npm - @cdk8s/awscdk-resolver - Versions diffs - 0.0.54 → 0.0.55 - Mend

@cdk8s/awscdk-resolver 0.0.54 → 0.0.55

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (234) hide show

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveStaticCredentials.js CHANGED Viewed

@@ -3,9 +3,12 @@ export const isStaticCredsProfile = (arg) => Boolean(arg) &&
     typeof arg.aws_access_key_id === "string" &&
     typeof arg.aws_secret_access_key === "string" &&
     ["undefined", "string"].indexOf(typeof arg.aws_session_token) > -1;
-export const resolveStaticCredentials = (profile) => Promise.resolve({
-    accessKeyId: profile.aws_access_key_id,
-    secretAccessKey: profile.aws_secret_access_key,
-    sessionToken: profile.aws_session_token,
-    credentialScope: profile.aws_credential_scope,
-});
+export const resolveStaticCredentials = (profile, options) => {
+    options?.logger?.debug("@aws-sdk/credential-provider-ini", "resolveStaticCredentials");
+    return Promise.resolve({
+        accessKeyId: profile.aws_access_key_id,
+        secretAccessKey: profile.aws_secret_access_key,
+        sessionToken: profile.aws_session_token,
+        credentialScope: profile.aws_credential_scope,
+    });
+};

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveWebIdentityCredentials.js CHANGED Viewed

@@ -1,12 +1,11 @@
-import { fromTokenFile } from "@aws-sdk/credential-provider-web-identity";
 export const isWebIdentityProfile = (arg) => Boolean(arg) &&
     typeof arg === "object" &&
     typeof arg.web_identity_token_file === "string" &&
     typeof arg.role_arn === "string" &&
     ["undefined", "string"].indexOf(typeof arg.role_session_name) > -1;
-export const resolveWebIdentityCredentials = async (profile, options) => fromTokenFile({
+export const resolveWebIdentityCredentials = async (profile, options) => import("@aws-sdk/credential-provider-web-identity").then(({ fromTokenFile }) => fromTokenFile({
     webIdentityTokenFile: profile.web_identity_token_file,
     roleArn: profile.role_arn,
     roleSessionName: profile.role_session_name,
     roleAssumerWithWebIdentity: options.roleAssumerWithWebIdentity,
-})();
+})());

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/fromIni.d.ts CHANGED Viewed

@@ -1,11 +1,13 @@
-import { AssumeRoleWithWebIdentityParams } from "@aws-sdk/credential-provider-web-identity";
+import type { AssumeRoleWithWebIdentityParams } from "@aws-sdk/credential-provider-web-identity";
+import type { CredentialProviderOptions } from "@aws-sdk/types";
 import { SourceProfileInit } from "@smithy/shared-ini-file-loader";
-import { AwsCredentialIdentity, AwsCredentialIdentityProvider } from "@smithy/types";
+import type { AwsCredentialIdentity, AwsCredentialIdentityProvider, Pluggable } from "@smithy/types";
+import type { STSClientConfig } from "./loadSts";
 import { AssumeRoleParams } from "./resolveAssumeRoleCredentials";
 /**
- * @internal
+ * @public
  */
-export interface FromIniInit extends SourceProfileInit {
+export interface FromIniInit extends SourceProfileInit, CredentialProviderOptions {
     /**
      * A function that returns a promise fulfilled with an MFA token code for
      * the provided MFA Serial code. If a profile requires an MFA code and
@@ -31,6 +33,8 @@ export interface FromIniInit extends SourceProfileInit {
      * @param params
      */
     roleAssumerWithWebIdentity?: (params: AssumeRoleWithWebIdentityParams) => Promise<AwsCredentialIdentity>;
+    clientConfig?: STSClientConfig;
+    clientPlugins?: Pluggable<any, any>[];
 }
 /**
  * @internal

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/loadSts.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import { getDefaultRoleAssumer } from "@aws-sdk/client-sts";
+export { getDefaultRoleAssumer };
+export type { STSClientConfig } from "@aws-sdk/client-sts";

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/resolveAssumeRoleCredentials.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { ParsedIniData } from "@smithy/types";
+import { AwsCredentialIdentity, ParsedIniData } from "@smithy/types";
 import { FromIniInit } from "./fromIni";
 /**
  * @internal
@@ -41,4 +41,4 @@ export declare const isAssumeRoleProfile: (arg: any) => boolean;
 /**
  * @internal
  */
-export declare const resolveAssumeRoleCredentials: (profileName: string, profiles: ParsedIniData, options: FromIniInit, visitedProfiles?: Record<string, true>) => Promise<import("@smithy/types").AwsCredentialIdentity>;
+export declare const resolveAssumeRoleCredentials: (profileName: string, profiles: ParsedIniData, options: FromIniInit, visitedProfiles?: Record<string, true>) => Promise<AwsCredentialIdentity>;

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/resolveCredentialSource.d.ts CHANGED Viewed

@@ -1,3 +1,4 @@
+import type { CredentialProviderOptions } from "@aws-sdk/types";
 import { AwsCredentialIdentityProvider } from "@smithy/types";
 /**
  * @internal
@@ -8,4 +9,4 @@ import { AwsCredentialIdentityProvider } from "@smithy/types";
  * fromIni() provider. The source credential needs to be refreshed every time
  * fromIni() is called.
  */
-export declare const resolveCredentialSource: (credentialSource: string, profileName: string) => AwsCredentialIdentityProvider;
+export declare const resolveCredentialSource: (credentialSource: string, profileName: string) => (options?: CredentialProviderOptions) => Promise<AwsCredentialIdentityProvider>;

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/resolveProcessCredentials.d.ts CHANGED Viewed

@@ -1,5 +1,4 @@
-import { Credentials } from "@aws-sdk/types";
-import { Profile } from "@smithy/types";
+import { Credentials, Profile } from "@aws-sdk/types";
 import { FromIniInit } from "./fromIni";
 /**
  * @internal

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/resolveProfileData.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { AwsCredentialIdentity, ParsedIniData } from "@smithy/types";
+import type { AwsCredentialIdentity, ParsedIniData } from "@smithy/types";
 import { FromIniInit } from "./fromIni";
 /**
  * @internal

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/resolveSsoCredentials.d.ts CHANGED Viewed

@@ -1,9 +1,11 @@
-import { SsoProfile } from "@aws-sdk/credential-provider-sso";
+import type { SsoProfile } from "@aws-sdk/credential-provider-sso";
+import type { Profile } from "@smithy/types";
 /**
  * @internal
  */
-export { isSsoProfile } from "@aws-sdk/credential-provider-sso";
+export declare const resolveSsoCredentials: (data: Partial<SsoProfile>) => Promise<import("@smithy/types").AwsCredentialIdentity>;
 /**
  * @internal
+ * duplicated from \@aws-sdk/credential-provider-sso to defer import.
  */
-export declare const resolveSsoCredentials: (data: Partial<SsoProfile>) => Promise<import("@smithy/types").AwsCredentialIdentity>;
+export declare const isSsoProfile: (arg: Profile) => arg is Partial<SsoProfile>;

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/resolveStaticCredentials.d.ts CHANGED Viewed

@@ -1,4 +1,5 @@
 import { AwsCredentialIdentity, Profile } from "@smithy/types";
+import { FromIniInit } from "./fromIni";
 /**
  * @internal
  */
@@ -15,4 +16,4 @@ export declare const isStaticCredsProfile: (arg: any) => arg is StaticCredsProfi
 /**
  * @internal
  */
-export declare const resolveStaticCredentials: (profile: StaticCredsProfile) => Promise<AwsCredentialIdentity>;
+export declare const resolveStaticCredentials: (profile: StaticCredsProfile, options?: FromIniInit) => Promise<AwsCredentialIdentity>;

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/ts3.4/fromIni.d.ts CHANGED Viewed

@@ -1,11 +1,16 @@
 import { AssumeRoleWithWebIdentityParams } from "@aws-sdk/credential-provider-web-identity";
+import { CredentialProviderOptions } from "@aws-sdk/types";
 import { SourceProfileInit } from "@smithy/shared-ini-file-loader";
 import {
   AwsCredentialIdentity,
   AwsCredentialIdentityProvider,
+  Pluggable,
 } from "@smithy/types";
+import { STSClientConfig } from "./loadSts";
 import { AssumeRoleParams } from "./resolveAssumeRoleCredentials";
-export interface FromIniInit extends SourceProfileInit {
+export interface FromIniInit
+  extends SourceProfileInit,
+    CredentialProviderOptions {
   mfaCodeProvider?: (mfaSerial: string) => Promise<string>;
   roleAssumer?: (
     sourceCreds: AwsCredentialIdentity,
@@ -14,6 +19,8 @@ export interface FromIniInit extends SourceProfileInit {
   roleAssumerWithWebIdentity?: (
     params: AssumeRoleWithWebIdentityParams
   ) => Promise<AwsCredentialIdentity>;
+  clientConfig?: STSClientConfig;
+  clientPlugins?: Pluggable<any, any>[];
 }
 export declare const fromIni: (
   init?: FromIniInit

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/ts3.4/loadSts.d.ts ADDED Viewed

@@ -0,0 +1,3 @@
+import { getDefaultRoleAssumer } from "@aws-sdk/client-sts";
+export { getDefaultRoleAssumer };
+export { STSClientConfig } from "@aws-sdk/client-sts";

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/ts3.4/resolveAssumeRoleCredentials.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { ParsedIniData } from "@smithy/types";
+import { AwsCredentialIdentity, ParsedIniData } from "@smithy/types";
 import { FromIniInit } from "./fromIni";
 export interface AssumeRoleParams {
   RoleArn: string;
@@ -14,4 +14,4 @@ export declare const resolveAssumeRoleCredentials: (
   profiles: ParsedIniData,
   options: FromIniInit,
   visitedProfiles?: Record<string, true>
-) => Promise<import("@smithy/types").AwsCredentialIdentity>;
+) => Promise<AwsCredentialIdentity>;

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/ts3.4/resolveCredentialSource.d.ts CHANGED Viewed

@@ -1,5 +1,8 @@
+import { CredentialProviderOptions } from "@aws-sdk/types";
 import { AwsCredentialIdentityProvider } from "@smithy/types";
 export declare const resolveCredentialSource: (
   credentialSource: string,
   profileName: string
-) => AwsCredentialIdentityProvider;
+) => (
+  options?: CredentialProviderOptions
+) => Promise<AwsCredentialIdentityProvider>;

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/ts3.4/resolveProcessCredentials.d.ts CHANGED Viewed

@@ -1,5 +1,4 @@
-import { Credentials } from "@aws-sdk/types";
-import { Profile } from "@smithy/types";
+import { Credentials, Profile } from "@aws-sdk/types";
 import { FromIniInit } from "./fromIni";
 export interface ProcessProfile extends Profile {
   credential_process: string;

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/ts3.4/resolveSsoCredentials.d.ts CHANGED Viewed

@@ -1,5 +1,6 @@
 import { SsoProfile } from "@aws-sdk/credential-provider-sso";
-export { isSsoProfile } from "@aws-sdk/credential-provider-sso";
+import { Profile } from "@smithy/types";
 export declare const resolveSsoCredentials: (
   data: Partial<SsoProfile>
 ) => Promise<import("@smithy/types").AwsCredentialIdentity>;
+export declare const isSsoProfile: (arg: Profile) => arg is Partial<SsoProfile>;

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/ts3.4/resolveStaticCredentials.d.ts CHANGED Viewed

@@ -1,4 +1,5 @@
 import { AwsCredentialIdentity, Profile } from "@smithy/types";
+import { FromIniInit } from "./fromIni";
 export interface StaticCredsProfile extends Profile {
   aws_access_key_id: string;
   aws_secret_access_key: string;
@@ -9,5 +10,6 @@ export declare const isStaticCredsProfile: (
   arg: any
 ) => arg is StaticCredsProfile;
 export declare const resolveStaticCredentials: (
-  profile: StaticCredsProfile
+  profile: StaticCredsProfile,
+  options?: FromIniInit
 ) => Promise<AwsCredentialIdentity>;

package/node_modules/@aws-sdk/credential-provider-ini/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-ini",
-  "version": "3.501.0",
+  "version": "3.502.0",
   "description": "AWS credential provider that sources credentials from ~/.aws/credentials and ~/.aws/config",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -24,11 +24,12 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/credential-provider-env": "3.496.0",
-    "@aws-sdk/credential-provider-process": "3.496.0",
-    "@aws-sdk/credential-provider-sso": "3.501.0",
-    "@aws-sdk/credential-provider-web-identity": "3.496.0",
-    "@aws-sdk/types": "3.496.0",
+    "@aws-sdk/client-sts": "3.502.0",
+    "@aws-sdk/credential-provider-env": "3.502.0",
+    "@aws-sdk/credential-provider-process": "3.502.0",
+    "@aws-sdk/credential-provider-sso": "3.502.0",
+    "@aws-sdk/credential-provider-web-identity": "3.502.0",
+    "@aws-sdk/types": "3.502.0",
     "@smithy/credential-provider-imds": "^2.2.1",
     "@smithy/property-provider": "^2.1.1",
     "@smithy/shared-ini-file-loader": "^2.3.1",

package/node_modules/@aws-sdk/credential-provider-node/dist-cjs/index.js CHANGED Viewed

@@ -44,8 +44,10 @@ var import_shared_ini_file_loader = require("@smithy/shared-ini-file-loader");
 var import_property_provider = require("@smithy/property-provider");
 var ENV_IMDS_DISABLED = "AWS_EC2_METADATA_DISABLED";
 var remoteProvider = /* @__PURE__ */ __name(async (init) => {
+  var _a, _b;
   const { ENV_CMDS_FULL_URI, ENV_CMDS_RELATIVE_URI, fromContainerMetadata, fromInstanceMetadata } = await Promise.resolve().then(() => __toESM(require("@smithy/credential-provider-imds")));
   if (process.env[ENV_CMDS_RELATIVE_URI] || process.env[ENV_CMDS_FULL_URI]) {
+    (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromContainerMetadata");
     return fromContainerMetadata(init);
   }
   if (process.env[ENV_IMDS_DISABLED]) {
@@ -53,6 +55,7 @@ var remoteProvider = /* @__PURE__ */ __name(async (init) => {
       throw new import_property_provider.CredentialsProviderError("EC2 Instance Metadata Service access disabled");
     };
   }
+  (_b = init.logger) == null ? void 0 : _b.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromInstanceMetadata");
   return fromInstanceMetadata(init);
 }, "remoteProvider");
@@ -61,27 +64,45 @@ var defaultProvider = /* @__PURE__ */ __name((init = {}) => (0, import_property_
   (0, import_property_provider.chain)(
     ...init.profile || process.env[import_shared_ini_file_loader.ENV_PROFILE] ? [] : [
       async () => {
+        var _a;
+        (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromEnv");
         const { fromEnv } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-env")));
-        return fromEnv()();
+        return fromEnv(init)();
       }
     ],
     async () => {
+      var _a;
+      (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromSSO");
+      const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName } = init;
+      if (!ssoStartUrl || !ssoAccountId || !ssoRegion || !ssoRoleName) {
+        throw new import_property_provider.CredentialsProviderError(
+          "Skipping SSO provider in default chain (inputs do not include SSO fields)."
+        );
+      }
       const { fromSSO } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-sso")));
       return fromSSO(init)();
     },
     async () => {
+      var _a;
+      (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromIni");
       const { fromIni } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-ini")));
       return fromIni(init)();
     },
     async () => {
+      var _a;
+      (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromProcess");
       const { fromProcess } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-process")));
       return fromProcess(init)();
     },
     async () => {
+      var _a;
+      (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromTokenFile");
       const { fromTokenFile } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-web-identity")));
       return fromTokenFile(init)();
     },
     async () => {
+      var _a;
+      (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "defaultProvider::remoteProvider");
       return (await remoteProvider(init))();
     },
     async () => {

package/node_modules/@aws-sdk/credential-provider-node/dist-es/defaultProvider.js CHANGED Viewed

@@ -5,22 +5,32 @@ export const defaultProvider = (init = {}) => memoize(chain(...(init.profile ||
     ? []
     : [
         async () => {
+            init.logger?.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromEnv");
             const { fromEnv } = await import("@aws-sdk/credential-provider-env");
-            return fromEnv()();
+            return fromEnv(init)();
         },
     ]), async () => {
+    init.logger?.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromSSO");
+    const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName } = init;
+    if (!ssoStartUrl || !ssoAccountId || !ssoRegion || !ssoRoleName) {
+        throw new CredentialsProviderError("Skipping SSO provider in default chain (inputs do not include SSO fields).");
+    }
     const { fromSSO } = await import("@aws-sdk/credential-provider-sso");
     return fromSSO(init)();
 }, async () => {
+    init.logger?.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromIni");
     const { fromIni } = await import("@aws-sdk/credential-provider-ini");
     return fromIni(init)();
 }, async () => {
+    init.logger?.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromProcess");
     const { fromProcess } = await import("@aws-sdk/credential-provider-process");
     return fromProcess(init)();
 }, async () => {
+    init.logger?.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromTokenFile");
     const { fromTokenFile } = await import("@aws-sdk/credential-provider-web-identity");
     return fromTokenFile(init)();
 }, async () => {
+    init.logger?.debug("@aws-sdk/credential-provider-node", "defaultProvider::remoteProvider");
     return (await remoteProvider(init))();
 }, async () => {
     throw new CredentialsProviderError("Could not load credentials from any providers", false);

package/node_modules/@aws-sdk/credential-provider-node/dist-es/remoteProvider.js CHANGED Viewed

@@ -3,6 +3,7 @@ export const ENV_IMDS_DISABLED = "AWS_EC2_METADATA_DISABLED";
 export const remoteProvider = async (init) => {
     const { ENV_CMDS_FULL_URI, ENV_CMDS_RELATIVE_URI, fromContainerMetadata, fromInstanceMetadata } = await import("@smithy/credential-provider-imds");
     if (process.env[ENV_CMDS_RELATIVE_URI] || process.env[ENV_CMDS_FULL_URI]) {
+        init.logger?.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromContainerMetadata");
         return fromContainerMetadata(init);
     }
     if (process.env[ENV_IMDS_DISABLED]) {
@@ -10,5 +11,6 @@ export const remoteProvider = async (init) => {
             throw new CredentialsProviderError("EC2 Instance Metadata Service access disabled");
         };
     }
+    init.logger?.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromInstanceMetadata");
     return fromInstanceMetadata(init);
 };

package/node_modules/@aws-sdk/credential-provider-node/dist-types/defaultProvider.d.ts CHANGED Viewed

@@ -1,10 +1,13 @@
 import type { FromIniInit } from "@aws-sdk/credential-provider-ini";
 import type { FromProcessInit } from "@aws-sdk/credential-provider-process";
-import type { FromSSOInit } from "@aws-sdk/credential-provider-sso";
+import type { FromSSOInit, SsoCredentialsParameters } from "@aws-sdk/credential-provider-sso";
 import type { FromTokenFileInit } from "@aws-sdk/credential-provider-web-identity";
 import type { RemoteProviderInit } from "@smithy/credential-provider-imds";
 import { AwsCredentialIdentity, MemoizedProvider } from "@smithy/types";
-export type DefaultProviderInit = FromIniInit & RemoteProviderInit & FromProcessInit & FromSSOInit & FromTokenFileInit;
+/**
+ * @public
+ */
+export type DefaultProviderInit = FromIniInit & RemoteProviderInit & FromProcessInit & (FromSSOInit & Partial<SsoCredentialsParameters>) & FromTokenFileInit;
 /**
  * Creates a credential provider that will attempt to find credentials from the
  * following sources (listed in order of precedence):
@@ -24,20 +27,20 @@ export type DefaultProviderInit = FromIniInit & RemoteProviderInit & FromProcess
  * @param init                  Configuration that is passed to each individual
  *                              provider
  *
- * @see {@link fromEnv}                 The function used to source credentials from
- *                              environment variables
- * @see {@link fromSSO}                 The function used to source credentials from
- *                              resolved SSO token cache
- * @see {@link fromTokenFile}           The function used to source credentials from
- *                              token file
- * @see {@link fromIni}                The function used to source credentials from INI
- *                              files
- * @see {@link fromProcess}             The function used to sources credentials from
- *                              credential_process in INI files
+ * @see {@link fromEnv}         The function used to source credentials from
+ *                              environment variables.
+ * @see {@link fromSSO}         The function used to source credentials from
+ *                              resolved SSO token cache.
+ * @see {@link fromTokenFile}   The function used to source credentials from
+ *                              token file.
+ * @see {@link fromIni}         The function used to source credentials from INI
+ *                              files.
+ * @see {@link fromProcess}     The function used to sources credentials from
+ *                              credential_process in INI files.
  * @see {@link fromInstanceMetadata}    The function used to source credentials from the
- *                              EC2 Instance Metadata Service
+ *                                      EC2 Instance Metadata Service.
  * @see {@link fromContainerMetadata}   The function used to source credentials from the
- *                              ECS Container Metadata Service
+ *                                      ECS Container Metadata Service.
  */
 export declare const defaultProvider: (init?: DefaultProviderInit) => MemoizedProvider<AwsCredentialIdentity>;
 /**

package/node_modules/@aws-sdk/credential-provider-node/dist-types/ts3.4/defaultProvider.d.ts CHANGED Viewed

@@ -1,13 +1,16 @@
 import { FromIniInit } from "@aws-sdk/credential-provider-ini";
 import { FromProcessInit } from "@aws-sdk/credential-provider-process";
-import { FromSSOInit } from "@aws-sdk/credential-provider-sso";
+import {
+  FromSSOInit,
+  SsoCredentialsParameters,
+} from "@aws-sdk/credential-provider-sso";
 import { FromTokenFileInit } from "@aws-sdk/credential-provider-web-identity";
 import { RemoteProviderInit } from "@smithy/credential-provider-imds";
 import { AwsCredentialIdentity, MemoizedProvider } from "@smithy/types";
 export type DefaultProviderInit = FromIniInit &
   RemoteProviderInit &
   FromProcessInit &
-  FromSSOInit &
+  (FromSSOInit & Partial<SsoCredentialsParameters>) &
   FromTokenFileInit;
 export declare const defaultProvider: (
   init?: DefaultProviderInit

package/node_modules/@aws-sdk/credential-provider-node/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-node",
-  "version": "3.501.0",
+  "version": "3.502.0",
   "description": "AWS credential provider that sources credentials from a Node.JS environment. ",
   "engines": {
     "node": ">=14.0.0"
@@ -27,12 +27,12 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/credential-provider-env": "3.496.0",
-    "@aws-sdk/credential-provider-ini": "3.501.0",
-    "@aws-sdk/credential-provider-process": "3.496.0",
-    "@aws-sdk/credential-provider-sso": "3.501.0",
-    "@aws-sdk/credential-provider-web-identity": "3.496.0",
-    "@aws-sdk/types": "3.496.0",
+    "@aws-sdk/credential-provider-env": "3.502.0",
+    "@aws-sdk/credential-provider-ini": "3.502.0",
+    "@aws-sdk/credential-provider-process": "3.502.0",
+    "@aws-sdk/credential-provider-sso": "3.502.0",
+    "@aws-sdk/credential-provider-web-identity": "3.502.0",
+    "@aws-sdk/types": "3.502.0",
     "@smithy/credential-provider-imds": "^2.2.1",
     "@smithy/property-provider": "^2.1.1",
     "@smithy/shared-ini-file-loader": "^2.3.1",

package/node_modules/@aws-sdk/credential-provider-process/dist-cjs/index.js CHANGED Viewed

@@ -85,6 +85,8 @@ var resolveProcessCredentials = /* @__PURE__ */ __name(async (profileName, profi
 // src/fromProcess.ts
 var fromProcess = /* @__PURE__ */ __name((init = {}) => async () => {
+  var _a;
+  (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-process", "fromProcess");
   const profiles = await (0, import_shared_ini_file_loader.parseKnownFiles)(init);
   return resolveProcessCredentials((0, import_shared_ini_file_loader.getProfileName)(init), profiles);
 }, "fromProcess");

package/node_modules/@aws-sdk/credential-provider-process/dist-es/fromProcess.js CHANGED Viewed

@@ -1,6 +1,7 @@
 import { getProfileName, parseKnownFiles } from "@smithy/shared-ini-file-loader";
 import { resolveProcessCredentials } from "./resolveProcessCredentials";
 export const fromProcess = (init = {}) => async () => {
+    init.logger?.debug("@aws-sdk/credential-provider-process", "fromProcess");
     const profiles = await parseKnownFiles(init);
     return resolveProcessCredentials(getProfileName(init), profiles);
 };

package/node_modules/@aws-sdk/credential-provider-process/dist-types/fromProcess.d.ts CHANGED Viewed

@@ -1,9 +1,10 @@
+import type { CredentialProviderOptions } from "@aws-sdk/types";
 import { SourceProfileInit } from "@smithy/shared-ini-file-loader";
 import { AwsCredentialIdentityProvider } from "@smithy/types";
 /**
  * @internal
  */
-export interface FromProcessInit extends SourceProfileInit {
+export interface FromProcessInit extends SourceProfileInit, CredentialProviderOptions {
 }
 /**
  * @internal

package/node_modules/@aws-sdk/credential-provider-process/dist-types/ts3.4/fromProcess.d.ts CHANGED Viewed

@@ -1,6 +1,9 @@
+import { CredentialProviderOptions } from "@aws-sdk/types";
 import { SourceProfileInit } from "@smithy/shared-ini-file-loader";
 import { AwsCredentialIdentityProvider } from "@smithy/types";
-export interface FromProcessInit extends SourceProfileInit {}
+export interface FromProcessInit
+  extends SourceProfileInit,
+    CredentialProviderOptions {}
 export declare const fromProcess: (
   init?: FromProcessInit
 ) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-process/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-process",
-  "version": "3.496.0",
+  "version": "3.502.0",
   "description": "AWS credential provider that sources credential_process from ~/.aws/credentials and ~/.aws/config",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -24,7 +24,7 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/types": "3.496.0",
+    "@aws-sdk/types": "3.502.0",
     "@smithy/property-provider": "^2.1.1",
     "@smithy/shared-ini-file-loader": "^2.3.1",
     "@smithy/types": "^2.9.1",

package/node_modules/@aws-sdk/credential-provider-sso/dist-cjs/index.js CHANGED Viewed

@@ -3,6 +3,9 @@ var __getOwnPropDesc = Object.getOwnPropertyDescriptor;
 var __getOwnPropNames = Object.getOwnPropertyNames;
 var __hasOwnProp = Object.prototype.hasOwnProperty;
 var __name = (target, value) => __defProp(target, "name", { value, configurable: true });
+var __esm = (fn, res) => function __init() {
+  return fn && (res = (0, fn[__getOwnPropNames(fn)[0]])(fn = 0)), res;
+};
 var __export = (target, all) => {
   for (var name in all)
     __defProp(target, name, { get: all[name], enumerable: true });
@@ -17,6 +20,19 @@ var __copyProps = (to, from, except, desc) => {
 };
 var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod);
+// src/loadSso.ts
+var loadSso_exports = {};
+__export(loadSso_exports, {
+  GetRoleCredentialsCommand: () => import_client_sso.GetRoleCredentialsCommand,
+  SSOClient: () => import_client_sso.SSOClient
+});
+var import_client_sso;
+var init_loadSso = __esm({
+  "src/loadSso.ts"() {
+    import_client_sso = require("@aws-sdk/client-sso");
+  }
+});
 // src/index.ts
 var src_exports = {};
 __export(src_exports, {
@@ -34,7 +50,6 @@ module.exports = __toCommonJS(src_exports);
 var isSsoProfile = /* @__PURE__ */ __name((arg) => arg && (typeof arg.sso_start_url === "string" || typeof arg.sso_account_id === "string" || typeof arg.sso_session === "string" || typeof arg.sso_region === "string" || typeof arg.sso_role_name === "string"), "isSsoProfile");
 // src/resolveSSOCredentials.ts
-var import_client_sso = require("@aws-sdk/client-sso");
 var import_token_providers = require("@aws-sdk/token-providers");
 var import_property_provider = require("@smithy/property-provider");
 var import_shared_ini_file_loader = require("@smithy/shared-ini-file-loader");
@@ -48,7 +63,6 @@ var resolveSSOCredentials = /* @__PURE__ */ __name(async ({
   ssoClient,
   profile
 }) => {
-  var _a;
   let token;
   const refreshMessage = `To refresh this SSO session run aws sso login with the corresponding profile.`;
   if (ssoSession) {
@@ -78,11 +92,12 @@ var resolveSSOCredentials = /* @__PURE__ */ __name(async ({
     );
   }
   const { accessToken } = token;
-  const sso = ssoClient || new import_client_sso.SSOClient({ region: ssoRegion });
+  const { SSOClient: SSOClient2, GetRoleCredentialsCommand: GetRoleCredentialsCommand2 } = await Promise.resolve().then(() => (init_loadSso(), loadSso_exports));
+  const sso = ssoClient || new SSOClient2({ region: ssoRegion });
   let ssoResp;
   try {
     ssoResp = await sso.send(
-      new import_client_sso.GetRoleCredentialsCommand({
+      new GetRoleCredentialsCommand2({
         accountId: ssoAccountId,
         roleName: ssoRoleName,
         accessToken
@@ -91,8 +106,7 @@ var resolveSSOCredentials = /* @__PURE__ */ __name(async ({
   } catch (e) {
     throw import_property_provider.CredentialsProviderError.from(e, SHOULD_FAIL_CREDENTIAL_CHAIN);
   }
-  const { roleCredentials: { accessKeyId, secretAccessKey, sessionToken, expiration } = {} } = ssoResp;
-  const credentialScope = (_a = ssoResp == null ? void 0 : ssoResp.roleCredentials) == null ? void 0 : _a.credentialScope;
+  const { roleCredentials: { accessKeyId, secretAccessKey, sessionToken, expiration, credentialScope } = {} } = ssoResp;
   if (!accessKeyId || !secretAccessKey || !sessionToken || !expiration) {
     throw new import_property_provider.CredentialsProviderError("SSO returns an invalid temporary credential.", SHOULD_FAIL_CREDENTIAL_CHAIN);
   }
@@ -117,7 +131,14 @@ Reference: https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-sso.ht
 // src/fromSSO.ts
 var fromSSO = /* @__PURE__ */ __name((init = {}) => async () => {
-  const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoClient, ssoSession } = init;
+  var _a;
+  (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-sso", "fromSSO");
+  const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
+  let { ssoClient } = init;
+  if (!ssoClient) {
+    const { SSOClient: SSOClient2 } = await Promise.resolve().then(() => (init_loadSso(), loadSso_exports));
+    ssoClient = new SSOClient2(init.clientConfig ?? {});
+  }
   const profileName = (0, import_shared_ini_file_loader.getProfileName)(init);
   if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
     const profiles = await (0, import_shared_ini_file_loader.parseKnownFiles)(init);

package/node_modules/@aws-sdk/credential-provider-sso/dist-cjs/loadSso.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ module.exports = require("./index.js");