replicas-engine 0.1.280 → 0.1.281
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/dist/src/bowser-UXBOYYAJ.js +2821 -0
- package/dist/src/chunk-3YYBZ6D5.js +576 -0
- package/dist/src/chunk-ATF5CAZW.js +2094 -0
- package/dist/src/chunk-B5KEKENG.js +436 -0
- package/dist/src/chunk-C6IOMGXW.js +1052 -0
- package/dist/src/chunk-MHJJJ2VP.js +2865 -0
- package/dist/src/chunk-YY2DS5UJ.js +1490 -0
- package/dist/src/{dist-es-GGHPJZ3K.js → dist-es-37YNNMWK.js} +47 -51
- package/dist/src/{dist-es-F6RG3S4O.js → dist-es-7IBRAXHQ.js} +25 -23
- package/dist/src/{dist-es-JIV2SPEM.js → dist-es-AYVDCHRQ.js} +9 -10
- package/dist/src/{dist-es-BUG4C6LP.js → dist-es-JSZE2H6Y.js} +21 -31
- package/dist/src/{dist-es-Q3YZVSCP.js → dist-es-M4ZCYBRD.js} +10 -11
- package/dist/src/{dist-es-YKS4LXBO.js → dist-es-MNGVDEEO.js} +4 -3
- package/dist/src/{dist-es-GZBSW2H3.js → dist-es-YA3RZ3J2.js} +27 -32
- package/dist/src/event-streams-7ZLUNSFX.js +1376 -0
- package/dist/src/index.js +53 -2
- package/dist/src/{loadSso-3WFGTQV7.js → loadSso-2A75N7C3.js} +84 -61
- package/dist/src/{signin-RSKKVVIS.js → signin-FXO7O6JB.js} +94 -82
- package/dist/src/{sso-oidc-LBVW2ORP.js → sso-oidc-4IFMUO6A.js} +102 -63
- package/dist/src/{sts-DKGAU6YE.js → sts-IAUEUXEW.js} +4964 -5055
- package/package.json +2 -2
- package/dist/src/chunk-2Y7PD56W.js +0 -164
- package/dist/src/chunk-5VUQ55WW.js +0 -242
- package/dist/src/chunk-AAVVX4U5.js +0 -175
- package/dist/src/chunk-BUG7ZAQW.js +0 -1033
- package/dist/src/chunk-ERL3EC7G.js +0 -44
- package/dist/src/chunk-SGITM26Q.js +0 -877
- package/dist/src/chunk-ST5JVROM.js +0 -39
- package/dist/src/chunk-SWX24AGM.js +0 -62
- package/dist/src/chunk-TU2SAX7Z.js +0 -5706
- package/dist/src/chunk-WPAL27HA.js +0 -29
- package/dist/src/chunk-ZDZBYCXV.js +0 -52
- package/dist/src/chunk-ZNARSMJG.js +0 -14
- package/dist/src/event-streams-XS4D2DFO.js +0 -252
|
@@ -1,24 +1,34 @@
|
|
|
1
1
|
#!/usr/bin/env node
|
|
2
2
|
import {
|
|
3
|
+
CredentialsProviderError,
|
|
4
|
+
ProviderError,
|
|
3
5
|
loadConfig,
|
|
4
6
|
parseUrl
|
|
5
|
-
} from "./chunk-
|
|
6
|
-
import "./chunk-
|
|
7
|
-
import "./chunk-5VUQ55WW.js";
|
|
8
|
-
import {
|
|
9
|
-
CredentialsProviderError,
|
|
10
|
-
ProviderError
|
|
11
|
-
} from "./chunk-ST5JVROM.js";
|
|
7
|
+
} from "./chunk-ATF5CAZW.js";
|
|
8
|
+
import "./chunk-C6IOMGXW.js";
|
|
12
9
|
|
|
13
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
14
|
-
|
|
10
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/remoteProvider/ImdsCredentials.js
|
|
11
|
+
var isImdsCredentials = (arg) => Boolean(arg) && typeof arg === "object" && typeof arg.AccessKeyId === "string" && typeof arg.SecretAccessKey === "string" && typeof arg.Token === "string" && typeof arg.Expiration === "string";
|
|
12
|
+
var fromImdsCredentials = (creds) => ({
|
|
13
|
+
accessKeyId: creds.AccessKeyId,
|
|
14
|
+
secretAccessKey: creds.SecretAccessKey,
|
|
15
|
+
sessionToken: creds.Token,
|
|
16
|
+
expiration: new Date(creds.Expiration),
|
|
17
|
+
...creds.AccountId && { accountId: creds.AccountId }
|
|
18
|
+
});
|
|
19
|
+
|
|
20
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/remoteProvider/RemoteProviderInit.js
|
|
21
|
+
var DEFAULT_TIMEOUT = 1e3;
|
|
22
|
+
var DEFAULT_MAX_RETRIES = 0;
|
|
23
|
+
var providerConfigFromInit = ({ maxRetries = DEFAULT_MAX_RETRIES, timeout = DEFAULT_TIMEOUT }) => ({ maxRetries, timeout });
|
|
15
24
|
|
|
16
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
17
|
-
import
|
|
18
|
-
|
|
25
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/remoteProvider/node-http.js
|
|
26
|
+
import node_http from "http";
|
|
27
|
+
|
|
28
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/remoteProvider/httpRequest.js
|
|
19
29
|
function httpRequest(options) {
|
|
20
30
|
return new Promise((resolve, reject) => {
|
|
21
|
-
const req = request({
|
|
31
|
+
const req = node_http.request({
|
|
22
32
|
method: "GET",
|
|
23
33
|
...options,
|
|
24
34
|
hostname: options.hostname?.replace(/^\[(.+)\]$/, "$1")
|
|
@@ -50,22 +60,7 @@ function httpRequest(options) {
|
|
|
50
60
|
});
|
|
51
61
|
}
|
|
52
62
|
|
|
53
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
54
|
-
var isImdsCredentials = (arg) => Boolean(arg) && typeof arg === "object" && typeof arg.AccessKeyId === "string" && typeof arg.SecretAccessKey === "string" && typeof arg.Token === "string" && typeof arg.Expiration === "string";
|
|
55
|
-
var fromImdsCredentials = (creds) => ({
|
|
56
|
-
accessKeyId: creds.AccessKeyId,
|
|
57
|
-
secretAccessKey: creds.SecretAccessKey,
|
|
58
|
-
sessionToken: creds.Token,
|
|
59
|
-
expiration: new Date(creds.Expiration),
|
|
60
|
-
...creds.AccountId && { accountId: creds.AccountId }
|
|
61
|
-
});
|
|
62
|
-
|
|
63
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.2.14/node_modules/@smithy/credential-provider-imds/dist-es/remoteProvider/RemoteProviderInit.js
|
|
64
|
-
var DEFAULT_TIMEOUT = 1e3;
|
|
65
|
-
var DEFAULT_MAX_RETRIES = 0;
|
|
66
|
-
var providerConfigFromInit = ({ maxRetries = DEFAULT_MAX_RETRIES, timeout = DEFAULT_TIMEOUT }) => ({ maxRetries, timeout });
|
|
67
|
-
|
|
68
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.2.14/node_modules/@smithy/credential-provider-imds/dist-es/remoteProvider/retry.js
|
|
63
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/remoteProvider/retry.js
|
|
69
64
|
var retry = (toRetry, maxRetries) => {
|
|
70
65
|
let promise = toRetry();
|
|
71
66
|
for (let i = 0; i < maxRetries; i++) {
|
|
@@ -74,7 +69,7 @@ var retry = (toRetry, maxRetries) => {
|
|
|
74
69
|
return promise;
|
|
75
70
|
};
|
|
76
71
|
|
|
77
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
72
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/fromContainerMetadata.js
|
|
78
73
|
var ENV_CMDS_FULL_URI = "AWS_CONTAINER_CREDENTIALS_FULL_URI";
|
|
79
74
|
var ENV_CMDS_RELATIVE_URI = "AWS_CONTAINER_CREDENTIALS_RELATIVE_URI";
|
|
80
75
|
var ENV_CMDS_AUTH_TOKEN = "AWS_CONTAINER_AUTHORIZATION_TOKEN";
|
|
@@ -105,14 +100,8 @@ var requestFromEcsImds = async (timeout, options) => {
|
|
|
105
100
|
return buffer.toString();
|
|
106
101
|
};
|
|
107
102
|
var CMDS_IP = "169.254.170.2";
|
|
108
|
-
var GREENGRASS_HOSTS =
|
|
109
|
-
|
|
110
|
-
"127.0.0.1": true
|
|
111
|
-
};
|
|
112
|
-
var GREENGRASS_PROTOCOLS = {
|
|
113
|
-
"http:": true,
|
|
114
|
-
"https:": true
|
|
115
|
-
};
|
|
103
|
+
var GREENGRASS_HOSTS = /* @__PURE__ */ new Set(["localhost", "127.0.0.1"]);
|
|
104
|
+
var GREENGRASS_PROTOCOLS = /* @__PURE__ */ new Set(["http:", "https:"]);
|
|
116
105
|
var getCmdsUri = async ({ logger }) => {
|
|
117
106
|
if (process.env[ENV_CMDS_RELATIVE_URI]) {
|
|
118
107
|
return {
|
|
@@ -121,21 +110,28 @@ var getCmdsUri = async ({ logger }) => {
|
|
|
121
110
|
};
|
|
122
111
|
}
|
|
123
112
|
if (process.env[ENV_CMDS_FULL_URI]) {
|
|
124
|
-
|
|
125
|
-
|
|
113
|
+
let parsed;
|
|
114
|
+
try {
|
|
115
|
+
parsed = new URL(process.env[ENV_CMDS_FULL_URI]);
|
|
116
|
+
} catch {
|
|
117
|
+
throw new CredentialsProviderError(`${process.env[ENV_CMDS_FULL_URI]} is not a valid container metadata service URL`, { tryNextLink: false, logger });
|
|
118
|
+
}
|
|
119
|
+
if (!parsed.hostname || !GREENGRASS_HOSTS.has(parsed.hostname)) {
|
|
126
120
|
throw new CredentialsProviderError(`${parsed.hostname} is not a valid container metadata service hostname`, {
|
|
127
121
|
tryNextLink: false,
|
|
128
122
|
logger
|
|
129
123
|
});
|
|
130
124
|
}
|
|
131
|
-
if (!parsed.protocol || !(parsed.protocol
|
|
125
|
+
if (!parsed.protocol || !GREENGRASS_PROTOCOLS.has(parsed.protocol)) {
|
|
132
126
|
throw new CredentialsProviderError(`${parsed.protocol} is not a valid container metadata service protocol`, {
|
|
133
127
|
tryNextLink: false,
|
|
134
128
|
logger
|
|
135
129
|
});
|
|
136
130
|
}
|
|
137
131
|
return {
|
|
138
|
-
|
|
132
|
+
protocol: parsed.protocol,
|
|
133
|
+
hostname: parsed.hostname,
|
|
134
|
+
path: parsed.pathname + parsed.search,
|
|
139
135
|
port: parsed.port ? parseInt(parsed.port, 10) : void 0
|
|
140
136
|
};
|
|
141
137
|
}
|
|
@@ -145,7 +141,7 @@ var getCmdsUri = async ({ logger }) => {
|
|
|
145
141
|
});
|
|
146
142
|
};
|
|
147
143
|
|
|
148
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
144
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/error/InstanceMetadataV1FallbackError.js
|
|
149
145
|
var InstanceMetadataV1FallbackError = class _InstanceMetadataV1FallbackError extends CredentialsProviderError {
|
|
150
146
|
tryNextLink;
|
|
151
147
|
name = "InstanceMetadataV1FallbackError";
|
|
@@ -156,14 +152,14 @@ var InstanceMetadataV1FallbackError = class _InstanceMetadataV1FallbackError ext
|
|
|
156
152
|
}
|
|
157
153
|
};
|
|
158
154
|
|
|
159
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
155
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/config/Endpoint.js
|
|
160
156
|
var Endpoint;
|
|
161
157
|
(function(Endpoint2) {
|
|
162
158
|
Endpoint2["IPv4"] = "http://169.254.169.254";
|
|
163
159
|
Endpoint2["IPv6"] = "http://[fd00:ec2::254]";
|
|
164
160
|
})(Endpoint || (Endpoint = {}));
|
|
165
161
|
|
|
166
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
162
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/config/EndpointConfigOptions.js
|
|
167
163
|
var ENV_ENDPOINT_NAME = "AWS_EC2_METADATA_SERVICE_ENDPOINT";
|
|
168
164
|
var CONFIG_ENDPOINT_NAME = "ec2_metadata_service_endpoint";
|
|
169
165
|
var ENDPOINT_CONFIG_OPTIONS = {
|
|
@@ -172,14 +168,14 @@ var ENDPOINT_CONFIG_OPTIONS = {
|
|
|
172
168
|
default: void 0
|
|
173
169
|
};
|
|
174
170
|
|
|
175
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
171
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/config/EndpointMode.js
|
|
176
172
|
var EndpointMode;
|
|
177
173
|
(function(EndpointMode2) {
|
|
178
174
|
EndpointMode2["IPv4"] = "IPv4";
|
|
179
175
|
EndpointMode2["IPv6"] = "IPv6";
|
|
180
176
|
})(EndpointMode || (EndpointMode = {}));
|
|
181
177
|
|
|
182
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
178
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/config/EndpointModeConfigOptions.js
|
|
183
179
|
var ENV_ENDPOINT_MODE_NAME = "AWS_EC2_METADATA_SERVICE_ENDPOINT_MODE";
|
|
184
180
|
var CONFIG_ENDPOINT_MODE_NAME = "ec2_metadata_service_endpoint_mode";
|
|
185
181
|
var ENDPOINT_MODE_CONFIG_OPTIONS = {
|
|
@@ -188,7 +184,7 @@ var ENDPOINT_MODE_CONFIG_OPTIONS = {
|
|
|
188
184
|
default: EndpointMode.IPv4
|
|
189
185
|
};
|
|
190
186
|
|
|
191
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
187
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/utils/getInstanceMetadataEndpoint.js
|
|
192
188
|
var getInstanceMetadataEndpoint = async () => parseUrl(await getFromEndpointConfig() || await getFromEndpointModeConfig());
|
|
193
189
|
var getFromEndpointConfig = async () => loadConfig(ENDPOINT_CONFIG_OPTIONS)();
|
|
194
190
|
var getFromEndpointModeConfig = async () => {
|
|
@@ -203,7 +199,7 @@ var getFromEndpointModeConfig = async () => {
|
|
|
203
199
|
}
|
|
204
200
|
};
|
|
205
201
|
|
|
206
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
202
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/utils/getExtendedInstanceMetadataCredentials.js
|
|
207
203
|
var STATIC_STABILITY_REFRESH_INTERVAL_SECONDS = 5 * 60;
|
|
208
204
|
var STATIC_STABILITY_REFRESH_INTERVAL_JITTER_WINDOW_SECONDS = 5 * 60;
|
|
209
205
|
var STATIC_STABILITY_DOC_URL = "https://docs.aws.amazon.com/sdkref/latest/guide/feature-static-credentials.html";
|
|
@@ -220,7 +216,7 @@ For more information, please visit: ` + STATIC_STABILITY_DOC_URL);
|
|
|
220
216
|
};
|
|
221
217
|
};
|
|
222
218
|
|
|
223
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
219
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/utils/staticStabilityProvider.js
|
|
224
220
|
var staticStabilityProvider = (provider, options = {}) => {
|
|
225
221
|
const logger = options?.logger || console;
|
|
226
222
|
let pastCredentials;
|
|
@@ -244,7 +240,7 @@ var staticStabilityProvider = (provider, options = {}) => {
|
|
|
244
240
|
};
|
|
245
241
|
};
|
|
246
242
|
|
|
247
|
-
// ../node_modules/.bun/@smithy+credential-provider-imds@4.
|
|
243
|
+
// ../node_modules/.bun/@smithy+credential-provider-imds@4.3.8/node_modules/@smithy/credential-provider-imds/dist-es/fromInstanceMetadata.js
|
|
248
244
|
var IMDS_PATH = "/latest/meta-data/iam/security-credentials/";
|
|
249
245
|
var IMDS_TOKEN_PATH = "/latest/api/token";
|
|
250
246
|
var AWS_EC2_METADATA_V1_DISABLED = "AWS_EC2_METADATA_V1_DISABLED";
|
|
@@ -1,26 +1,23 @@
|
|
|
1
1
|
#!/usr/bin/env node
|
|
2
2
|
import {
|
|
3
|
-
|
|
4
|
-
} from "./chunk-
|
|
3
|
+
NodeHttpHandler
|
|
4
|
+
} from "./chunk-B5KEKENG.js";
|
|
5
5
|
import {
|
|
6
|
-
|
|
7
|
-
|
|
8
|
-
} from "./chunk-SGITM26Q.js";
|
|
6
|
+
setCredentialFeature
|
|
7
|
+
} from "./chunk-MHJJJ2VP.js";
|
|
9
8
|
import {
|
|
9
|
+
CredentialsProviderError,
|
|
10
10
|
HttpRequest
|
|
11
|
-
} from "./chunk-
|
|
12
|
-
import "./chunk-ERL3EC7G.js";
|
|
11
|
+
} from "./chunk-ATF5CAZW.js";
|
|
13
12
|
import {
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
CredentialsProviderError
|
|
18
|
-
} from "./chunk-ST5JVROM.js";
|
|
13
|
+
parseRfc3339DateTime,
|
|
14
|
+
sdkStreamMixin
|
|
15
|
+
} from "./chunk-C6IOMGXW.js";
|
|
19
16
|
|
|
20
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-http@3.972.
|
|
17
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-http@3.972.46/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/fromHttp.js
|
|
21
18
|
import fs from "fs/promises";
|
|
22
19
|
|
|
23
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-http@3.972.
|
|
20
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-http@3.972.46/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/checkUrl.js
|
|
24
21
|
var ECS_CONTAINER_HOST = "169.254.170.2";
|
|
25
22
|
var EKS_CONTAINER_HOST_IPv4 = "169.254.170.23";
|
|
26
23
|
var EKS_CONTAINER_HOST_IPv6 = "[fd00:ec2::23]";
|
|
@@ -54,7 +51,7 @@ var checkUrl = (url, logger) => {
|
|
|
54
51
|
- EKS container host 169.254.170.23 or [fd00:ec2::23]`, { logger });
|
|
55
52
|
};
|
|
56
53
|
|
|
57
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-http@3.972.
|
|
54
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-http@3.972.46/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/requestHelpers.js
|
|
58
55
|
function createGetRequest(url) {
|
|
59
56
|
return new HttpRequest({
|
|
60
57
|
protocol: url.protocol,
|
|
@@ -97,7 +94,7 @@ async function getCredentials(response, logger) {
|
|
|
97
94
|
throw new CredentialsProviderError(`Server responded with status: ${response.statusCode}`, { logger });
|
|
98
95
|
}
|
|
99
96
|
|
|
100
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-http@3.972.
|
|
97
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-http@3.972.46/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/retry-wrapper.js
|
|
101
98
|
var retryWrapper = (toRetry, maxRetries, delayMs) => {
|
|
102
99
|
return async () => {
|
|
103
100
|
for (let i = 0; i < maxRetries; ++i) {
|
|
@@ -111,7 +108,7 @@ var retryWrapper = (toRetry, maxRetries, delayMs) => {
|
|
|
111
108
|
};
|
|
112
109
|
};
|
|
113
110
|
|
|
114
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-http@3.972.
|
|
111
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-http@3.972.46/node_modules/@aws-sdk/credential-provider-http/dist-es/fromHttp/fromHttp.js
|
|
115
112
|
var AWS_CONTAINER_CREDENTIALS_RELATIVE_URI = "AWS_CONTAINER_CREDENTIALS_RELATIVE_URI";
|
|
116
113
|
var DEFAULT_LINK_LOCAL_HOST = "http://169.254.170.2";
|
|
117
114
|
var AWS_CONTAINER_CREDENTIALS_FULL_URI = "AWS_CONTAINER_CREDENTIALS_FULL_URI";
|
|
@@ -143,11 +140,9 @@ Set AWS_CONTAINER_CREDENTIALS_FULL_URI or AWS_CONTAINER_CREDENTIALS_RELATIVE_URI
|
|
|
143
140
|
}
|
|
144
141
|
const url = new URL(host);
|
|
145
142
|
checkUrl(url, options.logger);
|
|
146
|
-
const requestHandler = NodeHttpHandler.create({
|
|
147
|
-
|
|
148
|
-
|
|
149
|
-
});
|
|
150
|
-
return retryWrapper(async () => {
|
|
143
|
+
const requestHandler = NodeHttpHandler.create({ connectionTimeout: options.timeout ?? 1e3 });
|
|
144
|
+
const requestTimeout = options.timeout ?? 1e3;
|
|
145
|
+
const provider = retryWrapper(async () => {
|
|
151
146
|
const request = createGetRequest(url);
|
|
152
147
|
if (token) {
|
|
153
148
|
request.headers.Authorization = token;
|
|
@@ -155,12 +150,19 @@ Set AWS_CONTAINER_CREDENTIALS_FULL_URI or AWS_CONTAINER_CREDENTIALS_RELATIVE_URI
|
|
|
155
150
|
request.headers.Authorization = (await fs.readFile(tokenFile)).toString();
|
|
156
151
|
}
|
|
157
152
|
try {
|
|
158
|
-
const result = await requestHandler.handle(request);
|
|
153
|
+
const result = await requestHandler.handle(request, { requestTimeout });
|
|
159
154
|
return getCredentials(result.response).then((creds) => setCredentialFeature(creds, "CREDENTIALS_HTTP", "z"));
|
|
160
155
|
} catch (e) {
|
|
161
156
|
throw new CredentialsProviderError(String(e), { logger: options.logger });
|
|
162
157
|
}
|
|
163
158
|
}, options.maxRetries ?? 3, options.timeout ?? 1e3);
|
|
159
|
+
return async () => {
|
|
160
|
+
try {
|
|
161
|
+
return await provider();
|
|
162
|
+
} finally {
|
|
163
|
+
requestHandler.destroy?.();
|
|
164
|
+
}
|
|
165
|
+
};
|
|
164
166
|
};
|
|
165
167
|
export {
|
|
166
168
|
fromHttp
|
|
@@ -1,24 +1,23 @@
|
|
|
1
1
|
#!/usr/bin/env node
|
|
2
|
-
import {
|
|
3
|
-
externalDataInterceptor
|
|
4
|
-
} from "./chunk-5VUQ55WW.js";
|
|
5
2
|
import {
|
|
6
3
|
setCredentialFeature
|
|
7
|
-
} from "./chunk-
|
|
4
|
+
} from "./chunk-MHJJJ2VP.js";
|
|
8
5
|
import {
|
|
9
|
-
CredentialsProviderError
|
|
10
|
-
|
|
6
|
+
CredentialsProviderError,
|
|
7
|
+
externalDataInterceptor
|
|
8
|
+
} from "./chunk-ATF5CAZW.js";
|
|
9
|
+
import "./chunk-C6IOMGXW.js";
|
|
11
10
|
|
|
12
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-web-identity@3.972.
|
|
11
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-web-identity@3.972.49/node_modules/@aws-sdk/credential-provider-web-identity/dist-es/fromTokenFile.js
|
|
13
12
|
import { readFileSync } from "fs";
|
|
14
13
|
|
|
15
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-web-identity@3.972.
|
|
14
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-web-identity@3.972.49/node_modules/@aws-sdk/credential-provider-web-identity/dist-es/fromWebToken.js
|
|
16
15
|
var fromWebToken = (init) => async (awsIdentityProperties) => {
|
|
17
16
|
init.logger?.debug("@aws-sdk/credential-provider-web-identity - fromWebToken");
|
|
18
17
|
const { roleArn, roleSessionName, webIdentityToken, providerId, policyArns, policy, durationSeconds } = init;
|
|
19
18
|
let { roleAssumerWithWebIdentity } = init;
|
|
20
19
|
if (!roleAssumerWithWebIdentity) {
|
|
21
|
-
const { getDefaultRoleAssumerWithWebIdentity } = await import("./sts-
|
|
20
|
+
const { getDefaultRoleAssumerWithWebIdentity } = await import("./sts-IAUEUXEW.js");
|
|
22
21
|
roleAssumerWithWebIdentity = getDefaultRoleAssumerWithWebIdentity({
|
|
23
22
|
...init.clientConfig,
|
|
24
23
|
credentialProviderLogger: init.logger,
|
|
@@ -39,7 +38,7 @@ var fromWebToken = (init) => async (awsIdentityProperties) => {
|
|
|
39
38
|
});
|
|
40
39
|
};
|
|
41
40
|
|
|
42
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-web-identity@3.972.
|
|
41
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-web-identity@3.972.49/node_modules/@aws-sdk/credential-provider-web-identity/dist-es/fromTokenFile.js
|
|
43
42
|
var ENV_TOKEN_FILE = "AWS_WEB_IDENTITY_TOKEN_FILE";
|
|
44
43
|
var ENV_ROLE_ARN = "AWS_ROLE_ARN";
|
|
45
44
|
var ENV_ROLE_SESSION_NAME = "AWS_ROLE_SESSION_NAME";
|
|
@@ -1,38 +1,28 @@
|
|
|
1
1
|
#!/usr/bin/env node
|
|
2
2
|
import {
|
|
3
|
+
setCredentialFeature
|
|
4
|
+
} from "./chunk-MHJJJ2VP.js";
|
|
5
|
+
import {
|
|
6
|
+
CredentialsProviderError,
|
|
7
|
+
TokenProviderError,
|
|
3
8
|
getProfileName,
|
|
4
9
|
getSSOTokenFilepath,
|
|
5
10
|
getSSOTokenFromFile,
|
|
6
11
|
loadSsoSessionData,
|
|
7
12
|
parseKnownFiles
|
|
8
|
-
} from "./chunk-
|
|
9
|
-
import
|
|
10
|
-
setCredentialFeature
|
|
11
|
-
} from "./chunk-ZNARSMJG.js";
|
|
12
|
-
import {
|
|
13
|
-
CredentialsProviderError,
|
|
14
|
-
ProviderError
|
|
15
|
-
} from "./chunk-ST5JVROM.js";
|
|
16
|
-
|
|
17
|
-
// ../node_modules/.bun/@smithy+property-provider@4.2.14/node_modules/@smithy/property-provider/dist-es/TokenProviderError.js
|
|
18
|
-
var TokenProviderError = class _TokenProviderError extends ProviderError {
|
|
19
|
-
name = "TokenProviderError";
|
|
20
|
-
constructor(message, options = true) {
|
|
21
|
-
super(message, options);
|
|
22
|
-
Object.setPrototypeOf(this, _TokenProviderError.prototype);
|
|
23
|
-
}
|
|
24
|
-
};
|
|
13
|
+
} from "./chunk-ATF5CAZW.js";
|
|
14
|
+
import "./chunk-C6IOMGXW.js";
|
|
25
15
|
|
|
26
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-sso@3.972.
|
|
16
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-sso@3.972.49/node_modules/@aws-sdk/credential-provider-sso/dist-es/isSsoProfile.js
|
|
27
17
|
var isSsoProfile = (arg) => arg && (typeof arg.sso_start_url === "string" || typeof arg.sso_account_id === "string" || typeof arg.sso_session === "string" || typeof arg.sso_region === "string" || typeof arg.sso_role_name === "string");
|
|
28
18
|
|
|
29
|
-
// ../node_modules/.bun/@aws-sdk+token-providers@3.
|
|
19
|
+
// ../node_modules/.bun/@aws-sdk+token-providers@3.1063.0/node_modules/@aws-sdk/token-providers/dist-es/constants.js
|
|
30
20
|
var EXPIRE_WINDOW_MS = 5 * 60 * 1e3;
|
|
31
21
|
var REFRESH_MESSAGE = `To refresh this SSO session run 'aws sso login' with the corresponding profile.`;
|
|
32
22
|
|
|
33
|
-
// ../node_modules/.bun/@aws-sdk+token-providers@3.
|
|
23
|
+
// ../node_modules/.bun/@aws-sdk+token-providers@3.1063.0/node_modules/@aws-sdk/token-providers/dist-es/getSsoOidcClient.js
|
|
34
24
|
var getSsoOidcClient = async (ssoRegion, init = {}, callerClientConfig) => {
|
|
35
|
-
const { SSOOIDCClient } = await import("./sso-oidc-
|
|
25
|
+
const { SSOOIDCClient } = await import("./sso-oidc-4IFMUO6A.js");
|
|
36
26
|
const coalesce = (prop) => init.clientConfig?.[prop] ?? init.parentClientConfig?.[prop] ?? callerClientConfig?.[prop];
|
|
37
27
|
const ssoOidcClient = new SSOOIDCClient(Object.assign({}, init.clientConfig ?? {}, {
|
|
38
28
|
region: ssoRegion ?? init.clientConfig?.region,
|
|
@@ -42,9 +32,9 @@ var getSsoOidcClient = async (ssoRegion, init = {}, callerClientConfig) => {
|
|
|
42
32
|
return ssoOidcClient;
|
|
43
33
|
};
|
|
44
34
|
|
|
45
|
-
// ../node_modules/.bun/@aws-sdk+token-providers@3.
|
|
35
|
+
// ../node_modules/.bun/@aws-sdk+token-providers@3.1063.0/node_modules/@aws-sdk/token-providers/dist-es/getNewSsoOidcToken.js
|
|
46
36
|
var getNewSsoOidcToken = async (ssoToken, ssoRegion, init = {}, callerClientConfig) => {
|
|
47
|
-
const { CreateTokenCommand } = await import("./sso-oidc-
|
|
37
|
+
const { CreateTokenCommand } = await import("./sso-oidc-4IFMUO6A.js");
|
|
48
38
|
const ssoOidcClient = await getSsoOidcClient(ssoRegion, init, callerClientConfig);
|
|
49
39
|
return ssoOidcClient.send(new CreateTokenCommand({
|
|
50
40
|
clientId: ssoToken.clientId,
|
|
@@ -54,21 +44,21 @@ var getNewSsoOidcToken = async (ssoToken, ssoRegion, init = {}, callerClientConf
|
|
|
54
44
|
}));
|
|
55
45
|
};
|
|
56
46
|
|
|
57
|
-
// ../node_modules/.bun/@aws-sdk+token-providers@3.
|
|
47
|
+
// ../node_modules/.bun/@aws-sdk+token-providers@3.1063.0/node_modules/@aws-sdk/token-providers/dist-es/validateTokenExpiry.js
|
|
58
48
|
var validateTokenExpiry = (token) => {
|
|
59
49
|
if (token.expiration && token.expiration.getTime() < Date.now()) {
|
|
60
50
|
throw new TokenProviderError(`Token is expired. ${REFRESH_MESSAGE}`, false);
|
|
61
51
|
}
|
|
62
52
|
};
|
|
63
53
|
|
|
64
|
-
// ../node_modules/.bun/@aws-sdk+token-providers@3.
|
|
54
|
+
// ../node_modules/.bun/@aws-sdk+token-providers@3.1063.0/node_modules/@aws-sdk/token-providers/dist-es/validateTokenKey.js
|
|
65
55
|
var validateTokenKey = (key, value, forRefresh = false) => {
|
|
66
56
|
if (typeof value === "undefined") {
|
|
67
57
|
throw new TokenProviderError(`Value not present for '${key}' in SSO Token${forRefresh ? ". Cannot refresh" : ""}. ${REFRESH_MESSAGE}`, false);
|
|
68
58
|
}
|
|
69
59
|
};
|
|
70
60
|
|
|
71
|
-
// ../node_modules/.bun/@aws-sdk+token-providers@3.
|
|
61
|
+
// ../node_modules/.bun/@aws-sdk+token-providers@3.1063.0/node_modules/@aws-sdk/token-providers/dist-es/writeSSOTokenToFile.js
|
|
72
62
|
import { promises as fsPromises } from "fs";
|
|
73
63
|
var { writeFile } = fsPromises;
|
|
74
64
|
var writeSSOTokenToFile = (id, ssoToken) => {
|
|
@@ -77,7 +67,7 @@ var writeSSOTokenToFile = (id, ssoToken) => {
|
|
|
77
67
|
return writeFile(tokenFilepath, tokenString);
|
|
78
68
|
};
|
|
79
69
|
|
|
80
|
-
// ../node_modules/.bun/@aws-sdk+token-providers@3.
|
|
70
|
+
// ../node_modules/.bun/@aws-sdk+token-providers@3.1063.0/node_modules/@aws-sdk/token-providers/dist-es/fromSso.js
|
|
81
71
|
var lastRefreshAttemptTime = /* @__PURE__ */ new Date(0);
|
|
82
72
|
var fromSso = (init = {}) => async ({ callerClientConfig } = {}) => {
|
|
83
73
|
init.logger?.debug("@aws-sdk/token-providers - fromSso");
|
|
@@ -149,7 +139,7 @@ var fromSso = (init = {}) => async ({ callerClientConfig } = {}) => {
|
|
|
149
139
|
}
|
|
150
140
|
};
|
|
151
141
|
|
|
152
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-sso@3.972.
|
|
142
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-sso@3.972.49/node_modules/@aws-sdk/credential-provider-sso/dist-es/resolveSSOCredentials.js
|
|
153
143
|
var SHOULD_FAIL_CREDENTIAL_CHAIN = false;
|
|
154
144
|
var resolveSSOCredentials = async ({ ssoStartUrl, ssoSession, ssoAccountId, ssoRegion, ssoRoleName, ssoClient, clientConfig, parentClientConfig, callerClientConfig, profile, filepath, configFilepath, ignoreCache, logger }) => {
|
|
155
145
|
let token;
|
|
@@ -189,7 +179,7 @@ var resolveSSOCredentials = async ({ ssoStartUrl, ssoSession, ssoAccountId, ssoR
|
|
|
189
179
|
});
|
|
190
180
|
}
|
|
191
181
|
const { accessToken } = token;
|
|
192
|
-
const { SSOClient, GetRoleCredentialsCommand } = await import("./loadSso-
|
|
182
|
+
const { SSOClient, GetRoleCredentialsCommand } = await import("./loadSso-2A75N7C3.js");
|
|
193
183
|
const sso = ssoClient || new SSOClient(Object.assign({}, clientConfig ?? {}, {
|
|
194
184
|
logger: clientConfig?.logger ?? callerClientConfig?.logger ?? parentClientConfig?.logger,
|
|
195
185
|
region: clientConfig?.region ?? ssoRegion,
|
|
@@ -231,7 +221,7 @@ var resolveSSOCredentials = async ({ ssoStartUrl, ssoSession, ssoAccountId, ssoR
|
|
|
231
221
|
return credentials;
|
|
232
222
|
};
|
|
233
223
|
|
|
234
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-sso@3.972.
|
|
224
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-sso@3.972.49/node_modules/@aws-sdk/credential-provider-sso/dist-es/validateSsoProfile.js
|
|
235
225
|
var validateSsoProfile = (profile, logger) => {
|
|
236
226
|
const { sso_start_url, sso_account_id, sso_region, sso_role_name } = profile;
|
|
237
227
|
if (!sso_start_url || !sso_account_id || !sso_region || !sso_role_name) {
|
|
@@ -241,7 +231,7 @@ Reference: https://docs.aws.amazon.com/cli/latest/userguide/cli-configure-sso.ht
|
|
|
241
231
|
return profile;
|
|
242
232
|
};
|
|
243
233
|
|
|
244
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-sso@3.972.
|
|
234
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-sso@3.972.49/node_modules/@aws-sdk/credential-provider-sso/dist-es/fromSSO.js
|
|
245
235
|
var fromSSO = (init = {}) => async ({ callerClientConfig } = {}) => {
|
|
246
236
|
init.logger?.debug("@aws-sdk/credential-provider-sso - fromSSO");
|
|
247
237
|
const { ssoStartUrl, ssoAccountId, ssoRegion, ssoRoleName, ssoSession } = init;
|
|
@@ -1,21 +1,20 @@
|
|
|
1
1
|
#!/usr/bin/env node
|
|
2
2
|
import {
|
|
3
|
+
setCredentialFeature
|
|
4
|
+
} from "./chunk-MHJJJ2VP.js";
|
|
5
|
+
import {
|
|
6
|
+
CredentialsProviderError,
|
|
3
7
|
externalDataInterceptor,
|
|
4
8
|
getProfileName,
|
|
5
9
|
parseKnownFiles
|
|
6
|
-
} from "./chunk-
|
|
7
|
-
import
|
|
8
|
-
setCredentialFeature
|
|
9
|
-
} from "./chunk-ZNARSMJG.js";
|
|
10
|
-
import {
|
|
11
|
-
CredentialsProviderError
|
|
12
|
-
} from "./chunk-ST5JVROM.js";
|
|
10
|
+
} from "./chunk-ATF5CAZW.js";
|
|
11
|
+
import "./chunk-C6IOMGXW.js";
|
|
13
12
|
|
|
14
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-process@3.972.
|
|
13
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-process@3.972.44/node_modules/@aws-sdk/credential-provider-process/dist-es/resolveProcessCredentials.js
|
|
15
14
|
import { exec } from "child_process";
|
|
16
15
|
import { promisify } from "util";
|
|
17
16
|
|
|
18
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-process@3.972.
|
|
17
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-process@3.972.44/node_modules/@aws-sdk/credential-provider-process/dist-es/getValidatedProcessCredentials.js
|
|
19
18
|
var getValidatedProcessCredentials = (profileName, data, profiles) => {
|
|
20
19
|
if (data.Version !== 1) {
|
|
21
20
|
throw Error(`Profile ${profileName} credential_process did not return Version 1.`);
|
|
@@ -46,7 +45,7 @@ var getValidatedProcessCredentials = (profileName, data, profiles) => {
|
|
|
46
45
|
return credentials;
|
|
47
46
|
};
|
|
48
47
|
|
|
49
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-process@3.972.
|
|
48
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-process@3.972.44/node_modules/@aws-sdk/credential-provider-process/dist-es/resolveProcessCredentials.js
|
|
50
49
|
var resolveProcessCredentials = async (profileName, profiles, logger) => {
|
|
51
50
|
const profile = profiles[profileName];
|
|
52
51
|
if (profiles[profileName]) {
|
|
@@ -75,7 +74,7 @@ var resolveProcessCredentials = async (profileName, profiles, logger) => {
|
|
|
75
74
|
}
|
|
76
75
|
};
|
|
77
76
|
|
|
78
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-process@3.972.
|
|
77
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-process@3.972.44/node_modules/@aws-sdk/credential-provider-process/dist-es/fromProcess.js
|
|
79
78
|
var fromProcess = (init = {}) => async ({ callerClientConfig } = {}) => {
|
|
80
79
|
init.logger?.debug("@aws-sdk/credential-provider-process - fromProcess");
|
|
81
80
|
const profiles = await parseKnownFiles(init);
|
|
@@ -1,12 +1,13 @@
|
|
|
1
1
|
#!/usr/bin/env node
|
|
2
2
|
import {
|
|
3
3
|
setCredentialFeature
|
|
4
|
-
} from "./chunk-
|
|
4
|
+
} from "./chunk-MHJJJ2VP.js";
|
|
5
5
|
import {
|
|
6
6
|
CredentialsProviderError
|
|
7
|
-
} from "./chunk-
|
|
7
|
+
} from "./chunk-ATF5CAZW.js";
|
|
8
|
+
import "./chunk-C6IOMGXW.js";
|
|
8
9
|
|
|
9
|
-
// ../node_modules/.bun/@aws-sdk+credential-provider-env@3.972.
|
|
10
|
+
// ../node_modules/.bun/@aws-sdk+credential-provider-env@3.972.44/node_modules/@aws-sdk/credential-provider-env/dist-es/fromEnv.js
|
|
10
11
|
var ENV_KEY = "AWS_ACCESS_KEY_ID";
|
|
11
12
|
var ENV_SECRET = "AWS_SECRET_ACCESS_KEY";
|
|
12
13
|
var ENV_SESSION = "AWS_SESSION_TOKEN";
|