@sisense/mcp-server 0.2.1

package/dist/index-dxfb3krz.js

@@ -0,0 +1,1489 @@
+import {
+  require_dist_cjs as require_dist_cjs6,
+  require_dist_cjs1 as require_dist_cjs8,
+  require_dist_cjs10 as require_dist_cjs18,
+  require_dist_cjs11 as require_dist_cjs19,
+  require_dist_cjs12 as require_dist_cjs22,
+  require_dist_cjs13 as require_dist_cjs23,
+  require_dist_cjs14 as require_dist_cjs24,
+  require_dist_cjs15 as require_dist_cjs25,
+  require_dist_cjs16 as require_dist_cjs26,
+  require_dist_cjs17 as require_dist_cjs27,
+  require_dist_cjs18 as require_dist_cjs28,
+  require_dist_cjs19 as require_dist_cjs29,
+  require_dist_cjs2 as require_dist_cjs10,
+  require_dist_cjs3 as require_dist_cjs11,
+  require_dist_cjs4 as require_dist_cjs12,
+  require_dist_cjs5 as require_dist_cjs13,
+  require_dist_cjs7 as require_dist_cjs14,
+  require_dist_cjs8 as require_dist_cjs16,
+  require_dist_cjs9 as require_dist_cjs17,
+  require_protocols
+} from "./sse-server-4jjec4fz.js";
+import {
+  require_dist_cjs as require_dist_cjs15,
+  require_dist_cjs1 as require_dist_cjs21
+} from "./sse-server-nwjjjz6x.js";
+import {
+  require_dist_cjs as require_dist_cjs20
+} from "./sse-server-qj4zxq0f.js";
+import {
+  require_dist_cjs as require_dist_cjs2,
+  require_dist_cjs1 as require_dist_cjs4,
+  require_dist_cjs3 as require_dist_cjs5,
+  require_dist_cjs7 as require_dist_cjs9,
+  require_schema,
+  require_tslib
+} from "./sse-server-txz5g5t0.js";
+import {
+  require_dist_cjs
+} from "./sse-server-epd916s3.js";
+import {
+  require_dist_cjs2 as require_dist_cjs3
+} from "./sse-server-5tmgacdx.js";
+import"./sse-server-4g9za0qq.js";
+import {
+  require_client
+} from "./sse-server-mkesh468.js";
+import {
+  require_dist_cjs as require_dist_cjs7
+} from "./sse-server-3343e7xh.js";
+import {
+  __commonJS,
+  __esm,
+  __require,
+  __toESM
+} from "./sse-server-7wcvyxyj.js";
+
+// node_modules/@aws-sdk/core/dist-cjs/submodules/httpAuthSchemes/index.js
+var require_httpAuthSchemes = __commonJS((exports) => {
+  var protocolHttp = require_dist_cjs();
+  var core = require_dist_cjs6();
+  var propertyProvider = require_dist_cjs7();
+  var client = require_client();
+  var signatureV4 = require_dist_cjs8();
+  var getDateHeader = (response) => protocolHttp.HttpResponse.isInstance(response) ? response.headers?.date ?? response.headers?.Date : undefined;
+  var getSkewCorrectedDate = (systemClockOffset) => new Date(Date.now() + systemClockOffset);
+  var isClockSkewed = (clockTime, systemClockOffset) => Math.abs(getSkewCorrectedDate(systemClockOffset).getTime() - clockTime) >= 300000;
+  var getUpdatedSystemClockOffset = (clockTime, currentSystemClockOffset) => {
+    const clockTimeInMs = Date.parse(clockTime);
+    if (isClockSkewed(clockTimeInMs, currentSystemClockOffset)) {
+      return clockTimeInMs - Date.now();
+    }
+    return currentSystemClockOffset;
+  };
+  var throwSigningPropertyError = (name, property) => {
+    if (!property) {
+      throw new Error(`Property \`${name}\` is not resolved for AWS SDK SigV4Auth`);
+    }
+    return property;
+  };
+  var validateSigningProperties = async (signingProperties) => {
+    const context = throwSigningPropertyError("context", signingProperties.context);
+    const config = throwSigningPropertyError("config", signingProperties.config);
+    const authScheme = context.endpointV2?.properties?.authSchemes?.[0];
+    const signerFunction = throwSigningPropertyError("signer", config.signer);
+    const signer = await signerFunction(authScheme);
+    const signingRegion = signingProperties?.signingRegion;
+    const signingRegionSet = signingProperties?.signingRegionSet;
+    const signingName = signingProperties?.signingName;
+    return {
+      config,
+      signer,
+      signingRegion,
+      signingRegionSet,
+      signingName
+    };
+  };
+
+  class AwsSdkSigV4Signer {
+    async sign(httpRequest, identity, signingProperties) {
+      if (!protocolHttp.HttpRequest.isInstance(httpRequest)) {
+        throw new Error("The request is not an instance of `HttpRequest` and cannot be signed");
+      }
+      const validatedProps = await validateSigningProperties(signingProperties);
+      const { config, signer } = validatedProps;
+      let { signingRegion, signingName } = validatedProps;
+      const handlerExecutionContext = signingProperties.context;
+      if (handlerExecutionContext?.authSchemes?.length ?? 0 > 1) {
+        const [first, second] = handlerExecutionContext.authSchemes;
+        if (first?.name === "sigv4a" && second?.name === "sigv4") {
+          signingRegion = second?.signingRegion ?? signingRegion;
+          signingName = second?.signingName ?? signingName;
+        }
+      }
+      const signedRequest = await signer.sign(httpRequest, {
+        signingDate: getSkewCorrectedDate(config.systemClockOffset),
+        signingRegion,
+        signingService: signingName
+      });
+      return signedRequest;
+    }
+    errorHandler(signingProperties) {
+      return (error) => {
+        const serverTime = error.ServerTime ?? getDateHeader(error.$response);
+        if (serverTime) {
+          const config = throwSigningPropertyError("config", signingProperties.config);
+          const initialSystemClockOffset = config.systemClockOffset;
+          config.systemClockOffset = getUpdatedSystemClockOffset(serverTime, config.systemClockOffset);
+          const clockSkewCorrected = config.systemClockOffset !== initialSystemClockOffset;
+          if (clockSkewCorrected && error.$metadata) {
+            error.$metadata.clockSkewCorrected = true;
+          }
+        }
+        throw error;
+      };
+    }
+    successHandler(httpResponse, signingProperties) {
+      const dateHeader = getDateHeader(httpResponse);
+      if (dateHeader) {
+        const config = throwSigningPropertyError("config", signingProperties.config);
+        config.systemClockOffset = getUpdatedSystemClockOffset(dateHeader, config.systemClockOffset);
+      }
+    }
+  }
+  var AWSSDKSigV4Signer = AwsSdkSigV4Signer;
+
+  class AwsSdkSigV4ASigner extends AwsSdkSigV4Signer {
+    async sign(httpRequest, identity, signingProperties) {
+      if (!protocolHttp.HttpRequest.isInstance(httpRequest)) {
+        throw new Error("The request is not an instance of `HttpRequest` and cannot be signed");
+      }
+      const { config, signer, signingRegion, signingRegionSet, signingName } = await validateSigningProperties(signingProperties);
+      const configResolvedSigningRegionSet = await config.sigv4aSigningRegionSet?.();
+      const multiRegionOverride = (configResolvedSigningRegionSet ?? signingRegionSet ?? [signingRegion]).join(",");
+      const signedRequest = await signer.sign(httpRequest, {
+        signingDate: getSkewCorrectedDate(config.systemClockOffset),
+        signingRegion: multiRegionOverride,
+        signingService: signingName
+      });
+      return signedRequest;
+    }
+  }
+  var getArrayForCommaSeparatedString = (str) => typeof str === "string" && str.length > 0 ? str.split(",").map((item) => item.trim()) : [];
+  var getBearerTokenEnvKey = (signingName) => `AWS_BEARER_TOKEN_${signingName.replace(/[\s-]/g, "_").toUpperCase()}`;
+  var NODE_AUTH_SCHEME_PREFERENCE_ENV_KEY = "AWS_AUTH_SCHEME_PREFERENCE";
+  var NODE_AUTH_SCHEME_PREFERENCE_CONFIG_KEY = "auth_scheme_preference";
+  var NODE_AUTH_SCHEME_PREFERENCE_OPTIONS = {
+    environmentVariableSelector: (env, options) => {
+      if (options?.signingName) {
+        const bearerTokenKey = getBearerTokenEnvKey(options.signingName);
+        if (bearerTokenKey in env)
+          return ["httpBearerAuth"];
+      }
+      if (!(NODE_AUTH_SCHEME_PREFERENCE_ENV_KEY in env))
+        return;
+      return getArrayForCommaSeparatedString(env[NODE_AUTH_SCHEME_PREFERENCE_ENV_KEY]);
+    },
+    configFileSelector: (profile) => {
+      if (!(NODE_AUTH_SCHEME_PREFERENCE_CONFIG_KEY in profile))
+        return;
+      return getArrayForCommaSeparatedString(profile[NODE_AUTH_SCHEME_PREFERENCE_CONFIG_KEY]);
+    },
+    default: []
+  };
+  var resolveAwsSdkSigV4AConfig = (config) => {
+    config.sigv4aSigningRegionSet = core.normalizeProvider(config.sigv4aSigningRegionSet);
+    return config;
+  };
+  var NODE_SIGV4A_CONFIG_OPTIONS = {
+    environmentVariableSelector(env) {
+      if (env.AWS_SIGV4A_SIGNING_REGION_SET) {
+        return env.AWS_SIGV4A_SIGNING_REGION_SET.split(",").map((_) => _.trim());
+      }
+      throw new propertyProvider.ProviderError("AWS_SIGV4A_SIGNING_REGION_SET not set in env.", {
+        tryNextLink: true
+      });
+    },
+    configFileSelector(profile) {
+      if (profile.sigv4a_signing_region_set) {
+        return (profile.sigv4a_signing_region_set ?? "").split(",").map((_) => _.trim());
+      }
+      throw new propertyProvider.ProviderError("sigv4a_signing_region_set not set in profile.", {
+        tryNextLink: true
+      });
+    },
+    default: undefined
+  };
+  var resolveAwsSdkSigV4Config = (config) => {
+    let inputCredentials = config.credentials;
+    let isUserSupplied = !!config.credentials;
+    let resolvedCredentials = undefined;
+    Object.defineProperty(config, "credentials", {
+      set(credentials) {
+        if (credentials && credentials !== inputCredentials && credentials !== resolvedCredentials) {
+          isUserSupplied = true;
+        }
+        inputCredentials = credentials;
+        const memoizedProvider = normalizeCredentialProvider(config, {
+          credentials: inputCredentials,
+          credentialDefaultProvider: config.credentialDefaultProvider
+        });
+        const boundProvider = bindCallerConfig(config, memoizedProvider);
+        if (isUserSupplied && !boundProvider.attributed) {
+          resolvedCredentials = async (options) => boundProvider(options).then((creds) => client.setCredentialFeature(creds, "CREDENTIALS_CODE", "e"));
+          resolvedCredentials.memoized = boundProvider.memoized;
+          resolvedCredentials.configBound = boundProvider.configBound;
+          resolvedCredentials.attributed = true;
+        } else {
+          resolvedCredentials = boundProvider;
+        }
+      },
+      get() {
+        return resolvedCredentials;
+      },
+      enumerable: true,
+      configurable: true
+    });
+    config.credentials = inputCredentials;
+    const { signingEscapePath = true, systemClockOffset = config.systemClockOffset || 0, sha256 } = config;
+    let signer;
+    if (config.signer) {
+      signer = core.normalizeProvider(config.signer);
+    } else if (config.regionInfoProvider) {
+      signer = () => core.normalizeProvider(config.region)().then(async (region) => [
+        await config.regionInfoProvider(region, {
+          useFipsEndpoint: await config.useFipsEndpoint(),
+          useDualstackEndpoint: await config.useDualstackEndpoint()
+        }) || {},
+        region
+      ]).then(([regionInfo, region]) => {
+        const { signingRegion, signingService } = regionInfo;
+        config.signingRegion = config.signingRegion || signingRegion || region;
+        config.signingName = config.signingName || signingService || config.serviceId;
+        const params = {
+          ...config,
+          credentials: config.credentials,
+          region: config.signingRegion,
+          service: config.signingName,
+          sha256,
+          uriEscapePath: signingEscapePath
+        };
+        const SignerCtor = config.signerConstructor || signatureV4.SignatureV4;
+        return new SignerCtor(params);
+      });
+    } else {
+      signer = async (authScheme) => {
+        authScheme = Object.assign({}, {
+          name: "sigv4",
+          signingName: config.signingName || config.defaultSigningName,
+          signingRegion: await core.normalizeProvider(config.region)(),
+          properties: {}
+        }, authScheme);
+        const signingRegion = authScheme.signingRegion;
+        const signingService = authScheme.signingName;
+        config.signingRegion = config.signingRegion || signingRegion;
+        config.signingName = config.signingName || signingService || config.serviceId;
+        const params = {
+          ...config,
+          credentials: config.credentials,
+          region: config.signingRegion,
+          service: config.signingName,
+          sha256,
+          uriEscapePath: signingEscapePath
+        };
+        const SignerCtor = config.signerConstructor || signatureV4.SignatureV4;
+        return new SignerCtor(params);
+      };
+    }
+    const resolvedConfig = Object.assign(config, {
+      systemClockOffset,
+      signingEscapePath,
+      signer
+    });
+    return resolvedConfig;
+  };
+  var resolveAWSSDKSigV4Config = resolveAwsSdkSigV4Config;
+  function normalizeCredentialProvider(config, { credentials, credentialDefaultProvider }) {
+    let credentialsProvider;
+    if (credentials) {
+      if (!credentials?.memoized) {
+        credentialsProvider = core.memoizeIdentityProvider(credentials, core.isIdentityExpired, core.doesIdentityRequireRefresh);
+      } else {
+        credentialsProvider = credentials;
+      }
+    } else {
+      if (credentialDefaultProvider) {
+        credentialsProvider = core.normalizeProvider(credentialDefaultProvider(Object.assign({}, config, {
+          parentClientConfig: config
+        })));
+      } else {
+        credentialsProvider = async () => {
+          throw new Error("@aws-sdk/core::resolveAwsSdkSigV4Config - `credentials` not provided and no credentialDefaultProvider was configured.");
+        };
+      }
+    }
+    credentialsProvider.memoized = true;
+    return credentialsProvider;
+  }
+  function bindCallerConfig(config, credentialsProvider) {
+    if (credentialsProvider.configBound) {
+      return credentialsProvider;
+    }
+    const fn = async (options) => credentialsProvider({ ...options, callerClientConfig: config });
+    fn.memoized = credentialsProvider.memoized;
+    fn.configBound = true;
+    return fn;
+  }
+  exports.AWSSDKSigV4Signer = AWSSDKSigV4Signer;
+  exports.AwsSdkSigV4ASigner = AwsSdkSigV4ASigner;
+  exports.AwsSdkSigV4Signer = AwsSdkSigV4Signer;
+  exports.NODE_AUTH_SCHEME_PREFERENCE_OPTIONS = NODE_AUTH_SCHEME_PREFERENCE_OPTIONS;
+  exports.NODE_SIGV4A_CONFIG_OPTIONS = NODE_SIGV4A_CONFIG_OPTIONS;
+  exports.getBearerTokenEnvKey = getBearerTokenEnvKey;
+  exports.resolveAWSSDKSigV4Config = resolveAWSSDKSigV4Config;
+  exports.resolveAwsSdkSigV4AConfig = resolveAwsSdkSigV4AConfig;
+  exports.resolveAwsSdkSigV4Config = resolveAwsSdkSigV4Config;
+  exports.validateSigningProperties = validateSigningProperties;
+});
+
+// node_modules/@aws-sdk/token-providers/dist-cjs/index.js
+var require_dist_cjs30 = __commonJS((exports) => {
+  var client = require_client();
+  var httpAuthSchemes = require_httpAuthSchemes();
+  var propertyProvider = require_dist_cjs7();
+  var sharedIniFileLoader = require_dist_cjs20();
+  var fs = __require("fs");
+  var fromEnvSigningName = ({ logger, signingName } = {}) => async () => {
+    logger?.debug?.("@aws-sdk/token-providers - fromEnvSigningName");
+    if (!signingName) {
+      throw new propertyProvider.TokenProviderError("Please pass 'signingName' to compute environment variable key", { logger });
+    }
+    const bearerTokenKey = httpAuthSchemes.getBearerTokenEnvKey(signingName);
+    if (!(bearerTokenKey in process.env)) {
+      throw new propertyProvider.TokenProviderError(`Token not present in '${bearerTokenKey}' environment variable`, { logger });
+    }
+    const token = { token: process.env[bearerTokenKey] };
+    client.setTokenFeature(token, "BEARER_SERVICE_ENV_VARS", "3");
+    return token;
+  };
+  var EXPIRE_WINDOW_MS = 5 * 60 * 1000;
+  var REFRESH_MESSAGE = `To refresh this SSO session run 'aws sso login' with the corresponding profile.`;
+  var getSsoOidcClient = async (ssoRegion, init = {}, callerClientConfig) => {
+    const { SSOOIDCClient } = await import("./index-vrapm0b4.js");
+    const coalesce = (prop) => init.clientConfig?.[prop] ?? init.parentClientConfig?.[prop] ?? callerClientConfig?.[prop];
+    const ssoOidcClient = new SSOOIDCClient(Object.assign({}, init.clientConfig ?? {}, {
+      region: ssoRegion ?? init.clientConfig?.region,
+      logger: coalesce("logger"),
+      userAgentAppId: coalesce("userAgentAppId")
+    }));
+    return ssoOidcClient;
+  };
+  var getNewSsoOidcToken = async (ssoToken, ssoRegion, init = {}, callerClientConfig) => {
+    const { CreateTokenCommand } = await import("./index-vrapm0b4.js");
+    const ssoOidcClient = await getSsoOidcClient(ssoRegion, init, callerClientConfig);
+    return ssoOidcClient.send(new CreateTokenCommand({
+      clientId: ssoToken.clientId,
+      clientSecret: ssoToken.clientSecret,
+      refreshToken: ssoToken.refreshToken,
+      grantType: "refresh_token"
+    }));
+  };
+  var validateTokenExpiry = (token) => {
+    if (token.expiration && token.expiration.getTime() < Date.now()) {
+      throw new propertyProvider.TokenProviderError(`Token is expired. ${REFRESH_MESSAGE}`, false);
+    }
+  };
+  var validateTokenKey = (key, value, forRefresh = false) => {
+    if (typeof value === "undefined") {
+      throw new propertyProvider.TokenProviderError(`Value not present for '${key}' in SSO Token${forRefresh ? ". Cannot refresh" : ""}. ${REFRESH_MESSAGE}`, false);
+    }
+  };
+  var { writeFile } = fs.promises;
+  var writeSSOTokenToFile = (id, ssoToken) => {
+    const tokenFilepath = sharedIniFileLoader.getSSOTokenFilepath(id);
+    const tokenString = JSON.stringify(ssoToken, null, 2);
+    return writeFile(tokenFilepath, tokenString);
+  };
+  var lastRefreshAttemptTime = new Date(0);
+  var fromSso = (init = {}) => async ({ callerClientConfig } = {}) => {
+    init.logger?.debug("@aws-sdk/token-providers - fromSso");
+    const profiles = await sharedIniFileLoader.parseKnownFiles(init);
+    const profileName = sharedIniFileLoader.getProfileName({
+      profile: init.profile ?? callerClientConfig?.profile
+    });
+    const profile = profiles[profileName];
+    if (!profile) {
+      throw new propertyProvider.TokenProviderError(`Profile '${profileName}' could not be found in shared credentials file.`, false);
+    } else if (!profile["sso_session"]) {
+      throw new propertyProvider.TokenProviderError(`Profile '${profileName}' is missing required property 'sso_session'.`);
+    }
+    const ssoSessionName = profile["sso_session"];
+    const ssoSessions = await sharedIniFileLoader.loadSsoSessionData(init);
+    const ssoSession = ssoSessions[ssoSessionName];
+    if (!ssoSession) {
+      throw new propertyProvider.TokenProviderError(`Sso session '${ssoSessionName}' could not be found in shared credentials file.`, false);
+    }
+    for (const ssoSessionRequiredKey of ["sso_start_url", "sso_region"]) {
+      if (!ssoSession[ssoSessionRequiredKey]) {
+        throw new propertyProvider.TokenProviderError(`Sso session '${ssoSessionName}' is missing required property '${ssoSessionRequiredKey}'.`, false);
+      }
+    }
+    ssoSession["sso_start_url"];
+    const ssoRegion = ssoSession["sso_region"];
+    let ssoToken;
+    try {
+      ssoToken = await sharedIniFileLoader.getSSOTokenFromFile(ssoSessionName);
+    } catch (e) {
+      throw new propertyProvider.TokenProviderError(`The SSO session token associated with profile=${profileName} was not found or is invalid. ${REFRESH_MESSAGE}`, false);
+    }
+    validateTokenKey("accessToken", ssoToken.accessToken);
+    validateTokenKey("expiresAt", ssoToken.expiresAt);
+    const { accessToken, expiresAt } = ssoToken;
+    const existingToken = { token: accessToken, expiration: new Date(expiresAt) };
+    if (existingToken.expiration.getTime() - Date.now() > EXPIRE_WINDOW_MS) {
+      return existingToken;
+    }
+    if (Date.now() - lastRefreshAttemptTime.getTime() < 30000) {
+      validateTokenExpiry(existingToken);
+      return existingToken;
+    }
+    validateTokenKey("clientId", ssoToken.clientId, true);
+    validateTokenKey("clientSecret", ssoToken.clientSecret, true);
+    validateTokenKey("refreshToken", ssoToken.refreshToken, true);
+    try {
+      lastRefreshAttemptTime.setTime(Date.now());
+      const newSsoOidcToken = await getNewSsoOidcToken(ssoToken, ssoRegion, init, callerClientConfig);
+      validateTokenKey("accessToken", newSsoOidcToken.accessToken);
+      validateTokenKey("expiresIn", newSsoOidcToken.expiresIn);
+      const newTokenExpiration = new Date(Date.now() + newSsoOidcToken.expiresIn * 1000);
+      try {
+        await writeSSOTokenToFile(ssoSessionName, {
+          ...ssoToken,
+          accessToken: newSsoOidcToken.accessToken,
+          expiresAt: newTokenExpiration.toISOString(),
+          refreshToken: newSsoOidcToken.refreshToken
+        });
+      } catch (error) {}
+      return {
+        token: newSsoOidcToken.accessToken,
+        expiration: newTokenExpiration
+      };
+    } catch (error) {
+      validateTokenExpiry(existingToken);
+      return existingToken;
+    }
+  };
+  var fromStatic = ({ token, logger }) => async () => {
+    logger?.debug("@aws-sdk/token-providers - fromStatic");
+    if (!token || !token.token) {
+      throw new propertyProvider.TokenProviderError(`Please pass a valid token to fromStatic`, false);
+    }
+    return token;
+  };
+  var nodeProvider = (init = {}) => propertyProvider.memoize(propertyProvider.chain(fromSso(init), async () => {
+    throw new propertyProvider.TokenProviderError("Could not load token from any providers", false);
+  }), (token) => token.expiration !== undefined && token.expiration.getTime() - Date.now() < 300000, (token) => token.expiration !== undefined);
+  exports.fromEnvSigningName = fromEnvSigningName;
+  exports.fromSso = fromSso;
+  exports.fromStatic = fromStatic;
+  exports.nodeProvider = nodeProvider;
+});
+
+// node_modules/@aws-sdk/client-sso/dist-cjs/auth/httpAuthSchemeProvider.js
+var require_httpAuthSchemeProvider = __commonJS((exports) => {
+  Object.defineProperty(exports, "__esModule", { value: true });
+  exports.resolveHttpAuthSchemeConfig = exports.defaultSSOHttpAuthSchemeProvider = exports.defaultSSOHttpAuthSchemeParametersProvider = undefined;
+  var core_1 = require_dist_cjs10();
+  var util_middleware_1 = require_dist_cjs2();
+  var defaultSSOHttpAuthSchemeParametersProvider = async (config, context, input) => {
+    return {
+      operation: (0, util_middleware_1.getSmithyContext)(context).operation,
+      region: await (0, util_middleware_1.normalizeProvider)(config.region)() || (() => {
+        throw new Error("expected `region` to be configured for `aws.auth#sigv4`");
+      })()
+    };
+  };
+  exports.defaultSSOHttpAuthSchemeParametersProvider = defaultSSOHttpAuthSchemeParametersProvider;
+  function createAwsAuthSigv4HttpAuthOption(authParameters) {
+    return {
+      schemeId: "aws.auth#sigv4",
+      signingProperties: {
+        name: "awsssoportal",
+        region: authParameters.region
+      },
+      propertiesExtractor: (config, context) => ({
+        signingProperties: {
+          config,
+          context
+        }
+      })
+    };
+  }
+  function createSmithyApiNoAuthHttpAuthOption(authParameters) {
+    return {
+      schemeId: "smithy.api#noAuth"
+    };
+  }
+  var defaultSSOHttpAuthSchemeProvider = (authParameters) => {
+    const options = [];
+    switch (authParameters.operation) {
+      case "GetRoleCredentials":
+        {
+          options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
+          break;
+        }
+        ;
+      case "ListAccountRoles":
+        {
+          options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
+          break;
+        }
+        ;
+      case "ListAccounts":
+        {
+          options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
+          break;
+        }
+        ;
+      case "Logout":
+        {
+          options.push(createSmithyApiNoAuthHttpAuthOption(authParameters));
+          break;
+        }
+        ;
+      default: {
+        options.push(createAwsAuthSigv4HttpAuthOption(authParameters));
+      }
+    }
+    return options;
+  };
+  exports.defaultSSOHttpAuthSchemeProvider = defaultSSOHttpAuthSchemeProvider;
+  var resolveHttpAuthSchemeConfig = (config) => {
+    const config_0 = (0, core_1.resolveAwsSdkSigV4Config)(config);
+    return Object.assign(config_0, {
+      authSchemePreference: (0, util_middleware_1.normalizeProvider)(config.authSchemePreference ?? [])
+    });
+  };
+  exports.resolveHttpAuthSchemeConfig = resolveHttpAuthSchemeConfig;
+});
+
+// node_modules/@aws-sdk/client-sso/package.json
+var require_package = __commonJS((exports, module) => {
+  module.exports = {
+    name: "@aws-sdk/client-sso",
+    description: "AWS SDK for JavaScript Sso Client for Node.js, Browser and React Native",
+    version: "3.958.0",
+    scripts: {
+      build: "concurrently 'yarn:build:types' 'yarn:build:es' && yarn build:cjs",
+      "build:cjs": "node ../../scripts/compilation/inline client-sso",
+      "build:es": "tsc -p tsconfig.es.json",
+      "build:include:deps": 'yarn g:turbo run build -F="$npm_package_name"',
+      "build:types": "tsc -p tsconfig.types.json",
+      "build:types:downlevel": "downlevel-dts dist-types dist-types/ts3.4",
+      clean: "rimraf ./dist-* && rimraf *.tsbuildinfo",
+      "extract:docs": "api-extractor run --local",
+      "generate:client": "node ../../scripts/generate-clients/single-service --solo sso",
+      "test:index": "tsc --noEmit ./test/index-types.ts && node ./test/index-objects.spec.mjs"
+    },
+    main: "./dist-cjs/index.js",
+    types: "./dist-types/index.d.ts",
+    module: "./dist-es/index.js",
+    sideEffects: false,
+    dependencies: {
+      "@aws-crypto/sha256-browser": "5.2.0",
+      "@aws-crypto/sha256-js": "5.2.0",
+      "@aws-sdk/core": "3.957.0",
+      "@aws-sdk/middleware-host-header": "3.957.0",
+      "@aws-sdk/middleware-logger": "3.957.0",
+      "@aws-sdk/middleware-recursion-detection": "3.957.0",
+      "@aws-sdk/middleware-user-agent": "3.957.0",
+      "@aws-sdk/region-config-resolver": "3.957.0",
+      "@aws-sdk/types": "3.957.0",
+      "@aws-sdk/util-endpoints": "3.957.0",
+      "@aws-sdk/util-user-agent-browser": "3.957.0",
+      "@aws-sdk/util-user-agent-node": "3.957.0",
+      "@smithy/config-resolver": "^4.4.5",
+      "@smithy/core": "^3.20.0",
+      "@smithy/fetch-http-handler": "^5.3.8",
+      "@smithy/hash-node": "^4.2.7",
+      "@smithy/invalid-dependency": "^4.2.7",
+      "@smithy/middleware-content-length": "^4.2.7",
+      "@smithy/middleware-endpoint": "^4.4.1",
+      "@smithy/middleware-retry": "^4.4.17",
+      "@smithy/middleware-serde": "^4.2.8",
+      "@smithy/middleware-stack": "^4.2.7",
+      "@smithy/node-config-provider": "^4.3.7",
+      "@smithy/node-http-handler": "^4.4.7",
+      "@smithy/protocol-http": "^5.3.7",
+      "@smithy/smithy-client": "^4.10.2",
+      "@smithy/types": "^4.11.0",
+      "@smithy/url-parser": "^4.2.7",
+      "@smithy/util-base64": "^4.3.0",
+      "@smithy/util-body-length-browser": "^4.2.0",
+      "@smithy/util-body-length-node": "^4.2.1",
+      "@smithy/util-defaults-mode-browser": "^4.3.16",
+      "@smithy/util-defaults-mode-node": "^4.2.19",
+      "@smithy/util-endpoints": "^3.2.7",
+      "@smithy/util-middleware": "^4.2.7",
+      "@smithy/util-retry": "^4.2.7",
+      "@smithy/util-utf8": "^4.2.0",
+      tslib: "^2.6.2"
+    },
+    devDependencies: {
+      "@tsconfig/node18": "18.2.4",
+      "@types/node": "^18.19.69",
+      concurrently: "7.0.0",
+      "downlevel-dts": "0.10.1",
+      rimraf: "3.0.2",
+      typescript: "~5.8.3"
+    },
+    engines: {
+      node: ">=18.0.0"
+    },
+    typesVersions: {
+      "<4.0": {
+        "dist-types/*": [
+          "dist-types/ts3.4/*"
+        ]
+      }
+    },
+    files: [
+      "dist-*/**"
+    ],
+    author: {
+      name: "AWS SDK for JavaScript Team",
+      url: "https://aws.amazon.com/javascript/"
+    },
+    license: "Apache-2.0",
+    browser: {
+      "./dist-es/runtimeConfig": "./dist-es/runtimeConfig.browser"
+    },
+    "react-native": {
+      "./dist-es/runtimeConfig": "./dist-es/runtimeConfig.native"
+    },
+    homepage: "https://github.com/aws/aws-sdk-js-v3/tree/main/clients/client-sso",
+    repository: {
+      type: "git",
+      url: "https://github.com/aws/aws-sdk-js-v3.git",
+      directory: "clients/client-sso"
+    }
+  };
+});
+
+// node_modules/@aws-sdk/client-sso/dist-cjs/endpoint/ruleset.js
+var require_ruleset = __commonJS((exports) => {
+  Object.defineProperty(exports, "__esModule", { value: true });
+  exports.ruleSet = undefined;
+  var u = "required";
+  var v = "fn";
+  var w = "argv";
+  var x = "ref";
+  var a = true;
+  var b = "isSet";
+  var c = "booleanEquals";
+  var d = "error";
+  var e = "endpoint";
+  var f = "tree";
+  var g = "PartitionResult";
+  var h = "getAttr";
+  var i = { [u]: false, type: "string" };
+  var j = { [u]: true, default: false, type: "boolean" };
+  var k = { [x]: "Endpoint" };
+  var l = { [v]: c, [w]: [{ [x]: "UseFIPS" }, true] };
+  var m = { [v]: c, [w]: [{ [x]: "UseDualStack" }, true] };
+  var n = {};
+  var o = { [v]: h, [w]: [{ [x]: g }, "supportsFIPS"] };
+  var p = { [x]: g };
+  var q = { [v]: c, [w]: [true, { [v]: h, [w]: [p, "supportsDualStack"] }] };
+  var r = [l];
+  var s = [m];
+  var t = [{ [x]: "Region" }];
+  var _data = { version: "1.0", parameters: { Region: i, UseDualStack: j, UseFIPS: j, Endpoint: i }, rules: [{ conditions: [{ [v]: b, [w]: [k] }], rules: [{ conditions: r, error: "Invalid Configuration: FIPS and custom endpoint are not supported", type: d }, { conditions: s, error: "Invalid Configuration: Dualstack and custom endpoint are not supported", type: d }, { endpoint: { url: k, properties: n, headers: n }, type: e }], type: f }, { conditions: [{ [v]: b, [w]: t }], rules: [{ conditions: [{ [v]: "aws.partition", [w]: t, assign: g }], rules: [{ conditions: [l, m], rules: [{ conditions: [{ [v]: c, [w]: [a, o] }, q], rules: [{ endpoint: { url: "https://portal.sso-fips.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: n, headers: n }, type: e }], type: f }, { error: "FIPS and DualStack are enabled, but this partition does not support one or both", type: d }], type: f }, { conditions: r, rules: [{ conditions: [{ [v]: c, [w]: [o, a] }], rules: [{ conditions: [{ [v]: "stringEquals", [w]: [{ [v]: h, [w]: [p, "name"] }, "aws-us-gov"] }], endpoint: { url: "https://portal.sso.{Region}.amazonaws.com", properties: n, headers: n }, type: e }, { endpoint: { url: "https://portal.sso-fips.{Region}.{PartitionResult#dnsSuffix}", properties: n, headers: n }, type: e }], type: f }, { error: "FIPS is enabled but this partition does not support FIPS", type: d }], type: f }, { conditions: s, rules: [{ conditions: [q], rules: [{ endpoint: { url: "https://portal.sso.{Region}.{PartitionResult#dualStackDnsSuffix}", properties: n, headers: n }, type: e }], type: f }, { error: "DualStack is enabled but this partition does not support DualStack", type: d }], type: f }, { endpoint: { url: "https://portal.sso.{Region}.{PartitionResult#dnsSuffix}", properties: n, headers: n }, type: e }], type: f }], type: f }, { error: "Invalid Configuration: Missing Region", type: d }] };
+  exports.ruleSet = _data;
+});
+
+// node_modules/@aws-sdk/client-sso/dist-cjs/endpoint/endpointResolver.js
+var require_endpointResolver = __commonJS((exports) => {
+  Object.defineProperty(exports, "__esModule", { value: true });
+  exports.defaultEndpointResolver = undefined;
+  var util_endpoints_1 = require_dist_cjs16();
+  var util_endpoints_2 = require_dist_cjs14();
+  var ruleset_1 = require_ruleset();
+  var cache = new util_endpoints_2.EndpointCache({
+    size: 50,
+    params: ["Endpoint", "Region", "UseDualStack", "UseFIPS"]
+  });
+  var defaultEndpointResolver = (endpointParams, context = {}) => {
+    return cache.get(endpointParams, () => (0, util_endpoints_2.resolveEndpoint)(ruleset_1.ruleSet, {
+      endpointParams,
+      logger: context.logger
+    }));
+  };
+  exports.defaultEndpointResolver = defaultEndpointResolver;
+  util_endpoints_2.customEndpointFunctions.aws = util_endpoints_1.awsEndpointFunctions;
+});
+
+// node_modules/@aws-sdk/client-sso/dist-cjs/runtimeConfig.shared.js
+var require_runtimeConfig_shared = __commonJS((exports) => {
+  Object.defineProperty(exports, "__esModule", { value: true });
+  exports.getRuntimeConfig = undefined;
+  var core_1 = require_dist_cjs10();
+  var protocols_1 = require_protocols();
+  var core_2 = require_dist_cjs6();
+  var smithy_client_1 = require_dist_cjs9();
+  var url_parser_1 = require_dist_cjs15();
+  var util_base64_1 = require_dist_cjs4();
+  var util_utf8_1 = require_dist_cjs3();
+  var httpAuthSchemeProvider_1 = require_httpAuthSchemeProvider();
+  var endpointResolver_1 = require_endpointResolver();
+  var getRuntimeConfig = (config) => {
+    return {
+      apiVersion: "2019-06-10",
+      base64Decoder: config?.base64Decoder ?? util_base64_1.fromBase64,
+      base64Encoder: config?.base64Encoder ?? util_base64_1.toBase64,
+      disableHostPrefix: config?.disableHostPrefix ?? false,
+      endpointProvider: config?.endpointProvider ?? endpointResolver_1.defaultEndpointResolver,
+      extensions: config?.extensions ?? [],
+      httpAuthSchemeProvider: config?.httpAuthSchemeProvider ?? httpAuthSchemeProvider_1.defaultSSOHttpAuthSchemeProvider,
+      httpAuthSchemes: config?.httpAuthSchemes ?? [
+        {
+          schemeId: "aws.auth#sigv4",
+          identityProvider: (ipc) => ipc.getIdentityProvider("aws.auth#sigv4"),
+          signer: new core_1.AwsSdkSigV4Signer
+        },
+        {
+          schemeId: "smithy.api#noAuth",
+          identityProvider: (ipc) => ipc.getIdentityProvider("smithy.api#noAuth") || (async () => ({})),
+          signer: new core_2.NoAuthSigner
+        }
+      ],
+      logger: config?.logger ?? new smithy_client_1.NoOpLogger,
+      protocol: config?.protocol ?? protocols_1.AwsRestJsonProtocol,
+      protocolSettings: config?.protocolSettings ?? {
+        defaultNamespace: "com.amazonaws.sso",
+        version: "2019-06-10",
+        serviceTarget: "SWBPortalService"
+      },
+      serviceId: config?.serviceId ?? "SSO",
+      urlParser: config?.urlParser ?? url_parser_1.parseUrl,
+      utf8Decoder: config?.utf8Decoder ?? util_utf8_1.fromUtf8,
+      utf8Encoder: config?.utf8Encoder ?? util_utf8_1.toUtf8
+    };
+  };
+  exports.getRuntimeConfig = getRuntimeConfig;
+});
+
+// node_modules/@aws-sdk/client-sso/dist-cjs/runtimeConfig.js
+var require_runtimeConfig = __commonJS((exports) => {
+  Object.defineProperty(exports, "__esModule", { value: true });
+  exports.getRuntimeConfig = undefined;
+  var tslib_1 = require_tslib();
+  var package_json_1 = tslib_1.__importDefault(require_package());
+  var core_1 = require_dist_cjs10();
+  var util_user_agent_node_1 = require_dist_cjs25();
+  var config_resolver_1 = require_dist_cjs18();
+  var hash_node_1 = require_dist_cjs26();
+  var middleware_retry_1 = require_dist_cjs24();
+  var node_config_provider_1 = require_dist_cjs21();
+  var node_http_handler_1 = require_dist_cjs5();
+  var smithy_client_1 = require_dist_cjs9();
+  var util_body_length_node_1 = require_dist_cjs27();
+  var util_defaults_mode_node_1 = require_dist_cjs28();
+  var util_retry_1 = require_dist_cjs23();
+  var runtimeConfig_shared_1 = require_runtimeConfig_shared();
+  var getRuntimeConfig = (config) => {
+    (0, smithy_client_1.emitWarningIfUnsupportedVersion)(process.version);
+    const defaultsMode = (0, util_defaults_mode_node_1.resolveDefaultsModeConfig)(config);
+    const defaultConfigProvider = () => defaultsMode().then(smithy_client_1.loadConfigsForDefaultMode);
+    const clientSharedValues = (0, runtimeConfig_shared_1.getRuntimeConfig)(config);
+    (0, core_1.emitWarningIfUnsupportedVersion)(process.version);
+    const loaderConfig = {
+      profile: config?.profile,
+      logger: clientSharedValues.logger
+    };
+    return {
+      ...clientSharedValues,
+      ...config,
+      runtime: "node",
+      defaultsMode,
+      authSchemePreference: config?.authSchemePreference ?? (0, node_config_provider_1.loadConfig)(core_1.NODE_AUTH_SCHEME_PREFERENCE_OPTIONS, loaderConfig),
+      bodyLengthChecker: config?.bodyLengthChecker ?? util_body_length_node_1.calculateBodyLength,
+      defaultUserAgentProvider: config?.defaultUserAgentProvider ?? (0, util_user_agent_node_1.createDefaultUserAgentProvider)({ serviceId: clientSharedValues.serviceId, clientVersion: package_json_1.default.version }),
+      maxAttempts: config?.maxAttempts ?? (0, node_config_provider_1.loadConfig)(middleware_retry_1.NODE_MAX_ATTEMPT_CONFIG_OPTIONS, config),
+      region: config?.region ?? (0, node_config_provider_1.loadConfig)(config_resolver_1.NODE_REGION_CONFIG_OPTIONS, { ...config_resolver_1.NODE_REGION_CONFIG_FILE_OPTIONS, ...loaderConfig }),
+      requestHandler: node_http_handler_1.NodeHttpHandler.create(config?.requestHandler ?? defaultConfigProvider),
+      retryMode: config?.retryMode ?? (0, node_config_provider_1.loadConfig)({
+        ...middleware_retry_1.NODE_RETRY_MODE_CONFIG_OPTIONS,
+        default: async () => (await defaultConfigProvider()).retryMode || util_retry_1.DEFAULT_RETRY_MODE
+      }, config),
+      sha256: config?.sha256 ?? hash_node_1.Hash.bind(null, "sha256"),
+      streamCollector: config?.streamCollector ?? node_http_handler_1.streamCollector,
+      useDualstackEndpoint: config?.useDualstackEndpoint ?? (0, node_config_provider_1.loadConfig)(config_resolver_1.NODE_USE_DUALSTACK_ENDPOINT_CONFIG_OPTIONS, loaderConfig),
+      useFipsEndpoint: config?.useFipsEndpoint ?? (0, node_config_provider_1.loadConfig)(config_resolver_1.NODE_USE_FIPS_ENDPOINT_CONFIG_OPTIONS, loaderConfig),
+      userAgentAppId: config?.userAgentAppId ?? (0, node_config_provider_1.loadConfig)(util_user_agent_node_1.NODE_APP_ID_CONFIG_OPTIONS, loaderConfig)
+    };
+  };
+  exports.getRuntimeConfig = getRuntimeConfig;
+});
+
+// node_modules/@aws-sdk/client-sso/dist-cjs/index.js
+var require_dist_cjs31 = __commonJS((exports) => {
+  var middlewareHostHeader = require_dist_cjs11();
+  var middlewareLogger = require_dist_cjs12();
+  var middlewareRecursionDetection = require_dist_cjs13();
+  var middlewareUserAgent = require_dist_cjs17();
+  var configResolver = require_dist_cjs18();
+  var core = require_dist_cjs6();
+  var schema = require_schema();
+  var middlewareContentLength = require_dist_cjs19();
+  var middlewareEndpoint = require_dist_cjs22();
+  var middlewareRetry = require_dist_cjs24();
+  var smithyClient = require_dist_cjs9();
+  var httpAuthSchemeProvider = require_httpAuthSchemeProvider();
+  var runtimeConfig = require_runtimeConfig();
+  var regionConfigResolver = require_dist_cjs29();
+  var protocolHttp = require_dist_cjs();
+  var resolveClientEndpointParameters = (options) => {
+    return Object.assign(options, {
+      useDualstackEndpoint: options.useDualstackEndpoint ?? false,
+      useFipsEndpoint: options.useFipsEndpoint ?? false,
+      defaultSigningName: "awsssoportal"
+    });
+  };
+  var commonParams = {
+    UseFIPS: { type: "builtInParams", name: "useFipsEndpoint" },
+    Endpoint: { type: "builtInParams", name: "endpoint" },
+    Region: { type: "builtInParams", name: "region" },
+    UseDualStack: { type: "builtInParams", name: "useDualstackEndpoint" }
+  };
+  var getHttpAuthExtensionConfiguration = (runtimeConfig2) => {
+    const _httpAuthSchemes = runtimeConfig2.httpAuthSchemes;
+    let _httpAuthSchemeProvider = runtimeConfig2.httpAuthSchemeProvider;
+    let _credentials = runtimeConfig2.credentials;
+    return {
+      setHttpAuthScheme(httpAuthScheme) {
+        const index = _httpAuthSchemes.findIndex((scheme) => scheme.schemeId === httpAuthScheme.schemeId);
+        if (index === -1) {
+          _httpAuthSchemes.push(httpAuthScheme);
+        } else {
+          _httpAuthSchemes.splice(index, 1, httpAuthScheme);
+        }
+      },
+      httpAuthSchemes() {
+        return _httpAuthSchemes;
+      },
+      setHttpAuthSchemeProvider(httpAuthSchemeProvider2) {
+        _httpAuthSchemeProvider = httpAuthSchemeProvider2;
+      },
+      httpAuthSchemeProvider() {
+        return _httpAuthSchemeProvider;
+      },
+      setCredentials(credentials) {
+        _credentials = credentials;
+      },
+      credentials() {
+        return _credentials;
+      }
+    };
+  };
+  var resolveHttpAuthRuntimeConfig = (config) => {
+    return {
+      httpAuthSchemes: config.httpAuthSchemes(),
+      httpAuthSchemeProvider: config.httpAuthSchemeProvider(),
+      credentials: config.credentials()
+    };
+  };
+  var resolveRuntimeExtensions = (runtimeConfig2, extensions) => {
+    const extensionConfiguration = Object.assign(regionConfigResolver.getAwsRegionExtensionConfiguration(runtimeConfig2), smithyClient.getDefaultExtensionConfiguration(runtimeConfig2), protocolHttp.getHttpHandlerExtensionConfiguration(runtimeConfig2), getHttpAuthExtensionConfiguration(runtimeConfig2));
+    extensions.forEach((extension) => extension.configure(extensionConfiguration));
+    return Object.assign(runtimeConfig2, regionConfigResolver.resolveAwsRegionExtensionConfiguration(extensionConfiguration), smithyClient.resolveDefaultRuntimeConfig(extensionConfiguration), protocolHttp.resolveHttpHandlerRuntimeConfig(extensionConfiguration), resolveHttpAuthRuntimeConfig(extensionConfiguration));
+  };
+
+  class SSOClient extends smithyClient.Client {
+    config;
+    constructor(...[configuration]) {
+      const _config_0 = runtimeConfig.getRuntimeConfig(configuration || {});
+      super(_config_0);
+      this.initConfig = _config_0;
+      const _config_1 = resolveClientEndpointParameters(_config_0);
+      const _config_2 = middlewareUserAgent.resolveUserAgentConfig(_config_1);
+      const _config_3 = middlewareRetry.resolveRetryConfig(_config_2);
+      const _config_4 = configResolver.resolveRegionConfig(_config_3);
+      const _config_5 = middlewareHostHeader.resolveHostHeaderConfig(_config_4);
+      const _config_6 = middlewareEndpoint.resolveEndpointConfig(_config_5);
+      const _config_7 = httpAuthSchemeProvider.resolveHttpAuthSchemeConfig(_config_6);
+      const _config_8 = resolveRuntimeExtensions(_config_7, configuration?.extensions || []);
+      this.config = _config_8;
+      this.middlewareStack.use(schema.getSchemaSerdePlugin(this.config));
+      this.middlewareStack.use(middlewareUserAgent.getUserAgentPlugin(this.config));
+      this.middlewareStack.use(middlewareRetry.getRetryPlugin(this.config));
+      this.middlewareStack.use(middlewareContentLength.getContentLengthPlugin(this.config));
+      this.middlewareStack.use(middlewareHostHeader.getHostHeaderPlugin(this.config));
+      this.middlewareStack.use(middlewareLogger.getLoggerPlugin(this.config));
+      this.middlewareStack.use(middlewareRecursionDetection.getRecursionDetectionPlugin(this.config));
+      this.middlewareStack.use(core.getHttpAuthSchemeEndpointRuleSetPlugin(this.config, {
+        httpAuthSchemeParametersProvider: httpAuthSchemeProvider.defaultSSOHttpAuthSchemeParametersProvider,
+        identityProviderConfigProvider: async (config) => new core.DefaultIdentityProviderConfig({
+          "aws.auth#sigv4": config.credentials
+        })
+      }));
+      this.middlewareStack.use(core.getHttpSigningPlugin(this.config));
+    }
+    destroy() {
+      super.destroy();
+    }
+  }
+
+  class SSOServiceException extends smithyClient.ServiceException {
+    constructor(options) {
+      super(options);
+      Object.setPrototypeOf(this, SSOServiceException.prototype);
+    }
+  }
+
+  class InvalidRequestException extends SSOServiceException {
+    name = "InvalidRequestException";
+    $fault = "client";
+    constructor(opts) {
+      super({
+        name: "InvalidRequestException",
+        $fault: "client",
+        ...opts
+      });
+      Object.setPrototypeOf(this, InvalidRequestException.prototype);
+    }
+  }
+
+  class ResourceNotFoundException extends SSOServiceException {
+    name = "ResourceNotFoundException";
+    $fault = "client";
+    constructor(opts) {
+      super({
+        name: "ResourceNotFoundException",
+        $fault: "client",
+        ...opts
+      });
+      Object.setPrototypeOf(this, ResourceNotFoundException.prototype);
+    }
+  }
+
+  class TooManyRequestsException extends SSOServiceException {
+    name = "TooManyRequestsException";
+    $fault = "client";
+    constructor(opts) {
+      super({
+        name: "TooManyRequestsException",
+        $fault: "client",
+        ...opts
+      });
+      Object.setPrototypeOf(this, TooManyRequestsException.prototype);
+    }
+  }
+
+  class UnauthorizedException extends SSOServiceException {
+    name = "UnauthorizedException";
+    $fault = "client";
+    constructor(opts) {
+      super({
+        name: "UnauthorizedException",
+        $fault: "client",
+        ...opts
+      });
+      Object.setPrototypeOf(this, UnauthorizedException.prototype);
+    }
+  }
+  var _AI = "AccountInfo";
+  var _ALT = "AccountListType";
+  var _ATT = "AccessTokenType";
+  var _GRC = "GetRoleCredentials";
+  var _GRCR = "GetRoleCredentialsRequest";
+  var _GRCRe = "GetRoleCredentialsResponse";
+  var _IRE = "InvalidRequestException";
+  var _L = "Logout";
+  var _LA = "ListAccounts";
+  var _LAR = "ListAccountsRequest";
+  var _LARR = "ListAccountRolesRequest";
+  var _LARRi = "ListAccountRolesResponse";
+  var _LARi = "ListAccountsResponse";
+  var _LARis = "ListAccountRoles";
+  var _LR = "LogoutRequest";
+  var _RC = "RoleCredentials";
+  var _RI = "RoleInfo";
+  var _RLT = "RoleListType";
+  var _RNFE = "ResourceNotFoundException";
+  var _SAKT = "SecretAccessKeyType";
+  var _STT = "SessionTokenType";
+  var _TMRE = "TooManyRequestsException";
+  var _UE = "UnauthorizedException";
+  var _aI = "accountId";
+  var _aKI = "accessKeyId";
+  var _aL = "accountList";
+  var _aN = "accountName";
+  var _aT = "accessToken";
+  var _ai = "account_id";
+  var _c = "client";
+  var _e = "error";
+  var _eA = "emailAddress";
+  var _ex = "expiration";
+  var _h = "http";
+  var _hE = "httpError";
+  var _hH = "httpHeader";
+  var _hQ = "httpQuery";
+  var _m = "message";
+  var _mR = "maxResults";
+  var _mr = "max_result";
+  var _nT = "nextToken";
+  var _nt = "next_token";
+  var _rC = "roleCredentials";
+  var _rL = "roleList";
+  var _rN = "roleName";
+  var _rn = "role_name";
+  var _s = "smithy.ts.sdk.synthetic.com.amazonaws.sso";
+  var _sAK = "secretAccessKey";
+  var _sT = "sessionToken";
+  var _xasbt = "x-amz-sso_bearer_token";
+  var n0 = "com.amazonaws.sso";
+  var AccessTokenType = [0, n0, _ATT, 8, 0];
+  var SecretAccessKeyType = [0, n0, _SAKT, 8, 0];
+  var SessionTokenType = [0, n0, _STT, 8, 0];
+  var AccountInfo$ = [
+    3,
+    n0,
+    _AI,
+    0,
+    [_aI, _aN, _eA],
+    [0, 0, 0]
+  ];
+  var GetRoleCredentialsRequest$ = [
+    3,
+    n0,
+    _GRCR,
+    0,
+    [_rN, _aI, _aT],
+    [[0, { [_hQ]: _rn }], [0, { [_hQ]: _ai }], [() => AccessTokenType, { [_hH]: _xasbt }]]
+  ];
+  var GetRoleCredentialsResponse$ = [
+    3,
+    n0,
+    _GRCRe,
+    0,
+    [_rC],
+    [[() => RoleCredentials$, 0]]
+  ];
+  var InvalidRequestException$ = [
+    -3,
+    n0,
+    _IRE,
+    { [_e]: _c, [_hE]: 400 },
+    [_m],
+    [0]
+  ];
+  schema.TypeRegistry.for(n0).registerError(InvalidRequestException$, InvalidRequestException);
+  var ListAccountRolesRequest$ = [
+    3,
+    n0,
+    _LARR,
+    0,
+    [_nT, _mR, _aT, _aI],
+    [[0, { [_hQ]: _nt }], [1, { [_hQ]: _mr }], [() => AccessTokenType, { [_hH]: _xasbt }], [0, { [_hQ]: _ai }]]
+  ];
+  var ListAccountRolesResponse$ = [
+    3,
+    n0,
+    _LARRi,
+    0,
+    [_nT, _rL],
+    [0, () => RoleListType]
+  ];
+  var ListAccountsRequest$ = [
+    3,
+    n0,
+    _LAR,
+    0,
+    [_nT, _mR, _aT],
+    [[0, { [_hQ]: _nt }], [1, { [_hQ]: _mr }], [() => AccessTokenType, { [_hH]: _xasbt }]]
+  ];
+  var ListAccountsResponse$ = [
+    3,
+    n0,
+    _LARi,
+    0,
+    [_nT, _aL],
+    [0, () => AccountListType]
+  ];
+  var LogoutRequest$ = [
+    3,
+    n0,
+    _LR,
+    0,
+    [_aT],
+    [[() => AccessTokenType, { [_hH]: _xasbt }]]
+  ];
+  var ResourceNotFoundException$ = [
+    -3,
+    n0,
+    _RNFE,
+    { [_e]: _c, [_hE]: 404 },
+    [_m],
+    [0]
+  ];
+  schema.TypeRegistry.for(n0).registerError(ResourceNotFoundException$, ResourceNotFoundException);
+  var RoleCredentials$ = [
+    3,
+    n0,
+    _RC,
+    0,
+    [_aKI, _sAK, _sT, _ex],
+    [0, [() => SecretAccessKeyType, 0], [() => SessionTokenType, 0], 1]
+  ];
+  var RoleInfo$ = [
+    3,
+    n0,
+    _RI,
+    0,
+    [_rN, _aI],
+    [0, 0]
+  ];
+  var TooManyRequestsException$ = [
+    -3,
+    n0,
+    _TMRE,
+    { [_e]: _c, [_hE]: 429 },
+    [_m],
+    [0]
+  ];
+  schema.TypeRegistry.for(n0).registerError(TooManyRequestsException$, TooManyRequestsException);
+  var UnauthorizedException$ = [
+    -3,
+    n0,
+    _UE,
+    { [_e]: _c, [_hE]: 401 },
+    [_m],
+    [0]
+  ];
+  schema.TypeRegistry.for(n0).registerError(UnauthorizedException$, UnauthorizedException);
+  var __Unit = "unit";
+  var SSOServiceException$ = [-3, _s, "SSOServiceException", 0, [], []];
+  schema.TypeRegistry.for(_s).registerError(SSOServiceException$, SSOServiceException);
+  var AccountListType = [
+    1,
+    n0,
+    _ALT,
+    0,
+    () => AccountInfo$
+  ];
+  var RoleListType = [
+    1,
+    n0,
+    _RLT,
+    0,
+    () => RoleInfo$
+  ];
+  var GetRoleCredentials$ = [
+    9,
+    n0,
+    _GRC,
+    { [_h]: ["GET", "/federation/credentials", 200] },
+    () => GetRoleCredentialsRequest$,
+    () => GetRoleCredentialsResponse$
+  ];
+  var ListAccountRoles$ = [
+    9,
+    n0,
+    _LARis,
+    { [_h]: ["GET", "/assignment/roles", 200] },
+    () => ListAccountRolesRequest$,
+    () => ListAccountRolesResponse$
+  ];
+  var ListAccounts$ = [
+    9,
+    n0,
+    _LA,
+    { [_h]: ["GET", "/assignment/accounts", 200] },
+    () => ListAccountsRequest$,
+    () => ListAccountsResponse$
+  ];
+  var Logout$ = [
+    9,
+    n0,
+    _L,
+    { [_h]: ["POST", "/logout", 200] },
+    () => LogoutRequest$,
+    () => __Unit
+  ];
+
+  class GetRoleCredentialsCommand extends smithyClient.Command.classBuilder().ep(commonParams).m(function(Command, cs, config, o) {
+    return [middlewareEndpoint.getEndpointPlugin(config, Command.getEndpointParameterInstructions())];
+  }).s("SWBPortalService", "GetRoleCredentials", {}).n("SSOClient", "GetRoleCredentialsCommand").sc(GetRoleCredentials$).build() {
+  }
+
+  class ListAccountRolesCommand extends smithyClient.Command.classBuilder().ep(commonParams).m(function(Command, cs, config, o) {
+    return [middlewareEndpoint.getEndpointPlugin(config, Command.getEndpointParameterInstructions())];
+  }).s("SWBPortalService", "ListAccountRoles", {}).n("SSOClient", "ListAccountRolesCommand").sc(ListAccountRoles$).build() {
+  }
+
+  class ListAccountsCommand extends smithyClient.Command.classBuilder().ep(commonParams).m(function(Command, cs, config, o) {
+    return [middlewareEndpoint.getEndpointPlugin(config, Command.getEndpointParameterInstructions())];
+  }).s("SWBPortalService", "ListAccounts", {}).n("SSOClient", "ListAccountsCommand").sc(ListAccounts$).build() {
+  }
+
+  class LogoutCommand extends smithyClient.Command.classBuilder().ep(commonParams).m(function(Command, cs, config, o) {
+    return [middlewareEndpoint.getEndpointPlugin(config, Command.getEndpointParameterInstructions())];
+  }).s("SWBPortalService", "Logout", {}).n("SSOClient", "LogoutCommand").sc(Logout$).build() {
+  }
+  var commands = {
+    GetRoleCredentialsCommand,
+    ListAccountRolesCommand,
+    ListAccountsCommand,
+    LogoutCommand
+  };
+
+  class SSO extends SSOClient {
+  }
+  smithyClient.createAggregatedClient(commands, SSO);
+  var paginateListAccountRoles = core.createPaginator(SSOClient, ListAccountRolesCommand, "nextToken", "nextToken", "maxResults");
+  var paginateListAccounts = core.createPaginator(SSOClient, ListAccountsCommand, "nextToken", "nextToken", "maxResults");
+  Object.defineProperty(exports, "$Command", {
+    enumerable: true,
+    get: function() {
+      return smithyClient.Command;
+    }
+  });
+  Object.defineProperty(exports, "__Client", {
+    enumerable: true,
+    get: function() {
+      return smithyClient.Client;
+    }
+  });
+  exports.AccountInfo$ = AccountInfo$;
+  exports.GetRoleCredentials$ = GetRoleCredentials$;
+  exports.GetRoleCredentialsCommand = GetRoleCredentialsCommand;
+  exports.GetRoleCredentialsRequest$ = GetRoleCredentialsRequest$;
+  exports.GetRoleCredentialsResponse$ = GetRoleCredentialsResponse$;
+  exports.InvalidRequestException = InvalidRequestException;
+  exports.InvalidRequestException$ = InvalidRequestException$;
+  exports.ListAccountRoles$ = ListAccountRoles$;
+  exports.ListAccountRolesCommand = ListAccountRolesCommand;
+  exports.ListAccountRolesRequest$ = ListAccountRolesRequest$;
+  exports.ListAccountRolesResponse$ = ListAccountRolesResponse$;
+  exports.ListAccounts$ = ListAccounts$;
+  exports.ListAccountsCommand = ListAccountsCommand;
+  exports.ListAccountsRequest$ = ListAccountsRequest$;
+  exports.ListAccountsResponse$ = ListAccountsResponse$;
+  exports.Logout$ = Logout$;
+  exports.LogoutCommand = LogoutCommand;
+  exports.LogoutRequest$ = LogoutRequest$;
+  exports.ResourceNotFoundException = ResourceNotFoundException;
+  exports.ResourceNotFoundException$ = ResourceNotFoundException$;
+  exports.RoleCredentials$ = RoleCredentials$;
+  exports.RoleInfo$ = RoleInfo$;
+  exports.SSO = SSO;
+  exports.SSOClient = SSOClient;
+  exports.SSOServiceException = SSOServiceException;
+  exports.SSOServiceException$ = SSOServiceException$;
+  exports.TooManyRequestsException = TooManyRequestsException;
+  exports.TooManyRequestsException$ = TooManyRequestsException$;
+  exports.UnauthorizedException = UnauthorizedException;
+  exports.UnauthorizedException$ = UnauthorizedException$;
+  exports.paginateListAccountRoles = paginateListAccountRoles;
+  exports.paginateListAccounts = paginateListAccounts;
+});
+
+// node_modules/@aws-sdk/credential-provider-sso/dist-cjs/loadSso-CVy8iqsZ.js
+var require_loadSso_CVy8iqsZ = __commonJS((exports) => {
+  var clientSso = require_dist_cjs31();
+  Object.defineProperty(exports, "GetRoleCredentialsCommand", {
+    enumerable: true,
+    get: function() {
+      return clientSso.GetRoleCredentialsCommand;
+    }
+  });
+  Object.defineProperty(exports, "SSOClient", {
+    enumerable: true,
+    get: function() {
+      return clientSso.SSOClient;
+    }
+  });
+});
+
+// node_modules/@aws-sdk/credential-provider-sso/dist-cjs/index.js
+var propertyProvider, sharedIniFileLoader, client, tokenProviders, isSsoProfile = (arg) => arg && (typeof arg.sso_start_url === "string" || typeof arg.sso_account_id === "string" || typeof arg.sso_session === "string" || typeof arg.sso_region === "string" || typeof arg.sso_role_name === "string"), SHOULD_FAIL_CREDENTIAL_CHAIN = false, resolveSSOCredentials = async ({ ssoStartUrl, ssoSession, ssoAccountId, ssoRegion, ssoRoleName, ssoClient, clientConfig, parentClientConfig, callerClientConfig, profile, filepath, configFilepath, ignoreCache, logger }) => {
+  let token;
+  const refreshMessage = `To refresh this SSO session run aws sso login with the corresponding profile.`;
+  if (ssoSession) {
+    try {
+      const _token = await tokenProviders.fromSso({
+        profile,
+        filepath,
+        configFilepath,
+        ignoreCache
+      })();
+      token = {
+        accessToken: _token.token,
+        expiresAt: new Date(_token.expiration).toISOString()
+      };
+    } catch (e) {
+      throw new propertyProvider.CredentialsProviderError(e.message, {
+        tryNextLink: SHOULD_FAIL_CREDENTIAL_CHAIN,
+        logger
+      });
+    }
+  } else {
+    try {
+      token = await sharedIniFileLoader.getSSOTokenFromFile(ssoStartUrl);
+    } catch (e) {
+      throw new propertyProvider.CredentialsProviderError(`The SSO session associated with this profile is invalid. ${refreshMessage}`, {
+        tryNextLink: SHOULD_FAIL_CREDENTIAL_CHAIN,
+        logger
+      });
+    }
+  }
+  if (new Date(token.expiresAt).getTime() - Date.now() <= 0) {
+    throw new propertyProvider.CredentialsProviderError(`The SSO session associated with this profile has expired. ${refreshMessage}`, {
+      tryNextLink: SHOULD_FAIL_CREDENTIAL_CHAIN,
+      logger
+    });
+  }
+  const { accessToken } = token;
+  const { SSOClient, GetRoleCredentialsCommand } = await Promise.resolve().then(function() {
+    return require_loadSso_CVy8iqsZ();
+  });
+  const sso = ssoClient || new SSOClient(Object.assign({}, clientConfig ?? {}, {
+    logger: clientConfig?.logger ?? callerClientConfig?.logger ?? parentClientConfig?.logger,
+    region: clientConfig?.region ?? ssoRegion,
+    userAgentAppId: clientConfig?.userAgentAppId ?? callerClientConfig?.userAgentAppId ?? parentClientConfig?.userAgentAppId
+  }));
+  let ssoResp;
+  try {
+    ssoResp = await sso.send(new GetRoleCredentialsCommand({
+      accountId: ssoAccountId,
+      roleName: ssoRoleName,
+      accessToken
+    }));
+  } catch (e) {
+    throw new propertyProvider.CredentialsProviderError(e, {
+      tryNextLink: SHOULD_FAIL_CREDENTIAL_CHAIN,
+      logger
+    });
+  }
+  const { roleCredentials: { accessKeyId, secretAccessKey, sessionToken, expiration, credentialScope, accountId } = {} } = ssoResp;
+  if (!accessKeyId || !secretAccessKey || !sessionToken || !expiration) {
+    throw new propertyProvider.CredentialsProviderError("SSO returns an invalid temporary credential.", {
+      tryNextLink: SHOULD_FAIL_CREDENTIAL_CHAIN,
+      logger
+    });
+  }
+  const credentials = {
+    accessKeyId,
+    secretAccessKey,
+    sessionToken,
+    expiration: new Date(expiration),
+    ...credentialScope && { credentialScope },
+    ...accountId && { accountId }
+  };
+  if (ssoSession) {
+    client.setCredentialFeature(credentials, "CREDENTIALS_SSO", "s");
+  } else {
+    client.setCredentialFeature(credentials, "CREDENTIALS_SSO_LEGACY", "u");
+  }
+  return credentials;
+}, validateSsoProfile = (profile, logger) => {
+  const { sso_start_url, sso_account_id, sso_region, sso_role_name } = profile;
+  if (!sso_start_url || !sso_account_id || !sso_region || !sso_role_name) {
+    throw new propertyProvider.CredentialsProviderError(`Profile is configured with invalid SSO credentials. Required parameters "sso_account_id", ` + `"sso_region", "sso_role_name", "sso_start_url". Got ${Object.keys(profile).join(", ")}
+Reference: https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-sso.html`, { tryNextLink: false, logger });
+  }
+  return profile;
+}, fromSSO = (init = {}) => async ({ callerClientConfig } = {}) => {
+  init.logger?.debug("@aws-sdk/credential-provider-sso - fromSSO");
+  const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
+  const { ssoClient } = init;
+  const profileName = sharedIniFileLoader.getProfileName({
+    profile: init.profile ?? callerClientConfig?.profile
+  });
+  if (!ssoStartUrl && !ssoAccountId && !ssoRegion && !ssoRoleName && !ssoSession) {
+    const profiles = await sharedIniFileLoader.parseKnownFiles(init);
+    const profile = profiles[profileName];
+    if (!profile) {
+      throw new propertyProvider.CredentialsProviderError(`Profile ${profileName} was not found.`, { logger: init.logger });
+    }
+    if (!isSsoProfile(profile)) {
+      throw new propertyProvider.CredentialsProviderError(`Profile ${profileName} is not configured with SSO credentials.`, {
+        logger: init.logger
+      });
+    }
+    if (profile?.sso_session) {
+      const ssoSessions = await sharedIniFileLoader.loadSsoSessionData(init);
+      const session = ssoSessions[profile.sso_session];
+      const conflictMsg = ` configurations in profile ${profileName} and sso-session ${profile.sso_session}`;
+      if (ssoRegion && ssoRegion !== session.sso_region) {
+        throw new propertyProvider.CredentialsProviderError(`Conflicting SSO region` + conflictMsg, {
+          tryNextLink: false,
+          logger: init.logger
+        });
+      }
+      if (ssoStartUrl && ssoStartUrl !== session.sso_start_url) {
+        throw new propertyProvider.CredentialsProviderError(`Conflicting SSO start_url` + conflictMsg, {
+          tryNextLink: false,
+          logger: init.logger
+        });
+      }
+      profile.sso_region = session.sso_region;
+      profile.sso_start_url = session.sso_start_url;
+    }
+    const { sso_start_url, sso_account_id, sso_region, sso_role_name, sso_session } = validateSsoProfile(profile, init.logger);
+    return resolveSSOCredentials({
+      ssoStartUrl: sso_start_url,
+      ssoSession: sso_session,
+      ssoAccountId: sso_account_id,
+      ssoRegion: sso_region,
+      ssoRoleName: sso_role_name,
+      ssoClient,
+      clientConfig: init.clientConfig,
+      parentClientConfig: init.parentClientConfig,
+      callerClientConfig: init.callerClientConfig,
+      profile: profileName,
+      filepath: init.filepath,
+      configFilepath: init.configFilepath,
+      ignoreCache: init.ignoreCache,
+      logger: init.logger
+    });
+  } else if (!ssoStartUrl || !ssoAccountId || !ssoRegion || !ssoRoleName) {
+    throw new propertyProvider.CredentialsProviderError("Incomplete configuration. The fromSSO() argument hash must include " + '"ssoStartUrl", "ssoAccountId", "ssoRegion", "ssoRoleName"', { tryNextLink: false, logger: init.logger });
+  } else {
+    return resolveSSOCredentials({
+      ssoStartUrl,
+      ssoSession,
+      ssoAccountId,
+      ssoRegion,
+      ssoRoleName,
+      ssoClient,
+      clientConfig: init.clientConfig,
+      parentClientConfig: init.parentClientConfig,
+      callerClientConfig: init.callerClientConfig,
+      profile: profileName,
+      filepath: init.filepath,
+      configFilepath: init.configFilepath,
+      ignoreCache: init.ignoreCache,
+      logger: init.logger
+    });
+  }
+}, $fromSSO, $isSsoProfile, $validateSsoProfile;
+var init_dist_cjs = __esm(() => {
+  propertyProvider = require_dist_cjs7();
+  sharedIniFileLoader = require_dist_cjs20();
+  client = require_client();
+  tokenProviders = require_dist_cjs30();
+  $fromSSO = fromSSO;
+  $isSsoProfile = isSsoProfile;
+  $validateSsoProfile = validateSsoProfile;
+});
+init_dist_cjs();
+
+export {
+  $validateSsoProfile as validateSsoProfile,
+  $isSsoProfile as isSsoProfile,
+  $fromSSO as fromSSO
+};
+export default {
+  get validateSsoProfile() {
+    return $validateSsoProfile;
+  },
+  get isSsoProfile() {
+    return $isSsoProfile;
+  },
+  get fromSSO() {
+    return $fromSSO;
+  }
+};