,IACrD;AAEA,IAAA,OAAO,MAAA;AAAA,EACT;AAAA,EAEQ,QAAQ,GAAA,EAAsD;AACpE,IAAA,OAAO,IAAA,CAAK,SAAA,CAAU,GAAA,CAAI,GAAA,CAAI,IAAI,CAAA;AAAA,EACpC;AAAA,EAEA,MAAM,eAAe,IAAA,EAE2B;AAC9C,IAAA,MAAM,GAAA,GAAM,IAAI,GAAA,CAAI,IAAA,CAAK,GAAG,CAAA;AAC5B,IAAA,MAAM,QAAA,GACJ,IAAA,CAAK,0BAAA,CAA2B,GAAG,CAAA,IACnC,IAAA,CAAK,gCAAA,CAAiC,GAAG,CAAA,IACzC,IAAA,CAAK,OAAA,CAAQ,GAAG,CAAA;AAElB,IAAA,IAAI,aAAa,MAAA,EAAW;AAC1B,MAAA,OAAO,MAAA;AAAA,IACT;AAEA,IAAA,OAAO,QAAA,CAAS,eAAe,IAAI,CAAA;AAAA,EACrC;AACF;;;;"}

package/dist/azure/ManagedIdentityClientAssertion.cjs.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"ManagedIdentityClientAssertion.cjs.js","sources":["../../src/azure/ManagedIdentityClientAssertion.ts"],"sourcesContent":["/\n Copyright 2025 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport { ManagedIdentityCredential } from '@azure/identity';\nimport { ClientAssertion } from './ClientAssertion';\n\nexport type ManagedIdentityClientAssertionOptions = {\n clientId?: string;\n};\n\nconst fiveMinutes = 5 60 * 1000; // 5 minutes in milliseconds\nconst expiresWithinFiveMinutes = (clientAssertion: ClientAssertion) =>\n clientAssertion.expiresOnTimestamp - Date.now() <= fiveMinutes;\n\n/*\n Class representing a Managed Identity Client Assertion.\n * This class is responsible for obtaining a signed client assertion using Azure Managed Identity.\n /\nexport class ManagedIdentityClientAssertion {\n private credential: ManagedIdentityCredential;\n private clientAssertion?: ClientAssertion;\n\n /\n Creates an instance of ManagedIdentityClientAssertion.\n * @param options - Optional parameters for the ManagedIdentityClientAssertion.\n * - clientId: The client ID of the managed identity. If not provided, 'system-assigned' is used.\n /\n constructor(options?: ManagedIdentityClientAssertionOptions) {\n let { clientId } = options \|\| {};\n clientId ??= 'system-assigned';\n\n this.credential =\n clientId === 'system-assigned'\n ? new ManagedIdentityCredential()\n : new ManagedIdentityCredential(clientId);\n }\n\n /\n Gets a signed client assertion.\n * If a valid client assertion is already cached which doesn't expire soon, it returns the cached assertion.\n * Otherwise, it obtains a new access token and creates a new client assertion.\n * @returns A promise that resolves to the signed client assertion.\n */\n public async getSignedAssertion(): Promise<string> {\n if (\n this.clientAssertion !== undefined &&\n !expiresWithinFiveMinutes(this.clientAssertion)\n ) {\n return this.clientAssertion.signedAssertion;\n }\n\n const accessToken = await this.credential.getToken(\n 'api://AzureADTokenExchange',\n );\n\n this.clientAssertion = {\n signedAssertion: accessToken.token,\n expiresOnTimestamp: accessToken.expiresOnTimestamp,\n };\n\n return accessToken.token;\n }\n}\n"],"names":["ManagedIdentityCredential"],"mappings":";;;;AAsBA,MAAM,WAAA,GAAc,IAAI,~~EAAK~~,~~GAAA~~,GAAA;AAC7B,MAAM,2BAA2B,CAAC,eAAA,KAChC,gBAAgB,~~kBAAqB~~,~~GAAA~~,IAAA,CAAK,~~KAAS~~,~~IAAA~~,WAAA;AAM9C,MAAM,~~8BAA~~+B~~,CAAA~~;AAAA,EAClC,UAAA;AAAA,EACA,eAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOR,YAAY,~~OAAiD~~,~~EAAA~~;AAC3D,IAAA,IAAI,EAAE,QAAA,~~EAAa~~,~~GAAA~~,OAAA,IAAW,EAAC;AAC/B,~~IAAa~~,QAAA,~~KAAA~~,iBAAA;AAEb,~~IAAK~~,IAAA,~~CAAA~~,UAAA,GACH,aAAa,~~iBACT~~,~~GAAA~~,IAAIA,~~oCACJ~~,~~GAAA~~,IAAIA,mCAA0B,QAAQ,CAAA;AAAA;~~AAC9C~~;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAa,~~kBAAsC~~,~~GAAA~~;AACjD,IAAA,IACE,KAAK,~~eAAoB~~,~~KAAA~~,~~KAAA~~,~~CAAA,~~IACzB,CAAC,~~wBAAyB~~,~~CAAA~~,IAAA,CAAK,eAAe,~~CAC9C~~,~~EAAA~~;AACA,MAAA,OAAO,KAAK,~~eAAgB~~,~~CAAA~~,eAAA;AAAA;~~AAG9B~~,~~IAAM~~,~~MAAA~~,WAAA,GAAc,MAAM,IAAA,CAAK,~~UAAW~~,~~CAAA~~,QAAA;AAAA,MACxC;AAAA,KACF;AAEA,IAAA,IAAA,CAAK,~~eAAkB~~,~~GAAA~~;AAAA,MACrB,iBAAiB,~~WAAY~~,~~CAAA~~,KAAA;AAAA,MAC7B,oBAAoB,~~WAAY~~,~~CAAA~~;AAAA,KAClC;AAEA,IAAA,OAAO,~~WAAY~~,~~CAAA~~,KAAA;AAAA;~~AAEvB~~;;;;"}
1	+ {"version":3,"file":"ManagedIdentityClientAssertion.cjs.js","sources":["../../src/azure/ManagedIdentityClientAssertion.ts"],"sourcesContent":["/\n Copyright 2025 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport { ManagedIdentityCredential } from '@azure/identity';\nimport { ClientAssertion } from './ClientAssertion';\n\nexport type ManagedIdentityClientAssertionOptions = {\n clientId?: string;\n};\n\nconst fiveMinutes = 5 60 * 1000; // 5 minutes in milliseconds\nconst expiresWithinFiveMinutes = (clientAssertion: ClientAssertion) =>\n clientAssertion.expiresOnTimestamp - Date.now() <= fiveMinutes;\n\n/*\n Class representing a Managed Identity Client Assertion.\n * This class is responsible for obtaining a signed client assertion using Azure Managed Identity.\n /\nexport class ManagedIdentityClientAssertion {\n private credential: ManagedIdentityCredential;\n private clientAssertion?: ClientAssertion;\n\n /\n Creates an instance of ManagedIdentityClientAssertion.\n * @param options - Optional parameters for the ManagedIdentityClientAssertion.\n * - clientId: The client ID of the managed identity. If not provided, 'system-assigned' is used.\n /\n constructor(options?: ManagedIdentityClientAssertionOptions) {\n let { clientId } = options \|\| {};\n clientId ??= 'system-assigned';\n\n this.credential =\n clientId === 'system-assigned'\n ? new ManagedIdentityCredential()\n : new ManagedIdentityCredential(clientId);\n }\n\n /\n Gets a signed client assertion.\n * If a valid client assertion is already cached which doesn't expire soon, it returns the cached assertion.\n * Otherwise, it obtains a new access token and creates a new client assertion.\n * @returns A promise that resolves to the signed client assertion.\n */\n public async getSignedAssertion(): Promise<string> {\n if (\n this.clientAssertion !== undefined &&\n !expiresWithinFiveMinutes(this.clientAssertion)\n ) {\n return this.clientAssertion.signedAssertion;\n }\n\n const accessToken = await this.credential.getToken(\n 'api://AzureADTokenExchange',\n );\n\n this.clientAssertion = {\n signedAssertion: accessToken.token,\n expiresOnTimestamp: accessToken.expiresOnTimestamp,\n };\n\n return accessToken.token;\n }\n}\n"],"names":["ManagedIdentityCredential"],"mappings":";;;;AAsBA,MAAM,WAAA,GAAc,IAAI,EAAA,GAAK,GAAA;AAC7B,MAAM,2BAA2B,CAAC,eAAA,KAChC,gBAAgB,kBAAA,GAAqB,IAAA,CAAK,KAAI,IAAK,WAAA;AAM9C,MAAM,8BAAA,CAA+B;AAAA,EAClC,UAAA;AAAA,EACA,eAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOR,YAAY,OAAA,EAAiD;AAC3D,IAAA,IAAI,EAAE,QAAA,EAAS,GAAI,OAAA,IAAW,EAAC;AAC/B,IAAA,QAAA,KAAa,iBAAA;AAEb,IAAA,IAAA,CAAK,UAAA,GACH,aAAa,iBAAA,GACT,IAAIA,oCAA0B,GAC9B,IAAIA,mCAA0B,QAAQ,CAAA;AAAA,EAC9C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAa,kBAAA,GAAsC;AACjD,IAAA,IACE,KAAK,eAAA,KAAoB,MAAA,IACzB,CAAC,wBAAA,CAAyB,IAAA,CAAK,eAAe,CAAA,EAC9C;AACA,MAAA,OAAO,KAAK,eAAA,CAAgB,eAAA;AAAA,IAC9B;AAEA,IAAA,MAAM,WAAA,GAAc,MAAM,IAAA,CAAK,UAAA,CAAW,QAAA;AAAA,MACxC;AAAA,KACF;AAEA,IAAA,IAAA,CAAK,eAAA,GAAkB;AAAA,MACrB,iBAAiB,WAAA,CAAY,KAAA;AAAA,MAC7B,oBAAoB,WAAA,CAAY;AAAA,KAClC;AAEA,IAAA,OAAO,WAAA,CAAY,KAAA;AAAA,EACrB;AACF;;;;"}

package/dist/azure/ManagedIdentityClientAssertion.esm.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"ManagedIdentityClientAssertion.esm.js","sources":["../../src/azure/ManagedIdentityClientAssertion.ts"],"sourcesContent":["/\n Copyright 2025 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport { ManagedIdentityCredential } from '@azure/identity';\nimport { ClientAssertion } from './ClientAssertion';\n\nexport type ManagedIdentityClientAssertionOptions = {\n clientId?: string;\n};\n\nconst fiveMinutes = 5 60 * 1000; // 5 minutes in milliseconds\nconst expiresWithinFiveMinutes = (clientAssertion: ClientAssertion) =>\n clientAssertion.expiresOnTimestamp - Date.now() <= fiveMinutes;\n\n/*\n Class representing a Managed Identity Client Assertion.\n * This class is responsible for obtaining a signed client assertion using Azure Managed Identity.\n /\nexport class ManagedIdentityClientAssertion {\n private credential: ManagedIdentityCredential;\n private clientAssertion?: ClientAssertion;\n\n /\n Creates an instance of ManagedIdentityClientAssertion.\n * @param options - Optional parameters for the ManagedIdentityClientAssertion.\n * - clientId: The client ID of the managed identity. If not provided, 'system-assigned' is used.\n /\n constructor(options?: ManagedIdentityClientAssertionOptions) {\n let { clientId } = options \|\| {};\n clientId ??= 'system-assigned';\n\n this.credential =\n clientId === 'system-assigned'\n ? new ManagedIdentityCredential()\n : new ManagedIdentityCredential(clientId);\n }\n\n /\n Gets a signed client assertion.\n * If a valid client assertion is already cached which doesn't expire soon, it returns the cached assertion.\n * Otherwise, it obtains a new access token and creates a new client assertion.\n * @returns A promise that resolves to the signed client assertion.\n */\n public async getSignedAssertion(): Promise<string> {\n if (\n this.clientAssertion !== undefined &&\n !expiresWithinFiveMinutes(this.clientAssertion)\n ) {\n return this.clientAssertion.signedAssertion;\n }\n\n const accessToken = await this.credential.getToken(\n 'api://AzureADTokenExchange',\n );\n\n this.clientAssertion = {\n signedAssertion: accessToken.token,\n expiresOnTimestamp: accessToken.expiresOnTimestamp,\n };\n\n return accessToken.token;\n }\n}\n"],"names":[],"mappings":";;AAsBA,MAAM,WAAA,GAAc,IAAI,~~EAAK~~,~~GAAA~~,GAAA;AAC7B,MAAM,2BAA2B,CAAC,eAAA,KAChC,gBAAgB,~~kBAAqB~~,~~GAAA~~,IAAA,CAAK,~~KAAS~~,~~IAAA~~,WAAA;AAM9C,MAAM,~~8BAA~~+B~~,CAAA~~;AAAA,EAClC,UAAA;AAAA,EACA,eAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOR,YAAY,~~OAAiD~~,~~EAAA~~;AAC3D,IAAA,IAAI,EAAE,QAAA,~~EAAa~~,~~GAAA~~,OAAA,IAAW,EAAC;AAC/B,~~IAAa~~,QAAA,~~KAAA~~,iBAAA;AAEb,~~IAAK~~,IAAA,~~CAAA~~,UAAA,GACH,aAAa,~~iBACT~~,~~GAAA~~,IAAI,~~2BACJ~~,~~GAAA~~,IAAI,0BAA0B,QAAQ,CAAA;AAAA;~~AAC9C~~;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAa,~~kBAAsC~~,~~GAAA~~;AACjD,IAAA,IACE,KAAK,~~eAAoB~~,~~KAAA~~,~~KAAA~~,~~CAAA,~~IACzB,CAAC,~~wBAAyB~~,~~CAAA~~,IAAA,CAAK,eAAe,~~CAC9C~~,~~EAAA~~;AACA,MAAA,OAAO,KAAK,~~eAAgB~~,~~CAAA~~,eAAA;AAAA;~~AAG9B~~,~~IAAM~~,~~MAAA~~,WAAA,GAAc,MAAM,IAAA,CAAK,~~UAAW~~,~~CAAA~~,QAAA;AAAA,MACxC;AAAA,KACF;AAEA,IAAA,IAAA,CAAK,~~eAAkB~~,~~GAAA~~;AAAA,MACrB,iBAAiB,~~WAAY~~,~~CAAA~~,KAAA;AAAA,MAC7B,oBAAoB,~~WAAY~~,~~CAAA~~;AAAA,KAClC;AAEA,IAAA,OAAO,~~WAAY~~,~~CAAA~~,KAAA;AAAA;~~AAEvB~~;;;;"}
1	+ {"version":3,"file":"ManagedIdentityClientAssertion.esm.js","sources":["../../src/azure/ManagedIdentityClientAssertion.ts"],"sourcesContent":["/\n Copyright 2025 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport { ManagedIdentityCredential } from '@azure/identity';\nimport { ClientAssertion } from './ClientAssertion';\n\nexport type ManagedIdentityClientAssertionOptions = {\n clientId?: string;\n};\n\nconst fiveMinutes = 5 60 * 1000; // 5 minutes in milliseconds\nconst expiresWithinFiveMinutes = (clientAssertion: ClientAssertion) =>\n clientAssertion.expiresOnTimestamp - Date.now() <= fiveMinutes;\n\n/*\n Class representing a Managed Identity Client Assertion.\n * This class is responsible for obtaining a signed client assertion using Azure Managed Identity.\n /\nexport class ManagedIdentityClientAssertion {\n private credential: ManagedIdentityCredential;\n private clientAssertion?: ClientAssertion;\n\n /\n Creates an instance of ManagedIdentityClientAssertion.\n * @param options - Optional parameters for the ManagedIdentityClientAssertion.\n * - clientId: The client ID of the managed identity. If not provided, 'system-assigned' is used.\n /\n constructor(options?: ManagedIdentityClientAssertionOptions) {\n let { clientId } = options \|\| {};\n clientId ??= 'system-assigned';\n\n this.credential =\n clientId === 'system-assigned'\n ? new ManagedIdentityCredential()\n : new ManagedIdentityCredential(clientId);\n }\n\n /\n Gets a signed client assertion.\n * If a valid client assertion is already cached which doesn't expire soon, it returns the cached assertion.\n * Otherwise, it obtains a new access token and creates a new client assertion.\n * @returns A promise that resolves to the signed client assertion.\n */\n public async getSignedAssertion(): Promise<string> {\n if (\n this.clientAssertion !== undefined &&\n !expiresWithinFiveMinutes(this.clientAssertion)\n ) {\n return this.clientAssertion.signedAssertion;\n }\n\n const accessToken = await this.credential.getToken(\n 'api://AzureADTokenExchange',\n );\n\n this.clientAssertion = {\n signedAssertion: accessToken.token,\n expiresOnTimestamp: accessToken.expiresOnTimestamp,\n };\n\n return accessToken.token;\n }\n}\n"],"names":[],"mappings":";;AAsBA,MAAM,WAAA,GAAc,IAAI,EAAA,GAAK,GAAA;AAC7B,MAAM,2BAA2B,CAAC,eAAA,KAChC,gBAAgB,kBAAA,GAAqB,IAAA,CAAK,KAAI,IAAK,WAAA;AAM9C,MAAM,8BAAA,CAA+B;AAAA,EAClC,UAAA;AAAA,EACA,eAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAOR,YAAY,OAAA,EAAiD;AAC3D,IAAA,IAAI,EAAE,QAAA,EAAS,GAAI,OAAA,IAAW,EAAC;AAC/B,IAAA,QAAA,KAAa,iBAAA;AAEb,IAAA,IAAA,CAAK,UAAA,GACH,aAAa,iBAAA,GACT,IAAI,2BAA0B,GAC9B,IAAI,0BAA0B,QAAQ,CAAA;AAAA,EAC9C;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA;AAAA,EAQA,MAAa,kBAAA,GAAsC;AACjD,IAAA,IACE,KAAK,eAAA,KAAoB,MAAA,IACzB,CAAC,wBAAA,CAAyB,IAAA,CAAK,eAAe,CAAA,EAC9C;AACA,MAAA,OAAO,KAAK,eAAA,CAAgB,eAAA;AAAA,IAC9B;AAEA,IAAA,MAAM,WAAA,GAAc,MAAM,IAAA,CAAK,UAAA,CAAW,QAAA;AAAA,MACxC;AAAA,KACF;AAEA,IAAA,IAAA,CAAK,eAAA,GAAkB;AAAA,MACrB,iBAAiB,WAAA,CAAY,KAAA;AAAA,MAC7B,oBAAoB,WAAA,CAAY;AAAA,KAClC;AAEA,IAAA,OAAO,WAAA,CAAY,KAAA;AAAA,EACrB;AACF;;;;"}

package/dist/azure/config.cjs.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"config.cjs.js","sources":["../../src/azure/config.ts"],"sourcesContent":["/\n Copyright 2020 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { Config } from '@backstage/config';\nimport { isValidHost } from '../helpers';\n\nconst AZURE_HOST = 'dev.azure.com';\n\n/\n The configuration parameters for a single Azure provider.\n \n @public\n /\nexport type AzureIntegrationConfig = {\n /\n The host of the target that this matches on, e.g. \"dev.azure.com\".\n \n Currently only \"dev.azure.com\" is supported.\n /\n host: string;\n\n /\n The authorization token to use for requests.\n \n If no token is specified, anonymous access is used.\n \n @deprecated Use `credentials` instead.\n /\n token?: string;\n\n /\n The credential to use for requests.\n \n If no credential is specified anonymous access is used.\n \n @deprecated Use `credentials` instead.\n /\n credential?: AzureDevOpsCredential;\n\n /\n The credentials to use for requests. If multiple credentials are specified the first one that matches the organization is used.\n * If not organization matches the first credential without an organization is used.\n \n If no credentials are specified at all, either a default credential (for Azure DevOps) or anonymous access (for Azure DevOps Server) is used.\n /\n credentials?: AzureDevOpsCredential[];\n\n /\n Signing key for commits\n /\n commitSigningKey?: string;\n};\n\n/\n The kind of Azure DevOps credential.\n * @public\n /\nexport type AzureDevOpsCredentialKind =\n \| 'PersonalAccessToken'\n \| 'ClientSecret'\n \| 'ManagedIdentity'\n \| 'ManagedIdentityClientAssertion';\n\n/\n Common fields for the Azure DevOps credentials.\n * @public\n /\nexport type AzureCredentialBase = {\n /\n The kind of credential.\n /\n kind: AzureDevOpsCredentialKind;\n /\n The Azure DevOps organizations for which to use this credential.\n /\n organizations?: string[];\n};\n\n/\n A client secret credential that was generated for an App Registration.\n * @public\n /\nexport type AzureClientSecretCredential = AzureCredentialBase & {\n kind: 'ClientSecret';\n /\n The Entra ID tenant\n /\n tenantId: string;\n /\n The client id\n /\n clientId: string;\n\n /\n The client secret\n /\n clientSecret: string;\n};\n\n/\n A client assertion credential that uses a managed identity to generate a client assertion (JWT).\n * @public\n /\nexport type AzureManagedIdentityClientAssertionCredential =\n AzureCredentialBase & {\n kind: 'ManagedIdentityClientAssertion';\n /\n The Entra ID tenant\n /\n tenantId: string;\n\n /\n The client ID of the app registration you want to authenticate as.\n /\n clientId: string;\n\n /\n The client ID of the managed identity used to generate a client assertion (JWT).\n * Set to \"system-assigned\" to automatically use the system-assigned managed identity.\n * For user-assigned managed identities, specify the client ID of the managed identity you want to use.\n /\n managedIdentityClientId: 'system-assigned' \| string;\n };\n\n/\n A managed identity credential.\n * @public\n /\nexport type AzureManagedIdentityCredential = AzureCredentialBase & {\n kind: 'ManagedIdentity';\n /\n The clientId\n /\n clientId: 'system-assigned' \| string;\n};\n\n/\n A personal access token credential.\n * @public\n /\nexport type PersonalAccessTokenCredential = AzureCredentialBase & {\n kind: 'PersonalAccessToken';\n personalAccessToken: string;\n};\n\n/\n The general shape of a credential that can be used to authenticate to Azure DevOps.\n * @public\n /\nexport type AzureDevOpsCredentialLike = Omit<\n Partial<AzureClientSecretCredential> &\n Partial<AzureManagedIdentityClientAssertionCredential> &\n Partial<AzureManagedIdentityCredential> &\n Partial<PersonalAccessTokenCredential>,\n 'kind'\n>;\n\n/\n Credential used to authenticate to Azure DevOps.\n * @public\n /\nexport type AzureDevOpsCredential =\n \| AzureClientSecretCredential\n \| AzureManagedIdentityClientAssertionCredential\n \| AzureManagedIdentityCredential\n \| PersonalAccessTokenCredential;\n\nconst AzureDevOpsCredentialFields = [\n 'clientId',\n 'clientSecret',\n 'managedIdentityClientId',\n 'tenantId',\n 'personalAccessToken',\n] as const;\ntype AzureDevOpsCredentialField = (typeof AzureDevOpsCredentialFields)[number];\n\nconst AzureDevopsCredentialFieldMap = new Map<\n AzureDevOpsCredentialKind,\n AzureDevOpsCredentialField[]\n>([\n ['ClientSecret', ['clientId', 'clientSecret', 'tenantId']],\n ['ManagedIdentity', ['clientId']],\n [\n 'ManagedIdentityClientAssertion',\n ['clientId', 'managedIdentityClientId', 'tenantId'],\n ],\n ['PersonalAccessToken', ['personalAccessToken']],\n]);\n\nfunction asAzureDevOpsCredential(\n credential: AzureDevOpsCredentialLike,\n): AzureDevOpsCredential {\n for (const entry of AzureDevopsCredentialFieldMap.entries()) {\n const [kind, requiredFields] = entry;\n\n const forbiddenFields = AzureDevOpsCredentialFields.filter(\n field => !requiredFields.includes(field as AzureDevOpsCredentialField),\n );\n\n if (\n requiredFields.every(field => credential[field] !== undefined) &&\n forbiddenFields.every(field => credential[field] === undefined)\n ) {\n return {\n kind,\n organizations: credential.organizations,\n ...requiredFields.reduce((acc, field) => {\n acc[field] = credential[field];\n return acc;\n }, {} as Record<string, any>),\n } as AzureDevOpsCredential;\n }\n }\n throw new Error('is not a valid credential');\n}\n\n/\n Reads a single Azure integration config.\n \n @param config - The config object of a single integration\n * @public\n /\nexport function readAzureIntegrationConfig(\n config: Config,\n): AzureIntegrationConfig {\n const host = config.getOptionalString('host') ?? AZURE_HOST;\n\n let credentialConfigs = config\n .getOptionalConfigArray('credentials')\n ?.map(credential => {\n const result: Partial<AzureDevOpsCredentialLike> = {\n organizations: credential.getOptionalStringArray('organizations'),\n personalAccessToken: credential\n .getOptionalString('personalAccessToken')\n ?.trim(),\n tenantId: credential.getOptionalString('tenantId')?.trim(),\n clientId: credential.getOptionalString('clientId')?.trim(),\n clientSecret: credential.getOptionalString('clientSecret')?.trim(),\n managedIdentityClientId: credential\n .getOptionalString('managedIdentityClientId')\n ?.trim(),\n };\n\n return result;\n });\n\n const token = config.getOptionalString('token')?.trim();\n\n if (\n config.getOptional('credential') !== undefined &&\n config.getOptional('credentials') !== undefined\n ) {\n throw new Error(\n `Invalid Azure integration config, 'credential' and 'credentials' cannot be used together. Use 'credentials' instead.`,\n );\n }\n\n if (\n config.getOptional('token') !== undefined &&\n config.getOptional('credentials') !== undefined\n ) {\n throw new Error(\n `Invalid Azure integration config, 'token' and 'credentials' cannot be used together. Use 'credentials' instead.`,\n );\n }\n\n if (token !== undefined) {\n const mapped = [{ personalAccessToken: token }];\n credentialConfigs = credentialConfigs?.concat(mapped) ?? mapped;\n }\n\n if (config.getOptional('credential') !== undefined) {\n const mapped = [\n {\n organizations: config.getOptionalStringArray(\n 'credential.organizations',\n ),\n token: config.getOptionalString('credential.token')?.trim(),\n tenantId: config.getOptionalString('credential.tenantId'),\n clientId: config.getOptionalString('credential.clientId'),\n clientSecret: config\n .getOptionalString('credential.clientSecret')\n ?.trim(),\n },\n ];\n credentialConfigs = credentialConfigs?.concat(mapped) ?? mapped;\n }\n\n if (!isValidHost(host)) {\n throw new Error(\n `Invalid Azure integration config, '${host}' is not a valid host`,\n );\n }\n\n let credentials: AzureDevOpsCredential[] \| undefined = undefined;\n if (credentialConfigs !== undefined) {\n const errors = credentialConfigs\n ?.reduce((acc, credentialConfig, index) => {\n let error: string \| undefined = undefined;\n try {\n asAzureDevOpsCredential(credentialConfig);\n } catch (e) {\n error = e.message;\n }\n\n if (error !== undefined) {\n acc.push(`credential at position ${index + 1} ${error}`);\n }\n\n return acc;\n }, Array.of<string>())\n .concat(\n Object.entries(\n credentialConfigs\n .filter(\n credential =>\n credential.organizations !== undefined &&\n credential.organizations.length > 0,\n )\n .reduce((acc, credential, index) => {\n credential.organizations?.forEach(organization => {\n if (!acc[organization]) {\n acc[organization] = [];\n }\n\n acc[organization].push(index + 1);\n });\n\n return acc;\n }, {} as Record<string, number[]>),\n )\n .filter(([_, indexes]) => indexes.length > 1)\n .reduce((acc, [org, indexes]) => {\n acc.push(\n `organization ${org} is specified multiple times in credentials at positions ${indexes\n .slice(0, indexes.length - 1)\n .join(', ')} and ${indexes[indexes.length - 1]}`,\n );\n return acc;\n }, Array.of<string>()),\n );\n\n if (errors?.length > 0) {\n throw new Error(\n `Invalid Azure integration config for ${host}: ${errors.join('; ')}`,\n );\n }\n\n credentials = credentialConfigs.map(credentialConfig =>\n asAzureDevOpsCredential(credentialConfig),\n );\n\n if (\n credentials.some(\n credential => credential.kind !== 'PersonalAccessToken',\n ) &&\n host !== AZURE_HOST\n ) {\n throw new Error(\n `Invalid Azure integration config for ${host}, only personal access tokens can be used with hosts other than ${AZURE_HOST}`,\n );\n }\n\n if (\n credentials.filter(\n credential =>\n credential.organizations === undefined \|\|\n credential.organizations.length === 0,\n ).length > 1\n ) {\n throw new Error(\n `Invalid Azure integration config for ${host}, you cannot specify multiple credentials without organizations`,\n );\n }\n }\n\n return {\n host,\n credentials,\n commitSigningKey: config.getOptionalString('commitSigningKey'),\n };\n}\n\n/\n Reads a set of Azure integration configs, and inserts some defaults for\n * public Azure if not specified.\n \n @param configs - All of the integration config objects\n * @public\n */\nexport function readAzureIntegrationConfigs(\n configs: Config[],\n): AzureIntegrationConfig[] {\n // First read all the explicit integrations\n const result = configs.map(readAzureIntegrationConfig);\n\n // If no explicit dev.azure.com integration was added, put one in the list as\n // a convenience\n if (!result.some(c => c.host === AZURE_HOST)) {\n result.push({ host: AZURE_HOST });\n }\n\n return result;\n}\n"],"names":["isValidHost"],"mappings":";;;;AAmBA,MAAM,UAAa,GAAA,eAAA;AAiKnB,MAAM,2BAA8B,GAAA;AAAA,EAClC,UAAA;AAAA,EACA,cAAA;AAAA,EACA,yBAAA;AAAA,EACA,UAAA;AAAA,EACA;AACF,CAAA;AAGA,MAAM,6BAAA,uBAAoC,GAGxC,CAAA;AAAA,EACA,CAAC,cAAgB,EAAA,CAAC,UAAY,EAAA,cAAA,EAAgB,UAAU,CAAC,CAAA;AAAA,EACzD,CAAC,iBAAA,EAAmB,CAAC,UAAU,CAAC,CAAA;AAAA,EAChC;AAAA,IACE,gCAAA;AAAA,IACA,CAAC,UAAY,EAAA,yBAAA,EAA2B,UAAU;AAAA,GACpD;AAAA,EACA,CAAC,qBAAA,EAAuB,CAAC,qBAAqB,CAAC;AACjD,CAAC,CAAA;AAED,SAAS,wBACP,UACuB,EAAA;AACvB,EAAW,KAAA,MAAA,KAAA,IAAS,6BAA8B,CAAA,OAAA,EAAW,EAAA;AAC3D,IAAM,MAAA,CAAC,IAAM,EAAA,cAAc,CAAI,GAAA,KAAA;AAE/B,IAAA,MAAM,kBAAkB,2BAA4B,CAAA,MAAA;AAAA,MAClD,CAAS,KAAA,KAAA,CAAC,cAAe,CAAA,QAAA,CAAS,KAAmC;AAAA,KACvE;AAEA,IAAA,IACE,cAAe,CAAA,KAAA,CAAM,CAAS,KAAA,KAAA,UAAA,CAAW,KAAK,CAAM,KAAA,KAAA,CAAS,CAC7D,IAAA,eAAA,CAAgB,MAAM,CAAS,KAAA,KAAA,UAAA,CAAW,KAAK,CAAA,KAAM,MAAS,CAC9D,EAAA;AACA,MAAO,OAAA;AAAA,QACL,IAAA;AAAA,QACA,eAAe,UAAW,CAAA,aAAA;AAAA,QAC1B,GAAG,cAAA,CAAe,MAAO,CAAA,CAAC,KAAK,KAAU,KAAA;AACvC,UAAI,GAAA,CAAA,KAAK,CAAI,GAAA,UAAA,CAAW,KAAK,CAAA;AAC7B,UAAO,OAAA,GAAA;AAAA,SACT,EAAG,EAAyB;AAAA,OAC9B;AAAA;AACF;AAEF,EAAM,MAAA,IAAI,MAAM,2BAA2B,CAAA;AAC7C;AAQO,SAAS,2BACd,MACwB,EAAA;AACxB,EAAA,MAAM,IAAO,GAAA,MAAA,CAAO,iBAAkB,CAAA,MAAM,CAAK,IAAA,UAAA;AAEjD,EAAA,IAAI,oBAAoB,MACrB,CAAA,sBAAA,CAAuB,aAAa,CAAA,EACnC,IAAI,CAAc,UAAA,KAAA;AAClB,IAAA,MAAM,MAA6C,GAAA;AAAA,MACjD,aAAA,EAAe,UAAW,CAAA,sBAAA,CAAuB,eAAe,CAAA;AAAA,MAChE,mBAAqB,EAAA,UAAA,CAClB,iBAAkB,CAAA,qBAAqB,GACtC,IAAK,EAAA;AAAA,MACT,QAAU,EAAA,UAAA,CAAW,iBAAkB,CAAA,UAAU,GAAG,IAAK,EAAA;AAAA,MACzD,QAAU,EAAA,UAAA,CAAW,iBAAkB,CAAA,UAAU,GAAG,IAAK,EAAA;AAAA,MACzD,YAAc,EAAA,UAAA,CAAW,iBAAkB,CAAA,cAAc,GAAG,IAAK,EAAA;AAAA,MACjE,uBAAyB,EAAA,UAAA,CACtB,iBAAkB,CAAA,yBAAyB,GAC1C,IAAK;AAAA,KACX;AAEA,IAAO,OAAA,MAAA;AAAA,GACR,CAAA;AAEH,EAAA,MAAM,KAAQ,GAAA,MAAA,CAAO,iBAAkB,CAAA,OAAO,GAAG,IAAK,EAAA;AAEtD,EACE,IAAA,MAAA,CAAO,YAAY,YAAY,CAAA,KAAM,UACrC,MAAO,CAAA,WAAA,CAAY,aAAa,CAAA,KAAM,KACtC,CAAA,EAAA;AACA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,oHAAA;AAAA,KACF;AAAA;AAGF,EACE,IAAA,MAAA,CAAO,YAAY,OAAO,CAAA,KAAM,UAChC,MAAO,CAAA,WAAA,CAAY,aAAa,CAAA,KAAM,KACtC,CAAA,EAAA;AACA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,+GAAA;AAAA,KACF;AAAA;AAGF,EAAA,IAAI,UAAU,KAAW,CAAA,EAAA;AACvB,IAAA,MAAM,MAAS,GAAA,CAAC,EAAE,mBAAA,EAAqB,OAAO,CAAA;AAC9C,IAAoB,iBAAA,GAAA,iBAAA,EAAmB,MAAO,CAAA,MAAM,CAAK,IAAA,MAAA;AAAA;AAG3D,EAAA,IAAI,MAAO,CAAA,WAAA,CAAY,YAAY,CAAA,KAAM,KAAW,CAAA,EAAA;AAClD,IAAA,MAAM,MAAS,GAAA;AAAA,MACb;AAAA,QACE,eAAe,MAAO,CAAA,sBAAA;AAAA,UACpB;AAAA,SACF;AAAA,QACA,KAAO,EAAA,MAAA,CAAO,iBAAkB,CAAA,kBAAkB,GAAG,IAAK,EAAA;AAAA,QAC1D,QAAA,EAAU,MAAO,CAAA,iBAAA,CAAkB,qBAAqB,CAAA;AAAA,QACxD,QAAA,EAAU,MAAO,CAAA,iBAAA,CAAkB,qBAAqB,CAAA;AAAA,QACxD,YAAc,EAAA,MAAA,CACX,iBAAkB,CAAA,yBAAyB,GAC1C,IAAK;AAAA;AACX,KACF;AACA,IAAoB,iBAAA,GAAA,iBAAA,EAAmB,MAAO,CAAA,MAAM,CAAK,IAAA,MAAA;AAAA;AAG3D,EAAI,IAAA,CAACA,mBAAY,CAAA,IAAI,CAAG,EAAA;AACtB,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,sCAAsC,IAAI,CAAA,qBAAA;AAAA,KAC5C;AAAA;AAGF,EAAA,IAAI,WAAmD,GAAA,KAAA,CAAA;AACvD,EAAA,IAAI,sBAAsB,KAAW,CAAA,EAAA;AACnC,IAAA,MAAM,SAAS,iBACX,EAAA,MAAA,CAAO,CAAC,GAAA,EAAK,kBAAkB,KAAU,KAAA;AACzC,MAAA,IAAI,KAA4B,GAAA,KAAA,CAAA;AAChC,MAAI,IAAA;AACF,QAAA,uBAAA,CAAwB,gBAAgB,CAAA;AAAA,eACjC,CAAG,EAAA;AACV,QAAA,KAAA,GAAQ,CAAE,CAAA,OAAA;AAAA;AAGZ,MAAA,IAAI,UAAU,KAAW,CAAA,EAAA;AACvB,QAAA,GAAA,CAAI,KAAK,CAA0B,uBAAA,EAAA,KAAA,GAAQ,CAAC,CAAA,CAAA,EAAI,KAAK,CAAE,CAAA,CAAA;AAAA;AAGzD,MAAO,OAAA,GAAA;AAAA,KACN,EAAA,KAAA,CAAM,EAAW,EAAC,CACpB,CAAA,MAAA;AAAA,MACC,MAAO,CAAA,OAAA;AAAA,QACL,iBACG,CAAA,MAAA;AAAA,UACC,gBACE,UAAW,CAAA,aAAA,KAAkB,KAC7B,CAAA,IAAA,UAAA,CAAW,cAAc,MAAS,GAAA;AAAA,SAErC,CAAA,MAAA,CAAO,CAAC,GAAA,EAAK,YAAY,KAAU,KAAA;AAClC,UAAW,UAAA,CAAA,aAAA,EAAe,QAAQ,CAAgB,YAAA,KAAA;AAChD,YAAI,IAAA,CAAC,GAAI,CAAA,YAAY,CAAG,EAAA;AACtB,cAAI,GAAA,CAAA,YAAY,IAAI,EAAC;AAAA;AAGvB,YAAA,GAAA,CAAI,YAAY,CAAA,CAAE,IAAK,CAAA,KAAA,GAAQ,CAAC,CAAA;AAAA,WACjC,CAAA;AAED,UAAO,OAAA,GAAA;AAAA,SACT,EAAG,EAA8B;AAAA,QAElC,MAAO,CAAA,CAAC,CAAC,CAAA,EAAG,OAAO,CAAM,KAAA,OAAA,CAAQ,MAAS,GAAA,CAAC,EAC3C,MAAO,CAAA,CAAC,KAAK,CAAC,GAAA,EAAK,OAAO,CAAM,KAAA;AAC/B,QAAI,GAAA,CAAA,IAAA;AAAA,UACF,gBAAgB,GAAG,CAAA,yDAAA,EAA4D,QAC5E,KAAM,CAAA,CAAA,EAAG,QAAQ,MAAS,GAAA,CAAC,CAC3B,CAAA,IAAA,CAAK,IAAI,CAAC,CAAA,KAAA,EAAQ,QAAQ,OAAQ,CAAA,MAAA,GAAS,CAAC,CAAC,CAAA;AAAA,SAClD;AACA,QAAO,OAAA,GAAA;AAAA,OACT,EAAG,KAAM,CAAA,EAAA,EAAY;AAAA,KACzB;AAEF,IAAI,IAAA,MAAA,EAAQ,SAAS,CAAG,EAAA;AACtB,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,wCAAwC,IAAI,CAAA,EAAA,EAAK,MAAO,CAAA,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,OACpE;AAAA;AAGF,IAAA,WAAA,GAAc,iBAAkB,CAAA,GAAA;AAAA,MAAI,CAAA,gBAAA,KAClC,wBAAwB,gBAAgB;AAAA,KAC1C;AAEA,IAAA,IACE,WAAY,CAAA,IAAA;AAAA,MACV,CAAA,UAAA,KAAc,WAAW,IAAS,KAAA;AAAA,KACpC,IACA,SAAS,UACT,EAAA;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,CAAA,qCAAA,EAAwC,IAAI,CAAA,gEAAA,EAAmE,UAAU,CAAA;AAAA,OAC3H;AAAA;AAGF,IAAA,IACE,WAAY,CAAA,MAAA;AAAA,MACV,gBACE,UAAW,CAAA,aAAA,KAAkB,KAC7B,CAAA,IAAA,UAAA,CAAW,cAAc,MAAW,KAAA;AAAA,KACxC,CAAE,SAAS,CACX,EAAA;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,wCAAwC,IAAI,CAAA,+DAAA;AAAA,OAC9C;AAAA;AACF;AAGF,EAAO,OAAA;AAAA,IACL,IAAA;AAAA,IACA,WAAA;AAAA,IACA,gBAAA,EAAkB,MAAO,CAAA,iBAAA,CAAkB,kBAAkB;AAAA,GAC/D;AACF;AASO,SAAS,4BACd,OAC0B,EAAA;AAE1B,EAAM,MAAA,MAAA,GAAS,OAAQ,CAAA,GAAA,CAAI,0BAA0B,CAAA;AAIrD,EAAA,IAAI,CAAC,MAAO,CAAA,IAAA,CAAK,OAAK,CAAE,CAAA,IAAA,KAAS,UAAU,CAAG,EAAA;AAC5C,IAAA,MAAA,CAAO,IAAK,CAAA,EAAE,IAAM,EAAA,UAAA,EAAY,CAAA;AAAA;AAGlC,EAAO,OAAA,MAAA;AACT;;;;;"}
1	+ {"version":3,"file":"config.cjs.js","sources":["../../src/azure/config.ts"],"sourcesContent":["/\n Copyright 2020 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { Config } from '@backstage/config';\nimport { isValidHost } from '../helpers';\n\nconst AZURE_HOST = 'dev.azure.com';\n\n/\n The configuration parameters for a single Azure provider.\n \n @public\n /\nexport type AzureIntegrationConfig = {\n /\n The host of the target that this matches on, e.g. \"dev.azure.com\".\n \n Currently only \"dev.azure.com\" is supported.\n /\n host: string;\n\n /\n The authorization token to use for requests.\n \n If no token is specified, anonymous access is used.\n \n @deprecated Use `credentials` instead.\n /\n token?: string;\n\n /\n The credential to use for requests.\n \n If no credential is specified anonymous access is used.\n \n @deprecated Use `credentials` instead.\n /\n credential?: AzureDevOpsCredential;\n\n /\n The credentials to use for requests. If multiple credentials are specified the first one that matches the organization is used.\n * If not organization matches the first credential without an organization is used.\n \n If no credentials are specified at all, either a default credential (for Azure DevOps) or anonymous access (for Azure DevOps Server) is used.\n /\n credentials?: AzureDevOpsCredential[];\n\n /\n Signing key for commits\n /\n commitSigningKey?: string;\n};\n\n/\n The kind of Azure DevOps credential.\n * @public\n /\nexport type AzureDevOpsCredentialKind =\n \| 'PersonalAccessToken'\n \| 'ClientSecret'\n \| 'ManagedIdentity'\n \| 'ManagedIdentityClientAssertion';\n\n/\n Common fields for the Azure DevOps credentials.\n * @public\n /\nexport type AzureCredentialBase = {\n /\n The kind of credential.\n /\n kind: AzureDevOpsCredentialKind;\n /\n The Azure DevOps organizations for which to use this credential.\n /\n organizations?: string[];\n};\n\n/\n A client secret credential that was generated for an App Registration.\n * @public\n /\nexport type AzureClientSecretCredential = AzureCredentialBase & {\n kind: 'ClientSecret';\n /\n The Entra ID tenant\n /\n tenantId: string;\n /\n The client id\n /\n clientId: string;\n\n /\n The client secret\n /\n clientSecret: string;\n};\n\n/\n A client assertion credential that uses a managed identity to generate a client assertion (JWT).\n * @public\n /\nexport type AzureManagedIdentityClientAssertionCredential =\n AzureCredentialBase & {\n kind: 'ManagedIdentityClientAssertion';\n /\n The Entra ID tenant\n /\n tenantId: string;\n\n /\n The client ID of the app registration you want to authenticate as.\n /\n clientId: string;\n\n /\n The client ID of the managed identity used to generate a client assertion (JWT).\n * Set to \"system-assigned\" to automatically use the system-assigned managed identity.\n * For user-assigned managed identities, specify the client ID of the managed identity you want to use.\n /\n managedIdentityClientId: 'system-assigned' \| string;\n };\n\n/\n A managed identity credential.\n * @public\n /\nexport type AzureManagedIdentityCredential = AzureCredentialBase & {\n kind: 'ManagedIdentity';\n /\n The clientId\n /\n clientId: 'system-assigned' \| string;\n};\n\n/\n A personal access token credential.\n * @public\n /\nexport type PersonalAccessTokenCredential = AzureCredentialBase & {\n kind: 'PersonalAccessToken';\n personalAccessToken: string;\n};\n\n/\n The general shape of a credential that can be used to authenticate to Azure DevOps.\n * @public\n /\nexport type AzureDevOpsCredentialLike = Omit<\n Partial<AzureClientSecretCredential> &\n Partial<AzureManagedIdentityClientAssertionCredential> &\n Partial<AzureManagedIdentityCredential> &\n Partial<PersonalAccessTokenCredential>,\n 'kind'\n>;\n\n/\n Credential used to authenticate to Azure DevOps.\n * @public\n /\nexport type AzureDevOpsCredential =\n \| AzureClientSecretCredential\n \| AzureManagedIdentityClientAssertionCredential\n \| AzureManagedIdentityCredential\n \| PersonalAccessTokenCredential;\n\nconst AzureDevOpsCredentialFields = [\n 'clientId',\n 'clientSecret',\n 'managedIdentityClientId',\n 'tenantId',\n 'personalAccessToken',\n] as const;\ntype AzureDevOpsCredentialField = (typeof AzureDevOpsCredentialFields)[number];\n\nconst AzureDevopsCredentialFieldMap = new Map<\n AzureDevOpsCredentialKind,\n AzureDevOpsCredentialField[]\n>([\n ['ClientSecret', ['clientId', 'clientSecret', 'tenantId']],\n ['ManagedIdentity', ['clientId']],\n [\n 'ManagedIdentityClientAssertion',\n ['clientId', 'managedIdentityClientId', 'tenantId'],\n ],\n ['PersonalAccessToken', ['personalAccessToken']],\n]);\n\nfunction asAzureDevOpsCredential(\n credential: AzureDevOpsCredentialLike,\n): AzureDevOpsCredential {\n for (const entry of AzureDevopsCredentialFieldMap.entries()) {\n const [kind, requiredFields] = entry;\n\n const forbiddenFields = AzureDevOpsCredentialFields.filter(\n field => !requiredFields.includes(field as AzureDevOpsCredentialField),\n );\n\n if (\n requiredFields.every(field => credential[field] !== undefined) &&\n forbiddenFields.every(field => credential[field] === undefined)\n ) {\n return {\n kind,\n organizations: credential.organizations,\n ...requiredFields.reduce((acc, field) => {\n acc[field] = credential[field];\n return acc;\n }, {} as Record<string, any>),\n } as AzureDevOpsCredential;\n }\n }\n throw new Error('is not a valid credential');\n}\n\n/\n Reads a single Azure integration config.\n \n @param config - The config object of a single integration\n * @public\n /\nexport function readAzureIntegrationConfig(\n config: Config,\n): AzureIntegrationConfig {\n const host = config.getOptionalString('host') ?? AZURE_HOST;\n\n let credentialConfigs = config\n .getOptionalConfigArray('credentials')\n ?.map(credential => {\n const result: Partial<AzureDevOpsCredentialLike> = {\n organizations: credential.getOptionalStringArray('organizations'),\n personalAccessToken: credential\n .getOptionalString('personalAccessToken')\n ?.trim(),\n tenantId: credential.getOptionalString('tenantId')?.trim(),\n clientId: credential.getOptionalString('clientId')?.trim(),\n clientSecret: credential.getOptionalString('clientSecret')?.trim(),\n managedIdentityClientId: credential\n .getOptionalString('managedIdentityClientId')\n ?.trim(),\n };\n\n return result;\n });\n\n const token = config.getOptionalString('token')?.trim();\n\n if (\n config.getOptional('credential') !== undefined &&\n config.getOptional('credentials') !== undefined\n ) {\n throw new Error(\n `Invalid Azure integration config, 'credential' and 'credentials' cannot be used together. Use 'credentials' instead.`,\n );\n }\n\n if (\n config.getOptional('token') !== undefined &&\n config.getOptional('credentials') !== undefined\n ) {\n throw new Error(\n `Invalid Azure integration config, 'token' and 'credentials' cannot be used together. Use 'credentials' instead.`,\n );\n }\n\n if (token !== undefined) {\n const mapped = [{ personalAccessToken: token }];\n credentialConfigs = credentialConfigs?.concat(mapped) ?? mapped;\n }\n\n if (config.getOptional('credential') !== undefined) {\n const mapped = [\n {\n organizations: config.getOptionalStringArray(\n 'credential.organizations',\n ),\n token: config.getOptionalString('credential.token')?.trim(),\n tenantId: config.getOptionalString('credential.tenantId'),\n clientId: config.getOptionalString('credential.clientId'),\n clientSecret: config\n .getOptionalString('credential.clientSecret')\n ?.trim(),\n },\n ];\n credentialConfigs = credentialConfigs?.concat(mapped) ?? mapped;\n }\n\n if (!isValidHost(host)) {\n throw new Error(\n `Invalid Azure integration config, '${host}' is not a valid host`,\n );\n }\n\n let credentials: AzureDevOpsCredential[] \| undefined = undefined;\n if (credentialConfigs !== undefined) {\n const errors = credentialConfigs\n ?.reduce((acc, credentialConfig, index) => {\n let error: string \| undefined = undefined;\n try {\n asAzureDevOpsCredential(credentialConfig);\n } catch (e) {\n error = e.message;\n }\n\n if (error !== undefined) {\n acc.push(`credential at position ${index + 1} ${error}`);\n }\n\n return acc;\n }, Array.of<string>())\n .concat(\n Object.entries(\n credentialConfigs\n .filter(\n credential =>\n credential.organizations !== undefined &&\n credential.organizations.length > 0,\n )\n .reduce((acc, credential, index) => {\n credential.organizations?.forEach(organization => {\n if (!acc[organization]) {\n acc[organization] = [];\n }\n\n acc[organization].push(index + 1);\n });\n\n return acc;\n }, {} as Record<string, number[]>),\n )\n .filter(([_, indexes]) => indexes.length > 1)\n .reduce((acc, [org, indexes]) => {\n acc.push(\n `organization ${org} is specified multiple times in credentials at positions ${indexes\n .slice(0, indexes.length - 1)\n .join(', ')} and ${indexes[indexes.length - 1]}`,\n );\n return acc;\n }, Array.of<string>()),\n );\n\n if (errors?.length > 0) {\n throw new Error(\n `Invalid Azure integration config for ${host}: ${errors.join('; ')}`,\n );\n }\n\n credentials = credentialConfigs.map(credentialConfig =>\n asAzureDevOpsCredential(credentialConfig),\n );\n\n if (\n credentials.some(\n credential => credential.kind !== 'PersonalAccessToken',\n ) &&\n host !== AZURE_HOST\n ) {\n throw new Error(\n `Invalid Azure integration config for ${host}, only personal access tokens can be used with hosts other than ${AZURE_HOST}`,\n );\n }\n\n if (\n credentials.filter(\n credential =>\n credential.organizations === undefined \|\|\n credential.organizations.length === 0,\n ).length > 1\n ) {\n throw new Error(\n `Invalid Azure integration config for ${host}, you cannot specify multiple credentials without organizations`,\n );\n }\n }\n\n return {\n host,\n credentials,\n commitSigningKey: config.getOptionalString('commitSigningKey'),\n };\n}\n\n/\n Reads a set of Azure integration configs, and inserts some defaults for\n * public Azure if not specified.\n \n @param configs - All of the integration config objects\n * @public\n */\nexport function readAzureIntegrationConfigs(\n configs: Config[],\n): AzureIntegrationConfig[] {\n // First read all the explicit integrations\n const result = configs.map(readAzureIntegrationConfig);\n\n // If no explicit dev.azure.com integration was added, put one in the list as\n // a convenience\n if (!result.some(c => c.host === AZURE_HOST)) {\n result.push({ host: AZURE_HOST });\n }\n\n return result;\n}\n"],"names":["isValidHost"],"mappings":";;;;AAmBA,MAAM,UAAA,GAAa,eAAA;AAiKnB,MAAM,2BAAA,GAA8B;AAAA,EAClC,UAAA;AAAA,EACA,cAAA;AAAA,EACA,yBAAA;AAAA,EACA,UAAA;AAAA,EACA;AACF,CAAA;AAGA,MAAM,6BAAA,uBAAoC,GAAA,CAGxC;AAAA,EACA,CAAC,cAAA,EAAgB,CAAC,UAAA,EAAY,cAAA,EAAgB,UAAU,CAAC,CAAA;AAAA,EACzD,CAAC,iBAAA,EAAmB,CAAC,UAAU,CAAC,CAAA;AAAA,EAChC;AAAA,IACE,gCAAA;AAAA,IACA,CAAC,UAAA,EAAY,yBAAA,EAA2B,UAAU;AAAA,GACpD;AAAA,EACA,CAAC,qBAAA,EAAuB,CAAC,qBAAqB,CAAC;AACjD,CAAC,CAAA;AAED,SAAS,wBACP,UAAA,EACuB;AACvB,EAAA,KAAA,MAAW,KAAA,IAAS,6BAAA,CAA8B,OAAA,EAAQ,EAAG;AAC3D,IAAA,MAAM,CAAC,IAAA,EAAM,cAAc,CAAA,GAAI,KAAA;AAE/B,IAAA,MAAM,kBAAkB,2BAAA,CAA4B,MAAA;AAAA,MAClD,CAAA,KAAA,KAAS,CAAC,cAAA,CAAe,QAAA,CAAS,KAAmC;AAAA,KACvE;AAEA,IAAA,IACE,cAAA,CAAe,KAAA,CAAM,CAAA,KAAA,KAAS,UAAA,CAAW,KAAK,CAAA,KAAM,MAAS,CAAA,IAC7D,eAAA,CAAgB,MAAM,CAAA,KAAA,KAAS,UAAA,CAAW,KAAK,CAAA,KAAM,MAAS,CAAA,EAC9D;AACA,MAAA,OAAO;AAAA,QACL,IAAA;AAAA,QACA,eAAe,UAAA,CAAW,aAAA;AAAA,QAC1B,GAAG,cAAA,CAAe,MAAA,CAAO,CAAC,KAAK,KAAA,KAAU;AACvC,UAAA,GAAA,CAAI,KAAK,CAAA,GAAI,UAAA,CAAW,KAAK,CAAA;AAC7B,UAAA,OAAO,GAAA;AAAA,QACT,CAAA,EAAG,EAAyB;AAAA,OAC9B;AAAA,IACF;AAAA,EACF;AACA,EAAA,MAAM,IAAI,MAAM,2BAA2B,CAAA;AAC7C;AAQO,SAAS,2BACd,MAAA,EACwB;AACxB,EAAA,MAAM,IAAA,GAAO,MAAA,CAAO,iBAAA,CAAkB,MAAM,CAAA,IAAK,UAAA;AAEjD,EAAA,IAAI,oBAAoB,MAAA,CACrB,sBAAA,CAAuB,aAAa,CAAA,EACnC,IAAI,CAAA,UAAA,KAAc;AAClB,IAAA,MAAM,MAAA,GAA6C;AAAA,MACjD,aAAA,EAAe,UAAA,CAAW,sBAAA,CAAuB,eAAe,CAAA;AAAA,MAChE,mBAAA,EAAqB,UAAA,CAClB,iBAAA,CAAkB,qBAAqB,GACtC,IAAA,EAAK;AAAA,MACT,QAAA,EAAU,UAAA,CAAW,iBAAA,CAAkB,UAAU,GAAG,IAAA,EAAK;AAAA,MACzD,QAAA,EAAU,UAAA,CAAW,iBAAA,CAAkB,UAAU,GAAG,IAAA,EAAK;AAAA,MACzD,YAAA,EAAc,UAAA,CAAW,iBAAA,CAAkB,cAAc,GAAG,IAAA,EAAK;AAAA,MACjE,uBAAA,EAAyB,UAAA,CACtB,iBAAA,CAAkB,yBAAyB,GAC1C,IAAA;AAAK,KACX;AAEA,IAAA,OAAO,MAAA;AAAA,EACT,CAAC,CAAA;AAEH,EAAA,MAAM,KAAA,GAAQ,MAAA,CAAO,iBAAA,CAAkB,OAAO,GAAG,IAAA,EAAK;AAEtD,EAAA,IACE,MAAA,CAAO,YAAY,YAAY,CAAA,KAAM,UACrC,MAAA,CAAO,WAAA,CAAY,aAAa,CAAA,KAAM,MAAA,EACtC;AACA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,oHAAA;AAAA,KACF;AAAA,EACF;AAEA,EAAA,IACE,MAAA,CAAO,YAAY,OAAO,CAAA,KAAM,UAChC,MAAA,CAAO,WAAA,CAAY,aAAa,CAAA,KAAM,MAAA,EACtC;AACA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,+GAAA;AAAA,KACF;AAAA,EACF;AAEA,EAAA,IAAI,UAAU,MAAA,EAAW;AACvB,IAAA,MAAM,MAAA,GAAS,CAAC,EAAE,mBAAA,EAAqB,OAAO,CAAA;AAC9C,IAAA,iBAAA,GAAoB,iBAAA,EAAmB,MAAA,CAAO,MAAM,CAAA,IAAK,MAAA;AAAA,EAC3D;AAEA,EAAA,IAAI,MAAA,CAAO,WAAA,CAAY,YAAY,CAAA,KAAM,MAAA,EAAW;AAClD,IAAA,MAAM,MAAA,GAAS;AAAA,MACb;AAAA,QACE,eAAe,MAAA,CAAO,sBAAA;AAAA,UACpB;AAAA,SACF;AAAA,QACA,KAAA,EAAO,MAAA,CAAO,iBAAA,CAAkB,kBAAkB,GAAG,IAAA,EAAK;AAAA,QAC1D,QAAA,EAAU,MAAA,CAAO,iBAAA,CAAkB,qBAAqB,CAAA;AAAA,QACxD,QAAA,EAAU,MAAA,CAAO,iBAAA,CAAkB,qBAAqB,CAAA;AAAA,QACxD,YAAA,EAAc,MAAA,CACX,iBAAA,CAAkB,yBAAyB,GAC1C,IAAA;AAAK;AACX,KACF;AACA,IAAA,iBAAA,GAAoB,iBAAA,EAAmB,MAAA,CAAO,MAAM,CAAA,IAAK,MAAA;AAAA,EAC3D;AAEA,EAAA,IAAI,CAACA,mBAAA,CAAY,IAAI,CAAA,EAAG;AACtB,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,sCAAsC,IAAI,CAAA,qBAAA;AAAA,KAC5C;AAAA,EACF;AAEA,EAAA,IAAI,WAAA,GAAmD,MAAA;AACvD,EAAA,IAAI,sBAAsB,MAAA,EAAW;AACnC,IAAA,MAAM,SAAS,iBAAA,EACX,MAAA,CAAO,CAAC,GAAA,EAAK,kBAAkB,KAAA,KAAU;AACzC,MAAA,IAAI,KAAA,GAA4B,MAAA;AAChC,MAAA,IAAI;AACF,QAAA,uBAAA,CAAwB,gBAAgB,CAAA;AAAA,MAC1C,SAAS,CAAA,EAAG;AACV,QAAA,KAAA,GAAQ,CAAA,CAAE,OAAA;AAAA,MACZ;AAEA,MAAA,IAAI,UAAU,MAAA,EAAW;AACvB,QAAA,GAAA,CAAI,KAAK,CAAA,uBAAA,EAA0B,KAAA,GAAQ,CAAC,CAAA,CAAA,EAAI,KAAK,CAAA,CAAE,CAAA;AAAA,MACzD;AAEA,MAAA,OAAO,GAAA;AAAA,IACT,CAAA,EAAG,KAAA,CAAM,EAAA,EAAY,CAAA,CACpB,MAAA;AAAA,MACC,MAAA,CAAO,OAAA;AAAA,QACL,iBAAA,CACG,MAAA;AAAA,UACC,gBACE,UAAA,CAAW,aAAA,KAAkB,MAAA,IAC7B,UAAA,CAAW,cAAc,MAAA,GAAS;AAAA,SACtC,CACC,MAAA,CAAO,CAAC,GAAA,EAAK,YAAY,KAAA,KAAU;AAClC,UAAA,UAAA,CAAW,aAAA,EAAe,QAAQ,CAAA,YAAA,KAAgB;AAChD,YAAA,IAAI,CAAC,GAAA,CAAI,YAAY,CAAA,EAAG;AACtB,cAAA,GAAA,CAAI,YAAY,IAAI,EAAC;AAAA,YACvB;AAEA,YAAA,GAAA,CAAI,YAAY,CAAA,CAAE,IAAA,CAAK,KAAA,GAAQ,CAAC,CAAA;AAAA,UAClC,CAAC,CAAA;AAED,UAAA,OAAO,GAAA;AAAA,QACT,CAAA,EAAG,EAA8B;AAAA,QAElC,MAAA,CAAO,CAAC,CAAC,CAAA,EAAG,OAAO,CAAA,KAAM,OAAA,CAAQ,MAAA,GAAS,CAAC,EAC3C,MAAA,CAAO,CAAC,KAAK,CAAC,GAAA,EAAK,OAAO,CAAA,KAAM;AAC/B,QAAA,GAAA,CAAI,IAAA;AAAA,UACF,gBAAgB,GAAG,CAAA,yDAAA,EAA4D,QAC5E,KAAA,CAAM,CAAA,EAAG,QAAQ,MAAA,GAAS,CAAC,CAAA,CAC3B,IAAA,CAAK,IAAI,CAAC,CAAA,KAAA,EAAQ,QAAQ,OAAA,CAAQ,MAAA,GAAS,CAAC,CAAC,CAAA;AAAA,SAClD;AACA,QAAA,OAAO,GAAA;AAAA,MACT,CAAA,EAAG,KAAA,CAAM,EAAA,EAAY;AAAA,KACzB;AAEF,IAAA,IAAI,MAAA,EAAQ,SAAS,CAAA,EAAG;AACtB,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,wCAAwC,IAAI,CAAA,EAAA,EAAK,MAAA,CAAO,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,OACpE;AAAA,IACF;AAEA,IAAA,WAAA,GAAc,iBAAA,CAAkB,GAAA;AAAA,MAAI,CAAA,gBAAA,KAClC,wBAAwB,gBAAgB;AAAA,KAC1C;AAEA,IAAA,IACE,WAAA,CAAY,IAAA;AAAA,MACV,CAAA,UAAA,KAAc,WAAW,IAAA,KAAS;AAAA,KACpC,IACA,SAAS,UAAA,EACT;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,CAAA,qCAAA,EAAwC,IAAI,CAAA,gEAAA,EAAmE,UAAU,CAAA;AAAA,OAC3H;AAAA,IACF;AAEA,IAAA,IACE,WAAA,CAAY,MAAA;AAAA,MACV,gBACE,UAAA,CAAW,aAAA,KAAkB,MAAA,IAC7B,UAAA,CAAW,cAAc,MAAA,KAAW;AAAA,KACxC,CAAE,SAAS,CAAA,EACX;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,wCAAwC,IAAI,CAAA,+DAAA;AAAA,OAC9C;AAAA,IACF;AAAA,EACF;AAEA,EAAA,OAAO;AAAA,IACL,IAAA;AAAA,IACA,WAAA;AAAA,IACA,gBAAA,EAAkB,MAAA,CAAO,iBAAA,CAAkB,kBAAkB;AAAA,GAC/D;AACF;AASO,SAAS,4BACd,OAAA,EAC0B;AAE1B,EAAA,MAAM,MAAA,GAAS,OAAA,CAAQ,GAAA,CAAI,0BAA0B,CAAA;AAIrD,EAAA,IAAI,CAAC,MAAA,CAAO,IAAA,CAAK,OAAK,CAAA,CAAE,IAAA,KAAS,UAAU,CAAA,EAAG;AAC5C,IAAA,MAAA,CAAO,IAAA,CAAK,EAAE,IAAA,EAAM,UAAA,EAAY,CAAA;AAAA,EAClC;AAEA,EAAA,OAAO,MAAA;AACT;;;;;"}

package/dist/azure/config.esm.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"config.esm.js","sources":["../../src/azure/config.ts"],"sourcesContent":["/\n Copyright 2020 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { Config } from '@backstage/config';\nimport { isValidHost } from '../helpers';\n\nconst AZURE_HOST = 'dev.azure.com';\n\n/\n The configuration parameters for a single Azure provider.\n \n @public\n /\nexport type AzureIntegrationConfig = {\n /\n The host of the target that this matches on, e.g. \"dev.azure.com\".\n \n Currently only \"dev.azure.com\" is supported.\n /\n host: string;\n\n /\n The authorization token to use for requests.\n \n If no token is specified, anonymous access is used.\n \n @deprecated Use `credentials` instead.\n /\n token?: string;\n\n /\n The credential to use for requests.\n \n If no credential is specified anonymous access is used.\n \n @deprecated Use `credentials` instead.\n /\n credential?: AzureDevOpsCredential;\n\n /\n The credentials to use for requests. If multiple credentials are specified the first one that matches the organization is used.\n * If not organization matches the first credential without an organization is used.\n \n If no credentials are specified at all, either a default credential (for Azure DevOps) or anonymous access (for Azure DevOps Server) is used.\n /\n credentials?: AzureDevOpsCredential[];\n\n /\n Signing key for commits\n /\n commitSigningKey?: string;\n};\n\n/\n The kind of Azure DevOps credential.\n * @public\n /\nexport type AzureDevOpsCredentialKind =\n \| 'PersonalAccessToken'\n \| 'ClientSecret'\n \| 'ManagedIdentity'\n \| 'ManagedIdentityClientAssertion';\n\n/\n Common fields for the Azure DevOps credentials.\n * @public\n /\nexport type AzureCredentialBase = {\n /\n The kind of credential.\n /\n kind: AzureDevOpsCredentialKind;\n /\n The Azure DevOps organizations for which to use this credential.\n /\n organizations?: string[];\n};\n\n/\n A client secret credential that was generated for an App Registration.\n * @public\n /\nexport type AzureClientSecretCredential = AzureCredentialBase & {\n kind: 'ClientSecret';\n /\n The Entra ID tenant\n /\n tenantId: string;\n /\n The client id\n /\n clientId: string;\n\n /\n The client secret\n /\n clientSecret: string;\n};\n\n/\n A client assertion credential that uses a managed identity to generate a client assertion (JWT).\n * @public\n /\nexport type AzureManagedIdentityClientAssertionCredential =\n AzureCredentialBase & {\n kind: 'ManagedIdentityClientAssertion';\n /\n The Entra ID tenant\n /\n tenantId: string;\n\n /\n The client ID of the app registration you want to authenticate as.\n /\n clientId: string;\n\n /\n The client ID of the managed identity used to generate a client assertion (JWT).\n * Set to \"system-assigned\" to automatically use the system-assigned managed identity.\n * For user-assigned managed identities, specify the client ID of the managed identity you want to use.\n /\n managedIdentityClientId: 'system-assigned' \| string;\n };\n\n/\n A managed identity credential.\n * @public\n /\nexport type AzureManagedIdentityCredential = AzureCredentialBase & {\n kind: 'ManagedIdentity';\n /\n The clientId\n /\n clientId: 'system-assigned' \| string;\n};\n\n/\n A personal access token credential.\n * @public\n /\nexport type PersonalAccessTokenCredential = AzureCredentialBase & {\n kind: 'PersonalAccessToken';\n personalAccessToken: string;\n};\n\n/\n The general shape of a credential that can be used to authenticate to Azure DevOps.\n * @public\n /\nexport type AzureDevOpsCredentialLike = Omit<\n Partial<AzureClientSecretCredential> &\n Partial<AzureManagedIdentityClientAssertionCredential> &\n Partial<AzureManagedIdentityCredential> &\n Partial<PersonalAccessTokenCredential>,\n 'kind'\n>;\n\n/\n Credential used to authenticate to Azure DevOps.\n * @public\n /\nexport type AzureDevOpsCredential =\n \| AzureClientSecretCredential\n \| AzureManagedIdentityClientAssertionCredential\n \| AzureManagedIdentityCredential\n \| PersonalAccessTokenCredential;\n\nconst AzureDevOpsCredentialFields = [\n 'clientId',\n 'clientSecret',\n 'managedIdentityClientId',\n 'tenantId',\n 'personalAccessToken',\n] as const;\ntype AzureDevOpsCredentialField = (typeof AzureDevOpsCredentialFields)[number];\n\nconst AzureDevopsCredentialFieldMap = new Map<\n AzureDevOpsCredentialKind,\n AzureDevOpsCredentialField[]\n>([\n ['ClientSecret', ['clientId', 'clientSecret', 'tenantId']],\n ['ManagedIdentity', ['clientId']],\n [\n 'ManagedIdentityClientAssertion',\n ['clientId', 'managedIdentityClientId', 'tenantId'],\n ],\n ['PersonalAccessToken', ['personalAccessToken']],\n]);\n\nfunction asAzureDevOpsCredential(\n credential: AzureDevOpsCredentialLike,\n): AzureDevOpsCredential {\n for (const entry of AzureDevopsCredentialFieldMap.entries()) {\n const [kind, requiredFields] = entry;\n\n const forbiddenFields = AzureDevOpsCredentialFields.filter(\n field => !requiredFields.includes(field as AzureDevOpsCredentialField),\n );\n\n if (\n requiredFields.every(field => credential[field] !== undefined) &&\n forbiddenFields.every(field => credential[field] === undefined)\n ) {\n return {\n kind,\n organizations: credential.organizations,\n ...requiredFields.reduce((acc, field) => {\n acc[field] = credential[field];\n return acc;\n }, {} as Record<string, any>),\n } as AzureDevOpsCredential;\n }\n }\n throw new Error('is not a valid credential');\n}\n\n/\n Reads a single Azure integration config.\n \n @param config - The config object of a single integration\n * @public\n /\nexport function readAzureIntegrationConfig(\n config: Config,\n): AzureIntegrationConfig {\n const host = config.getOptionalString('host') ?? AZURE_HOST;\n\n let credentialConfigs = config\n .getOptionalConfigArray('credentials')\n ?.map(credential => {\n const result: Partial<AzureDevOpsCredentialLike> = {\n organizations: credential.getOptionalStringArray('organizations'),\n personalAccessToken: credential\n .getOptionalString('personalAccessToken')\n ?.trim(),\n tenantId: credential.getOptionalString('tenantId')?.trim(),\n clientId: credential.getOptionalString('clientId')?.trim(),\n clientSecret: credential.getOptionalString('clientSecret')?.trim(),\n managedIdentityClientId: credential\n .getOptionalString('managedIdentityClientId')\n ?.trim(),\n };\n\n return result;\n });\n\n const token = config.getOptionalString('token')?.trim();\n\n if (\n config.getOptional('credential') !== undefined &&\n config.getOptional('credentials') !== undefined\n ) {\n throw new Error(\n `Invalid Azure integration config, 'credential' and 'credentials' cannot be used together. Use 'credentials' instead.`,\n );\n }\n\n if (\n config.getOptional('token') !== undefined &&\n config.getOptional('credentials') !== undefined\n ) {\n throw new Error(\n `Invalid Azure integration config, 'token' and 'credentials' cannot be used together. Use 'credentials' instead.`,\n );\n }\n\n if (token !== undefined) {\n const mapped = [{ personalAccessToken: token }];\n credentialConfigs = credentialConfigs?.concat(mapped) ?? mapped;\n }\n\n if (config.getOptional('credential') !== undefined) {\n const mapped = [\n {\n organizations: config.getOptionalStringArray(\n 'credential.organizations',\n ),\n token: config.getOptionalString('credential.token')?.trim(),\n tenantId: config.getOptionalString('credential.tenantId'),\n clientId: config.getOptionalString('credential.clientId'),\n clientSecret: config\n .getOptionalString('credential.clientSecret')\n ?.trim(),\n },\n ];\n credentialConfigs = credentialConfigs?.concat(mapped) ?? mapped;\n }\n\n if (!isValidHost(host)) {\n throw new Error(\n `Invalid Azure integration config, '${host}' is not a valid host`,\n );\n }\n\n let credentials: AzureDevOpsCredential[] \| undefined = undefined;\n if (credentialConfigs !== undefined) {\n const errors = credentialConfigs\n ?.reduce((acc, credentialConfig, index) => {\n let error: string \| undefined = undefined;\n try {\n asAzureDevOpsCredential(credentialConfig);\n } catch (e) {\n error = e.message;\n }\n\n if (error !== undefined) {\n acc.push(`credential at position ${index + 1} ${error}`);\n }\n\n return acc;\n }, Array.of<string>())\n .concat(\n Object.entries(\n credentialConfigs\n .filter(\n credential =>\n credential.organizations !== undefined &&\n credential.organizations.length > 0,\n )\n .reduce((acc, credential, index) => {\n credential.organizations?.forEach(organization => {\n if (!acc[organization]) {\n acc[organization] = [];\n }\n\n acc[organization].push(index + 1);\n });\n\n return acc;\n }, {} as Record<string, number[]>),\n )\n .filter(([_, indexes]) => indexes.length > 1)\n .reduce((acc, [org, indexes]) => {\n acc.push(\n `organization ${org} is specified multiple times in credentials at positions ${indexes\n .slice(0, indexes.length - 1)\n .join(', ')} and ${indexes[indexes.length - 1]}`,\n );\n return acc;\n }, Array.of<string>()),\n );\n\n if (errors?.length > 0) {\n throw new Error(\n `Invalid Azure integration config for ${host}: ${errors.join('; ')}`,\n );\n }\n\n credentials = credentialConfigs.map(credentialConfig =>\n asAzureDevOpsCredential(credentialConfig),\n );\n\n if (\n credentials.some(\n credential => credential.kind !== 'PersonalAccessToken',\n ) &&\n host !== AZURE_HOST\n ) {\n throw new Error(\n `Invalid Azure integration config for ${host}, only personal access tokens can be used with hosts other than ${AZURE_HOST}`,\n );\n }\n\n if (\n credentials.filter(\n credential =>\n credential.organizations === undefined \|\|\n credential.organizations.length === 0,\n ).length > 1\n ) {\n throw new Error(\n `Invalid Azure integration config for ${host}, you cannot specify multiple credentials without organizations`,\n );\n }\n }\n\n return {\n host,\n credentials,\n commitSigningKey: config.getOptionalString('commitSigningKey'),\n };\n}\n\n/\n Reads a set of Azure integration configs, and inserts some defaults for\n * public Azure if not specified.\n \n @param configs - All of the integration config objects\n * @public\n */\nexport function readAzureIntegrationConfigs(\n configs: Config[],\n): AzureIntegrationConfig[] {\n // First read all the explicit integrations\n const result = configs.map(readAzureIntegrationConfig);\n\n // If no explicit dev.azure.com integration was added, put one in the list as\n // a convenience\n if (!result.some(c => c.host === AZURE_HOST)) {\n result.push({ host: AZURE_HOST });\n }\n\n return result;\n}\n"],"names":[],"mappings":";;AAmBA,MAAM,UAAa,GAAA,eAAA;AAiKnB,MAAM,2BAA8B,GAAA;AAAA,EAClC,UAAA;AAAA,EACA,cAAA;AAAA,EACA,yBAAA;AAAA,EACA,UAAA;AAAA,EACA;AACF,CAAA;AAGA,MAAM,6BAAA,uBAAoC,GAGxC,CAAA;AAAA,EACA,CAAC,cAAgB,EAAA,CAAC,UAAY,EAAA,cAAA,EAAgB,UAAU,CAAC,CAAA;AAAA,EACzD,CAAC,iBAAA,EAAmB,CAAC,UAAU,CAAC,CAAA;AAAA,EAChC;AAAA,IACE,gCAAA;AAAA,IACA,CAAC,UAAY,EAAA,yBAAA,EAA2B,UAAU;AAAA,GACpD;AAAA,EACA,CAAC,qBAAA,EAAuB,CAAC,qBAAqB,CAAC;AACjD,CAAC,CAAA;AAED,SAAS,wBACP,UACuB,EAAA;AACvB,EAAW,KAAA,MAAA,KAAA,IAAS,6BAA8B,CAAA,OAAA,EAAW,EAAA;AAC3D,IAAM,MAAA,CAAC,IAAM,EAAA,cAAc,CAAI,GAAA,KAAA;AAE/B,IAAA,MAAM,kBAAkB,2BAA4B,CAAA,MAAA;AAAA,MAClD,CAAS,KAAA,KAAA,CAAC,cAAe,CAAA,QAAA,CAAS,KAAmC;AAAA,KACvE;AAEA,IAAA,IACE,cAAe,CAAA,KAAA,CAAM,CAAS,KAAA,KAAA,UAAA,CAAW,KAAK,CAAM,KAAA,KAAA,CAAS,CAC7D,IAAA,eAAA,CAAgB,MAAM,CAAS,KAAA,KAAA,UAAA,CAAW,KAAK,CAAA,KAAM,MAAS,CAC9D,EAAA;AACA,MAAO,OAAA;AAAA,QACL,IAAA;AAAA,QACA,eAAe,UAAW,CAAA,aAAA;AAAA,QAC1B,GAAG,cAAA,CAAe,MAAO,CAAA,CAAC,KAAK,KAAU,KAAA;AACvC,UAAI,GAAA,CAAA,KAAK,CAAI,GAAA,UAAA,CAAW,KAAK,CAAA;AAC7B,UAAO,OAAA,GAAA;AAAA,SACT,EAAG,EAAyB;AAAA,OAC9B;AAAA;AACF;AAEF,EAAM,MAAA,IAAI,MAAM,2BAA2B,CAAA;AAC7C;AAQO,SAAS,2BACd,MACwB,EAAA;AACxB,EAAA,MAAM,IAAO,GAAA,MAAA,CAAO,iBAAkB,CAAA,MAAM,CAAK,IAAA,UAAA;AAEjD,EAAA,IAAI,oBAAoB,MACrB,CAAA,sBAAA,CAAuB,aAAa,CAAA,EACnC,IAAI,CAAc,UAAA,KAAA;AAClB,IAAA,MAAM,MAA6C,GAAA;AAAA,MACjD,aAAA,EAAe,UAAW,CAAA,sBAAA,CAAuB,eAAe,CAAA;AAAA,MAChE,mBAAqB,EAAA,UAAA,CAClB,iBAAkB,CAAA,qBAAqB,GACtC,IAAK,EAAA;AAAA,MACT,QAAU,EAAA,UAAA,CAAW,iBAAkB,CAAA,UAAU,GAAG,IAAK,EAAA;AAAA,MACzD,QAAU,EAAA,UAAA,CAAW,iBAAkB,CAAA,UAAU,GAAG,IAAK,EAAA;AAAA,MACzD,YAAc,EAAA,UAAA,CAAW,iBAAkB,CAAA,cAAc,GAAG,IAAK,EAAA;AAAA,MACjE,uBAAyB,EAAA,UAAA,CACtB,iBAAkB,CAAA,yBAAyB,GAC1C,IAAK;AAAA,KACX;AAEA,IAAO,OAAA,MAAA;AAAA,GACR,CAAA;AAEH,EAAA,MAAM,KAAQ,GAAA,MAAA,CAAO,iBAAkB,CAAA,OAAO,GAAG,IAAK,EAAA;AAEtD,EACE,IAAA,MAAA,CAAO,YAAY,YAAY,CAAA,KAAM,UACrC,MAAO,CAAA,WAAA,CAAY,aAAa,CAAA,KAAM,KACtC,CAAA,EAAA;AACA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,oHAAA;AAAA,KACF;AAAA;AAGF,EACE,IAAA,MAAA,CAAO,YAAY,OAAO,CAAA,KAAM,UAChC,MAAO,CAAA,WAAA,CAAY,aAAa,CAAA,KAAM,KACtC,CAAA,EAAA;AACA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,+GAAA;AAAA,KACF;AAAA;AAGF,EAAA,IAAI,UAAU,KAAW,CAAA,EAAA;AACvB,IAAA,MAAM,MAAS,GAAA,CAAC,EAAE,mBAAA,EAAqB,OAAO,CAAA;AAC9C,IAAoB,iBAAA,GAAA,iBAAA,EAAmB,MAAO,CAAA,MAAM,CAAK,IAAA,MAAA;AAAA;AAG3D,EAAA,IAAI,MAAO,CAAA,WAAA,CAAY,YAAY,CAAA,KAAM,KAAW,CAAA,EAAA;AAClD,IAAA,MAAM,MAAS,GAAA;AAAA,MACb;AAAA,QACE,eAAe,MAAO,CAAA,sBAAA;AAAA,UACpB;AAAA,SACF;AAAA,QACA,KAAO,EAAA,MAAA,CAAO,iBAAkB,CAAA,kBAAkB,GAAG,IAAK,EAAA;AAAA,QAC1D,QAAA,EAAU,MAAO,CAAA,iBAAA,CAAkB,qBAAqB,CAAA;AAAA,QACxD,QAAA,EAAU,MAAO,CAAA,iBAAA,CAAkB,qBAAqB,CAAA;AAAA,QACxD,YAAc,EAAA,MAAA,CACX,iBAAkB,CAAA,yBAAyB,GAC1C,IAAK;AAAA;AACX,KACF;AACA,IAAoB,iBAAA,GAAA,iBAAA,EAAmB,MAAO,CAAA,MAAM,CAAK,IAAA,MAAA;AAAA;AAG3D,EAAI,IAAA,CAAC,WAAY,CAAA,IAAI,CAAG,EAAA;AACtB,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,sCAAsC,IAAI,CAAA,qBAAA;AAAA,KAC5C;AAAA;AAGF,EAAA,IAAI,WAAmD,GAAA,KAAA,CAAA;AACvD,EAAA,IAAI,sBAAsB,KAAW,CAAA,EAAA;AACnC,IAAA,MAAM,SAAS,iBACX,EAAA,MAAA,CAAO,CAAC,GAAA,EAAK,kBAAkB,KAAU,KAAA;AACzC,MAAA,IAAI,KAA4B,GAAA,KAAA,CAAA;AAChC,MAAI,IAAA;AACF,QAAA,uBAAA,CAAwB,gBAAgB,CAAA;AAAA,eACjC,CAAG,EAAA;AACV,QAAA,KAAA,GAAQ,CAAE,CAAA,OAAA;AAAA;AAGZ,MAAA,IAAI,UAAU,KAAW,CAAA,EAAA;AACvB,QAAA,GAAA,CAAI,KAAK,CAA0B,uBAAA,EAAA,KAAA,GAAQ,CAAC,CAAA,CAAA,EAAI,KAAK,CAAE,CAAA,CAAA;AAAA;AAGzD,MAAO,OAAA,GAAA;AAAA,KACN,EAAA,KAAA,CAAM,EAAW,EAAC,CACpB,CAAA,MAAA;AAAA,MACC,MAAO,CAAA,OAAA;AAAA,QACL,iBACG,CAAA,MAAA;AAAA,UACC,gBACE,UAAW,CAAA,aAAA,KAAkB,KAC7B,CAAA,IAAA,UAAA,CAAW,cAAc,MAAS,GAAA;AAAA,SAErC,CAAA,MAAA,CAAO,CAAC,GAAA,EAAK,YAAY,KAAU,KAAA;AAClC,UAAW,UAAA,CAAA,aAAA,EAAe,QAAQ,CAAgB,YAAA,KAAA;AAChD,YAAI,IAAA,CAAC,GAAI,CAAA,YAAY,CAAG,EAAA;AACtB,cAAI,GAAA,CAAA,YAAY,IAAI,EAAC;AAAA;AAGvB,YAAA,GAAA,CAAI,YAAY,CAAA,CAAE,IAAK,CAAA,KAAA,GAAQ,CAAC,CAAA;AAAA,WACjC,CAAA;AAED,UAAO,OAAA,GAAA;AAAA,SACT,EAAG,EAA8B;AAAA,QAElC,MAAO,CAAA,CAAC,CAAC,CAAA,EAAG,OAAO,CAAM,KAAA,OAAA,CAAQ,MAAS,GAAA,CAAC,EAC3C,MAAO,CAAA,CAAC,KAAK,CAAC,GAAA,EAAK,OAAO,CAAM,KAAA;AAC/B,QAAI,GAAA,CAAA,IAAA;AAAA,UACF,gBAAgB,GAAG,CAAA,yDAAA,EAA4D,QAC5E,KAAM,CAAA,CAAA,EAAG,QAAQ,MAAS,GAAA,CAAC,CAC3B,CAAA,IAAA,CAAK,IAAI,CAAC,CAAA,KAAA,EAAQ,QAAQ,OAAQ,CAAA,MAAA,GAAS,CAAC,CAAC,CAAA;AAAA,SAClD;AACA,QAAO,OAAA,GAAA;AAAA,OACT,EAAG,KAAM,CAAA,EAAA,EAAY;AAAA,KACzB;AAEF,IAAI,IAAA,MAAA,EAAQ,SAAS,CAAG,EAAA;AACtB,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,wCAAwC,IAAI,CAAA,EAAA,EAAK,MAAO,CAAA,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,OACpE;AAAA;AAGF,IAAA,WAAA,GAAc,iBAAkB,CAAA,GAAA;AAAA,MAAI,CAAA,gBAAA,KAClC,wBAAwB,gBAAgB;AAAA,KAC1C;AAEA,IAAA,IACE,WAAY,CAAA,IAAA;AAAA,MACV,CAAA,UAAA,KAAc,WAAW,IAAS,KAAA;AAAA,KACpC,IACA,SAAS,UACT,EAAA;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,CAAA,qCAAA,EAAwC,IAAI,CAAA,gEAAA,EAAmE,UAAU,CAAA;AAAA,OAC3H;AAAA;AAGF,IAAA,IACE,WAAY,CAAA,MAAA;AAAA,MACV,gBACE,UAAW,CAAA,aAAA,KAAkB,KAC7B,CAAA,IAAA,UAAA,CAAW,cAAc,MAAW,KAAA;AAAA,KACxC,CAAE,SAAS,CACX,EAAA;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,wCAAwC,IAAI,CAAA,+DAAA;AAAA,OAC9C;AAAA;AACF;AAGF,EAAO,OAAA;AAAA,IACL,IAAA;AAAA,IACA,WAAA;AAAA,IACA,gBAAA,EAAkB,MAAO,CAAA,iBAAA,CAAkB,kBAAkB;AAAA,GAC/D;AACF;AASO,SAAS,4BACd,OAC0B,EAAA;AAE1B,EAAM,MAAA,MAAA,GAAS,OAAQ,CAAA,GAAA,CAAI,0BAA0B,CAAA;AAIrD,EAAA,IAAI,CAAC,MAAO,CAAA,IAAA,CAAK,OAAK,CAAE,CAAA,IAAA,KAAS,UAAU,CAAG,EAAA;AAC5C,IAAA,MAAA,CAAO,IAAK,CAAA,EAAE,IAAM,EAAA,UAAA,EAAY,CAAA;AAAA;AAGlC,EAAO,OAAA,MAAA;AACT;;;;"}
1	+ {"version":3,"file":"config.esm.js","sources":["../../src/azure/config.ts"],"sourcesContent":["/\n Copyright 2020 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { Config } from '@backstage/config';\nimport { isValidHost } from '../helpers';\n\nconst AZURE_HOST = 'dev.azure.com';\n\n/\n The configuration parameters for a single Azure provider.\n \n @public\n /\nexport type AzureIntegrationConfig = {\n /\n The host of the target that this matches on, e.g. \"dev.azure.com\".\n \n Currently only \"dev.azure.com\" is supported.\n /\n host: string;\n\n /\n The authorization token to use for requests.\n \n If no token is specified, anonymous access is used.\n \n @deprecated Use `credentials` instead.\n /\n token?: string;\n\n /\n The credential to use for requests.\n \n If no credential is specified anonymous access is used.\n \n @deprecated Use `credentials` instead.\n /\n credential?: AzureDevOpsCredential;\n\n /\n The credentials to use for requests. If multiple credentials are specified the first one that matches the organization is used.\n * If not organization matches the first credential without an organization is used.\n \n If no credentials are specified at all, either a default credential (for Azure DevOps) or anonymous access (for Azure DevOps Server) is used.\n /\n credentials?: AzureDevOpsCredential[];\n\n /\n Signing key for commits\n /\n commitSigningKey?: string;\n};\n\n/\n The kind of Azure DevOps credential.\n * @public\n /\nexport type AzureDevOpsCredentialKind =\n \| 'PersonalAccessToken'\n \| 'ClientSecret'\n \| 'ManagedIdentity'\n \| 'ManagedIdentityClientAssertion';\n\n/\n Common fields for the Azure DevOps credentials.\n * @public\n /\nexport type AzureCredentialBase = {\n /\n The kind of credential.\n /\n kind: AzureDevOpsCredentialKind;\n /\n The Azure DevOps organizations for which to use this credential.\n /\n organizations?: string[];\n};\n\n/\n A client secret credential that was generated for an App Registration.\n * @public\n /\nexport type AzureClientSecretCredential = AzureCredentialBase & {\n kind: 'ClientSecret';\n /\n The Entra ID tenant\n /\n tenantId: string;\n /\n The client id\n /\n clientId: string;\n\n /\n The client secret\n /\n clientSecret: string;\n};\n\n/\n A client assertion credential that uses a managed identity to generate a client assertion (JWT).\n * @public\n /\nexport type AzureManagedIdentityClientAssertionCredential =\n AzureCredentialBase & {\n kind: 'ManagedIdentityClientAssertion';\n /\n The Entra ID tenant\n /\n tenantId: string;\n\n /\n The client ID of the app registration you want to authenticate as.\n /\n clientId: string;\n\n /\n The client ID of the managed identity used to generate a client assertion (JWT).\n * Set to \"system-assigned\" to automatically use the system-assigned managed identity.\n * For user-assigned managed identities, specify the client ID of the managed identity you want to use.\n /\n managedIdentityClientId: 'system-assigned' \| string;\n };\n\n/\n A managed identity credential.\n * @public\n /\nexport type AzureManagedIdentityCredential = AzureCredentialBase & {\n kind: 'ManagedIdentity';\n /\n The clientId\n /\n clientId: 'system-assigned' \| string;\n};\n\n/\n A personal access token credential.\n * @public\n /\nexport type PersonalAccessTokenCredential = AzureCredentialBase & {\n kind: 'PersonalAccessToken';\n personalAccessToken: string;\n};\n\n/\n The general shape of a credential that can be used to authenticate to Azure DevOps.\n * @public\n /\nexport type AzureDevOpsCredentialLike = Omit<\n Partial<AzureClientSecretCredential> &\n Partial<AzureManagedIdentityClientAssertionCredential> &\n Partial<AzureManagedIdentityCredential> &\n Partial<PersonalAccessTokenCredential>,\n 'kind'\n>;\n\n/\n Credential used to authenticate to Azure DevOps.\n * @public\n /\nexport type AzureDevOpsCredential =\n \| AzureClientSecretCredential\n \| AzureManagedIdentityClientAssertionCredential\n \| AzureManagedIdentityCredential\n \| PersonalAccessTokenCredential;\n\nconst AzureDevOpsCredentialFields = [\n 'clientId',\n 'clientSecret',\n 'managedIdentityClientId',\n 'tenantId',\n 'personalAccessToken',\n] as const;\ntype AzureDevOpsCredentialField = (typeof AzureDevOpsCredentialFields)[number];\n\nconst AzureDevopsCredentialFieldMap = new Map<\n AzureDevOpsCredentialKind,\n AzureDevOpsCredentialField[]\n>([\n ['ClientSecret', ['clientId', 'clientSecret', 'tenantId']],\n ['ManagedIdentity', ['clientId']],\n [\n 'ManagedIdentityClientAssertion',\n ['clientId', 'managedIdentityClientId', 'tenantId'],\n ],\n ['PersonalAccessToken', ['personalAccessToken']],\n]);\n\nfunction asAzureDevOpsCredential(\n credential: AzureDevOpsCredentialLike,\n): AzureDevOpsCredential {\n for (const entry of AzureDevopsCredentialFieldMap.entries()) {\n const [kind, requiredFields] = entry;\n\n const forbiddenFields = AzureDevOpsCredentialFields.filter(\n field => !requiredFields.includes(field as AzureDevOpsCredentialField),\n );\n\n if (\n requiredFields.every(field => credential[field] !== undefined) &&\n forbiddenFields.every(field => credential[field] === undefined)\n ) {\n return {\n kind,\n organizations: credential.organizations,\n ...requiredFields.reduce((acc, field) => {\n acc[field] = credential[field];\n return acc;\n }, {} as Record<string, any>),\n } as AzureDevOpsCredential;\n }\n }\n throw new Error('is not a valid credential');\n}\n\n/\n Reads a single Azure integration config.\n \n @param config - The config object of a single integration\n * @public\n /\nexport function readAzureIntegrationConfig(\n config: Config,\n): AzureIntegrationConfig {\n const host = config.getOptionalString('host') ?? AZURE_HOST;\n\n let credentialConfigs = config\n .getOptionalConfigArray('credentials')\n ?.map(credential => {\n const result: Partial<AzureDevOpsCredentialLike> = {\n organizations: credential.getOptionalStringArray('organizations'),\n personalAccessToken: credential\n .getOptionalString('personalAccessToken')\n ?.trim(),\n tenantId: credential.getOptionalString('tenantId')?.trim(),\n clientId: credential.getOptionalString('clientId')?.trim(),\n clientSecret: credential.getOptionalString('clientSecret')?.trim(),\n managedIdentityClientId: credential\n .getOptionalString('managedIdentityClientId')\n ?.trim(),\n };\n\n return result;\n });\n\n const token = config.getOptionalString('token')?.trim();\n\n if (\n config.getOptional('credential') !== undefined &&\n config.getOptional('credentials') !== undefined\n ) {\n throw new Error(\n `Invalid Azure integration config, 'credential' and 'credentials' cannot be used together. Use 'credentials' instead.`,\n );\n }\n\n if (\n config.getOptional('token') !== undefined &&\n config.getOptional('credentials') !== undefined\n ) {\n throw new Error(\n `Invalid Azure integration config, 'token' and 'credentials' cannot be used together. Use 'credentials' instead.`,\n );\n }\n\n if (token !== undefined) {\n const mapped = [{ personalAccessToken: token }];\n credentialConfigs = credentialConfigs?.concat(mapped) ?? mapped;\n }\n\n if (config.getOptional('credential') !== undefined) {\n const mapped = [\n {\n organizations: config.getOptionalStringArray(\n 'credential.organizations',\n ),\n token: config.getOptionalString('credential.token')?.trim(),\n tenantId: config.getOptionalString('credential.tenantId'),\n clientId: config.getOptionalString('credential.clientId'),\n clientSecret: config\n .getOptionalString('credential.clientSecret')\n ?.trim(),\n },\n ];\n credentialConfigs = credentialConfigs?.concat(mapped) ?? mapped;\n }\n\n if (!isValidHost(host)) {\n throw new Error(\n `Invalid Azure integration config, '${host}' is not a valid host`,\n );\n }\n\n let credentials: AzureDevOpsCredential[] \| undefined = undefined;\n if (credentialConfigs !== undefined) {\n const errors = credentialConfigs\n ?.reduce((acc, credentialConfig, index) => {\n let error: string \| undefined = undefined;\n try {\n asAzureDevOpsCredential(credentialConfig);\n } catch (e) {\n error = e.message;\n }\n\n if (error !== undefined) {\n acc.push(`credential at position ${index + 1} ${error}`);\n }\n\n return acc;\n }, Array.of<string>())\n .concat(\n Object.entries(\n credentialConfigs\n .filter(\n credential =>\n credential.organizations !== undefined &&\n credential.organizations.length > 0,\n )\n .reduce((acc, credential, index) => {\n credential.organizations?.forEach(organization => {\n if (!acc[organization]) {\n acc[organization] = [];\n }\n\n acc[organization].push(index + 1);\n });\n\n return acc;\n }, {} as Record<string, number[]>),\n )\n .filter(([_, indexes]) => indexes.length > 1)\n .reduce((acc, [org, indexes]) => {\n acc.push(\n `organization ${org} is specified multiple times in credentials at positions ${indexes\n .slice(0, indexes.length - 1)\n .join(', ')} and ${indexes[indexes.length - 1]}`,\n );\n return acc;\n }, Array.of<string>()),\n );\n\n if (errors?.length > 0) {\n throw new Error(\n `Invalid Azure integration config for ${host}: ${errors.join('; ')}`,\n );\n }\n\n credentials = credentialConfigs.map(credentialConfig =>\n asAzureDevOpsCredential(credentialConfig),\n );\n\n if (\n credentials.some(\n credential => credential.kind !== 'PersonalAccessToken',\n ) &&\n host !== AZURE_HOST\n ) {\n throw new Error(\n `Invalid Azure integration config for ${host}, only personal access tokens can be used with hosts other than ${AZURE_HOST}`,\n );\n }\n\n if (\n credentials.filter(\n credential =>\n credential.organizations === undefined \|\|\n credential.organizations.length === 0,\n ).length > 1\n ) {\n throw new Error(\n `Invalid Azure integration config for ${host}, you cannot specify multiple credentials without organizations`,\n );\n }\n }\n\n return {\n host,\n credentials,\n commitSigningKey: config.getOptionalString('commitSigningKey'),\n };\n}\n\n/\n Reads a set of Azure integration configs, and inserts some defaults for\n * public Azure if not specified.\n \n @param configs - All of the integration config objects\n * @public\n */\nexport function readAzureIntegrationConfigs(\n configs: Config[],\n): AzureIntegrationConfig[] {\n // First read all the explicit integrations\n const result = configs.map(readAzureIntegrationConfig);\n\n // If no explicit dev.azure.com integration was added, put one in the list as\n // a convenience\n if (!result.some(c => c.host === AZURE_HOST)) {\n result.push({ host: AZURE_HOST });\n }\n\n return result;\n}\n"],"names":[],"mappings":";;AAmBA,MAAM,UAAA,GAAa,eAAA;AAiKnB,MAAM,2BAAA,GAA8B;AAAA,EAClC,UAAA;AAAA,EACA,cAAA;AAAA,EACA,yBAAA;AAAA,EACA,UAAA;AAAA,EACA;AACF,CAAA;AAGA,MAAM,6BAAA,uBAAoC,GAAA,CAGxC;AAAA,EACA,CAAC,cAAA,EAAgB,CAAC,UAAA,EAAY,cAAA,EAAgB,UAAU,CAAC,CAAA;AAAA,EACzD,CAAC,iBAAA,EAAmB,CAAC,UAAU,CAAC,CAAA;AAAA,EAChC;AAAA,IACE,gCAAA;AAAA,IACA,CAAC,UAAA,EAAY,yBAAA,EAA2B,UAAU;AAAA,GACpD;AAAA,EACA,CAAC,qBAAA,EAAuB,CAAC,qBAAqB,CAAC;AACjD,CAAC,CAAA;AAED,SAAS,wBACP,UAAA,EACuB;AACvB,EAAA,KAAA,MAAW,KAAA,IAAS,6BAAA,CAA8B,OAAA,EAAQ,EAAG;AAC3D,IAAA,MAAM,CAAC,IAAA,EAAM,cAAc,CAAA,GAAI,KAAA;AAE/B,IAAA,MAAM,kBAAkB,2BAAA,CAA4B,MAAA;AAAA,MAClD,CAAA,KAAA,KAAS,CAAC,cAAA,CAAe,QAAA,CAAS,KAAmC;AAAA,KACvE;AAEA,IAAA,IACE,cAAA,CAAe,KAAA,CAAM,CAAA,KAAA,KAAS,UAAA,CAAW,KAAK,CAAA,KAAM,MAAS,CAAA,IAC7D,eAAA,CAAgB,MAAM,CAAA,KAAA,KAAS,UAAA,CAAW,KAAK,CAAA,KAAM,MAAS,CAAA,EAC9D;AACA,MAAA,OAAO;AAAA,QACL,IAAA;AAAA,QACA,eAAe,UAAA,CAAW,aAAA;AAAA,QAC1B,GAAG,cAAA,CAAe,MAAA,CAAO,CAAC,KAAK,KAAA,KAAU;AACvC,UAAA,GAAA,CAAI,KAAK,CAAA,GAAI,UAAA,CAAW,KAAK,CAAA;AAC7B,UAAA,OAAO,GAAA;AAAA,QACT,CAAA,EAAG,EAAyB;AAAA,OAC9B;AAAA,IACF;AAAA,EACF;AACA,EAAA,MAAM,IAAI,MAAM,2BAA2B,CAAA;AAC7C;AAQO,SAAS,2BACd,MAAA,EACwB;AACxB,EAAA,MAAM,IAAA,GAAO,MAAA,CAAO,iBAAA,CAAkB,MAAM,CAAA,IAAK,UAAA;AAEjD,EAAA,IAAI,oBAAoB,MAAA,CACrB,sBAAA,CAAuB,aAAa,CAAA,EACnC,IAAI,CAAA,UAAA,KAAc;AAClB,IAAA,MAAM,MAAA,GAA6C;AAAA,MACjD,aAAA,EAAe,UAAA,CAAW,sBAAA,CAAuB,eAAe,CAAA;AAAA,MAChE,mBAAA,EAAqB,UAAA,CAClB,iBAAA,CAAkB,qBAAqB,GACtC,IAAA,EAAK;AAAA,MACT,QAAA,EAAU,UAAA,CAAW,iBAAA,CAAkB,UAAU,GAAG,IAAA,EAAK;AAAA,MACzD,QAAA,EAAU,UAAA,CAAW,iBAAA,CAAkB,UAAU,GAAG,IAAA,EAAK;AAAA,MACzD,YAAA,EAAc,UAAA,CAAW,iBAAA,CAAkB,cAAc,GAAG,IAAA,EAAK;AAAA,MACjE,uBAAA,EAAyB,UAAA,CACtB,iBAAA,CAAkB,yBAAyB,GAC1C,IAAA;AAAK,KACX;AAEA,IAAA,OAAO,MAAA;AAAA,EACT,CAAC,CAAA;AAEH,EAAA,MAAM,KAAA,GAAQ,MAAA,CAAO,iBAAA,CAAkB,OAAO,GAAG,IAAA,EAAK;AAEtD,EAAA,IACE,MAAA,CAAO,YAAY,YAAY,CAAA,KAAM,UACrC,MAAA,CAAO,WAAA,CAAY,aAAa,CAAA,KAAM,MAAA,EACtC;AACA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,oHAAA;AAAA,KACF;AAAA,EACF;AAEA,EAAA,IACE,MAAA,CAAO,YAAY,OAAO,CAAA,KAAM,UAChC,MAAA,CAAO,WAAA,CAAY,aAAa,CAAA,KAAM,MAAA,EACtC;AACA,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,CAAA,+GAAA;AAAA,KACF;AAAA,EACF;AAEA,EAAA,IAAI,UAAU,MAAA,EAAW;AACvB,IAAA,MAAM,MAAA,GAAS,CAAC,EAAE,mBAAA,EAAqB,OAAO,CAAA;AAC9C,IAAA,iBAAA,GAAoB,iBAAA,EAAmB,MAAA,CAAO,MAAM,CAAA,IAAK,MAAA;AAAA,EAC3D;AAEA,EAAA,IAAI,MAAA,CAAO,WAAA,CAAY,YAAY,CAAA,KAAM,MAAA,EAAW;AAClD,IAAA,MAAM,MAAA,GAAS;AAAA,MACb;AAAA,QACE,eAAe,MAAA,CAAO,sBAAA;AAAA,UACpB;AAAA,SACF;AAAA,QACA,KAAA,EAAO,MAAA,CAAO,iBAAA,CAAkB,kBAAkB,GAAG,IAAA,EAAK;AAAA,QAC1D,QAAA,EAAU,MAAA,CAAO,iBAAA,CAAkB,qBAAqB,CAAA;AAAA,QACxD,QAAA,EAAU,MAAA,CAAO,iBAAA,CAAkB,qBAAqB,CAAA;AAAA,QACxD,YAAA,EAAc,MAAA,CACX,iBAAA,CAAkB,yBAAyB,GAC1C,IAAA;AAAK;AACX,KACF;AACA,IAAA,iBAAA,GAAoB,iBAAA,EAAmB,MAAA,CAAO,MAAM,CAAA,IAAK,MAAA;AAAA,EAC3D;AAEA,EAAA,IAAI,CAAC,WAAA,CAAY,IAAI,CAAA,EAAG;AACtB,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,sCAAsC,IAAI,CAAA,qBAAA;AAAA,KAC5C;AAAA,EACF;AAEA,EAAA,IAAI,WAAA,GAAmD,MAAA;AACvD,EAAA,IAAI,sBAAsB,MAAA,EAAW;AACnC,IAAA,MAAM,SAAS,iBAAA,EACX,MAAA,CAAO,CAAC,GAAA,EAAK,kBAAkB,KAAA,KAAU;AACzC,MAAA,IAAI,KAAA,GAA4B,MAAA;AAChC,MAAA,IAAI;AACF,QAAA,uBAAA,CAAwB,gBAAgB,CAAA;AAAA,MAC1C,SAAS,CAAA,EAAG;AACV,QAAA,KAAA,GAAQ,CAAA,CAAE,OAAA;AAAA,MACZ;AAEA,MAAA,IAAI,UAAU,MAAA,EAAW;AACvB,QAAA,GAAA,CAAI,KAAK,CAAA,uBAAA,EAA0B,KAAA,GAAQ,CAAC,CAAA,CAAA,EAAI,KAAK,CAAA,CAAE,CAAA;AAAA,MACzD;AAEA,MAAA,OAAO,GAAA;AAAA,IACT,CAAA,EAAG,KAAA,CAAM,EAAA,EAAY,CAAA,CACpB,MAAA;AAAA,MACC,MAAA,CAAO,OAAA;AAAA,QACL,iBAAA,CACG,MAAA;AAAA,UACC,gBACE,UAAA,CAAW,aAAA,KAAkB,MAAA,IAC7B,UAAA,CAAW,cAAc,MAAA,GAAS;AAAA,SACtC,CACC,MAAA,CAAO,CAAC,GAAA,EAAK,YAAY,KAAA,KAAU;AAClC,UAAA,UAAA,CAAW,aAAA,EAAe,QAAQ,CAAA,YAAA,KAAgB;AAChD,YAAA,IAAI,CAAC,GAAA,CAAI,YAAY,CAAA,EAAG;AACtB,cAAA,GAAA,CAAI,YAAY,IAAI,EAAC;AAAA,YACvB;AAEA,YAAA,GAAA,CAAI,YAAY,CAAA,CAAE,IAAA,CAAK,KAAA,GAAQ,CAAC,CAAA;AAAA,UAClC,CAAC,CAAA;AAED,UAAA,OAAO,GAAA;AAAA,QACT,CAAA,EAAG,EAA8B;AAAA,QAElC,MAAA,CAAO,CAAC,CAAC,CAAA,EAAG,OAAO,CAAA,KAAM,OAAA,CAAQ,MAAA,GAAS,CAAC,EAC3C,MAAA,CAAO,CAAC,KAAK,CAAC,GAAA,EAAK,OAAO,CAAA,KAAM;AAC/B,QAAA,GAAA,CAAI,IAAA;AAAA,UACF,gBAAgB,GAAG,CAAA,yDAAA,EAA4D,QAC5E,KAAA,CAAM,CAAA,EAAG,QAAQ,MAAA,GAAS,CAAC,CAAA,CAC3B,IAAA,CAAK,IAAI,CAAC,CAAA,KAAA,EAAQ,QAAQ,OAAA,CAAQ,MAAA,GAAS,CAAC,CAAC,CAAA;AAAA,SAClD;AACA,QAAA,OAAO,GAAA;AAAA,MACT,CAAA,EAAG,KAAA,CAAM,EAAA,EAAY;AAAA,KACzB;AAEF,IAAA,IAAI,MAAA,EAAQ,SAAS,CAAA,EAAG;AACtB,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,wCAAwC,IAAI,CAAA,EAAA,EAAK,MAAA,CAAO,IAAA,CAAK,IAAI,CAAC,CAAA;AAAA,OACpE;AAAA,IACF;AAEA,IAAA,WAAA,GAAc,iBAAA,CAAkB,GAAA;AAAA,MAAI,CAAA,gBAAA,KAClC,wBAAwB,gBAAgB;AAAA,KAC1C;AAEA,IAAA,IACE,WAAA,CAAY,IAAA;AAAA,MACV,CAAA,UAAA,KAAc,WAAW,IAAA,KAAS;AAAA,KACpC,IACA,SAAS,UAAA,EACT;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,CAAA,qCAAA,EAAwC,IAAI,CAAA,gEAAA,EAAmE,UAAU,CAAA;AAAA,OAC3H;AAAA,IACF;AAEA,IAAA,IACE,WAAA,CAAY,MAAA;AAAA,MACV,gBACE,UAAA,CAAW,aAAA,KAAkB,MAAA,IAC7B,UAAA,CAAW,cAAc,MAAA,KAAW;AAAA,KACxC,CAAE,SAAS,CAAA,EACX;AACA,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,wCAAwC,IAAI,CAAA,+DAAA;AAAA,OAC9C;AAAA,IACF;AAAA,EACF;AAEA,EAAA,OAAO;AAAA,IACL,IAAA;AAAA,IACA,WAAA;AAAA,IACA,gBAAA,EAAkB,MAAA,CAAO,iBAAA,CAAkB,kBAAkB;AAAA,GAC/D;AACF;AASO,SAAS,4BACd,OAAA,EAC0B;AAE1B,EAAA,MAAM,MAAA,GAAS,OAAA,CAAQ,GAAA,CAAI,0BAA0B,CAAA;AAIrD,EAAA,IAAI,CAAC,MAAA,CAAO,IAAA,CAAK,OAAK,CAAA,CAAE,IAAA,KAAS,UAAU,CAAA,EAAG;AAC5C,IAAA,MAAA,CAAO,IAAA,CAAK,EAAE,IAAA,EAAM,UAAA,EAAY,CAAA;AAAA,EAClC;AAEA,EAAA,OAAO,MAAA;AACT;;;;"}

package/dist/azure/core.cjs.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"core.cjs.js","sources":["../../src/azure/core.ts"],"sourcesContent":["/\n Copyright 2020 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { AzureUrl } from './AzureUrl';\n\n/\n Given a URL pointing to a file on a provider, returns a URL that is suitable\n * for fetching the contents of the data.\n \n @remarks\n \n Converts\n * - from: `https://dev.azure.com/{organization}/{project}/_git/reponame?path={path}&version=GB{commitOrBranch}&_a=contents`\n * - to: `https://dev.azure.com/{organization}/{project}/_apis/git/repositories/reponame/items?path={path}&version={commitOrBranch}`\n \n @param url - A URL pointing to a file\n * @public\n /\nexport function getAzureFileFetchUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toFileUrl();\n}\n\n/\n Given a URL pointing to a path on a provider, returns a URL that is suitable\n * for downloading the subtree.\n \n @param url - A URL pointing to a path\n * @public\n /\nexport function getAzureDownloadUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toArchiveUrl();\n}\n\n/\n Given a URL, return the API URL to fetch commits on the branch.\n \n @param url - A URL pointing to a repository or a sub-path\n * @public\n */\nexport function getAzureCommitsUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toCommitsUrl();\n}\n"],"names":["AzureUrl"],"mappings":";;;;AA+BO,SAAS,qBAAqB,~~GAAqB~~,~~EAAA~~;AACxD,EAAA,OAAOA,~~iBAAS~~,~~CAAA~~,WAAA,CAAY,GAAG,CAAA,CAAE,~~SAAU~~,~~EAAA~~;AAC7C;AASO,SAAS,oBAAoB,~~GAAqB~~,~~EAAA~~;AACvD,EAAA,OAAOA,~~iBAAS~~,~~CAAA~~,WAAA,CAAY,GAAG,CAAA,CAAE,~~YAAa~~,~~EAAA~~;AAChD;AAQO,SAAS,mBAAmB,~~GAAqB~~,~~EAAA~~;AACtD,EAAA,OAAOA,~~iBAAS~~,~~CAAA~~,WAAA,CAAY,GAAG,CAAA,CAAE,~~YAAa~~,~~EAAA~~;AAChD;;;;;;"}
1	+ {"version":3,"file":"core.cjs.js","sources":["../../src/azure/core.ts"],"sourcesContent":["/\n Copyright 2020 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { AzureUrl } from './AzureUrl';\n\n/\n Given a URL pointing to a file on a provider, returns a URL that is suitable\n * for fetching the contents of the data.\n \n @remarks\n \n Converts\n * - from: `https://dev.azure.com/{organization}/{project}/_git/reponame?path={path}&version=GB{commitOrBranch}&_a=contents`\n * - to: `https://dev.azure.com/{organization}/{project}/_apis/git/repositories/reponame/items?path={path}&version={commitOrBranch}`\n \n @param url - A URL pointing to a file\n * @public\n /\nexport function getAzureFileFetchUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toFileUrl();\n}\n\n/\n Given a URL pointing to a path on a provider, returns a URL that is suitable\n * for downloading the subtree.\n \n @param url - A URL pointing to a path\n * @public\n /\nexport function getAzureDownloadUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toArchiveUrl();\n}\n\n/\n Given a URL, return the API URL to fetch commits on the branch.\n \n @param url - A URL pointing to a repository or a sub-path\n * @public\n */\nexport function getAzureCommitsUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toCommitsUrl();\n}\n"],"names":["AzureUrl"],"mappings":";;;;AA+BO,SAAS,qBAAqB,GAAA,EAAqB;AACxD,EAAA,OAAOA,iBAAA,CAAS,WAAA,CAAY,GAAG,CAAA,CAAE,SAAA,EAAU;AAC7C;AASO,SAAS,oBAAoB,GAAA,EAAqB;AACvD,EAAA,OAAOA,iBAAA,CAAS,WAAA,CAAY,GAAG,CAAA,CAAE,YAAA,EAAa;AAChD;AAQO,SAAS,mBAAmB,GAAA,EAAqB;AACtD,EAAA,OAAOA,iBAAA,CAAS,WAAA,CAAY,GAAG,CAAA,CAAE,YAAA,EAAa;AAChD;;;;;;"}

package/dist/azure/core.esm.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"core.esm.js","sources":["../../src/azure/core.ts"],"sourcesContent":["/\n Copyright 2020 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { AzureUrl } from './AzureUrl';\n\n/\n Given a URL pointing to a file on a provider, returns a URL that is suitable\n * for fetching the contents of the data.\n \n @remarks\n \n Converts\n * - from: `https://dev.azure.com/{organization}/{project}/_git/reponame?path={path}&version=GB{commitOrBranch}&_a=contents`\n * - to: `https://dev.azure.com/{organization}/{project}/_apis/git/repositories/reponame/items?path={path}&version={commitOrBranch}`\n \n @param url - A URL pointing to a file\n * @public\n /\nexport function getAzureFileFetchUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toFileUrl();\n}\n\n/\n Given a URL pointing to a path on a provider, returns a URL that is suitable\n * for downloading the subtree.\n \n @param url - A URL pointing to a path\n * @public\n /\nexport function getAzureDownloadUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toArchiveUrl();\n}\n\n/\n Given a URL, return the API URL to fetch commits on the branch.\n \n @param url - A URL pointing to a repository or a sub-path\n * @public\n */\nexport function getAzureCommitsUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toCommitsUrl();\n}\n"],"names":[],"mappings":";;AA+BO,SAAS,qBAAqB,~~GAAqB~~,~~EAAA~~;AACxD,EAAA,OAAO,~~QAAS~~,~~CAAA~~,WAAA,CAAY,GAAG,CAAA,CAAE,~~SAAU~~,~~EAAA~~;AAC7C;AASO,SAAS,oBAAoB,~~GAAqB~~,~~EAAA~~;AACvD,EAAA,OAAO,~~QAAS~~,~~CAAA~~,WAAA,CAAY,GAAG,CAAA,CAAE,~~YAAa~~,~~EAAA~~;AAChD;AAQO,SAAS,mBAAmB,~~GAAqB~~,~~EAAA~~;AACtD,EAAA,OAAO,~~QAAS~~,~~CAAA~~,WAAA,CAAY,GAAG,CAAA,CAAE,~~YAAa~~,~~EAAA~~;AAChD;;;;"}
1	+ {"version":3,"file":"core.esm.js","sources":["../../src/azure/core.ts"],"sourcesContent":["/\n Copyright 2020 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { AzureUrl } from './AzureUrl';\n\n/\n Given a URL pointing to a file on a provider, returns a URL that is suitable\n * for fetching the contents of the data.\n \n @remarks\n \n Converts\n * - from: `https://dev.azure.com/{organization}/{project}/_git/reponame?path={path}&version=GB{commitOrBranch}&_a=contents`\n * - to: `https://dev.azure.com/{organization}/{project}/_apis/git/repositories/reponame/items?path={path}&version={commitOrBranch}`\n \n @param url - A URL pointing to a file\n * @public\n /\nexport function getAzureFileFetchUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toFileUrl();\n}\n\n/\n Given a URL pointing to a path on a provider, returns a URL that is suitable\n * for downloading the subtree.\n \n @param url - A URL pointing to a path\n * @public\n /\nexport function getAzureDownloadUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toArchiveUrl();\n}\n\n/\n Given a URL, return the API URL to fetch commits on the branch.\n \n @param url - A URL pointing to a repository or a sub-path\n * @public\n */\nexport function getAzureCommitsUrl(url: string): string {\n return AzureUrl.fromRepoUrl(url).toCommitsUrl();\n}\n"],"names":[],"mappings":";;AA+BO,SAAS,qBAAqB,GAAA,EAAqB;AACxD,EAAA,OAAO,QAAA,CAAS,WAAA,CAAY,GAAG,CAAA,CAAE,SAAA,EAAU;AAC7C;AASO,SAAS,oBAAoB,GAAA,EAAqB;AACvD,EAAA,OAAO,QAAA,CAAS,WAAA,CAAY,GAAG,CAAA,CAAE,YAAA,EAAa;AAChD;AAQO,SAAS,mBAAmB,GAAA,EAAqB;AACtD,EAAA,OAAO,QAAA,CAAS,WAAA,CAAY,GAAG,CAAA,CAAE,YAAA,EAAa;AAChD;;;;"}

package/dist/azure/deprecated.cjs.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"deprecated.cjs.js","sources":["../../src/azure/deprecated.ts"],"sourcesContent":["/\n Copyright 2023 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport { AzureIntegrationConfig } from './config';\nimport { CachedAzureDevOpsCredentialsProvider } from './CachedAzureDevOpsCredentialsProvider';\n\n/\n Gets the request options necessary to make requests to a given provider.\n \n @param config - The relevant provider config\n * @param additionalHeaders - Additional headers for the request\n * @public\n * @deprecated Use {@link AzureDevOpsCredentialsProvider} instead.\n /\nexport async function getAzureRequestOptions(\n config: AzureIntegrationConfig,\n additionalHeaders?: Record<string, string>,\n): Promise<{ headers: Record<string, string> }> {\n const headers: Record<string, string> = additionalHeaders\n ? { ...additionalHeaders }\n : {};\n\n /\n * Since we do not have a way to determine which organization the request is for,\n * we will use the first credential that does not have an organization specified.\n */\n const credentialConfig = config.credentials?.filter(\n credential =>\n credential.organizations === undefined \|\|\n credential.organizations.length === 0,\n )[0];\n\n if (credentialConfig) {\n const credentialsProvider =\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credentialConfig,\n );\n const credentials = await credentialsProvider.getCredentials();\n\n return {\n headers: {\n ...credentials?.headers,\n ...headers,\n },\n };\n }\n\n return { headers };\n}\n"],"names":["CachedAzureDevOpsCredentialsProvider"],"mappings":";;;;~~AA0BsB~~,~~eAAA~~,sBAAA,CACpB,QACA,~~iBAC8C~~,~~EAAA~~;AAC9C,EAAA,MAAM,UAAkC,~~iBACpC~~,~~GAAA~~,EAAE,GAAG,iBAAA,KACL,EAAC;AAML,~~EAAM~~,~~MAAA~~,gBAAA,GAAmB,OAAO,~~WAAa~~,~~EAAA~~,MAAA;AAAA,IAC3C,gBACE,~~UAAW~~,~~CAAA~~,aAAA,KAAkB,~~KAC7B~~,~~CAAA~~,~~IAAA,~~UAAA,CAAW,cAAc,~~MAAW~~,~~KAAA~~;AAAA,IACtC,CAAC,CAAA;AAEH,EAAA,IAAI,~~gBAAkB~~,~~EAAA~~;AACpB,IAAA,MAAM,sBACJA,~~yEAAqC~~,~~CAAA~~,yBAAA;AAAA,MACnC;AAAA,KACF;AACF,~~IAAM~~,~~MAAA~~,WAAA,GAAc,MAAM,mBAAA,CAAoB,~~cAAe~~,~~EAAA~~;AAE7D,~~IAAO~~,~~OAAA~~;AAAA,MACL,~~OAAS~~,~~EAAA~~;AAAA,QACP,GAAG,~~WAAa~~,~~EAAA~~,OAAA;AAAA,QAChB,GAAG;AAAA;AACL,KACF;AAAA;~~AAGF~~,EAAA,OAAO,EAAE,~~OAAQ~~,~~EAAA~~;AACnB;;;;"}
1	+ {"version":3,"file":"deprecated.cjs.js","sources":["../../src/azure/deprecated.ts"],"sourcesContent":["/\n Copyright 2023 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport { AzureIntegrationConfig } from './config';\nimport { CachedAzureDevOpsCredentialsProvider } from './CachedAzureDevOpsCredentialsProvider';\n\n/\n Gets the request options necessary to make requests to a given provider.\n \n @param config - The relevant provider config\n * @param additionalHeaders - Additional headers for the request\n * @public\n * @deprecated Use {@link AzureDevOpsCredentialsProvider} instead.\n /\nexport async function getAzureRequestOptions(\n config: AzureIntegrationConfig,\n additionalHeaders?: Record<string, string>,\n): Promise<{ headers: Record<string, string> }> {\n const headers: Record<string, string> = additionalHeaders\n ? { ...additionalHeaders }\n : {};\n\n /\n * Since we do not have a way to determine which organization the request is for,\n * we will use the first credential that does not have an organization specified.\n */\n const credentialConfig = config.credentials?.filter(\n credential =>\n credential.organizations === undefined \|\|\n credential.organizations.length === 0,\n )[0];\n\n if (credentialConfig) {\n const credentialsProvider =\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credentialConfig,\n );\n const credentials = await credentialsProvider.getCredentials();\n\n return {\n headers: {\n ...credentials?.headers,\n ...headers,\n },\n };\n }\n\n return { headers };\n}\n"],"names":["CachedAzureDevOpsCredentialsProvider"],"mappings":";;;;AA0BA,eAAsB,sBAAA,CACpB,QACA,iBAAA,EAC8C;AAC9C,EAAA,MAAM,UAAkC,iBAAA,GACpC,EAAE,GAAG,iBAAA,KACL,EAAC;AAML,EAAA,MAAM,gBAAA,GAAmB,OAAO,WAAA,EAAa,MAAA;AAAA,IAC3C,gBACE,UAAA,CAAW,aAAA,KAAkB,MAAA,IAC7B,UAAA,CAAW,cAAc,MAAA,KAAW;AAAA,IACtC,CAAC,CAAA;AAEH,EAAA,IAAI,gBAAA,EAAkB;AACpB,IAAA,MAAM,sBACJA,yEAAA,CAAqC,yBAAA;AAAA,MACnC;AAAA,KACF;AACF,IAAA,MAAM,WAAA,GAAc,MAAM,mBAAA,CAAoB,cAAA,EAAe;AAE7D,IAAA,OAAO;AAAA,MACL,OAAA,EAAS;AAAA,QACP,GAAG,WAAA,EAAa,OAAA;AAAA,QAChB,GAAG;AAAA;AACL,KACF;AAAA,EACF;AAEA,EAAA,OAAO,EAAE,OAAA,EAAQ;AACnB;;;;"}

package/dist/azure/deprecated.esm.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"deprecated.esm.js","sources":["../../src/azure/deprecated.ts"],"sourcesContent":["/\n Copyright 2023 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport { AzureIntegrationConfig } from './config';\nimport { CachedAzureDevOpsCredentialsProvider } from './CachedAzureDevOpsCredentialsProvider';\n\n/\n Gets the request options necessary to make requests to a given provider.\n \n @param config - The relevant provider config\n * @param additionalHeaders - Additional headers for the request\n * @public\n * @deprecated Use {@link AzureDevOpsCredentialsProvider} instead.\n /\nexport async function getAzureRequestOptions(\n config: AzureIntegrationConfig,\n additionalHeaders?: Record<string, string>,\n): Promise<{ headers: Record<string, string> }> {\n const headers: Record<string, string> = additionalHeaders\n ? { ...additionalHeaders }\n : {};\n\n /\n * Since we do not have a way to determine which organization the request is for,\n * we will use the first credential that does not have an organization specified.\n */\n const credentialConfig = config.credentials?.filter(\n credential =>\n credential.organizations === undefined \|\|\n credential.organizations.length === 0,\n )[0];\n\n if (credentialConfig) {\n const credentialsProvider =\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credentialConfig,\n );\n const credentials = await credentialsProvider.getCredentials();\n\n return {\n headers: {\n ...credentials?.headers,\n ...headers,\n },\n };\n }\n\n return { headers };\n}\n"],"names":[],"mappings":";;~~AA0BsB~~,~~eAAA~~,sBAAA,CACpB,QACA,~~iBAC8C~~,~~EAAA~~;AAC9C,EAAA,MAAM,UAAkC,~~iBACpC~~,~~GAAA~~,EAAE,GAAG,iBAAA,KACL,EAAC;AAML,~~EAAM~~,~~MAAA~~,gBAAA,GAAmB,OAAO,~~WAAa~~,~~EAAA~~,MAAA;AAAA,IAC3C,gBACE,~~UAAW~~,~~CAAA~~,aAAA,KAAkB,~~KAC7B~~,~~CAAA~~,~~IAAA,~~UAAA,CAAW,cAAc,~~MAAW~~,~~KAAA~~;AAAA,IACtC,CAAC,CAAA;AAEH,EAAA,IAAI,~~gBAAkB~~,~~EAAA~~;AACpB,IAAA,MAAM,sBACJ,~~oCAAqC~~,~~CAAA~~,yBAAA;AAAA,MACnC;AAAA,KACF;AACF,~~IAAM~~,~~MAAA~~,WAAA,GAAc,MAAM,mBAAA,CAAoB,~~cAAe~~,~~EAAA~~;AAE7D,~~IAAO~~,~~OAAA~~;AAAA,MACL,~~OAAS~~,~~EAAA~~;AAAA,QACP,GAAG,~~WAAa~~,~~EAAA~~,OAAA;AAAA,QAChB,GAAG;AAAA;AACL,KACF;AAAA;~~AAGF~~,EAAA,OAAO,EAAE,~~OAAQ~~,~~EAAA~~;AACnB;;;;"}
1	+ {"version":3,"file":"deprecated.esm.js","sources":["../../src/azure/deprecated.ts"],"sourcesContent":["/\n Copyright 2023 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\nimport { AzureIntegrationConfig } from './config';\nimport { CachedAzureDevOpsCredentialsProvider } from './CachedAzureDevOpsCredentialsProvider';\n\n/\n Gets the request options necessary to make requests to a given provider.\n \n @param config - The relevant provider config\n * @param additionalHeaders - Additional headers for the request\n * @public\n * @deprecated Use {@link AzureDevOpsCredentialsProvider} instead.\n /\nexport async function getAzureRequestOptions(\n config: AzureIntegrationConfig,\n additionalHeaders?: Record<string, string>,\n): Promise<{ headers: Record<string, string> }> {\n const headers: Record<string, string> = additionalHeaders\n ? { ...additionalHeaders }\n : {};\n\n /\n * Since we do not have a way to determine which organization the request is for,\n * we will use the first credential that does not have an organization specified.\n */\n const credentialConfig = config.credentials?.filter(\n credential =>\n credential.organizations === undefined \|\|\n credential.organizations.length === 0,\n )[0];\n\n if (credentialConfig) {\n const credentialsProvider =\n CachedAzureDevOpsCredentialsProvider.fromAzureDevOpsCredential(\n credentialConfig,\n );\n const credentials = await credentialsProvider.getCredentials();\n\n return {\n headers: {\n ...credentials?.headers,\n ...headers,\n },\n };\n }\n\n return { headers };\n}\n"],"names":[],"mappings":";;AA0BA,eAAsB,sBAAA,CACpB,QACA,iBAAA,EAC8C;AAC9C,EAAA,MAAM,UAAkC,iBAAA,GACpC,EAAE,GAAG,iBAAA,KACL,EAAC;AAML,EAAA,MAAM,gBAAA,GAAmB,OAAO,WAAA,EAAa,MAAA;AAAA,IAC3C,gBACE,UAAA,CAAW,aAAA,KAAkB,MAAA,IAC7B,UAAA,CAAW,cAAc,MAAA,KAAW;AAAA,IACtC,CAAC,CAAA;AAEH,EAAA,IAAI,gBAAA,EAAkB;AACpB,IAAA,MAAM,sBACJ,oCAAA,CAAqC,yBAAA;AAAA,MACnC;AAAA,KACF;AACF,IAAA,MAAM,WAAA,GAAc,MAAM,mBAAA,CAAoB,cAAA,EAAe;AAE7D,IAAA,OAAO;AAAA,MACL,OAAA,EAAS;AAAA,QACP,GAAG,WAAA,EAAa,OAAA;AAAA,QAChB,GAAG;AAAA;AACL,KACF;AAAA,EACF;AAEA,EAAA,OAAO,EAAE,OAAA,EAAQ;AACnB;;;;"}

package/dist/azureBlobStorage/AzureBlobStorageIntegration.cjs.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"AzureBlobStorageIntegration.cjs.js","sources":["../../src/azureBlobStorage/AzureBlobStorageIntegration.ts"],"sourcesContent":["/\n Copyright 2024 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { basicIntegrations, defaultScmResolveUrl } from '../helpers';\nimport { ScmIntegration, ScmIntegrationsFactory } from '../types';\nimport {\n AzureBlobStorageIntegrationConfig,\n readAzureBlobStorageIntegrationConfigs,\n} from './config';\n\n/\n Microsoft Azure Blob storage based integration.\n \n @public\n */\nexport class AzureBlobStorageIntergation implements ScmIntegration {\n static factory: ScmIntegrationsFactory<AzureBlobStorageIntergation> = ({\n config,\n }) => {\n const configs = readAzureBlobStorageIntegrationConfigs(\n config.getOptionalConfigArray('integrations.azureBlobStorage') ?? [],\n );\n return basicIntegrations(\n configs.map(c => new AzureBlobStorageIntergation(c)),\n i => i.config.host,\n );\n };\n\n get type(): string {\n return 'azureBlobStorage';\n }\n\n get title(): string {\n return this.integrationConfig.host;\n }\n\n get config(): AzureBlobStorageIntegrationConfig {\n return this.integrationConfig;\n }\n\n constructor(\n private readonly integrationConfig: AzureBlobStorageIntegrationConfig,\n ) {}\n\n resolveUrl(options: {\n url: string;\n base: string;\n lineNumber?: number \| undefined;\n }): string {\n const resolved = defaultScmResolveUrl(options);\n return resolved;\n }\n\n resolveEditUrl(url: string): string {\n // TODO: Implement edit URL for azureBlobStorage\n return url;\n }\n}\n"],"names":["config","readAzureBlobStorageIntegrationConfigs","basicIntegrations","defaultScmResolveUrl"],"mappings":";;;;;AA4BO,MAAM,~~2BAAsD~~,~~CAAA~~;AAAA,EAyBjE,YACmB,~~iBACjB~~,~~EAAA~~;AADiB,IAAA,IAAA,CAAA,iBAAA,GAAA,iBAAA;AAAA;~~AAChB~~,EA1BH,OAAO,UAA+D,CAAC;AAAA,YACrEA;AAAA,~~GACI~~,~~KAAA~~;AACJ,IAAA,MAAM,~~OAAU~~,~~GAAAC~~,6CAAA;AAAA,MACdD,~~QAAO~~,~~CAAA~~,sBAAA,CAAuB,+BAA+B,CAAA,IAAK;AAAC,KACrE;AACA,~~IAAO~~,~~OAAAE~~,yBAAA;AAAA,MACL,QAAQ,~~GAAI~~,~~CAAA~~,CAAA,CAAA,KAAK,IAAI,2BAAA,CAA4B,CAAC,CAAC,CAAA;AAAA,MACnD,CAAA,CAAA,KAAK,EAAE,~~MAAO~~,~~CAAA~~;AAAA,KAChB;AAAA,~~GACF~~;AAAA,EAEA,IAAI,~~IAAe~~,~~GAAA~~;AACjB,~~IAAO~~,~~OAAA~~,kBAAA;AAAA;~~AACT~~,EAEA,IAAI,~~KAAgB~~,~~GAAA~~;AAClB,IAAA,OAAO,KAAK,~~iBAAkB~~,~~CAAA~~,IAAA;AAAA;~~AAChC~~,EAEA,IAAI,~~MAA4C~~,~~GAAA~~;AAC9C,IAAA,OAAO,~~IAAK~~,~~CAAA~~,iBAAA;AAAA;~~AACd~~,EAMA,WAAW,~~OAIA~~,~~EAAA~~;AACT,~~IAAM~~,~~MAAA~~,QAAA,GAAWC,6BAAqB,OAAO,CAAA;AAC7C,~~IAAO~~,~~OAAA~~,QAAA;AAAA;~~AACT~~,EAEA,eAAe,~~GAAqB~~,~~EAAA~~;AAElC,~~IAAO~~,~~OAAA~~,GAAA;AAAA;~~AAEX~~;;;;"}
1	+ {"version":3,"file":"AzureBlobStorageIntegration.cjs.js","sources":["../../src/azureBlobStorage/AzureBlobStorageIntegration.ts"],"sourcesContent":["/\n Copyright 2024 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { basicIntegrations, defaultScmResolveUrl } from '../helpers';\nimport { ScmIntegration, ScmIntegrationsFactory } from '../types';\nimport {\n AzureBlobStorageIntegrationConfig,\n readAzureBlobStorageIntegrationConfigs,\n} from './config';\n\n/\n Microsoft Azure Blob storage based integration.\n \n @public\n */\nexport class AzureBlobStorageIntergation implements ScmIntegration {\n static factory: ScmIntegrationsFactory<AzureBlobStorageIntergation> = ({\n config,\n }) => {\n const configs = readAzureBlobStorageIntegrationConfigs(\n config.getOptionalConfigArray('integrations.azureBlobStorage') ?? [],\n );\n return basicIntegrations(\n configs.map(c => new AzureBlobStorageIntergation(c)),\n i => i.config.host,\n );\n };\n\n get type(): string {\n return 'azureBlobStorage';\n }\n\n get title(): string {\n return this.integrationConfig.host;\n }\n\n get config(): AzureBlobStorageIntegrationConfig {\n return this.integrationConfig;\n }\n\n constructor(\n private readonly integrationConfig: AzureBlobStorageIntegrationConfig,\n ) {}\n\n resolveUrl(options: {\n url: string;\n base: string;\n lineNumber?: number \| undefined;\n }): string {\n const resolved = defaultScmResolveUrl(options);\n return resolved;\n }\n\n resolveEditUrl(url: string): string {\n // TODO: Implement edit URL for azureBlobStorage\n return url;\n }\n}\n"],"names":["config","readAzureBlobStorageIntegrationConfigs","basicIntegrations","defaultScmResolveUrl"],"mappings":";;;;;AA4BO,MAAM,2BAAA,CAAsD;AAAA,EAyBjE,YACmB,iBAAA,EACjB;AADiB,IAAA,IAAA,CAAA,iBAAA,GAAA,iBAAA;AAAA,EAChB;AAAA,EA1BH,OAAO,UAA+D,CAAC;AAAA,YACrEA;AAAA,GACF,KAAM;AACJ,IAAA,MAAM,OAAA,GAAUC,6CAAA;AAAA,MACdD,QAAA,CAAO,sBAAA,CAAuB,+BAA+B,CAAA,IAAK;AAAC,KACrE;AACA,IAAA,OAAOE,yBAAA;AAAA,MACL,QAAQ,GAAA,CAAI,CAAA,CAAA,KAAK,IAAI,2BAAA,CAA4B,CAAC,CAAC,CAAA;AAAA,MACnD,CAAA,CAAA,KAAK,EAAE,MAAA,CAAO;AAAA,KAChB;AAAA,EACF,CAAA;AAAA,EAEA,IAAI,IAAA,GAAe;AACjB,IAAA,OAAO,kBAAA;AAAA,EACT;AAAA,EAEA,IAAI,KAAA,GAAgB;AAClB,IAAA,OAAO,KAAK,iBAAA,CAAkB,IAAA;AAAA,EAChC;AAAA,EAEA,IAAI,MAAA,GAA4C;AAC9C,IAAA,OAAO,IAAA,CAAK,iBAAA;AAAA,EACd;AAAA,EAMA,WAAW,OAAA,EAIA;AACT,IAAA,MAAM,QAAA,GAAWC,6BAAqB,OAAO,CAAA;AAC7C,IAAA,OAAO,QAAA;AAAA,EACT;AAAA,EAEA,eAAe,GAAA,EAAqB;AAElC,IAAA,OAAO,GAAA;AAAA,EACT;AACF;;;;"}

package/dist/azureBlobStorage/AzureBlobStorageIntegration.esm.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"AzureBlobStorageIntegration.esm.js","sources":["../../src/azureBlobStorage/AzureBlobStorageIntegration.ts"],"sourcesContent":["/\n Copyright 2024 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { basicIntegrations, defaultScmResolveUrl } from '../helpers';\nimport { ScmIntegration, ScmIntegrationsFactory } from '../types';\nimport {\n AzureBlobStorageIntegrationConfig,\n readAzureBlobStorageIntegrationConfigs,\n} from './config';\n\n/\n Microsoft Azure Blob storage based integration.\n \n @public\n */\nexport class AzureBlobStorageIntergation implements ScmIntegration {\n static factory: ScmIntegrationsFactory<AzureBlobStorageIntergation> = ({\n config,\n }) => {\n const configs = readAzureBlobStorageIntegrationConfigs(\n config.getOptionalConfigArray('integrations.azureBlobStorage') ?? [],\n );\n return basicIntegrations(\n configs.map(c => new AzureBlobStorageIntergation(c)),\n i => i.config.host,\n );\n };\n\n get type(): string {\n return 'azureBlobStorage';\n }\n\n get title(): string {\n return this.integrationConfig.host;\n }\n\n get config(): AzureBlobStorageIntegrationConfig {\n return this.integrationConfig;\n }\n\n constructor(\n private readonly integrationConfig: AzureBlobStorageIntegrationConfig,\n ) {}\n\n resolveUrl(options: {\n url: string;\n base: string;\n lineNumber?: number \| undefined;\n }): string {\n const resolved = defaultScmResolveUrl(options);\n return resolved;\n }\n\n resolveEditUrl(url: string): string {\n // TODO: Implement edit URL for azureBlobStorage\n return url;\n }\n}\n"],"names":[],"mappings":";;;AA4BO,MAAM,~~2BAAsD~~,~~CAAA~~;AAAA,EAyBjE,YACmB,~~iBACjB~~,~~EAAA~~;AADiB,IAAA,IAAA,CAAA,iBAAA,GAAA,iBAAA;AAAA;~~AAChB~~,EA1BH,OAAO,UAA+D,CAAC;AAAA,IACrE;AAAA,~~GACI~~,~~KAAA~~;AACJ,IAAA,MAAM,~~OAAU~~,~~GAAA~~,sCAAA;AAAA,MACd,~~MAAO~~,~~CAAA~~,sBAAA,CAAuB,+BAA+B,CAAA,IAAK;AAAC,KACrE;AACA,~~IAAO~~,~~OAAA~~,iBAAA;AAAA,MACL,QAAQ,~~GAAI~~,~~CAAA~~,CAAA,CAAA,KAAK,IAAI,2BAAA,CAA4B,CAAC,CAAC,CAAA;AAAA,MACnD,CAAA,CAAA,KAAK,EAAE,~~MAAO~~,~~CAAA~~;AAAA,KAChB;AAAA,~~GACF~~;AAAA,EAEA,IAAI,~~IAAe~~,~~GAAA~~;AACjB,~~IAAO~~,~~OAAA~~,kBAAA;AAAA;~~AACT~~,EAEA,IAAI,~~KAAgB~~,~~GAAA~~;AAClB,IAAA,OAAO,KAAK,~~iBAAkB~~,~~CAAA~~,IAAA;AAAA;~~AAChC~~,EAEA,IAAI,~~MAA4C~~,~~GAAA~~;AAC9C,IAAA,OAAO,~~IAAK~~,~~CAAA~~,iBAAA;AAAA;~~AACd~~,EAMA,WAAW,~~OAIA~~,~~EAAA~~;AACT,~~IAAM~~,~~MAAA~~,QAAA,GAAW,qBAAqB,OAAO,CAAA;AAC7C,~~IAAO~~,~~OAAA~~,QAAA;AAAA;~~AACT~~,EAEA,eAAe,~~GAAqB~~,~~EAAA~~;AAElC,~~IAAO~~,~~OAAA~~,GAAA;AAAA;~~AAEX~~;;;;"}
1	+ {"version":3,"file":"AzureBlobStorageIntegration.esm.js","sources":["../../src/azureBlobStorage/AzureBlobStorageIntegration.ts"],"sourcesContent":["/\n Copyright 2024 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { basicIntegrations, defaultScmResolveUrl } from '../helpers';\nimport { ScmIntegration, ScmIntegrationsFactory } from '../types';\nimport {\n AzureBlobStorageIntegrationConfig,\n readAzureBlobStorageIntegrationConfigs,\n} from './config';\n\n/\n Microsoft Azure Blob storage based integration.\n \n @public\n */\nexport class AzureBlobStorageIntergation implements ScmIntegration {\n static factory: ScmIntegrationsFactory<AzureBlobStorageIntergation> = ({\n config,\n }) => {\n const configs = readAzureBlobStorageIntegrationConfigs(\n config.getOptionalConfigArray('integrations.azureBlobStorage') ?? [],\n );\n return basicIntegrations(\n configs.map(c => new AzureBlobStorageIntergation(c)),\n i => i.config.host,\n );\n };\n\n get type(): string {\n return 'azureBlobStorage';\n }\n\n get title(): string {\n return this.integrationConfig.host;\n }\n\n get config(): AzureBlobStorageIntegrationConfig {\n return this.integrationConfig;\n }\n\n constructor(\n private readonly integrationConfig: AzureBlobStorageIntegrationConfig,\n ) {}\n\n resolveUrl(options: {\n url: string;\n base: string;\n lineNumber?: number \| undefined;\n }): string {\n const resolved = defaultScmResolveUrl(options);\n return resolved;\n }\n\n resolveEditUrl(url: string): string {\n // TODO: Implement edit URL for azureBlobStorage\n return url;\n }\n}\n"],"names":[],"mappings":";;;AA4BO,MAAM,2BAAA,CAAsD;AAAA,EAyBjE,YACmB,iBAAA,EACjB;AADiB,IAAA,IAAA,CAAA,iBAAA,GAAA,iBAAA;AAAA,EAChB;AAAA,EA1BH,OAAO,UAA+D,CAAC;AAAA,IACrE;AAAA,GACF,KAAM;AACJ,IAAA,MAAM,OAAA,GAAU,sCAAA;AAAA,MACd,MAAA,CAAO,sBAAA,CAAuB,+BAA+B,CAAA,IAAK;AAAC,KACrE;AACA,IAAA,OAAO,iBAAA;AAAA,MACL,QAAQ,GAAA,CAAI,CAAA,CAAA,KAAK,IAAI,2BAAA,CAA4B,CAAC,CAAC,CAAA;AAAA,MACnD,CAAA,CAAA,KAAK,EAAE,MAAA,CAAO;AAAA,KAChB;AAAA,EACF,CAAA;AAAA,EAEA,IAAI,IAAA,GAAe;AACjB,IAAA,OAAO,kBAAA;AAAA,EACT;AAAA,EAEA,IAAI,KAAA,GAAgB;AAClB,IAAA,OAAO,KAAK,iBAAA,CAAkB,IAAA;AAAA,EAChC;AAAA,EAEA,IAAI,MAAA,GAA4C;AAC9C,IAAA,OAAO,IAAA,CAAK,iBAAA;AAAA,EACd;AAAA,EAMA,WAAW,OAAA,EAIA;AACT,IAAA,MAAM,QAAA,GAAW,qBAAqB,OAAO,CAAA;AAC7C,IAAA,OAAO,QAAA;AAAA,EACT;AAAA,EAEA,eAAe,GAAA,EAAqB;AAElC,IAAA,OAAO,GAAA;AAAA,EACT;AACF;;;;"}

package/dist/azureBlobStorage/DefaultAzureCredentialsProvider.cjs.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"DefaultAzureCredentialsProvider.cjs.js","sources":["../../src/azureBlobStorage/DefaultAzureCredentialsProvider.ts"],"sourcesContent":["/\n Copyright 2024 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport {\n DefaultAzureCredential,\n ClientSecretCredential,\n TokenCredential,\n} from '@azure/identity';\nimport { AzureBlobStorageIntegrationConfig } from './config';\nimport { AzureCredentialsManager } from './types';\nimport { ScmIntegrationRegistry } from '../registry';\n\n/\n Default implementation of AzureCredentialsManager that supports multiple Azure Blob Storage integrations.\n * @public\n /\nexport class DefaultAzureCredentialsManager implements AzureCredentialsManager {\n private cachedCredentials: Map<string, TokenCredential>;\n\n private constructor(\n private readonly configProviders: Map<\n string,\n AzureBlobStorageIntegrationConfig\n >,\n ) {\n this.cachedCredentials = new Map<string, TokenCredential>();\n }\n\n /\n Creates an instance of DefaultAzureCredentialsManager from a Backstage integration registry.\n */\n static fromIntegrations(\n integrations: ScmIntegrationRegistry,\n ): DefaultAzureCredentialsManager {\n const configProviders = integrations.azureBlobStorage\n .list()\n .reduce((acc, integration) => {\n acc.set(\n integration.config.accountName \|\| 'default',\n integration.config,\n );\n return acc;\n }, new Map<string, AzureBlobStorageIntegrationConfig>());\n\n return new DefaultAzureCredentialsManager(configProviders);\n }\n\n private createCredential(\n config: AzureBlobStorageIntegrationConfig,\n ): TokenCredential {\n if (\n config.aadCredential &&\n config.aadCredential.clientId &&\n config.aadCredential.clientSecret &&\n config.aadCredential.tenantId\n ) {\n return new ClientSecretCredential(\n config.aadCredential.tenantId,\n config.aadCredential.clientId,\n config.aadCredential.clientSecret,\n );\n }\n\n return new DefaultAzureCredential();\n }\n\n async getCredentials(accountName: string): Promise<TokenCredential> {\n if (this.cachedCredentials.has(accountName)) {\n return this.cachedCredentials.get(accountName)!;\n }\n\n const config = this.configProviders.get(accountName);\n if (!config) {\n throw new Error(`No configuration found for account: ${accountName}`);\n }\n\n const credential = this.createCredential(config);\n\n // Cache the credentials for future use\n this.cachedCredentials.set(accountName, credential);\n\n return credential;\n }\n}\n"],"names":["ClientSecretCredential","DefaultAzureCredential"],"mappings":";;;;AA6BO,MAAM,~~8BAAkE~~,~~CAAA~~;AAAA,EAGrE,YACW,~~eAIjB~~,~~EAAA~~;AAJiB,IAAA,IAAA,CAAA,eAAA,GAAA,eAAA;AAKjB,~~IAAK~~,IAAA,~~CAAA~~,iBAAA,uBAAwB,~~GAA6B~~,~~EAAA~~;AAAA;~~AAC5D~~,EATQ,iBAAA;AAAA;AAAA;AAAA;AAAA,EAcR,OAAO,iBACL,~~YACgC~~,~~EAAA~~;AAChC,~~IAAM~~,~~MAAA~~,eAAA,GAAkB,aAAa,~~gBAClC~~,~~CAAA~~,IAAA,GACA,~~MAAO~~,~~CAAA~~,CAAC,KAAK,~~WAAgB~~,~~KAAA~~;AAC5B,~~MAAI~~,GAAA,~~CAAA~~,GAAA;AAAA,QACF,WAAA,CAAY,OAAO,~~WAAe~~,~~IAAA~~,SAAA;AAAA,QAClC,~~WAAY~~,~~CAAA~~;AAAA,OACd;AACA,~~MAAO~~,~~OAAA~~,GAAA;AAAA,~~KACT~~,~~kBAAO~~,~~IAAA~~,GAAA,EAAgD,CAAA;AAEzD,~~IAAO~~,~~OAAA~~,IAAI,+BAA+B,eAAe,CAAA;AAAA;~~AAC3D~~,EAEQ,iBACN,~~MACiB~~,~~EAAA~~;AACjB,IACE,~~IAAA,~~MAAA,CAAO,~~aACP~~,~~IAAA~~,MAAA,CAAO,~~aAAc~~,~~CAAA~~,QAAA,IACrB,OAAO,~~aAAc~~,~~CAAA~~,YAAA,IACrB,~~MAAO~~,~~CAAA~~,aAAA,CAAc,~~QACrB~~,~~EAAA~~;AACA,MAAA,OAAO,IAAIA,+BAAA;AAAA,QACT,OAAO,~~aAAc~~,~~CAAA~~,QAAA;AAAA,QACrB,OAAO,~~aAAc~~,~~CAAA~~,QAAA;AAAA,QACrB,OAAO,~~aAAc~~,~~CAAA~~;AAAA,OACvB;AAAA;~~AAGF~~,IAAA,OAAO,IAAIC,+~~BAAuB~~,~~EAAA~~;AAAA;~~AACpC~~,EAEA,MAAM,eAAe,~~WAA~~+C~~,EAAA~~;AAClE,IAAA,IAAI,~~IAAK~~,~~CAAA~~,iBAAA,CAAkB,~~GAAI~~,~~CAAA~~,WAAW,~~CAAG~~,~~EAAA~~;AAC3C,~~MAAO~~,~~OAAA~~,IAAA,CAAK,~~iBAAkB~~,~~CAAA~~,GAAA,CAAI,WAAW,CAAA;AAAA~~;AAG~~/C,IAAA,MAAM,~~MAAS~~,~~GAAA~~,IAAA,CAAK,~~eAAgB~~,~~CAAA~~,GAAA,CAAI,WAAW,CAAA;AACnD,IAAA,IAAI,CAAC,~~MAAQ~~,~~EAAA~~;AACX,MAAA,MAAM,IAAI,KAAA,CAAM,~~CAAuC~~,oCAAA,~~EAAA~~,WAAW,CAAE,CAAA~~,CAAA~~;AAAA;~~AAGtE~~,~~IAAM~~,~~MAAA~~,UAAA,GAAa,~~IAAK~~,~~CAAA~~,gBAAA,CAAiB,MAAM,CAAA;AAG/C,~~IAAK~~,IAAA,~~CAAA~~,iBAAA,CAAkB,~~GAAI~~,~~CAAA~~,WAAA,EAAa,UAAU,CAAA;AAElD,~~IAAO~~,~~OAAA~~,UAAA;AAAA;~~AAEX~~;;;;"}
1	+ {"version":3,"file":"DefaultAzureCredentialsProvider.cjs.js","sources":["../../src/azureBlobStorage/DefaultAzureCredentialsProvider.ts"],"sourcesContent":["/\n Copyright 2024 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport {\n DefaultAzureCredential,\n ClientSecretCredential,\n TokenCredential,\n} from '@azure/identity';\nimport { AzureBlobStorageIntegrationConfig } from './config';\nimport { AzureCredentialsManager } from './types';\nimport { ScmIntegrationRegistry } from '../registry';\n\n/\n Default implementation of AzureCredentialsManager that supports multiple Azure Blob Storage integrations.\n * @public\n /\nexport class DefaultAzureCredentialsManager implements AzureCredentialsManager {\n private cachedCredentials: Map<string, TokenCredential>;\n\n private constructor(\n private readonly configProviders: Map<\n string,\n AzureBlobStorageIntegrationConfig\n >,\n ) {\n this.cachedCredentials = new Map<string, TokenCredential>();\n }\n\n /\n Creates an instance of DefaultAzureCredentialsManager from a Backstage integration registry.\n */\n static fromIntegrations(\n integrations: ScmIntegrationRegistry,\n ): DefaultAzureCredentialsManager {\n const configProviders = integrations.azureBlobStorage\n .list()\n .reduce((acc, integration) => {\n acc.set(\n integration.config.accountName \|\| 'default',\n integration.config,\n );\n return acc;\n }, new Map<string, AzureBlobStorageIntegrationConfig>());\n\n return new DefaultAzureCredentialsManager(configProviders);\n }\n\n private createCredential(\n config: AzureBlobStorageIntegrationConfig,\n ): TokenCredential {\n if (\n config.aadCredential &&\n config.aadCredential.clientId &&\n config.aadCredential.clientSecret &&\n config.aadCredential.tenantId\n ) {\n return new ClientSecretCredential(\n config.aadCredential.tenantId,\n config.aadCredential.clientId,\n config.aadCredential.clientSecret,\n );\n }\n\n return new DefaultAzureCredential();\n }\n\n async getCredentials(accountName: string): Promise<TokenCredential> {\n if (this.cachedCredentials.has(accountName)) {\n return this.cachedCredentials.get(accountName)!;\n }\n\n const config = this.configProviders.get(accountName);\n if (!config) {\n throw new Error(`No configuration found for account: ${accountName}`);\n }\n\n const credential = this.createCredential(config);\n\n // Cache the credentials for future use\n this.cachedCredentials.set(accountName, credential);\n\n return credential;\n }\n}\n"],"names":["ClientSecretCredential","DefaultAzureCredential"],"mappings":";;;;AA6BO,MAAM,8BAAA,CAAkE;AAAA,EAGrE,YACW,eAAA,EAIjB;AAJiB,IAAA,IAAA,CAAA,eAAA,GAAA,eAAA;AAKjB,IAAA,IAAA,CAAK,iBAAA,uBAAwB,GAAA,EAA6B;AAAA,EAC5D;AAAA,EATQ,iBAAA;AAAA;AAAA;AAAA;AAAA,EAcR,OAAO,iBACL,YAAA,EACgC;AAChC,IAAA,MAAM,eAAA,GAAkB,aAAa,gBAAA,CAClC,IAAA,GACA,MAAA,CAAO,CAAC,KAAK,WAAA,KAAgB;AAC5B,MAAA,GAAA,CAAI,GAAA;AAAA,QACF,WAAA,CAAY,OAAO,WAAA,IAAe,SAAA;AAAA,QAClC,WAAA,CAAY;AAAA,OACd;AACA,MAAA,OAAO,GAAA;AAAA,IACT,CAAA,kBAAG,IAAI,GAAA,EAAgD,CAAA;AAEzD,IAAA,OAAO,IAAI,+BAA+B,eAAe,CAAA;AAAA,EAC3D;AAAA,EAEQ,iBACN,MAAA,EACiB;AACjB,IAAA,IACE,MAAA,CAAO,aAAA,IACP,MAAA,CAAO,aAAA,CAAc,QAAA,IACrB,OAAO,aAAA,CAAc,YAAA,IACrB,MAAA,CAAO,aAAA,CAAc,QAAA,EACrB;AACA,MAAA,OAAO,IAAIA,+BAAA;AAAA,QACT,OAAO,aAAA,CAAc,QAAA;AAAA,QACrB,OAAO,aAAA,CAAc,QAAA;AAAA,QACrB,OAAO,aAAA,CAAc;AAAA,OACvB;AAAA,IACF;AAEA,IAAA,OAAO,IAAIC,+BAAA,EAAuB;AAAA,EACpC;AAAA,EAEA,MAAM,eAAe,WAAA,EAA+C;AAClE,IAAA,IAAI,IAAA,CAAK,iBAAA,CAAkB,GAAA,CAAI,WAAW,CAAA,EAAG;AAC3C,MAAA,OAAO,IAAA,CAAK,iBAAA,CAAkB,GAAA,CAAI,WAAW,CAAA;AAAA,IAC/C;AAEA,IAAA,MAAM,MAAA,GAAS,IAAA,CAAK,eAAA,CAAgB,GAAA,CAAI,WAAW,CAAA;AACnD,IAAA,IAAI,CAAC,MAAA,EAAQ;AACX,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,oCAAA,EAAuC,WAAW,CAAA,CAAE,CAAA;AAAA,IACtE;AAEA,IAAA,MAAM,UAAA,GAAa,IAAA,CAAK,gBAAA,CAAiB,MAAM,CAAA;AAG/C,IAAA,IAAA,CAAK,iBAAA,CAAkB,GAAA,CAAI,WAAA,EAAa,UAAU,CAAA;AAElD,IAAA,OAAO,UAAA;AAAA,EACT;AACF;;;;"}

package/dist/azureBlobStorage/DefaultAzureCredentialsProvider.esm.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"DefaultAzureCredentialsProvider.esm.js","sources":["../../src/azureBlobStorage/DefaultAzureCredentialsProvider.ts"],"sourcesContent":["/\n Copyright 2024 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport {\n DefaultAzureCredential,\n ClientSecretCredential,\n TokenCredential,\n} from '@azure/identity';\nimport { AzureBlobStorageIntegrationConfig } from './config';\nimport { AzureCredentialsManager } from './types';\nimport { ScmIntegrationRegistry } from '../registry';\n\n/\n Default implementation of AzureCredentialsManager that supports multiple Azure Blob Storage integrations.\n * @public\n /\nexport class DefaultAzureCredentialsManager implements AzureCredentialsManager {\n private cachedCredentials: Map<string, TokenCredential>;\n\n private constructor(\n private readonly configProviders: Map<\n string,\n AzureBlobStorageIntegrationConfig\n >,\n ) {\n this.cachedCredentials = new Map<string, TokenCredential>();\n }\n\n /\n Creates an instance of DefaultAzureCredentialsManager from a Backstage integration registry.\n */\n static fromIntegrations(\n integrations: ScmIntegrationRegistry,\n ): DefaultAzureCredentialsManager {\n const configProviders = integrations.azureBlobStorage\n .list()\n .reduce((acc, integration) => {\n acc.set(\n integration.config.accountName \|\| 'default',\n integration.config,\n );\n return acc;\n }, new Map<string, AzureBlobStorageIntegrationConfig>());\n\n return new DefaultAzureCredentialsManager(configProviders);\n }\n\n private createCredential(\n config: AzureBlobStorageIntegrationConfig,\n ): TokenCredential {\n if (\n config.aadCredential &&\n config.aadCredential.clientId &&\n config.aadCredential.clientSecret &&\n config.aadCredential.tenantId\n ) {\n return new ClientSecretCredential(\n config.aadCredential.tenantId,\n config.aadCredential.clientId,\n config.aadCredential.clientSecret,\n );\n }\n\n return new DefaultAzureCredential();\n }\n\n async getCredentials(accountName: string): Promise<TokenCredential> {\n if (this.cachedCredentials.has(accountName)) {\n return this.cachedCredentials.get(accountName)!;\n }\n\n const config = this.configProviders.get(accountName);\n if (!config) {\n throw new Error(`No configuration found for account: ${accountName}`);\n }\n\n const credential = this.createCredential(config);\n\n // Cache the credentials for future use\n this.cachedCredentials.set(accountName, credential);\n\n return credential;\n }\n}\n"],"names":[],"mappings":";;AA6BO,MAAM,~~8BAAkE~~,~~CAAA~~;AAAA,EAGrE,YACW,~~eAIjB~~,~~EAAA~~;AAJiB,IAAA,IAAA,CAAA,eAAA,GAAA,eAAA;AAKjB,~~IAAK~~,IAAA,~~CAAA~~,iBAAA,uBAAwB,~~GAA6B~~,~~EAAA~~;AAAA;~~AAC5D~~,EATQ,iBAAA;AAAA;AAAA;AAAA;AAAA,EAcR,OAAO,iBACL,~~YACgC~~,~~EAAA~~;AAChC,~~IAAM~~,~~MAAA~~,eAAA,GAAkB,aAAa,~~gBAClC~~,~~CAAA~~,IAAA,GACA,~~MAAO~~,~~CAAA~~,CAAC,KAAK,~~WAAgB~~,~~KAAA~~;AAC5B,~~MAAI~~,GAAA,~~CAAA~~,GAAA;AAAA,QACF,WAAA,CAAY,OAAO,~~WAAe~~,~~IAAA~~,SAAA;AAAA,QAClC,~~WAAY~~,~~CAAA~~;AAAA,OACd;AACA,~~MAAO~~,~~OAAA~~,GAAA;AAAA,~~KACT~~,~~kBAAO~~,~~IAAA~~,GAAA,EAAgD,CAAA;AAEzD,~~IAAO~~,~~OAAA~~,IAAI,+BAA+B,eAAe,CAAA;AAAA;~~AAC3D~~,EAEQ,iBACN,~~MACiB~~,~~EAAA~~;AACjB,IACE,~~IAAA,~~MAAA,CAAO,~~aACP~~,~~IAAA~~,MAAA,CAAO,~~aAAc~~,~~CAAA~~,QAAA,IACrB,OAAO,~~aAAc~~,~~CAAA~~,YAAA,IACrB,~~MAAO~~,~~CAAA~~,aAAA,CAAc,~~QACrB~~,~~EAAA~~;AACA,MAAA,OAAO,IAAI,sBAAA;AAAA,QACT,OAAO,~~aAAc~~,~~CAAA~~,QAAA;AAAA,QACrB,OAAO,~~aAAc~~,~~CAAA~~,QAAA;AAAA,QACrB,OAAO,~~aAAc~~,~~CAAA~~;AAAA,OACvB;AAAA;~~AAGF~~,IAAA,OAAO,IAAI,~~sBAAuB~~,~~EAAA~~;AAAA;~~AACpC~~,EAEA,MAAM,eAAe,~~WAA~~+C~~,EAAA~~;AAClE,IAAA,IAAI,~~IAAK~~,~~CAAA~~,iBAAA,CAAkB,~~GAAI~~,~~CAAA~~,WAAW,~~CAAG~~,~~EAAA~~;AAC3C,~~MAAO~~,~~OAAA~~,IAAA,CAAK,~~iBAAkB~~,~~CAAA~~,GAAA,CAAI,WAAW,CAAA;AAAA~~;AAG~~/C,IAAA,MAAM,~~MAAS~~,~~GAAA~~,IAAA,CAAK,~~eAAgB~~,~~CAAA~~,GAAA,CAAI,WAAW,CAAA;AACnD,IAAA,IAAI,CAAC,~~MAAQ~~,~~EAAA~~;AACX,MAAA,MAAM,IAAI,KAAA,CAAM,~~CAAuC~~,oCAAA,~~EAAA~~,WAAW,CAAE,CAAA~~,CAAA~~;AAAA;~~AAGtE~~,~~IAAM~~,~~MAAA~~,UAAA,GAAa,~~IAAK~~,~~CAAA~~,gBAAA,CAAiB,MAAM,CAAA;AAG/C,~~IAAK~~,IAAA,~~CAAA~~,iBAAA,CAAkB,~~GAAI~~,~~CAAA~~,WAAA,EAAa,UAAU,CAAA;AAElD,~~IAAO~~,~~OAAA~~,UAAA;AAAA;~~AAEX~~;;;;"}
1	+ {"version":3,"file":"DefaultAzureCredentialsProvider.esm.js","sources":["../../src/azureBlobStorage/DefaultAzureCredentialsProvider.ts"],"sourcesContent":["/\n Copyright 2024 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport {\n DefaultAzureCredential,\n ClientSecretCredential,\n TokenCredential,\n} from '@azure/identity';\nimport { AzureBlobStorageIntegrationConfig } from './config';\nimport { AzureCredentialsManager } from './types';\nimport { ScmIntegrationRegistry } from '../registry';\n\n/\n Default implementation of AzureCredentialsManager that supports multiple Azure Blob Storage integrations.\n * @public\n /\nexport class DefaultAzureCredentialsManager implements AzureCredentialsManager {\n private cachedCredentials: Map<string, TokenCredential>;\n\n private constructor(\n private readonly configProviders: Map<\n string,\n AzureBlobStorageIntegrationConfig\n >,\n ) {\n this.cachedCredentials = new Map<string, TokenCredential>();\n }\n\n /\n Creates an instance of DefaultAzureCredentialsManager from a Backstage integration registry.\n */\n static fromIntegrations(\n integrations: ScmIntegrationRegistry,\n ): DefaultAzureCredentialsManager {\n const configProviders = integrations.azureBlobStorage\n .list()\n .reduce((acc, integration) => {\n acc.set(\n integration.config.accountName \|\| 'default',\n integration.config,\n );\n return acc;\n }, new Map<string, AzureBlobStorageIntegrationConfig>());\n\n return new DefaultAzureCredentialsManager(configProviders);\n }\n\n private createCredential(\n config: AzureBlobStorageIntegrationConfig,\n ): TokenCredential {\n if (\n config.aadCredential &&\n config.aadCredential.clientId &&\n config.aadCredential.clientSecret &&\n config.aadCredential.tenantId\n ) {\n return new ClientSecretCredential(\n config.aadCredential.tenantId,\n config.aadCredential.clientId,\n config.aadCredential.clientSecret,\n );\n }\n\n return new DefaultAzureCredential();\n }\n\n async getCredentials(accountName: string): Promise<TokenCredential> {\n if (this.cachedCredentials.has(accountName)) {\n return this.cachedCredentials.get(accountName)!;\n }\n\n const config = this.configProviders.get(accountName);\n if (!config) {\n throw new Error(`No configuration found for account: ${accountName}`);\n }\n\n const credential = this.createCredential(config);\n\n // Cache the credentials for future use\n this.cachedCredentials.set(accountName, credential);\n\n return credential;\n }\n}\n"],"names":[],"mappings":";;AA6BO,MAAM,8BAAA,CAAkE;AAAA,EAGrE,YACW,eAAA,EAIjB;AAJiB,IAAA,IAAA,CAAA,eAAA,GAAA,eAAA;AAKjB,IAAA,IAAA,CAAK,iBAAA,uBAAwB,GAAA,EAA6B;AAAA,EAC5D;AAAA,EATQ,iBAAA;AAAA;AAAA;AAAA;AAAA,EAcR,OAAO,iBACL,YAAA,EACgC;AAChC,IAAA,MAAM,eAAA,GAAkB,aAAa,gBAAA,CAClC,IAAA,GACA,MAAA,CAAO,CAAC,KAAK,WAAA,KAAgB;AAC5B,MAAA,GAAA,CAAI,GAAA;AAAA,QACF,WAAA,CAAY,OAAO,WAAA,IAAe,SAAA;AAAA,QAClC,WAAA,CAAY;AAAA,OACd;AACA,MAAA,OAAO,GAAA;AAAA,IACT,CAAA,kBAAG,IAAI,GAAA,EAAgD,CAAA;AAEzD,IAAA,OAAO,IAAI,+BAA+B,eAAe,CAAA;AAAA,EAC3D;AAAA,EAEQ,iBACN,MAAA,EACiB;AACjB,IAAA,IACE,MAAA,CAAO,aAAA,IACP,MAAA,CAAO,aAAA,CAAc,QAAA,IACrB,OAAO,aAAA,CAAc,YAAA,IACrB,MAAA,CAAO,aAAA,CAAc,QAAA,EACrB;AACA,MAAA,OAAO,IAAI,sBAAA;AAAA,QACT,OAAO,aAAA,CAAc,QAAA;AAAA,QACrB,OAAO,aAAA,CAAc,QAAA;AAAA,QACrB,OAAO,aAAA,CAAc;AAAA,OACvB;AAAA,IACF;AAEA,IAAA,OAAO,IAAI,sBAAA,EAAuB;AAAA,EACpC;AAAA,EAEA,MAAM,eAAe,WAAA,EAA+C;AAClE,IAAA,IAAI,IAAA,CAAK,iBAAA,CAAkB,GAAA,CAAI,WAAW,CAAA,EAAG;AAC3C,MAAA,OAAO,IAAA,CAAK,iBAAA,CAAkB,GAAA,CAAI,WAAW,CAAA;AAAA,IAC/C;AAEA,IAAA,MAAM,MAAA,GAAS,IAAA,CAAK,eAAA,CAAgB,GAAA,CAAI,WAAW,CAAA;AACnD,IAAA,IAAI,CAAC,MAAA,EAAQ;AACX,MAAA,MAAM,IAAI,KAAA,CAAM,CAAA,oCAAA,EAAuC,WAAW,CAAA,CAAE,CAAA;AAAA,IACtE;AAEA,IAAA,MAAM,UAAA,GAAa,IAAA,CAAK,gBAAA,CAAiB,MAAM,CAAA;AAG/C,IAAA,IAAA,CAAK,iBAAA,CAAkB,GAAA,CAAI,WAAA,EAAa,UAAU,CAAA;AAElD,IAAA,OAAO,UAAA;AAAA,EACT;AACF;;;;"}

package/dist/azureBlobStorage/config.cjs.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"config.cjs.js","sources":["../../src/azureBlobStorage/config.ts"],"sourcesContent":["/\n Copyright 2020 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { Config } from '@backstage/config';\n\nconst AZURE_HOST = 'blob.core.windows.net';\n\n/\n The configuration parameters for a single Azure Blob Storage account.\n \n @public\n /\nexport type AzureBlobStorageIntegrationConfig = {\n /\n The name of the Azure Storage Account, e.g., \"mystorageaccount\".\n /\n accountName?: string;\n\n /\n The primary or secondary key for the Azure Storage Account.\n * Only required if connectionString or SAS token are not specified.\n /\n accountKey?: string;\n\n /\n A Shared Access Signature (SAS) token for limited access to resources.\n /\n sasToken?: string;\n\n /\n A full connection string for the Azure Storage Account.\n * This includes the account name, key, and endpoint details.\n /\n connectionString?: string;\n\n /\n Optional endpoint suffix for custom domains or sovereign clouds.\n * e.g., \"core.windows.net\" for public Azure or \"core.usgovcloudapi.net\" for US Government cloud.\n /\n endpointSuffix?: string;\n\n /\n The host of the target that this matches on, e.g., \"blob.core.windows.net\".\n /\n host: string;\n\n endpoint?: string;\n /\n Optional credential to use for Azure Active Directory authentication.\n /\n aadCredential?: {\n /\n The client ID of the Azure AD application.\n /\n clientId: string;\n\n /\n The tenant ID for Azure AD.\n /\n tenantId: string;\n\n /\n The client secret for the Azure AD application.\n /\n clientSecret: string;\n };\n};\n\n/\n Reads a single Azure Blob Storage integration config.\n \n @param config - The config object of a single integration.\n * @public\n /\nexport function readAzureBlobStorageIntegrationConfig(\n config: Config,\n): AzureBlobStorageIntegrationConfig {\n const endpoint = config.getOptionalString('endpoint');\n const accountName = config.getString('accountName');\n const accountKey = config.getOptionalString('accountKey')?.trim();\n const sasToken = config.getOptionalString('sasToken')?.trim();\n const connectionString = config.getOptionalString('connectionString')?.trim();\n const endpointSuffix = config.getOptionalString('endpointSuffix')?.trim();\n\n let host;\n let pathname;\n if (endpoint) {\n try {\n const url = new URL(endpoint);\n host = url.host;\n pathname = url.pathname;\n } catch {\n throw new Error(\n `invalid azureBlobStorage integration config, endpoint '${endpoint}' is not a valid URL`,\n );\n }\n if (pathname !== '/') {\n throw new Error(\n `invalid azureBlobStorage integration config, endpoints cannot contain path, got '${endpoint}'`,\n );\n }\n } else {\n host = AZURE_HOST;\n }\n const aadCredential = config.has('aadCredential')\n ? {\n clientId: config.getString('aadCredential.clientId'),\n tenantId: config.getString('aadCredential.tenantId'),\n clientSecret: config.getString('aadCredential.clientSecret')?.trim(),\n }\n : undefined;\n\n if (accountKey && sasToken) {\n throw new Error(\n `Invalid Azure Blob Storage config for ${accountName}: Both account key and SAS token cannot be used simultaneously.`,\n );\n }\n\n if (aadCredential && (accountKey \|\| sasToken)) {\n throw new Error(\n `Invalid Azure Blob Storage config for ${accountName}: Cannot use both Azure AD credentials and account keys/SAS tokens for the same account.`,\n );\n }\n\n return {\n host,\n endpoint,\n accountName,\n accountKey,\n sasToken,\n connectionString,\n endpointSuffix,\n aadCredential,\n };\n}\n\n/\n Reads a set of Azure Blob Storage integration configs.\n \n @param configs - All of the integration config objects.\n * @public\n */\nexport function readAzureBlobStorageIntegrationConfigs(\n configs: Config[],\n): AzureBlobStorageIntegrationConfig[] {\n // First read all the explicit integrations\n const result = configs.map(readAzureBlobStorageIntegrationConfig);\n\n // If no explicit blob.core.windows.net integration was added, put one in the list as\n // a convenience\n if (!result.some(c => c.host === AZURE_HOST)) {\n result.push({\n host: AZURE_HOST,\n });\n }\n return result;\n}\n"],"names":[],"mappings":";;AAkBA,MAAM,~~UAAa~~,~~GAAA~~,uBAAA;AAqEZ,SAAS,sCACd,~~MACmC~~,~~EAAA~~;AACnC,~~EAAM~~,~~MAAA~~,QAAA,GAAW,~~MAAO~~,~~CAAA~~,iBAAA,CAAkB,UAAU,CAAA;AACpD,~~EAAM~~,~~MAAA~~,WAAA,GAAc,~~MAAO~~,~~CAAA~~,SAAA,CAAU,aAAa,CAAA;AAClD,EAAA,MAAM,~~UAAa~~,~~GAAA~~,MAAA,CAAO,~~iBAAkB~~,~~CAAA~~,YAAY,GAAG,~~IAAK~~,~~EAAA~~;AAChE,EAAA,MAAM,~~QAAW~~,~~GAAA~~,MAAA,CAAO,~~iBAAkB~~,~~CAAA~~,UAAU,GAAG,~~IAAK~~,~~EAAA~~;AAC5D,EAAA,MAAM,~~gBAAmB~~,~~GAAA~~,MAAA,CAAO,~~iBAAkB~~,~~CAAA~~,kBAAkB,GAAG,~~IAAK~~,~~EAAA~~;AAC5E,EAAA,MAAM,~~cAAiB~~,~~GAAA~~,MAAA,CAAO,~~iBAAkB~~,~~CAAA~~,gBAAgB,GAAG,~~IAAK~~,~~EAAA~~;AAExE,~~EAAI~~,~~IAAA~~,IAAA;AACJ,~~EAAI~~,~~IAAA~~,QAAA;AACJ,EAAA,IAAI,~~QAAU~~,~~EAAA~~;AACZ,IAAI~~,IAAA~~;AACF,MAAM,~~MAAA,~~GAAA,GAAM,IAAI,GAAA,CAAI,QAAQ,CAAA;AAC5B,MAAA,IAAA,GAAO,~~GAAI~~,~~CAAA~~,IAAA;AACX,MAAA,QAAA,GAAW,~~GAAI~~,~~CAAA~~,QAAA;AAAA,~~KACT~~,CAAA,~~MAAA~~;AACN,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,0DAA0D,QAAQ,CAAA,oBAAA;AAAA,OACpE;AAAA;~~AAEF~~,IAAA,IAAI,aAAa,~~GAAK~~,~~EAAA~~;AACpB,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,oFAAoF,QAAQ,CAAA,CAAA;AAAA,OAC9F;AAAA;~~AACF~~,~~GACK~~,~~MAAA~~;AACL,~~IAAO~~,IAAA,~~GAAA~~,UAAA;AAAA;~~AAET~~,EAAA,MAAM,~~aAAgB~~,~~GAAA~~,MAAA,CAAO,~~GAAI~~,~~CAAA~~,eAAe,~~CAC5C~~,~~GAAA~~;AAAA,IACE,QAAA,EAAU,~~MAAO~~,~~CAAA~~,SAAA,CAAU,wBAAwB,CAAA;AAAA,IACnD,QAAA,EAAU,~~MAAO~~,~~CAAA~~,SAAA,CAAU,wBAAwB,CAAA;AAAA,IACnD,~~YAAc~~,~~EAAA~~,MAAA,CAAO,~~SAAU~~,~~CAAA~~,4BAA4B,GAAG,~~IAAK~~;~~AAAA~~,~~GAErE~~,~~GAAA~~,~~KAAA,CAAA~~;AAEJ,EAAA,IAAI,cAAc,~~QAAU~~,~~EAAA~~;AAC1B,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,yCAAyC,WAAW,CAAA,+DAAA;AAAA,KACtD;AAAA;~~AAGF~~,~~EAAI~~,~~IAAA~~,aAAA,KAAkB,cAAc,~~QAAW~~,CAAA,~~EAAA~~;AAC7C,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,yCAAyC,WAAW,CAAA,wFAAA;AAAA,KACtD;AAAA;~~AAGF~~,~~EAAO~~,~~OAAA~~;AAAA,IACL,IAAA;AAAA,IACA,QAAA;AAAA,IACA,WAAA;AAAA,IACA,UAAA;AAAA,IACA,QAAA;AAAA,IACA,gBAAA;AAAA,IACA,cAAA;AAAA,IACA;AAAA,GACF;AACF;AAQO,SAAS,uCACd,~~OACqC~~,~~EAAA~~;AAErC,~~EAAM~~,~~MAAA~~,MAAA,GAAS,~~OAAQ~~,~~CAAA~~,GAAA,CAAI,qCAAqC,CAAA;AAIhE,EAAA,IAAI,CAAC,~~MAAO~~,~~CAAA~~,IAAA,CAAK,OAAK,CAAE,~~CAAA,~~IAAA,KAAS,UAAU,~~CAAG~~,~~EAAA~~;AAC5C,IAAA,MAAA,CAAO,~~IAAK~~,~~CAAA~~;AAAA,MACV,~~IAAM~~,~~EAAA~~;AAAA,KACP,CAAA;AAAA;~~AAEH~~,~~EAAO~~,~~OAAA~~,MAAA;AACT;;;;;"}
1	+ {"version":3,"file":"config.cjs.js","sources":["../../src/azureBlobStorage/config.ts"],"sourcesContent":["/\n Copyright 2020 The Backstage Authors\n \n Licensed under the Apache License, Version 2.0 (the \"License\");\n * you may not use this file except in compliance with the License.\n * You may obtain a copy of the License at\n \n http://www.apache.org/licenses/LICENSE-2.0\n \n Unless required by applicable law or agreed to in writing, software\n * distributed under the License is distributed on an \"AS IS\" BASIS,\n * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.\n * See the License for the specific language governing permissions and\n * limitations under the License.\n /\n\nimport { Config } from '@backstage/config';\n\nconst AZURE_HOST = 'blob.core.windows.net';\n\n/\n The configuration parameters for a single Azure Blob Storage account.\n \n @public\n /\nexport type AzureBlobStorageIntegrationConfig = {\n /\n The name of the Azure Storage Account, e.g., \"mystorageaccount\".\n /\n accountName?: string;\n\n /\n The primary or secondary key for the Azure Storage Account.\n * Only required if connectionString or SAS token are not specified.\n /\n accountKey?: string;\n\n /\n A Shared Access Signature (SAS) token for limited access to resources.\n /\n sasToken?: string;\n\n /\n A full connection string for the Azure Storage Account.\n * This includes the account name, key, and endpoint details.\n /\n connectionString?: string;\n\n /\n Optional endpoint suffix for custom domains or sovereign clouds.\n * e.g., \"core.windows.net\" for public Azure or \"core.usgovcloudapi.net\" for US Government cloud.\n /\n endpointSuffix?: string;\n\n /\n The host of the target that this matches on, e.g., \"blob.core.windows.net\".\n /\n host: string;\n\n endpoint?: string;\n /\n Optional credential to use for Azure Active Directory authentication.\n /\n aadCredential?: {\n /\n The client ID of the Azure AD application.\n /\n clientId: string;\n\n /\n The tenant ID for Azure AD.\n /\n tenantId: string;\n\n /\n The client secret for the Azure AD application.\n /\n clientSecret: string;\n };\n};\n\n/\n Reads a single Azure Blob Storage integration config.\n \n @param config - The config object of a single integration.\n * @public\n /\nexport function readAzureBlobStorageIntegrationConfig(\n config: Config,\n): AzureBlobStorageIntegrationConfig {\n const endpoint = config.getOptionalString('endpoint');\n const accountName = config.getString('accountName');\n const accountKey = config.getOptionalString('accountKey')?.trim();\n const sasToken = config.getOptionalString('sasToken')?.trim();\n const connectionString = config.getOptionalString('connectionString')?.trim();\n const endpointSuffix = config.getOptionalString('endpointSuffix')?.trim();\n\n let host;\n let pathname;\n if (endpoint) {\n try {\n const url = new URL(endpoint);\n host = url.host;\n pathname = url.pathname;\n } catch {\n throw new Error(\n `invalid azureBlobStorage integration config, endpoint '${endpoint}' is not a valid URL`,\n );\n }\n if (pathname !== '/') {\n throw new Error(\n `invalid azureBlobStorage integration config, endpoints cannot contain path, got '${endpoint}'`,\n );\n }\n } else {\n host = AZURE_HOST;\n }\n const aadCredential = config.has('aadCredential')\n ? {\n clientId: config.getString('aadCredential.clientId'),\n tenantId: config.getString('aadCredential.tenantId'),\n clientSecret: config.getString('aadCredential.clientSecret')?.trim(),\n }\n : undefined;\n\n if (accountKey && sasToken) {\n throw new Error(\n `Invalid Azure Blob Storage config for ${accountName}: Both account key and SAS token cannot be used simultaneously.`,\n );\n }\n\n if (aadCredential && (accountKey \|\| sasToken)) {\n throw new Error(\n `Invalid Azure Blob Storage config for ${accountName}: Cannot use both Azure AD credentials and account keys/SAS tokens for the same account.`,\n );\n }\n\n return {\n host,\n endpoint,\n accountName,\n accountKey,\n sasToken,\n connectionString,\n endpointSuffix,\n aadCredential,\n };\n}\n\n/\n Reads a set of Azure Blob Storage integration configs.\n \n @param configs - All of the integration config objects.\n * @public\n */\nexport function readAzureBlobStorageIntegrationConfigs(\n configs: Config[],\n): AzureBlobStorageIntegrationConfig[] {\n // First read all the explicit integrations\n const result = configs.map(readAzureBlobStorageIntegrationConfig);\n\n // If no explicit blob.core.windows.net integration was added, put one in the list as\n // a convenience\n if (!result.some(c => c.host === AZURE_HOST)) {\n result.push({\n host: AZURE_HOST,\n });\n }\n return result;\n}\n"],"names":[],"mappings":";;AAkBA,MAAM,UAAA,GAAa,uBAAA;AAqEZ,SAAS,sCACd,MAAA,EACmC;AACnC,EAAA,MAAM,QAAA,GAAW,MAAA,CAAO,iBAAA,CAAkB,UAAU,CAAA;AACpD,EAAA,MAAM,WAAA,GAAc,MAAA,CAAO,SAAA,CAAU,aAAa,CAAA;AAClD,EAAA,MAAM,UAAA,GAAa,MAAA,CAAO,iBAAA,CAAkB,YAAY,GAAG,IAAA,EAAK;AAChE,EAAA,MAAM,QAAA,GAAW,MAAA,CAAO,iBAAA,CAAkB,UAAU,GAAG,IAAA,EAAK;AAC5D,EAAA,MAAM,gBAAA,GAAmB,MAAA,CAAO,iBAAA,CAAkB,kBAAkB,GAAG,IAAA,EAAK;AAC5E,EAAA,MAAM,cAAA,GAAiB,MAAA,CAAO,iBAAA,CAAkB,gBAAgB,GAAG,IAAA,EAAK;AAExE,EAAA,IAAI,IAAA;AACJ,EAAA,IAAI,QAAA;AACJ,EAAA,IAAI,QAAA,EAAU;AACZ,IAAA,IAAI;AACF,MAAA,MAAM,GAAA,GAAM,IAAI,GAAA,CAAI,QAAQ,CAAA;AAC5B,MAAA,IAAA,GAAO,GAAA,CAAI,IAAA;AACX,MAAA,QAAA,GAAW,GAAA,CAAI,QAAA;AAAA,IACjB,CAAA,CAAA,MAAQ;AACN,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,0DAA0D,QAAQ,CAAA,oBAAA;AAAA,OACpE;AAAA,IACF;AACA,IAAA,IAAI,aAAa,GAAA,EAAK;AACpB,MAAA,MAAM,IAAI,KAAA;AAAA,QACR,oFAAoF,QAAQ,CAAA,CAAA;AAAA,OAC9F;AAAA,IACF;AAAA,EACF,CAAA,MAAO;AACL,IAAA,IAAA,GAAO,UAAA;AAAA,EACT;AACA,EAAA,MAAM,aAAA,GAAgB,MAAA,CAAO,GAAA,CAAI,eAAe,CAAA,GAC5C;AAAA,IACE,QAAA,EAAU,MAAA,CAAO,SAAA,CAAU,wBAAwB,CAAA;AAAA,IACnD,QAAA,EAAU,MAAA,CAAO,SAAA,CAAU,wBAAwB,CAAA;AAAA,IACnD,YAAA,EAAc,MAAA,CAAO,SAAA,CAAU,4BAA4B,GAAG,IAAA;AAAK,GACrE,GACA,MAAA;AAEJ,EAAA,IAAI,cAAc,QAAA,EAAU;AAC1B,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,yCAAyC,WAAW,CAAA,+DAAA;AAAA,KACtD;AAAA,EACF;AAEA,EAAA,IAAI,aAAA,KAAkB,cAAc,QAAA,CAAA,EAAW;AAC7C,IAAA,MAAM,IAAI,KAAA;AAAA,MACR,yCAAyC,WAAW,CAAA,wFAAA;AAAA,KACtD;AAAA,EACF;AAEA,EAAA,OAAO;AAAA,IACL,IAAA;AAAA,IACA,QAAA;AAAA,IACA,WAAA;AAAA,IACA,UAAA;AAAA,IACA,QAAA;AAAA,IACA,gBAAA;AAAA,IACA,cAAA;AAAA,IACA;AAAA,GACF;AACF;AAQO,SAAS,uCACd,OAAA,EACqC;AAErC,EAAA,MAAM,MAAA,GAAS,OAAA,CAAQ,GAAA,CAAI,qCAAqC,CAAA;AAIhE,EAAA,IAAI,CAAC,MAAA,CAAO,IAAA,CAAK,OAAK,CAAA,CAAE,IAAA,KAAS,UAAU,CAAA,EAAG;AAC5C,IAAA,MAAA,CAAO,IAAA,CAAK;AAAA,MACV,IAAA,EAAM;AAAA,KACP,CAAA;AAAA,EACH;AACA,EAAA,OAAO,MAAA;AACT;;;;;"}