ag-awsauth 0.0.7 → 0.0.10

package/dist/helpers/input.js

@@ -1,95 +1,95 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.enterMFA = exports.enterCreds = exports.readArguments = exports.chooseAppInstance = void 0;
-const log_1 = require("ag-common/dist/common/helpers/log");
-const string_1 = require("ag-common/dist/common/helpers/string");
-const cli_select_1 = __importDefault(require("cli-select"));
-const readline_sync_1 = require("readline-sync");
-const yargs_1 = __importDefault(require("yargs"));
-const helpers_1 = require("yargs/helpers");
-const valueRenderer = (a) => `${a.name} [${a.id}]`;
-function chooseAppInstance(ai, args) {
-    return __awaiter(this, void 0, void 0, function* () {
-        let ret;
-        if (args.applicationfilter) {
-            ret = ai.find((a) => (0, string_1.containsInsensitive)(valueRenderer(a), args.applicationfilter));
-            if (!ret) {
-                throw new Error('didnt find application with filter');
-            }
-        }
-        if (ret) {
-            (0, log_1.info)(`preselecting ${valueRenderer(ret)} from input ${args.applicationfilter}`);
-            return ret;
-        }
-        (0, log_1.info)('Choose app instance to connect to');
-        const res = yield (0, cli_select_1.default)({
-            values: ai,
-            valueRenderer,
-        });
-        return res.value;
-    });
-}
-exports.chooseAppInstance = chooseAppInstance;
-function readArguments() {
-    return __awaiter(this, void 0, void 0, function* () {
-        const { applicationfilter, verbose, wipe, config } = yield (0, yargs_1.default)((0, helpers_1.hideBin)(process.argv))
-            .help('h')
-            .alias('h', 'help')
-            .option('applicationfilter', {
-            alias: 'af',
-            type: 'string',
-            description: 'Will select account that matches passed in string',
-        })
-            .option('verbose', {
-            alias: 'v',
-            type: 'boolean',
-            description: 'Run with verbose logging',
-            default: false,
-        })
-            .option('wipe', {
-            alias: 'w',
-            type: 'boolean',
-            description: 'Clear previously saved session details and quit',
-            default: false,
-        })
-            .option('config', {
-            alias: 'c',
-            type: 'boolean',
-            description: 'Configure application settings',
-            default: false,
-        })
-            .parse();
-        return { applicationfilter, verbose, wipe, config };
-    });
-}
-exports.readArguments = readArguments;
-function enterCreds() {
-    const username = (0, readline_sync_1.question)('Enter username:');
-    const password = (0, readline_sync_1.question)('Enter password:', {
-        hideEchoBack: true,
-    });
-    return { username, password };
-}
-exports.enterCreds = enterCreds;
-function enterMFA() {
-    return {
-        mfa: (0, readline_sync_1.question)('Enter MFA code:', {
-            min: 6,
-            max: 6,
-            hideEchoBack: true,
-        }),
-    };
-}
-exports.enterMFA = enterMFA;
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.enterMFA = exports.enterCreds = exports.readArguments = exports.chooseAppInstance = void 0;
+const log_1 = require("ag-common/dist/common/helpers/log");
+const string_1 = require("ag-common/dist/common/helpers/string");
+const cli_select_1 = __importDefault(require("cli-select"));
+const readline_sync_1 = require("readline-sync");
+const yargs_1 = __importDefault(require("yargs"));
+const helpers_1 = require("yargs/helpers");
+const valueRenderer = (a) => `${a.name} [${a.id}]`;
+function chooseAppInstance(ai, args) {
+    return __awaiter(this, void 0, void 0, function* () {
+        let ret;
+        if (args.applicationfilter) {
+            ret = ai.find((a) => (0, string_1.containsInsensitive)(valueRenderer(a), args.applicationfilter));
+            if (!ret) {
+                throw new Error('didnt find application with filter');
+            }
+        }
+        if (ret) {
+            (0, log_1.info)(`preselecting ${valueRenderer(ret)} from input ${args.applicationfilter}`);
+            return ret;
+        }
+        (0, log_1.info)('Choose app instance to connect to');
+        const res = yield (0, cli_select_1.default)({
+            values: ai,
+            valueRenderer,
+        });
+        return res.value;
+    });
+}
+exports.chooseAppInstance = chooseAppInstance;
+function readArguments() {
+    return __awaiter(this, void 0, void 0, function* () {
+        const { applicationfilter, verbose, wipe, config } = yield (0, yargs_1.default)((0, helpers_1.hideBin)(process.argv))
+            .help('h')
+            .alias('h', 'help')
+            .option('applicationfilter', {
+            alias: 'af',
+            type: 'string',
+            description: 'Will select account that matches passed in string',
+        })
+            .option('verbose', {
+            alias: 'v',
+            type: 'boolean',
+            description: 'Run with verbose logging',
+            default: false,
+        })
+            .option('wipe', {
+            alias: 'w',
+            type: 'boolean',
+            description: 'Clear previously saved session details and quit',
+            default: false,
+        })
+            .option('config', {
+            alias: 'c',
+            type: 'boolean',
+            description: 'Configure application settings',
+            default: false,
+        })
+            .parse();
+        return { applicationfilter, verbose, wipe, config };
+    });
+}
+exports.readArguments = readArguments;
+function enterCreds() {
+    const username = (0, readline_sync_1.question)('Enter username:');
+    const password = (0, readline_sync_1.question)('Enter password:', {
+        hideEchoBack: true,
+    });
+    return { username, password };
+}
+exports.enterCreds = enterCreds;
+function enterMFA() {
+    return {
+        mfa: (0, readline_sync_1.question)('Enter MFA code:', {
+            min: 6,
+            max: 6,
+            hideEchoBack: true,
+        }),
+    };
+}
+exports.enterMFA = enterMFA;

package/dist/helpers/oidc.d.ts

@@ -1,5 +1,5 @@
-import { IAwsCreds } from '../types';
-export declare function requestMFA(p: {
-    identityCenterRegion: string;
-    ssoStartUrl: string;
-}): Promise<IAwsCreds>;
+import { IAwsCreds } from '../types';
+export declare function requestMFA(p: {
+    identityCenterRegion: string;
+    ssoStartUrl: string;
+}): Promise<IAwsCreds>;

package/dist/helpers/oidc.js

@@ -1,81 +1,81 @@
-"use strict";
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.requestMFA = void 0;
-const client_sso_oidc_1 = require("@aws-sdk/client-sso-oidc");
-const log_1 = require("ag-common/dist/common/helpers/log");
-const sleep_1 = require("ag-common/dist/common/helpers/sleep");
-const config_1 = require("../config");
-const browser_1 = require("./browser");
-const input_1 = require("./input");
-function requestMFA(p) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const sso_oidc = new client_sso_oidc_1.SSOOIDCClient({ region: p.identityCenterRegion });
-        (0, log_1.warn)('starting MFA flow');
-        const creds = (0, input_1.enterCreds)();
-        const rcc = yield sso_oidc.send(new client_sso_oidc_1.RegisterClientCommand({
-            clientName: creds.username,
-            clientType: 'public',
-        }));
-        const sda = yield sso_oidc.send(new client_sso_oidc_1.StartDeviceAuthorizationCommand({
-            clientId: rcc.clientId,
-            clientSecret: rcc.clientSecret,
-            startUrl: p.ssoStartUrl,
-        }));
-        if (!sda.verificationUriComplete) {
-            throw new Error('no verif url');
-        }
-        const { ssoAuthn } = yield (0, browser_1.getMFA)({
-            verificationUriComplete: sda.verificationUriComplete,
-            creds,
-        });
-        let accessToken;
-        //keep trying to receive auth until user clicks, or timeout
-        let trycount = 0;
-        do {
-            if (trycount > 3) {
-                throw new Error('too many fails');
-            }
-            trycount += 1;
-            try {
-                const ctc = yield sso_oidc.send(new client_sso_oidc_1.CreateTokenCommand({
-                    clientId: rcc.clientId,
-                    clientSecret: rcc.clientSecret,
-                    code: sda.userCode,
-                    deviceCode: sda.deviceCode,
-                    grantType: 'urn:ietf:params:oauth:grant-type:device_code',
-                }));
-                accessToken = ctc.accessToken;
-                if (!accessToken) {
-                    throw new Error('no access token');
-                }
-            }
-            catch (e) {
-                // eslint-disable-next-line @typescript-eslint/no-explicit-any
-                const es = e.toString();
-                if (!es.includes('AuthorizationPendingException')) {
-                    throw e;
-                }
-                (0, log_1.warn)('waiting for device approval...');
-                yield (0, sleep_1.sleep)(5000);
-            }
-        } while (!accessToken);
-        return {
-            accessToken,
-            ssoAuthn,
-            region: config_1.identityCenterRegion,
-            accessKeyId: '',
-            secretAccessKey: '',
-            sessionToken: '',
-        };
-    });
-}
-exports.requestMFA = requestMFA;
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.requestMFA = void 0;
+const client_sso_oidc_1 = require("@aws-sdk/client-sso-oidc");
+const log_1 = require("ag-common/dist/common/helpers/log");
+const sleep_1 = require("ag-common/dist/common/helpers/sleep");
+const config_1 = require("../config");
+const browser_1 = require("./browser");
+const input_1 = require("./input");
+function requestMFA(p) {
+    return __awaiter(this, void 0, void 0, function* () {
+        const sso_oidc = new client_sso_oidc_1.SSOOIDCClient({ region: p.identityCenterRegion });
+        (0, log_1.warn)('starting MFA flow');
+        const creds = (0, input_1.enterCreds)();
+        const rcc = yield sso_oidc.send(new client_sso_oidc_1.RegisterClientCommand({
+            clientName: creds.username,
+            clientType: 'public',
+        }));
+        const sda = yield sso_oidc.send(new client_sso_oidc_1.StartDeviceAuthorizationCommand({
+            clientId: rcc.clientId,
+            clientSecret: rcc.clientSecret,
+            startUrl: p.ssoStartUrl,
+        }));
+        if (!sda.verificationUriComplete) {
+            throw new Error('no verif url');
+        }
+        const { ssoAuthn } = yield (0, browser_1.getMFA)({
+            verificationUriComplete: sda.verificationUriComplete,
+            creds,
+        });
+        let accessToken;
+        //keep trying to receive auth until user clicks, or timeout
+        let trycount = 0;
+        do {
+            if (trycount > 3) {
+                throw new Error('too many fails');
+            }
+            trycount += 1;
+            try {
+                const ctc = yield sso_oidc.send(new client_sso_oidc_1.CreateTokenCommand({
+                    clientId: rcc.clientId,
+                    clientSecret: rcc.clientSecret,
+                    code: sda.userCode,
+                    deviceCode: sda.deviceCode,
+                    grantType: 'urn:ietf:params:oauth:grant-type:device_code',
+                }));
+                accessToken = ctc.accessToken;
+                if (!accessToken) {
+                    throw new Error('no access token');
+                }
+            }
+            catch (e) {
+                // eslint-disable-next-line @typescript-eslint/no-explicit-any
+                const es = e.toString();
+                if (!es.includes('AuthorizationPendingException')) {
+                    throw e;
+                }
+                (0, log_1.warn)('waiting for device approval...');
+                yield (0, sleep_1.sleep)(5000);
+            }
+        } while (!accessToken);
+        return {
+            accessToken,
+            ssoAuthn,
+            region: config_1.identityCenterRegion,
+            accessKeyId: '',
+            secretAccessKey: '',
+            sessionToken: '',
+        };
+    });
+}
+exports.requestMFA = requestMFA;

package/dist/helpers/sso.d.ts

@@ -1,21 +1,21 @@
-import { IAppInstance, IAwsCreds } from '../types';
-export declare const getAssumedRole: (p: {
-    accessToken: string;
-    accountId?: string;
-}) => Promise<{
-    accountId: string;
-    roleName: string;
-}>;
-export declare const getOIDCCredentialsFromAccessToken: (p: {
-    accessToken: string;
-    ssoAuthn: string;
-}) => Promise<IAwsCreds>;
-export declare function appInstances(p: {
-    ssoAuthn: string;
-}): Promise<IAppInstance[]>;
-export declare function getSamlAssertion(p: IAwsCreds, instance: IAppInstance): Promise<{
-    samlAssertion: string;
-    providerArn: string;
-    roleArn: string;
-}>;
-export declare const tryExistingCredentials: () => Promise<IAwsCreds | undefined>;
+import { IAppInstance, IAwsCreds } from '../types';
+export declare const getAssumedRole: (p: {
+    accessToken: string;
+    accountId?: string;
+}) => Promise<{
+    accountId: string;
+    roleName: string;
+}>;
+export declare const getOIDCCredentialsFromAccessToken: (p: {
+    accessToken: string;
+    ssoAuthn: string;
+}) => Promise<IAwsCreds>;
+export declare function appInstances(p: {
+    ssoAuthn: string;
+}): Promise<IAppInstance[]>;
+export declare function getSamlAssertion(p: IAwsCreds, instance: IAppInstance): Promise<{
+    samlAssertion: string;
+    providerArn: string;
+    roleArn: string;
+}>;
+export declare const tryExistingCredentials: () => Promise<IAwsCreds | undefined>;