ag-awsauth 0.0.7 → 0.0.10

package/dist/config.d.ts

@@ -1,12 +1,12 @@
-export declare const logPath = "log.txt";
-export declare const stsDurationSeconds: number;
-export declare const nativeStsDurationSeconds: number;
-export declare let basePath: string;
-export declare const setBasePath: (bp: string) => void;
-export declare let identityCenterRegion: string;
-export declare let ssoStartUrl: string;
-export declare let targetRegion: string;
-export declare const validateConfig: () => boolean;
-export declare const setConfig: () => void;
-export declare const runConfig: () => void;
-export declare const timeoutMs = 10000;
+export declare const logPath = "log.txt";
+export declare const stsDurationSeconds: number;
+export declare const nativeStsDurationSeconds: number;
+export declare let basePath: string;
+export declare const setBasePath: (bp: string) => void;
+export declare let identityCenterRegion: string;
+export declare let ssoStartUrl: string;
+export declare let targetRegion: string;
+export declare const validateConfig: () => boolean;
+export declare const setConfig: () => void;
+export declare const runConfig: () => void;
+export declare const timeoutMs = 30000;

package/dist/config.js

@@ -1,55 +1,55 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.timeoutMs = exports.runConfig = exports.setConfig = exports.validateConfig = exports.targetRegion = exports.ssoStartUrl = exports.identityCenterRegion = exports.setBasePath = exports.basePath = exports.nativeStsDurationSeconds = exports.stsDurationSeconds = exports.logPath = void 0;
-const envfile_1 = require("envfile");
-const fs_1 = __importDefault(require("fs"));
-const path_1 = __importDefault(require("path"));
-exports.logPath = 'log.txt';
-exports.stsDurationSeconds = 60 * 60 * 4; //4h
-exports.nativeStsDurationSeconds = 60 * 60 * 1; //1h
-exports.basePath = '';
-const setBasePath = (bp) => {
-    exports.basePath = bp;
-};
-exports.setBasePath = setBasePath;
-exports.identityCenterRegion = '';
-exports.ssoStartUrl = '';
-exports.targetRegion = '';
-const validateConfig = () => {
-    (0, exports.setConfig)();
-    if (!exports.identityCenterRegion || !exports.ssoStartUrl || !exports.targetRegion) {
-        return false;
-    }
-    return true;
-};
-exports.validateConfig = validateConfig;
-const setConfig = () => {
-    exports.identityCenterRegion = process.env.identityCenterRegion;
-    exports.ssoStartUrl = process.env.ssoStartUrl;
-    exports.targetRegion = process.env.targetRegion;
-};
-exports.setConfig = setConfig;
-const runConfig = () => {
-    const pn = path_1.default.resolve(exports.basePath + '/.env');
-    if (!fs_1.default.existsSync(pn)) {
-        fs_1.default.writeFileSync(pn, '');
-    }
-    const c = (0, envfile_1.parse)(fs_1.default.readFileSync(pn).toString());
-    if (!c.ssoStartUrl) {
-        c.ssoStartUrl = ' //eg https://d-xxx.awsapps.com/start';
-    }
-    if (!c.targetRegion) {
-        c.targetRegion = ' //eg ap-southeast-1';
-    }
-    if (!c.identityCenterRegion) {
-        c.identityCenterRegion = ' //eg us-east-1';
-    }
-    fs_1.default.writeFileSync(pn, (0, envfile_1.stringify)(c));
-    // eslint-disable-next-line @typescript-eslint/no-var-requires
-    require('child_process').exec(`start "" "${pn}"`);
-};
-exports.runConfig = runConfig;
-exports.timeoutMs = 10000;
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.timeoutMs = exports.runConfig = exports.setConfig = exports.validateConfig = exports.targetRegion = exports.ssoStartUrl = exports.identityCenterRegion = exports.setBasePath = exports.basePath = exports.nativeStsDurationSeconds = exports.stsDurationSeconds = exports.logPath = void 0;
+const envfile_1 = require("envfile");
+const fs_1 = __importDefault(require("fs"));
+const path_1 = __importDefault(require("path"));
+exports.logPath = 'log.txt';
+exports.stsDurationSeconds = 60 * 60 * 4; //4h
+exports.nativeStsDurationSeconds = 60 * 60 * 1; //1h
+exports.basePath = '';
+const setBasePath = (bp) => {
+    exports.basePath = bp;
+};
+exports.setBasePath = setBasePath;
+exports.identityCenterRegion = '';
+exports.ssoStartUrl = '';
+exports.targetRegion = '';
+const validateConfig = () => {
+    (0, exports.setConfig)();
+    if (!exports.identityCenterRegion || !exports.ssoStartUrl || !exports.targetRegion) {
+        return false;
+    }
+    return true;
+};
+exports.validateConfig = validateConfig;
+const setConfig = () => {
+    exports.identityCenterRegion = process.env.identityCenterRegion;
+    exports.ssoStartUrl = process.env.ssoStartUrl;
+    exports.targetRegion = process.env.targetRegion;
+};
+exports.setConfig = setConfig;
+const runConfig = () => {
+    const pn = path_1.default.resolve(exports.basePath + '/.env');
+    if (!fs_1.default.existsSync(pn)) {
+        fs_1.default.writeFileSync(pn, '');
+    }
+    const c = (0, envfile_1.parse)(fs_1.default.readFileSync(pn).toString());
+    if (!c.ssoStartUrl) {
+        c.ssoStartUrl = ' //eg https://d-xxx.awsapps.com/start';
+    }
+    if (!c.targetRegion) {
+        c.targetRegion = ' //eg ap-southeast-1';
+    }
+    if (!c.identityCenterRegion) {
+        c.identityCenterRegion = ' //eg us-east-1';
+    }
+    fs_1.default.writeFileSync(pn, (0, envfile_1.stringify)(c));
+    // eslint-disable-next-line @typescript-eslint/no-var-requires
+    require('child_process').exec(`start "" "${pn}"`);
+};
+exports.runConfig = runConfig;
+exports.timeoutMs = 30000;

package/dist/helpers/awsconfig.d.ts

@@ -1,3 +1,3 @@
-import { IAwsCreds, IAwsCredsRaw } from '../types';
-export declare const getAwsCredentials: () => Promise<Record<string, IAwsCredsRaw>>;
-export declare const updateAwsCredentials: (p: IAwsCreds | undefined) => Promise<void>;
+import { IAwsCreds, IAwsCredsRaw } from '../types';
+export declare const getAwsCredentials: () => Promise<Record<string, IAwsCredsRaw>>;
+export declare const updateAwsCredentials: (p: IAwsCreds | undefined) => Promise<void>;

package/dist/helpers/awsconfig.js

@@ -1,52 +1,52 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.updateAwsCredentials = exports.getAwsCredentials = void 0;
-const shared_ini_file_loader_1 = require("@aws-sdk/shared-ini-file-loader");
-//@ts-ignore
-const getCredentialsFilepath_1 = require("@aws-sdk/shared-ini-file-loader/dist-cjs/getCredentialsFilepath");
-const log_1 = require("ag-common/dist/common/helpers/log");
-const fs_1 = __importDefault(require("fs"));
-const ini_1 = require("ini");
-const getAwsCredentials = () => __awaiter(void 0, void 0, void 0, function* () {
-    const config = yield (0, shared_ini_file_loader_1.loadSharedConfigFiles)();
-    const creds = config.credentialsFile;
-    if (!creds.default) {
-        creds.default = {};
-    }
-    // eslint-disable-next-line @typescript-eslint/no-explicit-any
-    const ret = creds;
-    return ret;
-});
-exports.getAwsCredentials = getAwsCredentials;
-const updateAwsCredentials = (p) => __awaiter(void 0, void 0, void 0, function* () {
-    const creds = yield (0, exports.getAwsCredentials)();
-    if (!p) {
-        // eslint-disable-next-line @typescript-eslint/no-explicit-any
-        creds.default = {};
-    }
-    else {
-        creds.default.region = p.region;
-        creds.default.aws_access_key_id = p.accessKeyId;
-        creds.default.aws_secret_access_key = p.secretAccessKey;
-        creds.default.aws_session_token = p.sessionToken;
-        creds.default.aws_access_token = p.accessToken;
-        creds.default.aws_sso_authn = p.ssoAuthn;
-    }
-    const newcreds = (0, ini_1.stringify)(creds);
-    (0, log_1.info)(`saving updated default creds to .aws/credentials`);
-    const credspath = (0, getCredentialsFilepath_1.getCredentialsFilepath)();
-    fs_1.default.writeFileSync(credspath, newcreds);
-});
-exports.updateAwsCredentials = updateAwsCredentials;
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.updateAwsCredentials = exports.getAwsCredentials = void 0;
+const shared_ini_file_loader_1 = require("@aws-sdk/shared-ini-file-loader");
+//@ts-ignore
+const getCredentialsFilepath_1 = require("@aws-sdk/shared-ini-file-loader/dist-cjs/getCredentialsFilepath");
+const log_1 = require("ag-common/dist/common/helpers/log");
+const fs_1 = __importDefault(require("fs"));
+const ini_1 = require("ini");
+const getAwsCredentials = () => __awaiter(void 0, void 0, void 0, function* () {
+    const config = yield (0, shared_ini_file_loader_1.loadSharedConfigFiles)();
+    const creds = config.credentialsFile;
+    if (!creds.default) {
+        creds.default = {};
+    }
+    // eslint-disable-next-line @typescript-eslint/no-explicit-any
+    const ret = creds;
+    return ret;
+});
+exports.getAwsCredentials = getAwsCredentials;
+const updateAwsCredentials = (p) => __awaiter(void 0, void 0, void 0, function* () {
+    const creds = yield (0, exports.getAwsCredentials)();
+    if (!p) {
+        // eslint-disable-next-line @typescript-eslint/no-explicit-any
+        creds.default = {};
+    }
+    else {
+        creds.default.region = p.region;
+        creds.default.aws_access_key_id = p.accessKeyId;
+        creds.default.aws_secret_access_key = p.secretAccessKey;
+        creds.default.aws_session_token = p.sessionToken;
+        creds.default.aws_access_token = p.accessToken;
+        creds.default.aws_sso_authn = p.ssoAuthn;
+    }
+    const newcreds = (0, ini_1.stringify)(creds);
+    (0, log_1.info)(`saving updated default creds to .aws/credentials`);
+    const credspath = (0, getCredentialsFilepath_1.getCredentialsFilepath)();
+    fs_1.default.writeFileSync(credspath, newcreds);
+});
+exports.updateAwsCredentials = updateAwsCredentials;

package/dist/helpers/browser.d.ts

@@ -1,12 +1,12 @@
-export declare const closeBrowser: () => Promise<void>;
-export declare const launchBrowser: () => Promise<void>;
-export declare const goToPage: (url: string) => Promise<import("puppeteer").Page>;
-export declare function getMFA(p: {
-    verificationUriComplete: string;
-    creds: {
-        username: string;
-        password: string;
-    };
-}): Promise<{
-    ssoAuthn: string;
-}>;
+export declare const closeBrowser: () => Promise<void>;
+export declare const launchBrowser: () => Promise<void>;
+export declare const goToPage: (url: string) => Promise<import("puppeteer").Page>;
+export declare function getMFA(p: {
+    verificationUriComplete: string;
+    creds: {
+        username: string;
+        password: string;
+    };
+}): Promise<{
+    ssoAuthn: string;
+}>;

package/dist/helpers/browser.js

@@ -1,167 +1,170 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getMFA = exports.goToPage = exports.launchBrowser = exports.closeBrowser = void 0;
-const log_1 = require("ag-common/dist/common/helpers/log");
-const sleep_1 = require("ag-common/dist/common/helpers/sleep");
-const puppeteer_1 = require("puppeteer");
-const __1 = require("..");
-const config_1 = require("../config");
-const input_1 = require("./input");
-let browser;
-const closeBrowser = () => __awaiter(void 0, void 0, void 0, function* () {
-    try {
-        if (!browser) {
-            return;
-        }
-        yield browser.close();
-        browser = undefined;
-    }
-    catch (e) {
-        (0, log_1.warn)('error closing browser:', e);
-    }
-});
-exports.closeBrowser = closeBrowser;
-const launchBrowser = () => __awaiter(void 0, void 0, void 0, function* () {
-    const opt = {
-        defaultViewport: { height: 1000, width: 500 },
-        headless: !(__1.globalargs === null || __1.globalargs === void 0 ? void 0 : __1.globalargs.verbose),
-        ignoreHTTPSErrors: true,
-        devtools: false,
-    };
-    if (!opt.args) {
-        opt.args = [];
-    }
-    opt.args.push('--disable-features=AudioServiceOutOfProcess');
-    opt.args.push('--disable-features=AudioServiceOutOfProcessKillAtHang');
-    opt.args.push('--disable-software-rasterizer');
-    opt.args.push('--disable-gpu');
-    opt.args.push('--disable-dev-shm-usage');
-    yield (0, exports.closeBrowser)();
-    (0, log_1.debug)('launch browser, opt=', opt);
-    browser = (yield (0, puppeteer_1.launch)(opt));
-    (0, log_1.debug)('browser created');
-});
-exports.launchBrowser = launchBrowser;
-const goToPage = (url) => __awaiter(void 0, void 0, void 0, function* () {
-    try {
-        if (!browser) {
-            yield (0, exports.launchBrowser)();
-        }
-        if (!browser) {
-            throw new Error('no browser');
-        }
-        (0, log_1.info)(`go to page:${url}`);
-        const page = yield browser.newPage();
-        yield page.goto(url, {
-            waitUntil: ['networkidle2'],
-            timeout: config_1.timeoutMs,
-        });
-        return page;
-    }
-    catch (e) {
-        const em = 'browser error:' + e.toString();
-        (0, log_1.error)(em);
-        throw new Error(em);
-    }
-});
-exports.goToPage = goToPage;
-function getMFA(p) {
-    var _a;
-    return __awaiter(this, void 0, void 0, function* () {
-        //go to browser site for auth
-        (0, log_1.info)('start mfa');
-        const page = yield (0, exports.goToPage)(p.verificationUriComplete);
-        (0, log_1.info)('username block');
-        yield page.waitForSelector('#username-input', { timeout: config_1.timeoutMs });
-        yield page.focus('#username-input input');
-        yield page.keyboard.type(p.creds.username);
-        yield page.$eval('#username-submit-button button', (el) => el.click());
-        //
-        (0, log_1.info)('password block');
-        yield page.waitForSelector('#password-input', { timeout: config_1.timeoutMs });
-        yield page.focus('#password-input input');
-        yield page.keyboard.type(p.creds.password);
-        yield page.$eval('#password-submit-button button', (el) => el.click());
-        yield (0, sleep_1.sleep)(250);
-        yield page.waitForNetworkIdle({ idleTime: 250 });
-        //
-        try {
-            const messageDiv = yield page.waitForSelector('.awsui-alert-message', {
-                timeout: 2000, //can be short
-            });
-            const value = yield page.evaluate((el) => { var _a; return (_a = el === null || el === void 0 ? void 0 : el.textContent) !== null && _a !== void 0 ? _a : ''; }, messageDiv);
-            if (value) {
-                throw new Error(value);
-            }
-        }
-        catch (e) {
-            const em = e.toString();
-            if (!em.includes('exceeded')) {
-                const em2 = `creds error:` + em;
-                (0, log_1.error)(em2);
-                throw new Error(em2);
-            }
-        }
-        //
-        let retry = true;
-        do {
-            (0, log_1.info)('mfa block');
-            const { mfa } = (0, input_1.enterMFA)();
-            yield page.waitForSelector('#input-0', { timeout: config_1.timeoutMs });
-            yield page.focus('#input-0 input');
-            yield page.keyboard.type(mfa);
-            yield page.$eval('.awsui-signin-button-container button', (el) => el.click());
-            //
-            try {
-                yield (0, sleep_1.sleep)(250);
-                yield page.waitForNetworkIdle({ idleTime: 250 });
-                const messageDiv = yield page.waitForSelector('.awsui-alert-message', {
-                    timeout: 2000, // can be short
-                });
-                const value = yield page.evaluate((el) => { var _a; return (_a = el === null || el === void 0 ? void 0 : el.textContent) !== null && _a !== void 0 ? _a : ''; }, messageDiv);
-                if (value) {
-                    throw new Error(value);
-                }
-                retry = false;
-            }
-            catch (e) {
-                const em = e.toString();
-                if (!em.includes('exceeded')) {
-                    const em2 = `mfa error:` + em + ' retry';
-                    (0, log_1.error)(em2);
-                }
-                else {
-                    retry = false;
-                }
-            }
-        } while (retry);
-        //
-        yield (0, sleep_1.sleep)(3000);
-        yield page.waitForNetworkIdle({ idleTime: 250 });
-        yield page.waitForSelector('#cli_login_button', { timeout: config_1.timeoutMs });
-        yield page.$eval('#cli_login_button', (el) => el.click());
-        yield (0, sleep_1.sleep)(250);
-        yield page.waitForNetworkIdle({ idleTime: 250 });
-        yield page.waitForSelector('.awsui-icon-variant-success', {
-            timeout: config_1.timeoutMs,
-        });
-        (0, log_1.warn)('mfa success');
-        const cookies = yield (page === null || page === void 0 ? void 0 : page.cookies());
-        const ssoAuthn = (_a = cookies === null || cookies === void 0 ? void 0 : cookies.find((c) => c.name === 'x-amz-sso_authn')) === null || _a === void 0 ? void 0 : _a.value;
-        if (!ssoAuthn) {
-            throw new Error('no aws authn');
-        }
-        yield (0, exports.closeBrowser)();
-        return { ssoAuthn };
-    });
-}
-exports.getMFA = getMFA;
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getMFA = exports.goToPage = exports.launchBrowser = exports.closeBrowser = void 0;
+const log_1 = require("ag-common/dist/common/helpers/log");
+const sleep_1 = require("ag-common/dist/common/helpers/sleep");
+const puppeteer_1 = require("puppeteer");
+const __1 = require("..");
+const config_1 = require("../config");
+const input_1 = require("./input");
+let browser;
+const closeBrowser = () => __awaiter(void 0, void 0, void 0, function* () {
+    try {
+        if (!browser) {
+            return;
+        }
+        yield browser.close();
+        browser = undefined;
+    }
+    catch (e) {
+        (0, log_1.warn)('error closing browser:', e);
+    }
+});
+exports.closeBrowser = closeBrowser;
+const launchBrowser = () => __awaiter(void 0, void 0, void 0, function* () {
+    const opt = {
+        defaultViewport: { height: 1000, width: 500 },
+        headless: !(__1.globalargs === null || __1.globalargs === void 0 ? void 0 : __1.globalargs.verbose),
+        ignoreHTTPSErrors: true,
+        devtools: false,
+    };
+    if (!opt.args) {
+        opt.args = [];
+    }
+    opt.args.push('--disable-features=AudioServiceOutOfProcess');
+    opt.args.push('--disable-features=AudioServiceOutOfProcessKillAtHang');
+    opt.args.push('--disable-software-rasterizer');
+    opt.args.push('--disable-gpu');
+    opt.args.push('--disable-dev-shm-usage');
+    yield (0, exports.closeBrowser)();
+    (0, log_1.debug)('launch browser, opt=', opt);
+    browser = (yield (0, puppeteer_1.launch)(opt));
+    (0, log_1.debug)('browser created');
+});
+exports.launchBrowser = launchBrowser;
+const goToPage = (url) => __awaiter(void 0, void 0, void 0, function* () {
+    try {
+        if (!browser) {
+            yield (0, exports.launchBrowser)();
+        }
+        if (!browser) {
+            throw new Error('no browser');
+        }
+        (0, log_1.info)(`go to page:${url}`);
+        const page = yield browser.newPage();
+        yield page.goto(url, {
+            waitUntil: ['networkidle2'],
+            timeout: config_1.timeoutMs,
+        });
+        return page;
+    }
+    catch (e) {
+        const em = 'browser error:' + e.toString();
+        (0, log_1.error)(em);
+        throw new Error(em);
+    }
+});
+exports.goToPage = goToPage;
+function getMFA(p) {
+    var _a;
+    return __awaiter(this, void 0, void 0, function* () {
+        //go to browser site for auth
+        (0, log_1.info)('start mfa');
+        const page = yield (0, exports.goToPage)(p.verificationUriComplete);
+        (0, log_1.info)('username block');
+        yield page.waitForSelector('#username-input', { timeout: config_1.timeoutMs });
+        yield page.focus('#username-input input');
+        yield page.keyboard.type(p.creds.username);
+        yield page.$eval('#username-submit-button button', (el) => el.click());
+        //
+        (0, log_1.info)('password block');
+        yield page.waitForSelector('#password-input', { timeout: config_1.timeoutMs });
+        yield page.focus('#password-input input');
+        yield page.keyboard.type(p.creds.password);
+        yield page.$eval('#password-submit-button button', (el) => el.click());
+        yield (0, sleep_1.sleep)(250);
+        yield page.waitForNetworkIdle({ idleTime: 250 });
+        //
+        try {
+            const messageDiv = yield page.waitForSelector('.awsui-alert-message', {
+                timeout: 2000, //can be short
+            });
+            const value = yield page.evaluate((el) => { var _a; return (_a = el === null || el === void 0 ? void 0 : el.textContent) !== null && _a !== void 0 ? _a : ''; }, messageDiv);
+            if (value) {
+                throw new Error(value);
+            }
+        }
+        catch (e) {
+            const em = e.toString();
+            if (!em.includes('exceeded')) {
+                const em2 = `creds error:` + em;
+                (0, log_1.error)(em2);
+                throw new Error(em2);
+            }
+        }
+        //
+        let retry = true;
+        do {
+            (0, log_1.info)('mfa block');
+            const { mfa } = (0, input_1.enterMFA)();
+            yield page.waitForSelector('#input-0', { timeout: config_1.timeoutMs });
+            yield page.focus('#input-0 input');
+            yield page.keyboard.type(mfa);
+            yield page.$eval('.awsui-signin-button-container button', (el) => el.click());
+            //
+            try {
+                yield (0, sleep_1.sleep)(250);
+                yield page.waitForNetworkIdle({ idleTime: 250 });
+                const messageDiv = yield page.waitForSelector('.awsui-alert-message', {
+                    timeout: 2000, // can be short
+                });
+                const value = yield page.evaluate((el) => { var _a; return (_a = el === null || el === void 0 ? void 0 : el.textContent) !== null && _a !== void 0 ? _a : ''; }, messageDiv);
+                if (value) {
+                    throw new Error(value);
+                }
+                retry = false;
+            }
+            catch (e) {
+                const em = e.toString();
+                if (!em.includes('exceeded')) {
+                    const em2 = `mfa error:` + em + ' retry';
+                    (0, log_1.error)(em2);
+                }
+                else {
+                    retry = false;
+                }
+            }
+        } while (retry);
+        //
+        yield (0, sleep_1.sleep)(3000);
+        yield page.waitForNetworkIdle({ idleTime: 250 });
+        yield page.waitForSelector('.awsui-signin-button', {
+            timeout: config_1.timeoutMs,
+            visible: true, //may need this for more calls
+        });
+        yield page.$eval('.awsui-signin-button', (el) => el.click());
+        yield (0, sleep_1.sleep)(250);
+        yield page.waitForNetworkIdle({ idleTime: 250 });
+        yield page.waitForSelector('.awsui-icon-variant-success', {
+            timeout: config_1.timeoutMs,
+        });
+        (0, log_1.warn)('mfa success');
+        const cookies = yield (page === null || page === void 0 ? void 0 : page.cookies());
+        const ssoAuthn = (_a = cookies === null || cookies === void 0 ? void 0 : cookies.find((c) => c.name === 'x-amz-sso_authn')) === null || _a === void 0 ? void 0 : _a.value;
+        if (!ssoAuthn) {
+            throw new Error('no aws authn');
+        }
+        yield (0, exports.closeBrowser)();
+        return { ssoAuthn };
+    });
+}
+exports.getMFA = getMFA;

package/dist/helpers/input.d.ts

@@ -1,10 +1,10 @@
-import { IAppInstance, IApplicationArgs } from '../types';
-export declare function chooseAppInstance(ai: IAppInstance[], args: IApplicationArgs): Promise<IAppInstance>;
-export declare function readArguments(): Promise<IApplicationArgs>;
-export declare function enterCreds(): {
-    username: string;
-    password: string;
-};
-export declare function enterMFA(): {
-    mfa: string;
-};
+import { IAppInstance, IApplicationArgs } from '../types';
+export declare function chooseAppInstance(ai: IAppInstance[], args: IApplicationArgs): Promise<IAppInstance>;
+export declare function readArguments(): Promise<IApplicationArgs>;
+export declare function enterCreds(): {
+    username: string;
+    password: string;
+};
+export declare function enterMFA(): {
+    mfa: string;
+};