npm - @cdk8s/awscdk-resolver - Versions diffs - 0.0.55 → 0.0.57 - Mend

@cdk8s/awscdk-resolver 0.0.55 → 0.0.57

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (160) hide show

package/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/fromHttp.browser.js ADDED Viewed

@@ -0,0 +1,27 @@
+import { FetchHttpHandler } from "@smithy/fetch-http-handler";
+import { CredentialsProviderError } from "@smithy/property-provider";
+import { checkUrl } from "./checkUrl";
+import { createGetRequest, getCredentials } from "./requestHelpers";
+import { retryWrapper } from "./retry-wrapper";
+export const fromHttp = (options) => {
+    options.logger?.debug("@aws-sdk/credential-provider-http", "fromHttp");
+    let host;
+    const full = options.credentialsFullUri;
+    if (full) {
+        host = full;
+    }
+    else {
+        throw new CredentialsProviderError("No HTTP credential provider host provided.");
+    }
+    const url = new URL(host);
+    checkUrl(url);
+    const requestHandler = new FetchHttpHandler();
+    return retryWrapper(async () => {
+        const request = createGetRequest(url);
+        if (options.authorizationToken) {
+            request.headers.Authorization = options.authorizationToken;
+        }
+        const result = await requestHandler.handle(request);
+        return getCredentials(result.response);
+    }, options.maxRetries ?? 3, options.timeout ?? 1000);
+};

package/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/fromHttp.js ADDED Viewed

@@ -0,0 +1,59 @@
+import { NodeHttpHandler } from "@smithy/node-http-handler";
+import { CredentialsProviderError } from "@smithy/property-provider";
+import fs from "fs/promises";
+import { checkUrl } from "./checkUrl";
+import { createGetRequest, getCredentials } from "./requestHelpers";
+import { retryWrapper } from "./retry-wrapper";
+const AWS_CONTAINER_CREDENTIALS_RELATIVE_URI = "AWS_CONTAINER_CREDENTIALS_RELATIVE_URI";
+const DEFAULT_LINK_LOCAL_HOST = "http://169.254.170.2";
+const AWS_CONTAINER_CREDENTIALS_FULL_URI = "AWS_CONTAINER_CREDENTIALS_FULL_URI";
+const AWS_CONTAINER_AUTHORIZATION_TOKEN_FILE = "AWS_CONTAINER_AUTHORIZATION_TOKEN_FILE";
+const AWS_CONTAINER_AUTHORIZATION_TOKEN = "AWS_CONTAINER_AUTHORIZATION_TOKEN";
+export const fromHttp = (options) => {
+    options.logger?.debug("@aws-sdk/credential-provider-http", "fromHttp");
+    let host;
+    const relative = options.awsContainerCredentialsRelativeUri ?? process.env[AWS_CONTAINER_CREDENTIALS_RELATIVE_URI];
+    const full = options.awsContainerCredentialsFullUri ?? process.env[AWS_CONTAINER_CREDENTIALS_FULL_URI];
+    const token = options.awsContainerAuthorizationToken ?? process.env[AWS_CONTAINER_AUTHORIZATION_TOKEN];
+    const tokenFile = options.awsContainerAuthorizationTokenFile ?? process.env[AWS_CONTAINER_AUTHORIZATION_TOKEN_FILE];
+    if (relative && full) {
+        console.warn("AWS SDK HTTP credentials provider:", "you have set both awsContainerCredentialsRelativeUri and awsContainerCredentialsFullUri.");
+        console.warn("awsContainerCredentialsFullUri will take precedence.");
+    }
+    if (token && tokenFile) {
+        console.warn("AWS SDK HTTP credentials provider:", "you have set both awsContainerAuthorizationToken and awsContainerAuthorizationTokenFile.");
+        console.warn("awsContainerAuthorizationToken will take precedence.");
+    }
+    if (full) {
+        host = full;
+    }
+    else if (relative) {
+        host = `${DEFAULT_LINK_LOCAL_HOST}${relative}`;
+    }
+    else {
+        throw new CredentialsProviderError(`No HTTP credential provider host provided.
+Set AWS_CONTAINER_CREDENTIALS_FULL_URI or AWS_CONTAINER_CREDENTIALS_RELATIVE_URI.`);
+    }
+    const url = new URL(host);
+    checkUrl(url);
+    const requestHandler = new NodeHttpHandler({
+        requestTimeout: options.timeout ?? 1000,
+        connectionTimeout: options.timeout ?? 1000,
+    });
+    return retryWrapper(async () => {
+        const request = createGetRequest(url);
+        if (token) {
+            request.headers.Authorization = token;
+        }
+        else if (tokenFile) {
+            request.headers.Authorization = (await fs.readFile(tokenFile)).toString();
+        }
+        try {
+            const result = await requestHandler.handle(request);
+            return getCredentials(result.response);
+        }
+        catch (e) {
+            throw new CredentialsProviderError(String(e));
+        }
+    }, options.maxRetries ?? 3, options.timeout ?? 1000);
+};

package/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/fromHttpTypes.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export {};

package/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/requestHelpers.js ADDED Viewed

@@ -0,0 +1,53 @@
+import { CredentialsProviderError } from "@smithy/property-provider";
+import { HttpRequest } from "@smithy/protocol-http";
+import { parseRfc3339DateTime } from "@smithy/smithy-client";
+import { sdkStreamMixin } from "@smithy/util-stream";
+export function createGetRequest(url) {
+    return new HttpRequest({
+        protocol: url.protocol,
+        hostname: url.hostname,
+        port: Number(url.port),
+        path: url.pathname,
+        query: Array.from(url.searchParams.entries()).reduce((acc, [k, v]) => {
+            acc[k] = v;
+            return acc;
+        }, {}),
+        fragment: url.hash,
+    });
+}
+export async function getCredentials(response) {
+    const contentType = response?.headers["content-type"] ?? response?.headers["Content-Type"] ?? "";
+    if (!contentType.includes("json")) {
+        console.warn("HTTP credential provider response header content-type was not application/json. Observed: " + contentType + ".");
+    }
+    const stream = sdkStreamMixin(response.body);
+    const str = await stream.transformToString();
+    if (response.statusCode === 200) {
+        const parsed = JSON.parse(str);
+        if (typeof parsed.AccessKeyId !== "string" ||
+            typeof parsed.SecretAccessKey !== "string" ||
+            typeof parsed.Token !== "string" ||
+            typeof parsed.Expiration !== "string") {
+            throw new CredentialsProviderError("HTTP credential provider response not of the required format, an object matching: " +
+                "{ AccessKeyId: string, SecretAccessKey: string, Token: string, Expiration: string(rfc3339) }");
+        }
+        return {
+            accessKeyId: parsed.AccessKeyId,
+            secretAccessKey: parsed.SecretAccessKey,
+            sessionToken: parsed.Token,
+            expiration: parseRfc3339DateTime(parsed.Expiration),
+        };
+    }
+    if (response.statusCode >= 400 && response.statusCode < 500) {
+        let parsedBody = {};
+        try {
+            parsedBody = JSON.parse(str);
+        }
+        catch (e) { }
+        throw Object.assign(new CredentialsProviderError(`Server responded with status: ${response.statusCode}`), {
+            Code: parsedBody.Code,
+            Message: parsedBody.Message,
+        });
+    }
+    throw new CredentialsProviderError(`Server responded with status: ${response.statusCode}`);
+}

package/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/retry-wrapper.js ADDED Viewed

@@ -0,0 +1,13 @@
+export const retryWrapper = (toRetry, maxRetries, delayMs) => {
+    return async () => {
+        for (let i = 0; i < maxRetries; ++i) {
+            try {
+                return await toRetry();
+            }
+            catch (e) {
+                await new Promise((resolve) => setTimeout(resolve, delayMs));
+            }
+        }
+        return await toRetry();
+    };
+};

package/node_modules/@aws-sdk/credential-provider-http/dist-es/index.browser.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { fromHttp } from "./fromHttp/fromHttp.browser";

package/node_modules/@aws-sdk/credential-provider-http/dist-es/index.js ADDED Viewed

	@@ -0,0 +1 @@
1	+ export { fromHttp } from "./fromHttp/fromHttp";

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/checkUrl.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+/**
+ * @internal
+ *
+ * @param url - to be validated.
+ * @throws if not acceptable to this provider.
+ */
+export declare const checkUrl: (url: URL) => void;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/fromHttp.browser.d.ts ADDED Viewed

@@ -0,0 +1,6 @@
+import { AwsCredentialIdentityProvider } from "@smithy/types";
+import type { FromHttpOptions } from "./fromHttpTypes";
+/**
+ * Creates a provider that gets credentials via HTTP request.
+ */
+export declare const fromHttp: (options: FromHttpOptions) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/fromHttp.d.ts ADDED Viewed

@@ -0,0 +1,6 @@
+import { AwsCredentialIdentityProvider } from "@smithy/types";
+import type { FromHttpOptions } from "./fromHttpTypes";
+/**
+ * Creates a provider that gets credentials via HTTP request.
+ */
+export declare const fromHttp: (options: FromHttpOptions) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/fromHttpTypes.d.ts ADDED Viewed

@@ -0,0 +1,69 @@
+import type { CredentialProviderOptions } from "@aws-sdk/types";
+/**
+ * @public
+ *
+ * Input for the fromHttp function in the HTTP Credentials Provider for Node.js.
+ */
+export interface FromHttpOptions extends CredentialProviderOptions {
+    /**
+     * If this value is provided, it will be used as-is.
+     *
+     * For browser environments, use instead {@link credentialsFullUri}.
+     */
+    awsContainerCredentialsFullUri?: string;
+    /**
+     * If this value is provided instead of the full URI, it
+     * will be appended to the default link local host of 169.254.170.2.
+     *
+     * Not supported in browsers.
+     */
+    awsContainerCredentialsRelativeUri?: string;
+    /**
+     * Will be read on each credentials request to
+     * add an Authorization request header value.
+     *
+     * Not supported in browsers.
+     */
+    awsContainerAuthorizationTokenFile?: string;
+    /**
+     * An alternative to awsContainerAuthorizationTokenFile,
+     * this is the token value itself.
+     *
+     * For browser environments, use instead {@link authorizationToken}.
+     */
+    awsContainerAuthorizationToken?: string;
+    /**
+     * BROWSER ONLY.
+     *
+     * In browsers, a relative URI is not allowed, and a full URI must be provided.
+     * HTTPS is required.
+     *
+     * This value is required for the browser environment.
+     */
+    credentialsFullUri?: string;
+    /**
+     * BROWSER ONLY.
+     *
+     * Providing this value will set an "Authorization" request
+     * header value on the GET request.
+     */
+    authorizationToken?: string;
+    /**
+     * Default is 3 retry attempts or 4 total attempts.
+     */
+    maxRetries?: number;
+    /**
+     * Default is 1000ms. Time in milliseconds to spend waiting between retry attempts.
+     */
+    timeout?: number;
+}
+/**
+ * @public
+ */
+export type HttpProviderCredentials = {
+    AccessKeyId: string;
+    SecretAccessKey: string;
+    Token: string;
+    AccountId?: string;
+    Expiration: string;
+};

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/requestHelpers.d.ts ADDED Viewed

@@ -0,0 +1,11 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { HttpRequest } from "@smithy/protocol-http";
+import { HttpResponse } from "@smithy/types";
+/**
+ * @internal
+ */
+export declare function createGetRequest(url: URL): HttpRequest;
+/**
+ * @internal
+ */
+export declare function getCredentials(response: HttpResponse): Promise<AwsCredentialIdentity>;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/fromHttp/retry-wrapper.d.ts ADDED Viewed

@@ -0,0 +1,10 @@
+/**
+ * @internal
+ */
+export interface RetryableProvider<T> {
+    (): Promise<T>;
+}
+/**
+ * @internal
+ */
+export declare const retryWrapper: <T>(toRetry: RetryableProvider<T>, maxRetries: number, delayMs: number) => RetryableProvider<T>;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/index.browser.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export { fromHttp } from "./fromHttp/fromHttp.browser";
2	+ export type { FromHttpOptions, HttpProviderCredentials } from "./fromHttp/fromHttpTypes";

package/node_modules/@aws-sdk/credential-provider-http/dist-types/index.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ export { fromHttp } from "./fromHttp/fromHttp";
2	+ export type { FromHttpOptions, HttpProviderCredentials } from "./fromHttp/fromHttpTypes";

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/checkUrl.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export declare const checkUrl: (url: URL) => void;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/fromHttp.browser.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+import { AwsCredentialIdentityProvider } from "@smithy/types";
+import { FromHttpOptions } from "./fromHttpTypes";
+export declare const fromHttp: (
+  options: FromHttpOptions
+) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/fromHttp.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+import { AwsCredentialIdentityProvider } from "@smithy/types";
+import { FromHttpOptions } from "./fromHttpTypes";
+export declare const fromHttp: (
+  options: FromHttpOptions
+) => AwsCredentialIdentityProvider;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/fromHttpTypes.d.ts ADDED Viewed

@@ -0,0 +1,18 @@
+import { CredentialProviderOptions } from "@aws-sdk/types";
+export interface FromHttpOptions extends CredentialProviderOptions {
+  awsContainerCredentialsFullUri?: string;
+  awsContainerCredentialsRelativeUri?: string;
+  awsContainerAuthorizationTokenFile?: string;
+  awsContainerAuthorizationToken?: string;
+  credentialsFullUri?: string;
+  authorizationToken?: string;
+  maxRetries?: number;
+  timeout?: number;
+}
+export type HttpProviderCredentials = {
+  AccessKeyId: string;
+  SecretAccessKey: string;
+  Token: string;
+  AccountId?: string;
+  Expiration: string;
+};

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/requestHelpers.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import { AwsCredentialIdentity } from "@aws-sdk/types";
+import { HttpRequest } from "@smithy/protocol-http";
+import { HttpResponse } from "@smithy/types";
+export declare function createGetRequest(url: URL): HttpRequest;
+export declare function getCredentials(
+  response: HttpResponse
+): Promise<AwsCredentialIdentity>;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/fromHttp/retry-wrapper.d.ts ADDED Viewed

@@ -0,0 +1,8 @@
+export interface RetryableProvider<T> {
+  (): Promise<T>;
+}
+export declare const retryWrapper: <T>(
+  toRetry: RetryableProvider<T>,
+  maxRetries: number,
+  delayMs: number
+) => RetryableProvider<T>;

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/index.browser.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+export { fromHttp } from "./fromHttp/fromHttp.browser";
+export {
+  FromHttpOptions,
+  HttpProviderCredentials,
+} from "./fromHttp/fromHttpTypes";

package/node_modules/@aws-sdk/credential-provider-http/dist-types/ts3.4/index.d.ts ADDED Viewed

@@ -0,0 +1,5 @@
+export { fromHttp } from "./fromHttp/fromHttp";
+export {
+  FromHttpOptions,
+  HttpProviderCredentials,
+} from "./fromHttp/fromHttpTypes";

package/node_modules/@aws-sdk/credential-provider-http/package.json ADDED Viewed

@@ -0,0 +1,67 @@
+{
+  "name": "@aws-sdk/credential-provider-http",
+  "version": "3.503.1",
+  "description": "AWS credential provider for containers and HTTP sources",
+  "main": "./dist-cjs/index.js",
+  "module": "./dist-es/index.js",
+  "browser": "./dist-es/index.browser.js",
+  "react-native": "./dist-es/index.browser.js",
+  "scripts": {
+    "build": "concurrently 'yarn:build:cjs' 'yarn:build:es' 'yarn:build:types'",
+    "build:cjs": "node ../../scripts/compilation/inline credential-provider-http",
+    "build:es": "tsc -p tsconfig.es.json",
+    "build:include:deps": "lerna run --scope $npm_package_name --include-dependencies build",
+    "build:types": "tsc -p tsconfig.types.json",
+    "build:types:downlevel": "downlevel-dts dist-types dist-types/ts3.4",
+    "clean": "rimraf ./dist-* && rimraf *.tsbuildinfo",
+    "test": "jest"
+  },
+  "keywords": [
+    "aws",
+    "credentials"
+  ],
+  "author": {
+    "name": "AWS SDK for JavaScript Team",
+    "url": "https://aws.amazon.com/javascript/"
+  },
+  "license": "Apache-2.0",
+  "dependencies": {
+    "@aws-sdk/types": "3.502.0",
+    "@smithy/fetch-http-handler": "^2.4.1",
+    "@smithy/node-http-handler": "^2.3.1",
+    "@smithy/property-provider": "^2.1.1",
+    "@smithy/protocol-http": "^3.1.1",
+    "@smithy/smithy-client": "^2.3.1",
+    "@smithy/types": "^2.9.1",
+    "@smithy/util-stream": "^2.1.1",
+    "tslib": "^2.5.0"
+  },
+  "devDependencies": {
+    "@tsconfig/recommended": "1.0.1",
+    "@types/node": "^14.14.31",
+    "concurrently": "7.0.0",
+    "downlevel-dts": "0.10.1",
+    "rimraf": "3.0.2",
+    "typescript": "~4.9.5"
+  },
+  "types": "./dist-types/index.d.ts",
+  "engines": {
+    "node": ">=14.0.0"
+  },
+  "typesVersions": {
+    "<4.0": {
+      "dist-types/*": [
+        "dist-types/ts3.4/*"
+      ]
+    }
+  },
+  "files": [
+    "dist-*/**"
+  ],
+  "homepage": "https://github.com/aws/aws-sdk-js-v3/tree/main/packages/credential-provider-http",
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/aws/aws-sdk-js-v3.git",
+    "directory": "packages/credential-provider-http"
+  }
+}

package/node_modules/@aws-sdk/credential-provider-ini/dist-cjs/index.js CHANGED Viewed

@@ -130,15 +130,11 @@ var resolveProcessCredentials = /* @__PURE__ */ __name(async (options, profile)
 ), "resolveProcessCredentials");
 // src/resolveSsoCredentials.ts
-var resolveSsoCredentials = /* @__PURE__ */ __name(async (data) => {
-  const { fromSSO, validateSsoProfile } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-sso")));
-  const { sso_start_url, sso_account_id, sso_session, sso_region, sso_role_name } = validateSsoProfile(data);
+var resolveSsoCredentials = /* @__PURE__ */ __name(async (profile, options = {}) => {
+  const { fromSSO } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-sso")));
   return fromSSO({
-    ssoStartUrl: sso_start_url,
-    ssoAccountId: sso_account_id,
-    ssoSession: sso_session,
-    ssoRegion: sso_region,
-    ssoRoleName: sso_role_name
+    profile,
+    logger: options.logger
   })();
 }, "resolveSsoCredentials");
 var isSsoProfile = /* @__PURE__ */ __name((arg) => arg && (typeof arg.sso_start_url === "string" || typeof arg.sso_account_id === "string" || typeof arg.sso_session === "string" || typeof arg.sso_region === "string" || typeof arg.sso_role_name === "string"), "isSsoProfile");
@@ -163,7 +159,8 @@ var resolveWebIdentityCredentials = /* @__PURE__ */ __name(async (profile, optio
     webIdentityTokenFile: profile.web_identity_token_file,
     roleArn: profile.role_arn,
     roleSessionName: profile.role_session_name,
-    roleAssumerWithWebIdentity: options.roleAssumerWithWebIdentity
+    roleAssumerWithWebIdentity: options.roleAssumerWithWebIdentity,
+    logger: options.logger
   })()
 ), "resolveWebIdentityCredentials");
@@ -186,7 +183,7 @@ var resolveProfileData = /* @__PURE__ */ __name(async (profileName, profiles, op
     return resolveProcessCredentials(options, profileName);
   }
   if (isSsoProfile(data)) {
-    return await resolveSsoCredentials(data);
+    return await resolveSsoCredentials(profileName, options);
   }
   throw new import_property_provider.CredentialsProviderError(`Profile ${profileName} could not be found or parsed in shared credentials file.`);
 }, "resolveProfileData");

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveProfileData.js CHANGED Viewed

@@ -22,7 +22,7 @@ export const resolveProfileData = async (profileName, profiles, options, visited
         return resolveProcessCredentials(options, profileName);
     }
     if (isSsoProfile(data)) {
-        return await resolveSsoCredentials(data);
+        return await resolveSsoCredentials(profileName, options);
     }
     throw new CredentialsProviderError(`Profile ${profileName} could not be found or parsed in shared credentials file.`);
 };

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveSsoCredentials.js CHANGED Viewed

@@ -1,12 +1,8 @@
-export const resolveSsoCredentials = async (data) => {
-    const { fromSSO, validateSsoProfile } = await import("@aws-sdk/credential-provider-sso");
-    const { sso_start_url, sso_account_id, sso_session, sso_region, sso_role_name } = validateSsoProfile(data);
+export const resolveSsoCredentials = async (profile, options = {}) => {
+    const { fromSSO } = await import("@aws-sdk/credential-provider-sso");
     return fromSSO({
-        ssoStartUrl: sso_start_url,
-        ssoAccountId: sso_account_id,
-        ssoSession: sso_session,
-        ssoRegion: sso_region,
-        ssoRoleName: sso_role_name,
+        profile,
+        logger: options.logger,
     })();
 };
 export const isSsoProfile = (arg) => arg &&

package/node_modules/@aws-sdk/credential-provider-ini/dist-es/resolveWebIdentityCredentials.js CHANGED Viewed

@@ -8,4 +8,5 @@ export const resolveWebIdentityCredentials = async (profile, options) => import(
     roleArn: profile.role_arn,
     roleSessionName: profile.role_session_name,
     roleAssumerWithWebIdentity: options.roleAssumerWithWebIdentity,
+    logger: options.logger,
 })());

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/resolveSsoCredentials.d.ts CHANGED Viewed

@@ -1,9 +1,10 @@
 import type { SsoProfile } from "@aws-sdk/credential-provider-sso";
+import type { CredentialProviderOptions } from "@aws-sdk/types";
 import type { Profile } from "@smithy/types";
 /**
  * @internal
  */
-export declare const resolveSsoCredentials: (data: Partial<SsoProfile>) => Promise<import("@smithy/types").AwsCredentialIdentity>;
+export declare const resolveSsoCredentials: (profile: string, options?: CredentialProviderOptions) => Promise<import("@aws-sdk/types").AwsCredentialIdentity>;
 /**
  * @internal
  * duplicated from \@aws-sdk/credential-provider-sso to defer import.

package/node_modules/@aws-sdk/credential-provider-ini/dist-types/ts3.4/resolveSsoCredentials.d.ts CHANGED Viewed

@@ -1,6 +1,8 @@
 import { SsoProfile } from "@aws-sdk/credential-provider-sso";
+import { CredentialProviderOptions } from "@aws-sdk/types";
 import { Profile } from "@smithy/types";
 export declare const resolveSsoCredentials: (
-  data: Partial<SsoProfile>
-) => Promise<import("@smithy/types").AwsCredentialIdentity>;
+  profile: string,
+  options?: CredentialProviderOptions
+) => Promise<import("@aws-sdk/types").AwsCredentialIdentity>;
 export declare const isSsoProfile: (arg: Profile) => arg is Partial<SsoProfile>;

package/node_modules/@aws-sdk/credential-provider-ini/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-ini",
-  "version": "3.502.0",
+  "version": "3.504.0",
   "description": "AWS credential provider that sources credentials from ~/.aws/credentials and ~/.aws/config",
   "main": "./dist-cjs/index.js",
   "module": "./dist-es/index.js",
@@ -24,11 +24,11 @@
   },
   "license": "Apache-2.0",
   "dependencies": {
-    "@aws-sdk/client-sts": "3.502.0",
+    "@aws-sdk/client-sts": "3.504.0",
     "@aws-sdk/credential-provider-env": "3.502.0",
     "@aws-sdk/credential-provider-process": "3.502.0",
-    "@aws-sdk/credential-provider-sso": "3.502.0",
-    "@aws-sdk/credential-provider-web-identity": "3.502.0",
+    "@aws-sdk/credential-provider-sso": "3.504.0",
+    "@aws-sdk/credential-provider-web-identity": "3.504.0",
     "@aws-sdk/types": "3.502.0",
     "@smithy/credential-provider-imds": "^2.2.1",
     "@smithy/property-provider": "^2.1.1",

package/node_modules/@aws-sdk/credential-provider-node/dist-cjs/index.js CHANGED Viewed

@@ -47,8 +47,9 @@ var remoteProvider = /* @__PURE__ */ __name(async (init) => {
   var _a, _b;
   const { ENV_CMDS_FULL_URI, ENV_CMDS_RELATIVE_URI, fromContainerMetadata, fromInstanceMetadata } = await Promise.resolve().then(() => __toESM(require("@smithy/credential-provider-imds")));
   if (process.env[ENV_CMDS_RELATIVE_URI] || process.env[ENV_CMDS_FULL_URI]) {
-    (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromContainerMetadata");
-    return fromContainerMetadata(init);
+    (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromHttp/fromContainerMetadata");
+    const { fromHttp } = await Promise.resolve().then(() => __toESM(require("@aws-sdk/credential-provider-http")));
+    return (0, import_property_provider.chain)(fromHttp(init), fromContainerMetadata(init));
   }
   if (process.env[ENV_IMDS_DISABLED]) {
     return async () => {
@@ -73,8 +74,8 @@ var defaultProvider = /* @__PURE__ */ __name((init = {}) => (0, import_property_
     async () => {
       var _a;
       (_a = init.logger) == null ? void 0 : _a.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromSSO");
-      const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName } = init;
-      if (!ssoStartUrl || !ssoAccountId || !ssoRegion || !ssoRoleName) {
+      const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
+      if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
         throw new import_property_provider.CredentialsProviderError(
           "Skipping SSO provider in default chain (inputs do not include SSO fields)."
         );

package/node_modules/@aws-sdk/credential-provider-node/dist-es/defaultProvider.js CHANGED Viewed

@@ -11,8 +11,8 @@ export const defaultProvider = (init = {}) => memoize(chain(...(init.profile ||
         },
     ]), async () => {
     init.logger?.debug("@aws-sdk/credential-provider-node", "defaultProvider::fromSSO");
-    const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName } = init;
-    if (!ssoStartUrl || !ssoAccountId || !ssoRegion || !ssoRoleName) {
+    const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
+    if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
         throw new CredentialsProviderError("Skipping SSO provider in default chain (inputs do not include SSO fields).");
     }
     const { fromSSO } = await import("@aws-sdk/credential-provider-sso");

package/node_modules/@aws-sdk/credential-provider-node/dist-es/remoteProvider.js CHANGED Viewed

@@ -1,10 +1,11 @@
-import { CredentialsProviderError } from "@smithy/property-provider";
+import { chain, CredentialsProviderError } from "@smithy/property-provider";
 export const ENV_IMDS_DISABLED = "AWS_EC2_METADATA_DISABLED";
 export const remoteProvider = async (init) => {
     const { ENV_CMDS_FULL_URI, ENV_CMDS_RELATIVE_URI, fromContainerMetadata, fromInstanceMetadata } = await import("@smithy/credential-provider-imds");
     if (process.env[ENV_CMDS_RELATIVE_URI] || process.env[ENV_CMDS_FULL_URI]) {
-        init.logger?.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromContainerMetadata");
-        return fromContainerMetadata(init);
+        init.logger?.debug("@aws-sdk/credential-provider-node", "remoteProvider::fromHttp/fromContainerMetadata");
+        const { fromHttp } = await import("@aws-sdk/credential-provider-http");
+        return chain(fromHttp(init), fromContainerMetadata(init));
     }
     if (process.env[ENV_IMDS_DISABLED]) {
         return async () => {

package/node_modules/@aws-sdk/credential-provider-node/dist-types/remoteProvider.d.ts CHANGED Viewed

@@ -1,5 +1,8 @@
 import type { RemoteProviderInit } from "@smithy/credential-provider-imds";
 import type { AwsCredentialIdentityProvider } from "@smithy/types";
+/**
+ * @internal
+ */
 export declare const ENV_IMDS_DISABLED = "AWS_EC2_METADATA_DISABLED";
 /**
  * @internal

package/node_modules/@aws-sdk/credential-provider-node/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@aws-sdk/credential-provider-node",
-  "version": "3.502.0",
+  "version": "3.504.0",
   "description": "AWS credential provider that sources credentials from a Node.JS environment. ",
   "engines": {
     "node": ">=14.0.0"
@@ -28,10 +28,11 @@
   "license": "Apache-2.0",
   "dependencies": {
     "@aws-sdk/credential-provider-env": "3.502.0",
-    "@aws-sdk/credential-provider-ini": "3.502.0",
+    "@aws-sdk/credential-provider-http": "3.503.1",
+    "@aws-sdk/credential-provider-ini": "3.504.0",
     "@aws-sdk/credential-provider-process": "3.502.0",
-    "@aws-sdk/credential-provider-sso": "3.502.0",
-    "@aws-sdk/credential-provider-web-identity": "3.502.0",
+    "@aws-sdk/credential-provider-sso": "3.504.0",
+    "@aws-sdk/credential-provider-web-identity": "3.504.0",
     "@aws-sdk/types": "3.502.0",
     "@smithy/credential-provider-imds": "^2.2.1",
     "@smithy/property-provider": "^2.1.1",