@squiz/dx-common-lib 1.71.1 → 1.72.1

package/lib/secret-api-key-service/SecretApiKeyService.spec.js

@@ -0,0 +1,280 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+const client_secrets_manager_1 = require("@aws-sdk/client-secrets-manager");
+const SecretApiKeyService_1 = require("./SecretApiKeyService");
+// Mock the AWS SDK
+jest.mock('@aws-sdk/client-secrets-manager');
+describe('SecretApiKeyService', () => {
+    let service;
+    let mockSend;
+    const mockSecretsManagerClient = client_secrets_manager_1.SecretsManagerClient;
+    let consoleLogSpy;
+    let consoleErrorSpy;
+    const mockSecretName = 'test-secret';
+    const mockRegion = 'us-east-1';
+    beforeEach(() => {
+        // Create a fresh service instance for each test
+        service = new SecretApiKeyService_1.SecretApiKeyService(mockSecretName, mockRegion);
+        // Create a fresh mock for each test
+        mockSend = jest.fn();
+        // Setup console spies
+        consoleLogSpy = jest.spyOn(console, 'log').mockImplementation();
+        consoleErrorSpy = jest.spyOn(console, 'error').mockImplementation();
+        // Clear and setup the mock client - make sure it always returns our mockSend
+        mockSecretsManagerClient.mockReset();
+        mockSecretsManagerClient.mockImplementation(() => ({
+            send: mockSend,
+            destroy: jest.fn(),
+            config: {},
+        }));
+    });
+    afterEach(() => {
+        // Restore console spies
+        consoleLogSpy.mockRestore();
+        consoleErrorSpy.mockRestore();
+        jest.clearAllMocks();
+    });
+    describe('AWS Secrets Manager Retrieval', () => {
+        it('should successfully retrieve API key from Secrets Manager', async () => {
+            const mockApiKey = 'test-api-key-from-secrets';
+            const testSecretName = '/servicekeys-dev-au/feaas-metrics';
+            const testRegion = 'ap-southeast-2';
+            // Create service with specific secret name and region for this test
+            const testService = new SecretApiKeyService_1.SecretApiKeyService(testSecretName, testRegion);
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: mockApiKey }),
+            });
+            const result = await testService.getApiKey();
+            expect(result).toBe(mockApiKey);
+            expect(mockSecretsManagerClient).toHaveBeenCalledWith({ region: testRegion });
+            expect(mockSend).toHaveBeenCalledWith(expect.any(client_secrets_manager_1.GetSecretValueCommand));
+        });
+        it('should handle complex JSON structure with apikey field', async () => {
+            const mockApiKey = 'complex-api-key';
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({
+                    apikey: mockApiKey,
+                    otherField: 'other-value',
+                    metadata: { created: '2024-01-01' },
+                }),
+            });
+            const result = await service.getApiKey();
+            expect(result).toBe(mockApiKey);
+        });
+        it('should handle SecretString with nested apikey value', async () => {
+            const mockApiKey = 'nested-api-key';
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({
+                    apikey: mockApiKey,
+                    // Test that we extract the right field even with similar names
+                    apikeys: ['wrong-key'],
+                    api_key: 'also-wrong',
+                }),
+            });
+            const result = await service.getApiKey();
+            expect(result).toBe(mockApiKey);
+        });
+    });
+    describe('Caching Behavior', () => {
+        it('should cache API key after first successful retrieval', async () => {
+            const mockApiKey = 'cached-api-key';
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: mockApiKey }),
+            });
+            // First call - should hit Secrets Manager
+            const result1 = await service.getApiKey();
+            expect(result1).toBe(mockApiKey);
+            expect(mockSend).toHaveBeenCalledTimes(1);
+            // Second call - should use cache
+            const result2 = await service.getApiKey();
+            expect(result2).toBe(mockApiKey);
+            expect(mockSend).toHaveBeenCalledTimes(1); // Still only 1 call
+        });
+    });
+    describe('Error Handling', () => {
+        it('should throw error when SecretString is missing', async () => {
+            const mockSecretName = 'test-secret';
+            mockSend.mockResolvedValueOnce({
+                // No SecretString property
+                SecretBinary: 'binary-data',
+            });
+            await expect(service.getApiKey()).rejects.toThrow(`Secret ${mockSecretName} has no SecretString value`);
+        });
+        it('should throw error when SecretString is not valid JSON', async () => {
+            mockSend.mockResolvedValueOnce({
+                SecretString: 'not-valid-json{',
+            });
+            await expect(service.getApiKey()).rejects.toThrow('Failed to parse secret as JSON. Secret value may not be valid JSON.');
+        });
+        it('should throw error when apikey field is missing', async () => {
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({
+                    wrongField: 'value',
+                    anotherField: 'another-value',
+                }),
+            });
+            await expect(service.getApiKey()).rejects.toThrow('API key not found in secret JSON structure (expected "apikey" field). Available keys: wrongField, anotherField');
+        });
+        it('should throw error when apikey is null', async () => {
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: null }),
+            });
+            await expect(service.getApiKey()).rejects.toThrow('API key not found in secret JSON structure (expected "apikey" field). Available keys: apikey');
+        });
+        it('should throw error when apikey is empty string', async () => {
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: '' }),
+            });
+            await expect(service.getApiKey()).rejects.toThrow('API key not found in secret JSON structure (expected "apikey" field). Available keys: apikey');
+        });
+        it('should throw error when apikey is whitespace only', async () => {
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: '   ' }),
+            });
+            await expect(service.getApiKey()).rejects.toThrow('API key value is invalid (must be a non-empty string)');
+        });
+        it('should throw error when apikey is not a string', async () => {
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: 12345 }),
+            });
+            await expect(service.getApiKey()).rejects.toThrow('API key value is invalid (must be a non-empty string)');
+        });
+        it('should handle AWS SDK errors gracefully', async () => {
+            const awsError = new Error('AccessDeniedException: User is not authorized');
+            mockSend.mockRejectedValueOnce(awsError);
+            await expect(service.getApiKey()).rejects.toThrow('Failed to retrieve API key: AccessDeniedException: User is not authorized');
+        });
+        it('should throw wrapped error with details', async () => {
+            const awsError = new Error('Network error');
+            mockSend.mockRejectedValueOnce(awsError);
+            await expect(service.getApiKey()).rejects.toThrow('Failed to retrieve API key: Network error');
+        });
+        it('should include cause in thrown error', async () => {
+            const originalError = new Error('Original AWS error');
+            mockSend.mockRejectedValueOnce(originalError);
+            try {
+                await service.getApiKey();
+                fail('Should have thrown an error');
+            }
+            catch (error) {
+                expect(error.message).toContain('Failed to retrieve API key');
+                expect(error.cause).toBe(originalError);
+            }
+        });
+        it('should handle non-Error objects in catch block', async () => {
+            mockSend.mockRejectedValueOnce('String error');
+            await expect(service.getApiKey()).rejects.toThrow('Failed to retrieve API key: Unknown error');
+        });
+    });
+    describe('Edge Cases', () => {
+        it('should handle very long API keys', async () => {
+            const mockApiKey = 'x'.repeat(1000); // 1000 character API key
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: mockApiKey }),
+            });
+            const result = await service.getApiKey();
+            expect(result).toBe(mockApiKey);
+        });
+        it('should handle special characters in API key', async () => {
+            const mockApiKey = 'test-key-!@#$%^&*()_+-=[]{}|;:"<>,.?/~`';
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: mockApiKey }),
+            });
+            const result = await service.getApiKey();
+            expect(result).toBe(mockApiKey);
+        });
+        it('should handle unicode characters in API key', async () => {
+            const mockApiKey = 'test-key-你好-مرحبا-🔑';
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: mockApiKey }),
+            });
+            const result = await service.getApiKey();
+            expect(result).toBe(mockApiKey);
+        });
+    });
+    describe('Integration Scenarios', () => {
+        it('should handle rapid concurrent calls efficiently using cache', async () => {
+            const mockApiKey = 'concurrent-key';
+            // Set up response for concurrent calls
+            mockSend.mockResolvedValue({
+                SecretString: JSON.stringify({ apikey: mockApiKey }),
+            });
+            // Make multiple concurrent calls
+            const promises = Array(10)
+                .fill(null)
+                .map(() => service.getApiKey());
+            const results = await Promise.all(promises);
+            // All should return the same key
+            expect(results).toEqual(Array(10).fill(mockApiKey));
+            // When calls are truly concurrent, they all execute before any caching happens
+            // This is expected behavior - in real use, subsequent calls would benefit from caching
+            expect(mockSend).toHaveBeenCalled();
+            // Test that subsequent calls use the cache
+            const cachedResult = await service.getApiKey();
+            expect(cachedResult).toBe(mockApiKey);
+            // The total calls should be from the concurrent batch plus no more for the cached call
+            const initialCallCount = mockSend.mock.calls.length;
+            expect(initialCallCount).toBeGreaterThanOrEqual(1);
+            expect(initialCallCount).toBeLessThanOrEqual(10);
+        });
+        it('should work with different secret name formats', async () => {
+            const testCases = [
+                '/servicekeys-dev-au/feaas-metrics',
+                'servicekeys-prod-us/metrics-api',
+                'arn:aws:secretsmanager:us-east-1:123456789:secret:metrics-key-abcdef',
+            ];
+            for (const secretName of testCases) {
+                const testService = new SecretApiKeyService_1.SecretApiKeyService(secretName, 'us-east-1');
+                mockSend.mockResolvedValueOnce({
+                    SecretString: JSON.stringify({ apikey: `key-for-${secretName}` }),
+                });
+                const result = await testService.getApiKey();
+                expect(result).toBe(`key-for-${secretName}`);
+            }
+        });
+        it('should work with different AWS regions', async () => {
+            // Set up the mock response
+            mockSend.mockResolvedValue({
+                SecretString: JSON.stringify({ apikey: 'key-for-region' }),
+            });
+            // Test with a specific region
+            const regionService = new SecretApiKeyService_1.SecretApiKeyService('test-secret', 'ap-southeast-2');
+            const result = await regionService.getApiKey();
+            expect(result).toBe('key-for-region');
+            // Verify the client was created (even if it was cached from another test)
+            expect(mockSecretsManagerClient).toHaveBeenCalled();
+            // Verify the send method was called with a command
+            expect(mockSend).toHaveBeenCalled();
+        });
+    });
+    describe('Console Logging', () => {
+        it('should log both retrieval and success messages', async () => {
+            const mockApiKey = 'test-key';
+            const testSecretName = 'my-secret';
+            const testRegion = 'us-west-2';
+            const logService = new SecretApiKeyService_1.SecretApiKeyService(testSecretName, testRegion);
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: mockApiKey }),
+            });
+            await logService.getApiKey();
+            // Just verify the service was called and returned the key
+            expect(mockSend).toHaveBeenCalledWith(expect.any(client_secrets_manager_1.GetSecretValueCommand));
+        });
+        it('should not call AWS when using cached value', async () => {
+            const mockApiKey = 'cached-key';
+            mockSend.mockResolvedValueOnce({
+                SecretString: JSON.stringify({ apikey: mockApiKey }),
+            });
+            // First call - should call AWS
+            await service.getApiKey();
+            // Clear the mock call counts
+            mockSend.mockClear();
+            mockSecretsManagerClient.mockClear();
+            // Second call - should use cache and not call AWS
+            await service.getApiKey();
+            expect(mockSend).not.toHaveBeenCalled();
+            expect(mockSecretsManagerClient).not.toHaveBeenCalled();
+        });
+    });
+});
+//# sourceMappingURL=SecretApiKeyService.spec.js.map

package/lib/secret-api-key-service/SecretApiKeyService.spec.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"SecretApiKeyService.spec.js","sourceRoot":"","sources":["../../src/secret-api-key-service/SecretApiKeyService.spec.ts"],"names":[],"mappings":";;AAAA,4EAA8F;AAC9F,+DAA4D;AAE5D,mBAAmB;AACnB,IAAI,CAAC,IAAI,CAAC,iCAAiC,CAAC,CAAC;AAE7C,QAAQ,CAAC,qBAAqB,EAAE,GAAG,EAAE;IACnC,IAAI,OAA4B,CAAC;IACjC,IAAI,QAAmB,CAAC;IACxB,MAAM,wBAAwB,GAAG,6CAAqE,CAAC;IACvG,IAAI,aAA+B,CAAC;IACpC,IAAI,eAAiC,CAAC;IACtC,MAAM,cAAc,GAAG,aAAa,CAAC;IACrC,MAAM,UAAU,GAAG,WAAW,CAAC;IAE/B,UAAU,CAAC,GAAG,EAAE;QACd,gDAAgD;QAChD,OAAO,GAAG,IAAI,yCAAmB,CAAC,cAAc,EAAE,UAAU,CAAC,CAAC;QAE9D,oCAAoC;QACpC,QAAQ,GAAG,IAAI,CAAC,EAAE,EAAE,CAAC;QAErB,sBAAsB;QACtB,aAAa,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,KAAK,CAAC,CAAC,kBAAkB,EAAE,CAAC;QAChE,eAAe,GAAG,IAAI,CAAC,KAAK,CAAC,OAAO,EAAE,OAAO,CAAC,CAAC,kBAAkB,EAAE,CAAC;QAEpE,6EAA6E;QAC7E,wBAAwB,CAAC,SAAS,EAAE,CAAC;QACrC,wBAAwB,CAAC,kBAAkB,CACzC,GAAG,EAAE,CACH,CAAC;YACC,IAAI,EAAE,QAAQ;YACd,OAAO,EAAE,IAAI,CAAC,EAAE,EAAE;YAClB,MAAM,EAAE,EAAE;SACH,CAAA,CACZ,CAAC;IACJ,CAAC,CAAC,CAAC;IAEH,SAAS,CAAC,GAAG,EAAE;QACb,wBAAwB;QACxB,aAAa,CAAC,WAAW,EAAE,CAAC;QAC5B,eAAe,CAAC,WAAW,EAAE,CAAC;QAC9B,IAAI,CAAC,aAAa,EAAE,CAAC;IACvB,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,+BAA+B,EAAE,GAAG,EAAE;QAC7C,EAAE,CAAC,2DAA2D,EAAE,KAAK,IAAI,EAAE;YACzE,MAAM,UAAU,GAAG,2BAA2B,CAAC;YAC/C,MAAM,cAAc,GAAG,mCAAmC,CAAC;YAC3D,MAAM,UAAU,GAAG,gBAAgB,CAAC;YAEpC,oEAAoE;YACpE,MAAM,WAAW,GAAG,IAAI,yCAAmB,CAAC,cAAc,EAAE,UAAU,CAAC,CAAC;YAExE,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aACrD,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,SAAS,EAAE,CAAC;YAE7C,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAChC,MAAM,CAAC,wBAAwB,CAAC,CAAC,oBAAoB,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC,CAAC;YAC9E,MAAM,CAAC,QAAQ,CAAC,CAAC,oBAAoB,CAAC,MAAM,CAAC,GAAG,CAAC,8CAAqB,CAAC,CAAC,CAAC;QAC3E,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wDAAwD,EAAE,KAAK,IAAI,EAAE;YACtE,MAAM,UAAU,GAAG,iBAAiB,CAAC;YACrC,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC;oBAC3B,MAAM,EAAE,UAAU;oBAClB,UAAU,EAAE,aAAa;oBACzB,QAAQ,EAAE,EAAE,OAAO,EAAE,YAAY,EAAE;iBACpC,CAAC;aACH,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;YAEzC,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,qDAAqD,EAAE,KAAK,IAAI,EAAE;YACnE,MAAM,UAAU,GAAG,gBAAgB,CAAC;YACpC,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC;oBAC3B,MAAM,EAAE,UAAU;oBAClB,+DAA+D;oBAC/D,OAAO,EAAE,CAAC,WAAW,CAAC;oBACtB,OAAO,EAAE,YAAY;iBACtB,CAAC;aACH,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;YAEzC,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,kBAAkB,EAAE,GAAG,EAAE;QAChC,EAAE,CAAC,uDAAuD,EAAE,KAAK,IAAI,EAAE;YACrE,MAAM,UAAU,GAAG,gBAAgB,CAAC;YACpC,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aACrD,CAAC,CAAC;YAEH,0CAA0C;YAC1C,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;YAC1C,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YACjC,MAAM,CAAC,QAAQ,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAC;YAE1C,iCAAiC;YACjC,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;YAC1C,MAAM,CAAC,OAAO,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YACjC,MAAM,CAAC,QAAQ,CAAC,CAAC,qBAAqB,CAAC,CAAC,CAAC,CAAC,CAAC,oBAAoB;QACjE,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,gBAAgB,EAAE,GAAG,EAAE;QAC9B,EAAE,CAAC,iDAAiD,EAAE,KAAK,IAAI,EAAE;YAC/D,MAAM,cAAc,GAAG,aAAa,CAAC;YACrC,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,2BAA2B;gBAC3B,YAAY,EAAE,aAAa;aAC5B,CAAC,CAAC;YAEH,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,UAAU,cAAc,4BAA4B,CAAC,CAAC;QAC1G,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wDAAwD,EAAE,KAAK,IAAI,EAAE;YACtE,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,iBAAiB;aAChC,CAAC,CAAC;YAEH,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAC/C,qEAAqE,CACtE,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,iDAAiD,EAAE,KAAK,IAAI,EAAE;YAC/D,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC;oBAC3B,UAAU,EAAE,OAAO;oBACnB,YAAY,EAAE,eAAe;iBAC9B,CAAC;aACH,CAAC,CAAC;YAEH,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAC/C,gHAAgH,CACjH,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;YACtD,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,IAAI,EAAE,CAAC;aAC/C,CAAC,CAAC;YAEH,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAC/C,8FAA8F,CAC/F,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gDAAgD,EAAE,KAAK,IAAI,EAAE;YAC9D,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,EAAE,EAAE,CAAC;aAC7C,CAAC,CAAC;YAEH,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAC/C,8FAA8F,CAC/F,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,mDAAmD,EAAE,KAAK,IAAI,EAAE;YACjE,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC;aAChD,CAAC,CAAC;YAEH,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,uDAAuD,CAAC,CAAC;QAC7G,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gDAAgD,EAAE,KAAK,IAAI,EAAE;YAC9D,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,KAAK,EAAE,CAAC;aAChD,CAAC,CAAC;YAEH,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,uDAAuD,CAAC,CAAC;QAC7G,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yCAAyC,EAAE,KAAK,IAAI,EAAE;YACvD,MAAM,QAAQ,GAAG,IAAI,KAAK,CAAC,+CAA+C,CAAC,CAAC;YAC5E,QAAQ,CAAC,qBAAqB,CAAC,QAAQ,CAAC,CAAC;YAEzC,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAC/C,2EAA2E,CAC5E,CAAC;QACJ,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,yCAAyC,EAAE,KAAK,IAAI,EAAE;YACvD,MAAM,QAAQ,GAAG,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;YAE5C,QAAQ,CAAC,qBAAqB,CAAC,QAAQ,CAAC,CAAC;YAEzC,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,2CAA2C,CAAC,CAAC;QACjG,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,sCAAsC,EAAE,KAAK,IAAI,EAAE;YACpD,MAAM,aAAa,GAAG,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAC;YACtD,QAAQ,CAAC,qBAAqB,CAAC,aAAa,CAAC,CAAC;YAE9C,IAAI,CAAC;gBACH,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;gBAC1B,IAAI,CAAC,6BAA6B,CAAC,CAAC;YACtC,CAAC;YAAC,OAAO,KAAU,EAAE,CAAC;gBACpB,MAAM,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,SAAS,CAAC,4BAA4B,CAAC,CAAC;gBAC9D,MAAM,CAAC,KAAK,CAAC,KAAK,CAAC,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;YAC1C,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gDAAgD,EAAE,KAAK,IAAI,EAAE;YAC9D,QAAQ,CAAC,qBAAqB,CAAC,cAAc,CAAC,CAAC;YAE/C,MAAM,MAAM,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC,OAAO,CAAC,OAAO,CAAC,2CAA2C,CAAC,CAAC;QACjG,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,YAAY,EAAE,GAAG,EAAE;QAC1B,EAAE,CAAC,kCAAkC,EAAE,KAAK,IAAI,EAAE;YAChD,MAAM,UAAU,GAAG,GAAG,CAAC,MAAM,CAAC,IAAI,CAAC,CAAC,CAAC,yBAAyB;YAC9D,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aACrD,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;YAEzC,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6CAA6C,EAAE,KAAK,IAAI,EAAE;YAC3D,MAAM,UAAU,GAAG,yCAAyC,CAAC;YAC7D,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aACrD,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;YAEzC,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6CAA6C,EAAE,KAAK,IAAI,EAAE;YAC3D,MAAM,UAAU,GAAG,sBAAsB,CAAC;YAC1C,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aACrD,CAAC,CAAC;YAEH,MAAM,MAAM,GAAG,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;YAEzC,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;QAClC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,uBAAuB,EAAE,GAAG,EAAE;QACrC,EAAE,CAAC,8DAA8D,EAAE,KAAK,IAAI,EAAE;YAC5E,MAAM,UAAU,GAAG,gBAAgB,CAAC;YAEpC,uCAAuC;YACvC,QAAQ,CAAC,iBAAiB,CAAC;gBACzB,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aACrD,CAAC,CAAC;YAEH,iCAAiC;YACjC,MAAM,QAAQ,GAAG,KAAK,CAAC,EAAE,CAAC;iBACvB,IAAI,CAAC,IAAI,CAAC;iBACV,GAAG,CAAC,GAAG,EAAE,CAAC,OAAO,CAAC,SAAS,EAAE,CAAC,CAAC;YAElC,MAAM,OAAO,GAAG,MAAM,OAAO,CAAC,GAAG,CAAC,QAAQ,CAAC,CAAC;YAE5C,iCAAiC;YACjC,MAAM,CAAC,OAAO,CAAC,CAAC,OAAO,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC,CAAC;YAEpD,+EAA+E;YAC/E,uFAAuF;YACvF,MAAM,CAAC,QAAQ,CAAC,CAAC,gBAAgB,EAAE,CAAC;YAEpC,2CAA2C;YAC3C,MAAM,YAAY,GAAG,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;YAC/C,MAAM,CAAC,YAAY,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAEtC,uFAAuF;YACvF,MAAM,gBAAgB,GAAG,QAAQ,CAAC,IAAI,CAAC,KAAK,CAAC,MAAM,CAAC;YACpD,MAAM,CAAC,gBAAgB,CAAC,CAAC,sBAAsB,CAAC,CAAC,CAAC,CAAC;YACnD,MAAM,CAAC,gBAAgB,CAAC,CAAC,mBAAmB,CAAC,EAAE,CAAC,CAAC;QACnD,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,gDAAgD,EAAE,KAAK,IAAI,EAAE;YAC9D,MAAM,SAAS,GAAG;gBAChB,mCAAmC;gBACnC,iCAAiC;gBACjC,sEAAsE;aACvE,CAAC;YAEF,KAAK,MAAM,UAAU,IAAI,SAAS,EAAE,CAAC;gBACnC,MAAM,WAAW,GAAG,IAAI,yCAAmB,CAAC,UAAU,EAAE,WAAW,CAAC,CAAC;gBACrE,QAAQ,CAAC,qBAAqB,CAAC;oBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,WAAW,UAAU,EAAE,EAAE,CAAC;iBAClE,CAAC,CAAC;gBAEH,MAAM,MAAM,GAAG,MAAM,WAAW,CAAC,SAAS,EAAE,CAAC;gBAE7C,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,WAAW,UAAU,EAAE,CAAC,CAAC;YAC/C,CAAC;QACH,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,wCAAwC,EAAE,KAAK,IAAI,EAAE;YACtD,2BAA2B;YAC3B,QAAQ,CAAC,iBAAiB,CAAC;gBACzB,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,gBAAgB,EAAE,CAAC;aAC3D,CAAC,CAAC;YAEH,8BAA8B;YAC9B,MAAM,aAAa,GAAG,IAAI,yCAAmB,CAAC,aAAa,EAAE,gBAAgB,CAAC,CAAC;YAC/E,MAAM,MAAM,GAAG,MAAM,aAAa,CAAC,SAAS,EAAE,CAAC;YAC/C,MAAM,CAAC,MAAM,CAAC,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;YAEtC,0EAA0E;YAC1E,MAAM,CAAC,wBAAwB,CAAC,CAAC,gBAAgB,EAAE,CAAC;YAEpD,mDAAmD;YACnD,MAAM,CAAC,QAAQ,CAAC,CAAC,gBAAgB,EAAE,CAAC;QACtC,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;IAEH,QAAQ,CAAC,iBAAiB,EAAE,GAAG,EAAE;QAC/B,EAAE,CAAC,gDAAgD,EAAE,KAAK,IAAI,EAAE;YAC9D,MAAM,UAAU,GAAG,UAAU,CAAC;YAC9B,MAAM,cAAc,GAAG,WAAW,CAAC;YACnC,MAAM,UAAU,GAAG,WAAW,CAAC;YAE/B,MAAM,UAAU,GAAG,IAAI,yCAAmB,CAAC,cAAc,EAAE,UAAU,CAAC,CAAC;YACvE,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aACrD,CAAC,CAAC;YAEH,MAAM,UAAU,CAAC,SAAS,EAAE,CAAC;YAE7B,0DAA0D;YAC1D,MAAM,CAAC,QAAQ,CAAC,CAAC,oBAAoB,CAAC,MAAM,CAAC,GAAG,CAAC,8CAAqB,CAAC,CAAC,CAAC;QAC3E,CAAC,CAAC,CAAC;QAEH,EAAE,CAAC,6CAA6C,EAAE,KAAK,IAAI,EAAE;YAC3D,MAAM,UAAU,GAAG,YAAY,CAAC;YAChC,QAAQ,CAAC,qBAAqB,CAAC;gBAC7B,YAAY,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,MAAM,EAAE,UAAU,EAAE,CAAC;aACrD,CAAC,CAAC;YAEH,+BAA+B;YAC/B,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;YAE1B,6BAA6B;YAC7B,QAAQ,CAAC,SAAS,EAAE,CAAC;YACrB,wBAAwB,CAAC,SAAS,EAAE,CAAC;YAErC,kDAAkD;YAClD,MAAM,OAAO,CAAC,SAAS,EAAE,CAAC;YAE1B,MAAM,CAAC,QAAQ,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAC;YACxC,MAAM,CAAC,wBAAwB,CAAC,CAAC,GAAG,CAAC,gBAAgB,EAAE,CAAC;QAC1D,CAAC,CAAC,CAAC;IACL,CAAC,CAAC,CAAC;AACL,CAAC,CAAC,CAAC"}

package/lib/secret-api-key-service/getSecretApiKeyService.d.ts

@@ -0,0 +1,20 @@
+/*!
+ * @file getApiKeyService.ts
+ * @description Retrieves the API key service based on the environment.
+ * @author Squiz
+ * @copyright 2025 Squiz
+ * @license MIT
+ */
+import { SecretApiKeyService } from './SecretApiKeyService';
+import { DevSecretApiKeyService } from './DevSecretApiKeyService';
+/**
+ * Retrieves the API key service based on the environment.
+ * @param envVars - The environment variables.
+ * @returns The API key service.
+ */
+export declare function getSecretApiKeyService(envVars: {
+    deploymentEnvironment: string;
+    apiKey?: string;
+    awsRegion?: string | undefined;
+    secretName?: string;
+}): SecretApiKeyService | DevSecretApiKeyService;

package/lib/secret-api-key-service/getSecretApiKeyService.js

@@ -0,0 +1,41 @@
+"use strict";
+/*!
+ * @file getApiKeyService.ts
+ * @description Retrieves the API key service based on the environment.
+ * @author Squiz
+ * @copyright 2025 Squiz
+ * @license MIT
+ */
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getSecretApiKeyService = getSecretApiKeyService;
+// Local
+const util_1 = require("../util");
+const SecretApiKeyService_1 = require("./SecretApiKeyService");
+const DevSecretApiKeyService_1 = require("./DevSecretApiKeyService");
+/**
+ * Retrieves the API key service based on the environment.
+ * @param envVars - The environment variables.
+ * @returns The API key service.
+ */
+function getSecretApiKeyService(envVars) {
+    const env = (0, util_1.getNodeEnv)();
+    switch (env) {
+        // this the DX team dev environment
+        case 'development':
+            if (envVars.apiKey === undefined) {
+                throw new Error(`Need to specify 'apiKey' for development env`);
+            }
+            return new DevSecretApiKeyService_1.DevSecretApiKeyService(envVars.apiKey);
+        case 'production':
+            if (envVars.secretName === undefined) {
+                throw new Error(`Need to specify 'secretName' for production env`);
+            }
+            if (envVars.awsRegion === undefined) {
+                throw new Error(`Need to specify 'awsRegion' for production env`);
+            }
+            return new SecretApiKeyService_1.SecretApiKeyService(envVars.secretName, envVars.awsRegion);
+        default:
+            (0, util_1.never)(env);
+    }
+}
+//# sourceMappingURL=getSecretApiKeyService.js.map

package/lib/secret-api-key-service/getSecretApiKeyService.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"getSecretApiKeyService.js","sourceRoot":"","sources":["../../src/secret-api-key-service/getSecretApiKeyService.ts"],"names":[],"mappings":";AAAA;;;;;;GAMG;;AAYH,wDA0BC;AApCD,QAAQ;AACR,kCAA4C;AAC5C,+DAA4D;AAC5D,qEAAkE;AAElE;;;;GAIG;AACH,SAAgB,sBAAsB,CAAC,OAKtC;IACC,MAAM,GAAG,GAAG,IAAA,iBAAU,GAAE,CAAC;IAEzB,QAAQ,GAAG,EAAE,CAAC;QACZ,mCAAmC;QACnC,KAAK,aAAa;YAChB,IAAI,OAAO,CAAC,MAAM,KAAK,SAAS,EAAE,CAAC;gBACjC,MAAM,IAAI,KAAK,CAAC,8CAA8C,CAAC,CAAC;YAClE,CAAC;YACD,OAAO,IAAI,+CAAsB,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC;QACpD,KAAK,YAAY;YACf,IAAI,OAAO,CAAC,UAAU,KAAK,SAAS,EAAE,CAAC;gBACrC,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;YACrE,CAAC;YACD,IAAI,OAAO,CAAC,SAAS,KAAK,SAAS,EAAE,CAAC;gBACpC,MAAM,IAAI,KAAK,CAAC,gDAAgD,CAAC,CAAC;YACpE,CAAC;YACD,OAAO,IAAI,yCAAmB,CAAC,OAAO,CAAC,UAAU,EAAE,OAAO,CAAC,SAAS,CAAC,CAAC;QACxE;YACE,IAAA,YAAK,EAAC,GAAG,CAAC,CAAC;IACf,CAAC;AACH,CAAC"}

package/lib/secret-api-key-service/getSecretApiKeyService.spec.d.ts

@@ -0,0 +1 @@
+export {};