@goldstack/infra-aws 0.3.49 → 0.4.0

package/dist/src/awsUserUtils.d.ts

@@ -1,10 +1,10 @@
-import { AWSConfiguration } from './types/awsAccount';
-import AWS from 'aws-sdk';
-export declare function getAWSUserFromEnvironmentVariables(): Promise<AWS.Credentials>;
-/**
- * Obtains AWS user credentials from container environment variables for ECS containers.
- */
-export declare function getAWSUserFromContainerEnvironment(): Promise<AWS.ECSCredentials>;
-export declare function getAWSUserFromDefaultLocalProfile(): Promise<AWS.Credentials>;
-export declare function getAWSUserFromGoldstackConfig(config: AWSConfiguration, userName: string): Promise<AWS.Credentials>;
+import { AWSConfiguration } from './types/awsAccount';
+import AWS from 'aws-sdk';
+export declare function getAWSUserFromEnvironmentVariables(): Promise<AWS.Credentials>;
+/**
+ * Obtains AWS user credentials from container environment variables for ECS containers.
+ */
+export declare function getAWSUserFromContainerEnvironment(): Promise<AWS.ECSCredentials>;
+export declare function getAWSUserFromDefaultLocalProfile(): Promise<AWS.Credentials>;
+export declare function getAWSUserFromGoldstackConfig(config: AWSConfiguration, userName: string): Promise<AWS.Credentials>;
 //# sourceMappingURL=awsUserUtils.d.ts.map

package/dist/src/awsUserUtils.js

@@ -1,162 +1,162 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getAWSUserFromGoldstackConfig = exports.getAWSUserFromDefaultLocalProfile = exports.getAWSUserFromContainerEnvironment = exports.getAWSUserFromEnvironmentVariables = void 0;
-const assert_1 = __importDefault(require("assert"));
-const aws_sdk_1 = __importDefault(require("aws-sdk"));
-async function getAWSUserFromEnvironmentVariables() {
-    (0, assert_1.default)(process.env.AWS_ACCESS_KEY_ID, 'AWS_ACCESS_KEY_ID not defined.');
-    (0, assert_1.default)(process.env.AWS_SECRET_ACCESS_KEY, 'AWS_SECRET_ACCESS_KEY not defined');
-    const region = process.env.AWS_REGION || process.env.AWS_DEFAULT_REGION;
-    (0, assert_1.default)(region, 'Neither AWS_REGION nor AWS_DEFAULT_REGION are defined.');
-    const credentials = new aws_sdk_1.default.EnvironmentCredentials('AWS');
-    await credentials.getPromise();
-    aws_sdk_1.default.config.credentials = credentials;
-    aws_sdk_1.default.config.update({ region });
-    return credentials;
-}
-exports.getAWSUserFromEnvironmentVariables = getAWSUserFromEnvironmentVariables;
-/**
- * Obtains AWS user credentials from container environment variables for ECS containers.
- */
-async function getAWSUserFromContainerEnvironment() {
-    const ecsCredentials = new aws_sdk_1.default.ECSCredentials({
-        httpOptions: { timeout: 5000 },
-        maxRetries: 10, // retry 10 times
-    });
-    await ecsCredentials.getPromise();
-    aws_sdk_1.default.config.credentials = ecsCredentials;
-    if (!process.env.AWS_REGION) {
-        throw new Error('AWS region environment variable ("AWS_REGION") not defined for ECS task.');
-    }
-    aws_sdk_1.default.config.update({ region: process.env.AWS_REGION });
-    return ecsCredentials;
-}
-exports.getAWSUserFromContainerEnvironment = getAWSUserFromContainerEnvironment;
-async function getAWSUserFromDefaultLocalProfile() {
-    let credentials = new aws_sdk_1.default.SharedIniFileCredentials();
-    const envVarValues = {
-        AWS_SDK_LOAD_CONFIG: process.env.AWS_SDK_LOAD_CONFIG,
-    };
-    // if no access key is found, try loading process_credentials
-    if (!credentials.accessKeyId) {
-        // see https://github.com/aws/aws-sdk-js/pull/1391
-        process.env.AWS_SDK_LOAD_CONFIG = '1';
-        credentials = new aws_sdk_1.default.ProcessCredentials();
-        await credentials.refreshPromise();
-    }
-    resetEnvironmentVariables(envVarValues);
-    aws_sdk_1.default.config.credentials = credentials;
-    return credentials;
-}
-exports.getAWSUserFromDefaultLocalProfile = getAWSUserFromDefaultLocalProfile;
-async function getAWSUserFromGoldstackConfig(config, userName) {
-    const user = config.users.find((user) => user.name === userName);
-    if (!user) {
-        throw new Error(`User '${userName}' does not exist in AWS configuration.`);
-    }
-    if (user.type === 'profile') {
-        const userConfig = user.config;
-        if (process.env.AWS_SHARED_CREDENTIALS_FILE) {
-            console.warn(`Using AWS_SHARED_CREDENTIALS_FILE environment variable: '${process.env.AWS_SHARED_CREDENTIALS_FILE}'. awsCredentialsFileName in configuration will be ignored.`);
-        }
-        const envVarValues = {
-            AWS_SDK_LOAD_CONFIG: process.env.AWS_SDK_LOAD_CONFIG,
-            AWS_SHARED_CREDENTIALS_FILE: process.env.AWS_SHARED_CREDENTIALS_FILE,
-            AWS_CONFIG_FILE: process.env.AWS_CONFIG_FILE,
-        };
-        if (userConfig.awsConfigFileName) {
-            // support loading from both `config` and `credentials` files, see https://github.com/goldstack/goldstack/issues/17#issuecomment-1044811805  https://github.com/aws/aws-sdk-js/pull/1391
-            process.env.AWS_SDK_LOAD_CONFIG = '1';
-            // filename property is ignored if AWS_SDK_LOAD_CONFIG is set; thus need to set AWS_SHARED_CREDENTIALS_FILE.
-            process.env.AWS_SHARED_CREDENTIALS_FILE =
-                userConfig.awsCredentialsFileName;
-            process.env.AWS_CONFIG_FILE = userConfig.awsConfigFileName;
-        }
-        let credentials;
-        let filename = undefined;
-        if (!process.env.SHARE_CREDENTIALS_FILE) {
-            filename = userConfig.awsCredentialsFileName;
-        }
-        if (userConfig.credentialsSource !== 'process') {
-            credentials = new aws_sdk_1.default.SharedIniFileCredentials({
-                profile: userConfig.profile,
-                filename: filename,
-            });
-        }
-        else {
-            // Allow `AWS.ProcessCredentials` to search the default config location `~/.aws/config` in addition to `credentials`
-            // This matches most other CLI / SDK implementations (including AWS JS SDK v3) and the behaviour of most `credential_process` helper tools
-            // With this enabled, `AWS_CONFIG_FILE` must not contains an invalid path, but `AWS_SHARED_CREDENTIALS_FILE` can be missing.
-            if (!userConfig.awsCredentialsFileName) {
-                process.env.AWS_SDK_LOAD_CONFIG = '1';
-            }
-            credentials = new aws_sdk_1.default.ProcessCredentials({
-                profile: userConfig.profile,
-                filename: filename,
-            });
-            await credentials.refreshPromise();
-        }
-        resetEnvironmentVariables(envVarValues);
-        if (!credentials.accessKeyId) {
-            throw new Error('Cannot load profile ' +
-                userConfig.profile +
-                ' from AWS configuration for user ' +
-                user.name +
-                '. Please perform `aws login` for the profile using the AWS CLI.');
-        }
-        aws_sdk_1.default.config.credentials = credentials;
-        aws_sdk_1.default.config.update({ region: userConfig.awsDefaultRegion });
-        return credentials;
-    }
-    if (user.type === 'apiKey') {
-        const config = user.config;
-        if (!config.awsAccessKeyId || !config.awsSecretAccessKey) {
-            throw new Error(`AWS Access credentials not defined for user ${userName}. Define them in infra/aws/config.json.`);
-        }
-        const credentials = new aws_sdk_1.default.Credentials({
-            accessKeyId: config.awsAccessKeyId || '',
-            secretAccessKey: config.awsSecretAccessKey || '',
-        });
-        aws_sdk_1.default.config.credentials = credentials;
-        aws_sdk_1.default.config.update({ region: config.awsDefaultRegion });
-        return credentials;
-    }
-    if (user.type === 'environmentVariables') {
-        const userConfig = user.config;
-        const awsAccessKeyId = process.env[userConfig.awsAccessKeyIdVariableName];
-        if (!awsAccessKeyId) {
-            throw new Error(`Environment variable expected but not found: ${userConfig.awsAccessKeyIdVariableName}`);
-        }
-        const awsSecretAccessKey = process.env[userConfig.awsSecretAccessKeyVariableName];
-        if (!awsSecretAccessKey) {
-            throw new Error(`Environment variable expected but not found: ${userConfig.awsSecretAccessKeyVariableName}`);
-        }
-        const awsDefaultRegion = process.env[userConfig.awsDefaultRegionVariableName];
-        if (!awsDefaultRegion) {
-            throw new Error(`Environment variable expected but not found: ${userConfig.awsDefaultRegionVariableName}`);
-        }
-        const credentials = new aws_sdk_1.default.Credentials({
-            accessKeyId: awsAccessKeyId,
-            secretAccessKey: awsSecretAccessKey,
-        });
-        aws_sdk_1.default.config.credentials = credentials;
-        aws_sdk_1.default.config.update({ region: awsDefaultRegion });
-        return credentials;
-    }
-    throw new Error(`Unknown user config type ${user.type}`);
-}
-exports.getAWSUserFromGoldstackConfig = getAWSUserFromGoldstackConfig;
-function resetEnvironmentVariables(envVarValues) {
-    Object.entries(envVarValues).forEach(([key, value]) => {
-        if (process.env[key] === undefined) {
-            delete process.env[key];
-        }
-        else {
-            process.env[key] = value;
-        }
-    });
-}
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getAWSUserFromGoldstackConfig = exports.getAWSUserFromDefaultLocalProfile = exports.getAWSUserFromContainerEnvironment = exports.getAWSUserFromEnvironmentVariables = void 0;
+const assert_1 = __importDefault(require("assert"));
+const aws_sdk_1 = __importDefault(require("aws-sdk"));
+async function getAWSUserFromEnvironmentVariables() {
+    (0, assert_1.default)(process.env.AWS_ACCESS_KEY_ID, 'AWS_ACCESS_KEY_ID not defined.');
+    (0, assert_1.default)(process.env.AWS_SECRET_ACCESS_KEY, 'AWS_SECRET_ACCESS_KEY not defined');
+    const region = process.env.AWS_REGION || process.env.AWS_DEFAULT_REGION;
+    (0, assert_1.default)(region, 'Neither AWS_REGION nor AWS_DEFAULT_REGION are defined.');
+    const credentials = new aws_sdk_1.default.EnvironmentCredentials('AWS');
+    await credentials.getPromise();
+    aws_sdk_1.default.config.credentials = credentials;
+    aws_sdk_1.default.config.update({ region });
+    return credentials;
+}
+exports.getAWSUserFromEnvironmentVariables = getAWSUserFromEnvironmentVariables;
+/**
+ * Obtains AWS user credentials from container environment variables for ECS containers.
+ */
+async function getAWSUserFromContainerEnvironment() {
+    const ecsCredentials = new aws_sdk_1.default.ECSCredentials({
+        httpOptions: { timeout: 5000 },
+        maxRetries: 10, // retry 10 times
+    });
+    await ecsCredentials.getPromise();
+    aws_sdk_1.default.config.credentials = ecsCredentials;
+    if (!process.env.AWS_REGION) {
+        throw new Error('AWS region environment variable ("AWS_REGION") not defined for ECS task.');
+    }
+    aws_sdk_1.default.config.update({ region: process.env.AWS_REGION });
+    return ecsCredentials;
+}
+exports.getAWSUserFromContainerEnvironment = getAWSUserFromContainerEnvironment;
+async function getAWSUserFromDefaultLocalProfile() {
+    let credentials = new aws_sdk_1.default.SharedIniFileCredentials();
+    const envVarValues = {
+        AWS_SDK_LOAD_CONFIG: process.env.AWS_SDK_LOAD_CONFIG,
+    };
+    // if no access key is found, try loading process_credentials
+    if (!credentials.accessKeyId) {
+        // see https://github.com/aws/aws-sdk-js/pull/1391
+        process.env.AWS_SDK_LOAD_CONFIG = '1';
+        credentials = new aws_sdk_1.default.ProcessCredentials();
+        await credentials.refreshPromise();
+    }
+    resetEnvironmentVariables(envVarValues);
+    aws_sdk_1.default.config.credentials = credentials;
+    return credentials;
+}
+exports.getAWSUserFromDefaultLocalProfile = getAWSUserFromDefaultLocalProfile;
+async function getAWSUserFromGoldstackConfig(config, userName) {
+    const user = config.users.find((user) => user.name === userName);
+    if (!user) {
+        throw new Error(`User '${userName}' does not exist in AWS configuration.`);
+    }
+    if (user.type === 'profile') {
+        const userConfig = user.config;
+        if (process.env.AWS_SHARED_CREDENTIALS_FILE) {
+            console.warn(`Using AWS_SHARED_CREDENTIALS_FILE environment variable: '${process.env.AWS_SHARED_CREDENTIALS_FILE}'. awsCredentialsFileName in configuration will be ignored.`);
+        }
+        const envVarValues = {
+            AWS_SDK_LOAD_CONFIG: process.env.AWS_SDK_LOAD_CONFIG,
+            AWS_SHARED_CREDENTIALS_FILE: process.env.AWS_SHARED_CREDENTIALS_FILE,
+            AWS_CONFIG_FILE: process.env.AWS_CONFIG_FILE,
+        };
+        if (userConfig.awsConfigFileName) {
+            // support loading from both `config` and `credentials` files, see https://github.com/goldstack/goldstack/issues/17#issuecomment-1044811805  https://github.com/aws/aws-sdk-js/pull/1391
+            process.env.AWS_SDK_LOAD_CONFIG = '1';
+            // filename property is ignored if AWS_SDK_LOAD_CONFIG is set; thus need to set AWS_SHARED_CREDENTIALS_FILE.
+            process.env.AWS_SHARED_CREDENTIALS_FILE =
+                userConfig.awsCredentialsFileName;
+            process.env.AWS_CONFIG_FILE = userConfig.awsConfigFileName;
+        }
+        let credentials;
+        let filename = undefined;
+        if (!process.env.SHARE_CREDENTIALS_FILE) {
+            filename = userConfig.awsCredentialsFileName;
+        }
+        if (userConfig.credentialsSource !== 'process') {
+            credentials = new aws_sdk_1.default.SharedIniFileCredentials({
+                profile: userConfig.profile,
+                filename: filename,
+            });
+        }
+        else {
+            // Allow `AWS.ProcessCredentials` to search the default config location `~/.aws/config` in addition to `credentials`
+            // This matches most other CLI / SDK implementations (including AWS JS SDK v3) and the behaviour of most `credential_process` helper tools
+            // With this enabled, `AWS_CONFIG_FILE` must not contains an invalid path, but `AWS_SHARED_CREDENTIALS_FILE` can be missing.
+            if (!userConfig.awsCredentialsFileName) {
+                process.env.AWS_SDK_LOAD_CONFIG = '1';
+            }
+            credentials = new aws_sdk_1.default.ProcessCredentials({
+                profile: userConfig.profile,
+                filename: filename,
+            });
+            await credentials.refreshPromise();
+        }
+        resetEnvironmentVariables(envVarValues);
+        if (!credentials.accessKeyId) {
+            throw new Error('Cannot load profile ' +
+                userConfig.profile +
+                ' from AWS configuration for user ' +
+                user.name +
+                '. Please perform `aws login` for the profile using the AWS CLI.');
+        }
+        aws_sdk_1.default.config.credentials = credentials;
+        aws_sdk_1.default.config.update({ region: userConfig.awsDefaultRegion });
+        return credentials;
+    }
+    if (user.type === 'apiKey') {
+        const config = user.config;
+        if (!config.awsAccessKeyId || !config.awsSecretAccessKey) {
+            throw new Error(`AWS Access credentials not defined for user ${userName}. Define them in infra/aws/config.json.`);
+        }
+        const credentials = new aws_sdk_1.default.Credentials({
+            accessKeyId: config.awsAccessKeyId || '',
+            secretAccessKey: config.awsSecretAccessKey || '',
+        });
+        aws_sdk_1.default.config.credentials = credentials;
+        aws_sdk_1.default.config.update({ region: config.awsDefaultRegion });
+        return credentials;
+    }
+    if (user.type === 'environmentVariables') {
+        const userConfig = user.config;
+        const awsAccessKeyId = process.env[userConfig.awsAccessKeyIdVariableName];
+        if (!awsAccessKeyId) {
+            throw new Error(`Environment variable expected but not found: ${userConfig.awsAccessKeyIdVariableName}`);
+        }
+        const awsSecretAccessKey = process.env[userConfig.awsSecretAccessKeyVariableName];
+        if (!awsSecretAccessKey) {
+            throw new Error(`Environment variable expected but not found: ${userConfig.awsSecretAccessKeyVariableName}`);
+        }
+        const awsDefaultRegion = process.env[userConfig.awsDefaultRegionVariableName];
+        if (!awsDefaultRegion) {
+            throw new Error(`Environment variable expected but not found: ${userConfig.awsDefaultRegionVariableName}`);
+        }
+        const credentials = new aws_sdk_1.default.Credentials({
+            accessKeyId: awsAccessKeyId,
+            secretAccessKey: awsSecretAccessKey,
+        });
+        aws_sdk_1.default.config.credentials = credentials;
+        aws_sdk_1.default.config.update({ region: awsDefaultRegion });
+        return credentials;
+    }
+    throw new Error(`Unknown user config type ${user.type}`);
+}
+exports.getAWSUserFromGoldstackConfig = getAWSUserFromGoldstackConfig;
+function resetEnvironmentVariables(envVarValues) {
+    Object.entries(envVarValues).forEach(([key, value]) => {
+        if (process.env[key] === undefined) {
+            delete process.env[key];
+        }
+        else {
+            process.env[key] = value;
+        }
+    });
+}
 //# sourceMappingURL=awsUserUtils.js.map

package/dist/src/infraAws.d.ts

@@ -1,19 +1,19 @@
-import { AWSConfiguration, AWSUser, AWSProfileConfig, AWSAPIKeyUserConfig, AWSAccessKeyId, AWSSecretAccessKey, Name } from './types/awsAccount';
-import AWS from 'aws-sdk';
-import { AWSTerraformState, RemoteState } from './types/awsTerraformState';
-import { AWSRegion, AWSEnvironmentVariableUserConfig } from './types/awsAccount';
-export type { AWSConfiguration, AWSUser, AWSRegion, AWSAccessKeyId, AWSSecretAccessKey, AWSProfileConfig as AWSLocalUserConfig, AWSAPIKeyUserConfig as AWSAPIKeyUser, AWSEnvironmentVariableUserConfig, AWSTerraformState, RemoteState, };
-import { AWSDeployment } from './types/awsDeployment';
-export type { AWSDeployment, AWSDeploymentRegion, AWSUserName, } from './types/awsDeployment';
-export declare const readDeploymentFromPackageConfig: (deploymentName: string, path?: string) => AWSDeployment;
-export declare const assertTerraformConfig: (user: Name, path?: string) => AWSTerraformState;
-export declare const writeTerraformConfig: (config: AWSTerraformState, path?: string) => void;
-export declare const hasConfig: (path?: string) => boolean;
-export declare const readConfig: (path?: string) => AWSConfiguration;
-export declare const writeConfig: (config: AWSConfiguration, path?: string) => void;
-export declare const createDefaultConfig: () => AWSConfiguration;
-/**
- * Obtains AWS user credentials from config file or environment variables.
- */
-export declare const getAWSUser: (userName: string, configPath?: string) => Promise<AWS.Credentials>;
+import { AWSConfiguration, AWSUser, AWSProfileConfig, AWSAPIKeyUserConfig, AWSAccessKeyId, AWSSecretAccessKey, Name } from './types/awsAccount';
+import AWS from 'aws-sdk';
+import { AWSTerraformState, RemoteState } from './types/awsTerraformState';
+import { AWSRegion, AWSEnvironmentVariableUserConfig } from './types/awsAccount';
+export type { AWSConfiguration, AWSUser, AWSRegion, AWSAccessKeyId, AWSSecretAccessKey, AWSProfileConfig as AWSLocalUserConfig, AWSAPIKeyUserConfig as AWSAPIKeyUser, AWSEnvironmentVariableUserConfig, AWSTerraformState, RemoteState, };
+import { AWSDeployment } from './types/awsDeployment';
+export type { AWSDeployment, AWSDeploymentRegion, AWSUserName, } from './types/awsDeployment';
+export declare const readDeploymentFromPackageConfig: (deploymentName: string, path?: string) => AWSDeployment;
+export declare const assertTerraformConfig: (user: Name, path?: string) => AWSTerraformState;
+export declare const writeTerraformConfig: (config: AWSTerraformState, path?: string) => void;
+export declare const hasConfig: (path?: string) => boolean;
+export declare const readConfig: (path?: string) => AWSConfiguration;
+export declare const writeConfig: (config: AWSConfiguration, path?: string) => void;
+export declare const createDefaultConfig: () => AWSConfiguration;
+/**
+ * Obtains AWS user credentials from config file or environment variables.
+ */
+export declare const getAWSUser: (userName: string, configPath?: string) => Promise<AWS.Credentials>;
 //# sourceMappingURL=infraAws.d.ts.map

package/dist/src/infraAws.js

@@ -1,112 +1,112 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getAWSUser = exports.createDefaultConfig = exports.writeConfig = exports.readConfig = exports.hasConfig = exports.writeTerraformConfig = exports.assertTerraformConfig = exports.readDeploymentFromPackageConfig = void 0;
-const fs_1 = __importDefault(require("fs"));
-const utils_config_1 = require("@goldstack/utils-config");
-const utils_package_1 = require("@goldstack/utils-package");
-const utils_sh_1 = require("@goldstack/utils-sh");
-const accountConfigSchema_json_1 = __importDefault(require("./schemas/accountConfigSchema.json"));
-const deploymentConfigSchema_json_1 = __importDefault(require("./schemas/deploymentConfigSchema.json"));
-const awsTerraformStateSchema_json_1 = __importDefault(require("./schemas/awsTerraformStateSchema.json"));
-const awsUserUtils_1 = require("./awsUserUtils");
-const readDeploymentFromPackageConfig = (deploymentName, path) => {
-    const packageConfig = (0, utils_package_1.readPackageConfig)(path);
-    const deployment = packageConfig.deployments.find((d) => d.name === deploymentName);
-    if (!deployment) {
-        throw new Error('Cannot find deployment with name: ' + deploymentName);
-    }
-    (0, utils_config_1.validateConfig)(deployment, deploymentConfigSchema_json_1.default, {
-        errorMessage: `Invalid AWS deployment ${deploymentName}`,
-    });
-    return deployment;
-};
-exports.readDeploymentFromPackageConfig = readDeploymentFromPackageConfig;
-const assertTerraformConfig = (user, path) => {
-    if (!path) {
-        path = (0, utils_config_1.getAwsTerraformConfigPath)('./../../');
-    }
-    let res;
-    if (fs_1.default.existsSync(path)) {
-        res = (0, utils_config_1.parseConfig)((0, utils_sh_1.read)(path), awsTerraformStateSchema_json_1.default, {
-            errorMessage: `Cannot load AWS Terraform configuration from ${path}`,
-        });
-    }
-    else {
-        res = {
-            remoteState: [],
-        };
-    }
-    if (!res.remoteState.find((el) => el.user == user)) {
-        res.remoteState.push({
-            user: user,
-        });
-    }
-    return res;
-};
-exports.assertTerraformConfig = assertTerraformConfig;
-const writeTerraformConfig = (config, path) => {
-    if (!path) {
-        path = (0, utils_config_1.getAwsTerraformConfigPath)('./../../');
-    }
-    (0, utils_sh_1.write)(JSON.stringify(config, null, 2), path);
-};
-exports.writeTerraformConfig = writeTerraformConfig;
-const hasConfig = (path) => {
-    if (!path) {
-        path = (0, utils_config_1.getAwsConfigPath)('./../../');
-    }
-    // otherwise check default config file location
-    return fs_1.default.existsSync(path);
-};
-exports.hasConfig = hasConfig;
-const readConfig = (path) => {
-    if (!path) {
-        path = (0, utils_config_1.getAwsConfigPath)('./../../');
-    }
-    // otherwise check default config file location
-    if (!fs_1.default.existsSync(path)) {
-        throw new Error(`AWS configuration file does not exist: ${path}.`);
-    }
-    return (0, utils_config_1.parseConfig)((0, utils_sh_1.read)(path), accountConfigSchema_json_1.default, {
-        errorMessage: `Cannot load AWS configuration from ${path}`,
-    });
-};
-exports.readConfig = readConfig;
-const writeConfig = (config, path) => {
-    if (!path) {
-        path = (0, utils_config_1.getAwsConfigPath)('./../../');
-    }
-    (0, utils_sh_1.write)(JSON.stringify(config, null, 2), path);
-};
-exports.writeConfig = writeConfig;
-const createDefaultConfig = () => {
-    return {
-        users: [],
-    };
-};
-exports.createDefaultConfig = createDefaultConfig;
-/**
- * Obtains AWS user credentials from config file or environment variables.
- */
-const getAWSUser = async (userName, configPath) => {
-    // Load from ECS environment if running in ECS
-    if (process.env.AWS_CONTAINER_CREDENTIALS_RELATIVE_URI) {
-        return await (0, awsUserUtils_1.getAWSUserFromContainerEnvironment)();
-    }
-    // Load credentials from environment variables if available
-    if (process.env.AWS_ACCESS_KEY_ID) {
-        return await (0, awsUserUtils_1.getAWSUserFromEnvironmentVariables)();
-    }
-    // Try loading default local user if no config file provided
-    if (!(0, exports.hasConfig)(configPath)) {
-        return await (0, awsUserUtils_1.getAWSUserFromDefaultLocalProfile)();
-    }
-    // Load users as configured in Goldstack configuration
-    const config = (0, exports.readConfig)(configPath);
-    return await (0, awsUserUtils_1.getAWSUserFromGoldstackConfig)(config, userName);
-};
-exports.getAWSUser = getAWSUser;
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getAWSUser = exports.createDefaultConfig = exports.writeConfig = exports.readConfig = exports.hasConfig = exports.writeTerraformConfig = exports.assertTerraformConfig = exports.readDeploymentFromPackageConfig = void 0;
+const fs_1 = __importDefault(require("fs"));
+const utils_config_1 = require("@goldstack/utils-config");
+const utils_package_1 = require("@goldstack/utils-package");
+const utils_sh_1 = require("@goldstack/utils-sh");
+const accountConfigSchema_json_1 = __importDefault(require("./schemas/accountConfigSchema.json"));
+const deploymentConfigSchema_json_1 = __importDefault(require("./schemas/deploymentConfigSchema.json"));
+const awsTerraformStateSchema_json_1 = __importDefault(require("./schemas/awsTerraformStateSchema.json"));
+const awsUserUtils_1 = require("./awsUserUtils");
+const readDeploymentFromPackageConfig = (deploymentName, path) => {
+    const packageConfig = (0, utils_package_1.readPackageConfig)(path);
+    const deployment = packageConfig.deployments.find((d) => d.name === deploymentName);
+    if (!deployment) {
+        throw new Error('Cannot find deployment with name: ' + deploymentName);
+    }
+    (0, utils_config_1.validateConfig)(deployment, deploymentConfigSchema_json_1.default, {
+        errorMessage: `Invalid AWS deployment ${deploymentName}`,
+    });
+    return deployment;
+};
+exports.readDeploymentFromPackageConfig = readDeploymentFromPackageConfig;
+const assertTerraformConfig = (user, path) => {
+    if (!path) {
+        path = (0, utils_config_1.getAwsTerraformConfigPath)('./../../');
+    }
+    let res;
+    if (fs_1.default.existsSync(path)) {
+        res = (0, utils_config_1.parseConfig)((0, utils_sh_1.read)(path), awsTerraformStateSchema_json_1.default, {
+            errorMessage: `Cannot load AWS Terraform configuration from ${path}`,
+        });
+    }
+    else {
+        res = {
+            remoteState: [],
+        };
+    }
+    if (!res.remoteState.find((el) => el.user == user)) {
+        res.remoteState.push({
+            user: user,
+        });
+    }
+    return res;
+};
+exports.assertTerraformConfig = assertTerraformConfig;
+const writeTerraformConfig = (config, path) => {
+    if (!path) {
+        path = (0, utils_config_1.getAwsTerraformConfigPath)('./../../');
+    }
+    (0, utils_sh_1.write)(JSON.stringify(config, null, 2), path);
+};
+exports.writeTerraformConfig = writeTerraformConfig;
+const hasConfig = (path) => {
+    if (!path) {
+        path = (0, utils_config_1.getAwsConfigPath)('./../../');
+    }
+    // otherwise check default config file location
+    return fs_1.default.existsSync(path);
+};
+exports.hasConfig = hasConfig;
+const readConfig = (path) => {
+    if (!path) {
+        path = (0, utils_config_1.getAwsConfigPath)('./../../');
+    }
+    // otherwise check default config file location
+    if (!fs_1.default.existsSync(path)) {
+        throw new Error(`AWS configuration file does not exist: ${path}.`);
+    }
+    return (0, utils_config_1.parseConfig)((0, utils_sh_1.read)(path), accountConfigSchema_json_1.default, {
+        errorMessage: `Cannot load AWS configuration from ${path}`,
+    });
+};
+exports.readConfig = readConfig;
+const writeConfig = (config, path) => {
+    if (!path) {
+        path = (0, utils_config_1.getAwsConfigPath)('./../../');
+    }
+    (0, utils_sh_1.write)(JSON.stringify(config, null, 2), path);
+};
+exports.writeConfig = writeConfig;
+const createDefaultConfig = () => {
+    return {
+        users: [],
+    };
+};
+exports.createDefaultConfig = createDefaultConfig;
+/**
+ * Obtains AWS user credentials from config file or environment variables.
+ */
+const getAWSUser = async (userName, configPath) => {
+    // Load from ECS environment if running in ECS
+    if (process.env.AWS_CONTAINER_CREDENTIALS_RELATIVE_URI) {
+        return await (0, awsUserUtils_1.getAWSUserFromContainerEnvironment)();
+    }
+    // Load credentials from environment variables if available
+    if (process.env.AWS_ACCESS_KEY_ID) {
+        return await (0, awsUserUtils_1.getAWSUserFromEnvironmentVariables)();
+    }
+    // Try loading default local user if no config file provided
+    if (!(0, exports.hasConfig)(configPath)) {
+        return await (0, awsUserUtils_1.getAWSUserFromDefaultLocalProfile)();
+    }
+    // Load users as configured in Goldstack configuration
+    const config = (0, exports.readConfig)(configPath);
+    return await (0, awsUserUtils_1.getAWSUserFromGoldstackConfig)(config, userName);
+};
+exports.getAWSUser = getAWSUser;
 //# sourceMappingURL=infraAws.js.map