npm - @middy/secrets-manager - Versions diffs - 4.5.4 → 4.6.0 - Mend

@middy/secrets-manager 4.5.4 → 4.6.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/index.cjs CHANGED Viewed

@@ -16,8 +16,10 @@ const defaults = {
     awsClientAssumeRole: undefined,
     awsClientCapture: undefined,
     fetchData: {},
+    fetchRotationDate: false,
     disablePrefetch: false,
     cacheKey: 'secrets-manager',
+    cacheKeyExpiry: {},
     cacheExpiry: -1,
     setToContext: false
 };
@@ -30,9 +32,21 @@ const secretsManagerMiddleware = (opts = {})=>{
         const values = {};
         for (const internalKey of Object.keys(options.fetchData)){
             if (cachedValues[internalKey]) continue;
-            values[internalKey] = client.send(new _clientsecretsmanager.GetSecretValueCommand({
-                SecretId: options.fetchData[internalKey]
-            })).then((resp)=>(0, _util.jsonSafeParse)(resp.SecretString)).catch((e)=>{
+            values[internalKey] = Promise.resolve().then(()=>{
+                if (options.fetchRotationDate === true || options.fetchRotationDate?.[internalKey]) {
+                    return client.send(new _clientsecretsmanager.DescribeSecretCommand({
+                        SecretId: options.fetchData[internalKey]
+                    })).then((resp)=>{
+                        if (options.cacheExpiry < 0) {
+                            options.cacheKeyExpiry[internalKey] = resp.NextRotationDate * 1000;
+                        } else {
+                            options.cacheKeyExpiry[internalKey] = Math.min(Math.max(resp.LastRotationDate, resp.LastChangedDate) * 1000 + options.cacheExpiry, resp.NextRotationDate * 1000);
+                        }
+                    });
+                }
+            }).then(()=>client.send(new _clientsecretsmanager.GetSecretValueCommand({
+                    SecretId: options.fetchData[internalKey]
+                }))).then((resp)=>(0, _util.jsonSafeParse)(resp.SecretString)).catch((e)=>{
                 const value = (0, _util.getCache)(options.cacheKey).value ?? {};
                 value[internalKey] = undefined;
                 (0, _util.modifyCache)(options.cacheKey, value);

package/index.js CHANGED Viewed

@@ -1,13 +1,15 @@
 import { canPrefetch, createPrefetchClient, createClient, getCache, getInternal, processCache, modifyCache, jsonSafeParse } from '@middy/util';
-import { SecretsManagerClient, GetSecretValueCommand } from '@aws-sdk/client-secrets-manager';
+import { SecretsManagerClient, DescribeSecretCommand, GetSecretValueCommand } from '@aws-sdk/client-secrets-manager';
 const defaults = {
     AwsClient: SecretsManagerClient,
     awsClientOptions: {},
     awsClientAssumeRole: undefined,
     awsClientCapture: undefined,
     fetchData: {},
+    fetchRotationDate: false,
     disablePrefetch: false,
     cacheKey: 'secrets-manager',
+    cacheKeyExpiry: {},
     cacheExpiry: -1,
     setToContext: false
 };
@@ -20,9 +22,21 @@ const secretsManagerMiddleware = (opts = {})=>{
         const values = {};
         for (const internalKey of Object.keys(options.fetchData)){
             if (cachedValues[internalKey]) continue;
-            values[internalKey] = client.send(new GetSecretValueCommand({
-                SecretId: options.fetchData[internalKey]
-            })).then((resp)=>jsonSafeParse(resp.SecretString)).catch((e)=>{
+            values[internalKey] = Promise.resolve().then(()=>{
+                if (options.fetchRotationDate === true || options.fetchRotationDate?.[internalKey]) {
+                    return client.send(new DescribeSecretCommand({
+                        SecretId: options.fetchData[internalKey]
+                    })).then((resp)=>{
+                        if (options.cacheExpiry < 0) {
+                            options.cacheKeyExpiry[internalKey] = resp.NextRotationDate * 1000;
+                        } else {
+                            options.cacheKeyExpiry[internalKey] = Math.min(Math.max(resp.LastRotationDate, resp.LastChangedDate) * 1000 + options.cacheExpiry, resp.NextRotationDate * 1000);
+                        }
+                    });
+                }
+            }).then(()=>client.send(new GetSecretValueCommand({
+                    SecretId: options.fetchData[internalKey]
+                }))).then((resp)=>jsonSafeParse(resp.SecretString)).catch((e)=>{
                 const value = getCache(options.cacheKey).value ?? {};
                 value[internalKey] = undefined;
                 modifyCache(options.cacheKey, value);

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@middy/secrets-manager",
-  "version": "4.5.4",
+  "version": "4.6.0",
   "description": "Secrets Manager middleware for the middy framework",
   "type": "module",
   "engines": {
@@ -64,13 +64,13 @@
     "url": "https://github.com/sponsors/willfarrell"
   },
   "dependencies": {
-    "@middy/util": "4.5.4"
+    "@middy/util": "4.6.0"
   },
   "devDependencies": {
     "@aws-sdk/client-secrets-manager": "^3.0.0",
-    "@middy/core": "4.5.4",
+    "@middy/core": "4.6.0",
     "@types/aws-lambda": "^8.10.101",
     "aws-xray-sdk": "^3.3.3"
   },
-  "gitHead": "be6949ee2d8862d9af38cedda6746dfa24535f85"
+  "gitHead": "34e52521a81a224e3d97de6171604c49e676f0d4"
 }