npm - @cdk8s/awscdk-resolver - Versions diffs - 0.0.41 → 0.0.43 - Mend

@cdk8s/awscdk-resolver 0.0.41 → 0.0.43

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (199) hide show

package/node_modules/@aws-sdk/core/dist-es/httpAuthSchemes/aws-sdk/AWSSDKSigV4Signer.js ADDED Viewed

@@ -0,0 +1,49 @@
+import { HttpRequest } from "@smithy/protocol-http";
+import { getDateHeader, getSkewCorrectedDate, getUpdatedSystemClockOffset } from "../utils";
+import { throwAWSSDKSigningPropertyError } from "./throwAWSSDKSigningPropertyError";
+const validateSigningProperties = async (signingProperties) => {
+    const context = throwAWSSDKSigningPropertyError("context", signingProperties.context);
+    const config = throwAWSSDKSigningPropertyError("config", signingProperties.config);
+    const authScheme = context.endpointV2?.properties?.authSchemes?.[0];
+    const signerFunction = throwAWSSDKSigningPropertyError("signer", config.signer);
+    const signer = await signerFunction(authScheme);
+    const signingRegion = signingProperties?.signingRegion;
+    const signingName = signingProperties?.signingName;
+    return {
+        config,
+        signer,
+        signingRegion,
+        signingName,
+    };
+};
+export class AWSSDKSigV4Signer {
+    async sign(httpRequest, identity, signingProperties) {
+        if (!HttpRequest.isInstance(httpRequest)) {
+            throw new Error("The request is not an instance of `HttpRequest` and cannot be signed");
+        }
+        const { config, signer, signingRegion, signingName } = await validateSigningProperties(signingProperties);
+        const signedRequest = await signer.sign(httpRequest, {
+            signingDate: getSkewCorrectedDate(config.systemClockOffset),
+            signingRegion: signingRegion,
+            signingService: signingName,
+        });
+        return signedRequest;
+    }
+    errorHandler(signingProperties) {
+        return (error) => {
+            const serverTime = error.ServerTime ?? getDateHeader(error.$response);
+            if (serverTime) {
+                const config = throwAWSSDKSigningPropertyError("config", signingProperties.config);
+                config.systemClockOffset = getUpdatedSystemClockOffset(serverTime, config.systemClockOffset);
+            }
+            throw error;
+        };
+    }
+    successHandler(httpResponse, signingProperties) {
+        const dateHeader = getDateHeader(httpResponse);
+        if (dateHeader) {
+            const config = throwAWSSDKSigningPropertyError("config", signingProperties.config);
+            config.systemClockOffset = getUpdatedSystemClockOffset(dateHeader, config.systemClockOffset);
+        }
+    }
+}

package/node_modules/@aws-sdk/core/dist-es/httpAuthSchemes/aws-sdk/index.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export * from "./AWSSDKSigV4Signer";
2	+ export * from "./resolveAWSSDKSigV4Config";

package/node_modules/@aws-sdk/core/dist-es/httpAuthSchemes/aws-sdk/resolveAWSSDKSigV4Config.js ADDED Viewed

@@ -0,0 +1,77 @@
+import { doesIdentityRequireRefresh, isIdentityExpired, memoizeIdentityProvider, normalizeProvider, } from "@smithy/core";
+import { SignatureV4 } from "@smithy/signature-v4";
+export const resolveAWSSDKSigV4Config = (config) => {
+    let normalizedCreds;
+    if (config.credentials) {
+        normalizedCreds = memoizeIdentityProvider(config.credentials, isIdentityExpired, doesIdentityRequireRefresh);
+    }
+    if (!normalizedCreds) {
+        if (config.credentialDefaultProvider) {
+            normalizedCreds = config.credentialDefaultProvider(config);
+        }
+        else {
+            normalizedCreds = async () => { throw new Error("`credentials` is missing"); };
+        }
+    }
+    const { signingEscapePath = true, systemClockOffset = config.systemClockOffset || 0, sha256, } = config;
+    let signer;
+    if (config.signer) {
+        signer = normalizeProvider(config.signer);
+    }
+    else if (config.regionInfoProvider) {
+        signer = () => normalizeProvider(config.region)()
+            .then(async (region) => [
+            (await config.regionInfoProvider(region, {
+                useFipsEndpoint: await config.useFipsEndpoint(),
+                useDualstackEndpoint: await config.useDualstackEndpoint(),
+            })) || {},
+            region,
+        ])
+            .then(([regionInfo, region]) => {
+            const { signingRegion, signingService } = regionInfo;
+            config.signingRegion = config.signingRegion || signingRegion || region;
+            config.signingName = config.signingName || signingService || config.serviceId;
+            const params = {
+                ...config,
+                credentials: normalizedCreds,
+                region: config.signingRegion,
+                service: config.signingName,
+                sha256,
+                uriEscapePath: signingEscapePath,
+            };
+            const SignerCtor = config.signerConstructor || SignatureV4;
+            return new SignerCtor(params);
+        });
+    }
+    else {
+        signer = async (authScheme) => {
+            authScheme = Object.assign({}, {
+                name: "sigv4",
+                signingName: config.signingName || config.defaultSigningName,
+                signingRegion: await normalizeProvider(config.region)(),
+                properties: {},
+            }, authScheme);
+            const signingRegion = authScheme.signingRegion;
+            const signingService = authScheme.signingName;
+            config.signingRegion = config.signingRegion || signingRegion;
+            config.signingName = config.signingName || signingService || config.serviceId;
+            const params = {
+                ...config,
+                credentials: normalizedCreds,
+                region: config.signingRegion,
+                service: config.signingName,
+                sha256,
+                uriEscapePath: signingEscapePath,
+            };
+            const SignerCtor = config.signerConstructor || SignatureV4;
+            return new SignerCtor(params);
+        };
+    }
+    return {
+        ...config,
+        systemClockOffset,
+        signingEscapePath,
+        credentials: normalizedCreds,
+        signer,
+    };
+};

package/node_modules/@aws-sdk/core/dist-es/httpAuthSchemes/aws-sdk/throwAWSSDKSigningPropertyError.js ADDED Viewed

@@ -0,0 +1,6 @@
+export const throwAWSSDKSigningPropertyError = (name, property) => {
+    if (!property) {
+        throw new Error(`Property \`${name}\` is not resolved for AWS SDK SigV4Auth`);
+    }
+    return property;
+};

package/node_modules/@aws-sdk/core/dist-es/httpAuthSchemes/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export * from "./aws-sdk";

package/node_modules/@aws-sdk/core/dist-es/httpAuthSchemes/utils/getDateHeader.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { HttpResponse } from "@smithy/protocol-http";
2	+ export const getDateHeader = (response) => HttpResponse.isInstance(response) ? response.headers?.date ?? response.headers?.Date : undefined;

package/node_modules/@aws-sdk/core/dist-es/httpAuthSchemes/utils/getSkewCorrectedDate.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export const getSkewCorrectedDate = (systemClockOffset) => new Date(Date.now() + systemClockOffset);

package/node_modules/@aws-sdk/core/dist-es/httpAuthSchemes/utils/getUpdatedSystemClockOffset.js ADDED Viewed

@@ -0,0 +1,8 @@
+import { isClockSkewed } from "./isClockSkewed";
+export const getUpdatedSystemClockOffset = (clockTime, currentSystemClockOffset) => {
+    const clockTimeInMs = Date.parse(clockTime);
+    if (isClockSkewed(clockTimeInMs, currentSystemClockOffset)) {
+        return clockTimeInMs - Date.now();
+    }
+    return currentSystemClockOffset;
+};

package/node_modules/@aws-sdk/core/dist-es/httpAuthSchemes/utils/index.js ADDED Viewed

@@ -0,0 +1,3 @@
+export * from "./getDateHeader";
+export * from "./getSkewCorrectedDate";
+export * from "./getUpdatedSystemClockOffset";

package/node_modules/@aws-sdk/core/dist-es/httpAuthSchemes/utils/isClockSkewed.js ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { getSkewCorrectedDate } from "./getSkewCorrectedDate";
2	+ export const isClockSkewed = (clockTime, systemClockOffset) => Math.abs(getSkewCorrectedDate(systemClockOffset).getTime() - clockTime) >= 300000;

package/node_modules/@aws-sdk/core/dist-es/index.js CHANGED Viewed

@@ -1,2 +1,3 @@
 export * from "./client/index";
+export * from "./httpAuthSchemes/index";
 export * from "./protocols/index";

package/node_modules/@aws-sdk/core/dist-types/httpAuthSchemes/aws-sdk/AWSSDKSigV4Signer.d.ts ADDED Viewed

@@ -0,0 +1,13 @@
+import { AwsCredentialIdentity, HttpRequest as IHttpRequest, HttpResponse, HttpSigner } from "@smithy/types";
+/**
+ * @internal
+ */
+export declare class AWSSDKSigV4Signer implements HttpSigner {
+    sign(httpRequest: IHttpRequest,
+    /**
+     * `identity` is bound in {@link resolveAWSSDKSigV4Config}
+     */
+    identity: AwsCredentialIdentity, signingProperties: Record<string, unknown>): Promise<IHttpRequest>;
+    errorHandler(signingProperties: Record<string, unknown>): (error: Error) => never;
+    successHandler(httpResponse: HttpResponse | unknown, signingProperties: Record<string, unknown>): void;
+}

package/node_modules/@aws-sdk/core/dist-types/httpAuthSchemes/aws-sdk/index.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export * from "./AWSSDKSigV4Signer";
2	+ export * from "./resolveAWSSDKSigV4Config";

package/node_modules/@aws-sdk/core/dist-types/httpAuthSchemes/aws-sdk/resolveAWSSDKSigV4Config.d.ts ADDED Viewed

@@ -0,0 +1,76 @@
+import { SignatureV4CryptoInit, SignatureV4Init } from "@smithy/signature-v4";
+import { AuthScheme, AwsCredentialIdentity, AwsCredentialIdentityProvider, ChecksumConstructor, HashConstructor, MemoizedProvider, Provider, RegionInfoProvider, RequestSigner } from "@smithy/types";
+/**
+ * @internal
+ */
+export interface AWSSDKSigV4AuthInputConfig {
+    /**
+     * The credentials used to sign requests.
+     */
+    credentials?: AwsCredentialIdentity | AwsCredentialIdentityProvider;
+    /**
+     * The signer to use when signing requests.
+     */
+    signer?: RequestSigner | ((authScheme?: AuthScheme) => Promise<RequestSigner>);
+    /**
+     * Whether to escape request path when signing the request.
+     */
+    signingEscapePath?: boolean;
+    /**
+     * An offset value in milliseconds to apply to all signing times.
+     */
+    systemClockOffset?: number;
+    /**
+     * The region where you want to sign your request against. This
+     * can be different to the region in the endpoint.
+     */
+    signingRegion?: string;
+    /**
+     * The injectable SigV4-compatible signer class constructor. If not supplied,
+     * regular SignatureV4 constructor will be used.
+     *
+     * @internal
+     */
+    signerConstructor?: new (options: SignatureV4Init & SignatureV4CryptoInit) => RequestSigner;
+}
+/**
+ * @internal
+ */
+export interface AWSSDKSigV4PreviouslyResolved {
+    credentialDefaultProvider?: (input: any) => MemoizedProvider<AwsCredentialIdentity>;
+    region: string | Provider<string>;
+    sha256: ChecksumConstructor | HashConstructor;
+    signingName?: string;
+    regionInfoProvider?: RegionInfoProvider;
+    defaultSigningName?: string;
+    serviceId: string;
+    useFipsEndpoint: Provider<boolean>;
+    useDualstackEndpoint: Provider<boolean>;
+}
+/**
+ * @internal
+ */
+export interface AWSSDKSigV4AuthResolvedConfig {
+    /**
+     * Resolved value for input config {@link AWSSDKSigV4AuthInputConfig.credentials}
+     * This provider MAY memoize the loaded credentials for certain period.
+     * See {@link MemoizedProvider} for more information.
+     */
+    credentials: AwsCredentialIdentityProvider;
+    /**
+     * Resolved value for input config {@link AWSSDKSigV4AuthInputConfig.signer}
+     */
+    signer: (authScheme?: AuthScheme) => Promise<RequestSigner>;
+    /**
+     * Resolved value for input config {@link AWSSDKSigV4AuthInputConfig.signingEscapePath}
+     */
+    signingEscapePath: boolean;
+    /**
+     * Resolved value for input config {@link AWSSDKSigV4AuthInputConfig.systemClockOffset}
+     */
+    systemClockOffset: number;
+}
+/**
+ * @internal
+ */
+export declare const resolveAWSSDKSigV4Config: <T>(config: T & AWSSDKSigV4AuthInputConfig & AWSSDKSigV4PreviouslyResolved) => T & AWSSDKSigV4AuthResolvedConfig;

package/node_modules/@aws-sdk/core/dist-types/httpAuthSchemes/aws-sdk/throwAWSSDKSigningPropertyError.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+/**
+ * @internal
+ */
+export declare const throwAWSSDKSigningPropertyError: <T>(name: string, property: T | undefined) => T;

package/node_modules/@aws-sdk/core/dist-types/httpAuthSchemes/index.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export * from "./aws-sdk";

package/node_modules/@aws-sdk/core/dist-types/httpAuthSchemes/utils/getDateHeader.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+/**
+ * @internal
+ */
+export declare const getDateHeader: (response: unknown) => string | undefined;

package/node_modules/@aws-sdk/core/dist-types/httpAuthSchemes/utils/getSkewCorrectedDate.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+/**
+ * @internal
+ *
+ * Returns a date that is corrected for clock skew.
+ *
+ * @param systemClockOffset The offset of the system clock in milliseconds.
+ */
+export declare const getSkewCorrectedDate: (systemClockOffset: number) => Date;

package/node_modules/@aws-sdk/core/dist-types/httpAuthSchemes/utils/getUpdatedSystemClockOffset.d.ts ADDED Viewed

@@ -0,0 +1,10 @@
+/**
+ * @internal
+ *
+ * If clock is skewed, it returns the difference between serverTime and current time.
+ * If clock is not skewed, it returns currentSystemClockOffset.
+ *
+ * @param clockTime The string value of the server time.
+ * @param currentSystemClockOffset The current system clock offset.
+ */
+export declare const getUpdatedSystemClockOffset: (clockTime: string, currentSystemClockOffset: number) => number;

package/node_modules/@aws-sdk/core/dist-types/httpAuthSchemes/utils/index.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+export * from "./getDateHeader";
+export * from "./getSkewCorrectedDate";
+export * from "./getUpdatedSystemClockOffset";

package/node_modules/@aws-sdk/core/dist-types/httpAuthSchemes/utils/isClockSkewed.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+/**
+ * @internal
+ *
+ * Checks if the provided date is within the skew window of 300000ms.
+ *
+ * @param clockTime - The time to check for skew in milliseconds.
+ * @param systemClockOffset - The offset of the system clock in milliseconds.
+ */
+export declare const isClockSkewed: (clockTime: number, systemClockOffset: number) => boolean;

package/node_modules/@aws-sdk/core/dist-types/index.d.ts CHANGED Viewed

@@ -1,2 +1,3 @@
 export * from "./client/index";
+export * from "./httpAuthSchemes/index";
 export * from "./protocols/index";

package/node_modules/@aws-sdk/core/dist-types/ts3.4/httpAuthSchemes/aws-sdk/AWSSDKSigV4Signer.d.ts ADDED Viewed

@@ -0,0 +1,20 @@
+import {
+  AwsCredentialIdentity,
+  HttpRequest as IHttpRequest,
+  HttpResponse,
+  HttpSigner,
+} from "@smithy/types";
+export declare class AWSSDKSigV4Signer implements HttpSigner {
+  sign(
+    httpRequest: IHttpRequest,
+    identity: AwsCredentialIdentity,
+    signingProperties: Record<string, unknown>
+  ): Promise<IHttpRequest>;
+  errorHandler(
+    signingProperties: Record<string, unknown>
+  ): (error: Error) => never;
+  successHandler(
+    httpResponse: HttpResponse | unknown,
+    signingProperties: Record<string, unknown>
+  ): void;
+}

package/node_modules/@aws-sdk/core/dist-types/ts3.4/httpAuthSchemes/aws-sdk/index.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export * from "./AWSSDKSigV4Signer";
2	+ export * from "./resolveAWSSDKSigV4Config";

package/node_modules/@aws-sdk/core/dist-types/ts3.4/httpAuthSchemes/aws-sdk/resolveAWSSDKSigV4Config.d.ts ADDED Viewed

@@ -0,0 +1,46 @@
+import { SignatureV4CryptoInit, SignatureV4Init } from "@smithy/signature-v4";
+import {
+  AuthScheme,
+  AwsCredentialIdentity,
+  AwsCredentialIdentityProvider,
+  ChecksumConstructor,
+  HashConstructor,
+  MemoizedProvider,
+  Provider,
+  RegionInfoProvider,
+  RequestSigner,
+} from "@smithy/types";
+export interface AWSSDKSigV4AuthInputConfig {
+  credentials?: AwsCredentialIdentity | AwsCredentialIdentityProvider;
+  signer?:
+    | RequestSigner
+    | ((authScheme?: AuthScheme) => Promise<RequestSigner>);
+  signingEscapePath?: boolean;
+  systemClockOffset?: number;
+  signingRegion?: string;
+  signerConstructor?: new (
+    options: SignatureV4Init & SignatureV4CryptoInit
+  ) => RequestSigner;
+}
+export interface AWSSDKSigV4PreviouslyResolved {
+  credentialDefaultProvider?: (
+    input: any
+  ) => MemoizedProvider<AwsCredentialIdentity>;
+  region: string | Provider<string>;
+  sha256: ChecksumConstructor | HashConstructor;
+  signingName?: string;
+  regionInfoProvider?: RegionInfoProvider;
+  defaultSigningName?: string;
+  serviceId: string;
+  useFipsEndpoint: Provider<boolean>;
+  useDualstackEndpoint: Provider<boolean>;
+}
+export interface AWSSDKSigV4AuthResolvedConfig {
+  credentials: AwsCredentialIdentityProvider;
+  signer: (authScheme?: AuthScheme) => Promise<RequestSigner>;
+  signingEscapePath: boolean;
+  systemClockOffset: number;
+}
+export declare const resolveAWSSDKSigV4Config: <T>(
+  config: T & AWSSDKSigV4AuthInputConfig & AWSSDKSigV4PreviouslyResolved
+) => T & AWSSDKSigV4AuthResolvedConfig;

package/node_modules/@aws-sdk/core/dist-types/ts3.4/httpAuthSchemes/aws-sdk/throwAWSSDKSigningPropertyError.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+export declare const throwAWSSDKSigningPropertyError: <T>(
+  name: string,
+  property: T | undefined
+) => T;

package/node_modules/@aws-sdk/core/dist-types/ts3.4/httpAuthSchemes/index.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export * from "./aws-sdk";

package/node_modules/@aws-sdk/core/dist-types/ts3.4/httpAuthSchemes/utils/getDateHeader.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export declare const getDateHeader: (response: unknown) => string \| undefined;

package/node_modules/@aws-sdk/core/dist-types/ts3.4/httpAuthSchemes/utils/getSkewCorrectedDate.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export declare const getSkewCorrectedDate: (systemClockOffset: number) => Date;

package/node_modules/@aws-sdk/core/dist-types/ts3.4/httpAuthSchemes/utils/getUpdatedSystemClockOffset.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+export declare const getUpdatedSystemClockOffset: (
+  clockTime: string,
+  currentSystemClockOffset: number
+) => number;

package/node_modules/@aws-sdk/core/dist-types/ts3.4/httpAuthSchemes/utils/index.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+export * from "./getDateHeader";
+export * from "./getSkewCorrectedDate";
+export * from "./getUpdatedSystemClockOffset";

package/node_modules/@aws-sdk/core/dist-types/ts3.4/httpAuthSchemes/utils/isClockSkewed.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+export declare const isClockSkewed: (
+  clockTime: number,
+  systemClockOffset: number
+) => boolean;

package/node_modules/@aws-sdk/core/dist-types/ts3.4/index.d.ts CHANGED Viewed

@@ -1,2 +1,3 @@
 export * from "./client/index";
+export * from "./httpAuthSchemes/index";
 export * from "./protocols/index";

package/node_modules/@aws-sdk/core/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/core",
-  "version": "3.468.0",
+  "version": "3.474.0",
   "description": "Core functions & classes shared by multiple AWS SDK clients",
   "scripts": {
     "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
@@ -12,7 +12,7 @@
     "lint": "node ./scripts/lint.js",
     "clean": "rimraf ./dist-* && rimraf *.tsbuildinfo",
     "extract:docs": "api-extractor run --local",
-    "test": "jest --passWithNoTests"
+    "test": "jest"
   },
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -24,7 +24,11 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
+    "@smithy/core": "^1.1.0",
+    "@smithy/protocol-http": "^3.0.11",
+    "@smithy/signature-v4": "^2.0.0",
     "@smithy/smithy-client": "^2.1.18",
+    "@smithy/types": "^2.7.0",
     "tslib": "^2.5.0"
   },
   "devDependencies": {

package/node_modules/@aws-sdk/core/src/httpAuthSchemes/aws-sdk/AWSSDKSigV4Signer.ts ADDED Viewed

@@ -0,0 +1,118 @@
+import { HttpRequest } from "@smithy/protocol-http";
+import { ServiceException } from "@smithy/smithy-client";
+import {
+  AuthScheme,
+  AwsCredentialIdentity,
+  HandlerExecutionContext,
+  HttpRequest as IHttpRequest,
+  HttpResponse,
+  HttpSigner,
+  RequestSigner,
+} from "@smithy/types";
+import { getDateHeader, getSkewCorrectedDate, getUpdatedSystemClockOffset } from "../utils";
+import { throwAWSSDKSigningPropertyError } from "./throwAWSSDKSigningPropertyError";
+/**
+ * @internal
+ */
+interface AWSSDKSigV4Config {
+  systemClockOffset: number;
+  signer: (authScheme?: AuthScheme) => Promise<RequestSigner>;
+}
+/**
+ * @internal
+ */
+interface AWSSDKSigV4AuthSigningProperties {
+  config: AWSSDKSigV4Config;
+  signer: RequestSigner;
+  signingRegion?: string;
+  signingName?: string;
+}
+/**
+ * @internal
+ */
+interface AWSSDKSigV4Exception extends ServiceException {
+  ServerTime?: string;
+}
+/**
+ * @internal
+ */
+const validateSigningProperties = async (
+  signingProperties: Record<string, unknown>
+): Promise<AWSSDKSigV4AuthSigningProperties> => {
+  const context = throwAWSSDKSigningPropertyError(
+    "context",
+    signingProperties.context as HandlerExecutionContext | undefined
+  );
+  const config = throwAWSSDKSigningPropertyError("config", signingProperties.config as AWSSDKSigV4Config | undefined);
+  const authScheme = context.endpointV2?.properties?.authSchemes?.[0];
+  const signerFunction = throwAWSSDKSigningPropertyError(
+    "signer",
+    config.signer as ((authScheme?: AuthScheme) => Promise<RequestSigner>) | undefined
+  );
+  const signer = await signerFunction(authScheme);
+  const signingRegion: string | undefined = signingProperties?.signingRegion as string | undefined;
+  const signingName = signingProperties?.signingName as string | undefined;
+  return {
+    config,
+    signer,
+    signingRegion,
+    signingName,
+  };
+};
+/**
+ * @internal
+ */
+export class AWSSDKSigV4Signer implements HttpSigner {
+  async sign(
+    httpRequest: IHttpRequest,
+    /**
+     * `identity` is bound in {@link resolveAWSSDKSigV4Config}
+     */
+    identity: AwsCredentialIdentity,
+    signingProperties: Record<string, unknown>
+  ): Promise<IHttpRequest> {
+    if (!HttpRequest.isInstance(httpRequest)) {
+      throw new Error("The request is not an instance of `HttpRequest` and cannot be signed");
+    }
+    const { config, signer, signingRegion, signingName } = await validateSigningProperties(signingProperties);
+    const signedRequest = await signer.sign(httpRequest, {
+      signingDate: getSkewCorrectedDate(config.systemClockOffset),
+      signingRegion: signingRegion,
+      signingService: signingName,
+    });
+    return signedRequest;
+  }
+  errorHandler(signingProperties: Record<string, unknown>): (error: Error) => never {
+    return (error: Error) => {
+      const serverTime: string | undefined =
+        (error as AWSSDKSigV4Exception).ServerTime ?? getDateHeader((error as AWSSDKSigV4Exception).$response);
+      if (serverTime) {
+        const config = throwAWSSDKSigningPropertyError(
+          "config",
+          signingProperties.config as AWSSDKSigV4Config | undefined
+        );
+        config.systemClockOffset = getUpdatedSystemClockOffset(serverTime, config.systemClockOffset);
+      }
+      throw error;
+    };
+  }
+  successHandler(httpResponse: HttpResponse | unknown, signingProperties: Record<string, unknown>): void {
+    const dateHeader = getDateHeader(httpResponse);
+    if (dateHeader) {
+      const config = throwAWSSDKSigningPropertyError(
+        "config",
+        signingProperties.config as AWSSDKSigV4Config | undefined
+      );
+      config.systemClockOffset = getUpdatedSystemClockOffset(dateHeader, config.systemClockOffset);
+    }
+  }
+}

package/node_modules/@aws-sdk/core/src/httpAuthSchemes/aws-sdk/index.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export * from "./AWSSDKSigV4Signer";
2	+ export * from "./resolveAWSSDKSigV4Config";