tencentcloud-sdk-nodejs 4.1.120 → 4.1.122

package/es/common/credential.js

@@ -0,0 +1,209 @@
+import fs from "fs";
+import path from "path";
+import { homedir } from "os";
+import { parse } from "ini";
+import { CommonClient } from "./common_client";
+import CvmRoleCredential from "./cvm_role_credential";
+const EXPIRE_BUFFER = 30 * 1000;
+export class BasicCredential {
+    constructor(secretId, secretKey, token) {
+        this.secretId = secretId;
+        this.secretKey = secretKey;
+        this.token = token;
+    }
+}
+export class EnvironmentVariableCredential {
+    async getCredential() {
+        const secretId = process.env.TENCENTCLOUD_SECRET_ID;
+        const secretKey = process.env.TENCENTCLOUD_SECRET_KEY;
+        const token = process.env.TENCENTCLOUD_SESSION_TOKEN;
+        return new BasicCredential(secretId, secretKey, token);
+    }
+}
+export class ProfileCredential {
+    async getCredential() {
+        let filePath = "";
+        const userHome = homedir();
+        const userCredentialsPath = path.join(userHome, ".tencentcloud", "credentials");
+        if (fs.existsSync(userCredentialsPath)) {
+            filePath = userCredentialsPath;
+        }
+        else {
+            filePath = "/etc/tencentcloud/credentials";
+        }
+        if (filePath) {
+            try {
+                const content = fs.readFileSync(filePath, "utf8");
+                const { default: { secret_id, secret_key, token }, } = parse(content);
+                if (secret_id && secret_key) {
+                    return new BasicCredential(secret_id, secret_key, token);
+                }
+            }
+            catch (error) {
+            }
+        }
+        return new BasicCredential("", "");
+    }
+}
+export class STSCredential {
+    constructor(clientConfig, assumeRoleParams) {
+        this.clientConfig = clientConfig;
+        this.assumeRoleParams = assumeRoleParams;
+        this.endpoint = "sts.tencentcloudapi.com";
+        this.version = "2018-08-13";
+        this.action = "AssumeRole";
+        this.region = "ap-guangzhou";
+    }
+    async getCredentialWithStsAssumeRole() {
+        const { endpoint, version, action, region, clientConfig, assumeRoleParams } = this;
+        try {
+            const client = new CommonClient(endpoint, version, {
+                region,
+                ...clientConfig,
+            });
+            const result = await client.request(action, assumeRoleParams);
+            return {
+                TmpSecretId: result.Credentials.TmpSecretId,
+                TmpSecretKey: result.Credentials.TmpSecretKey,
+                Token: result.Credentials.Token,
+                ExpiredTime: result.ExpiredTime,
+                Expiration: result.Expiration,
+            };
+        }
+        catch (error) {
+            throw new Error(`Get STS AssumeRole failed: ${error.message}`);
+        }
+    }
+    async getCredential() {
+        if (!this.credentialTask) {
+            this.credentialTask = this.getCredentialWithStsAssumeRole();
+        }
+        const credential = await this.credentialTask;
+        if (credential.ExpiredTime * 1000 - EXPIRE_BUFFER <= Date.now()) {
+            this.credentialTask = null;
+            return this.getCredential();
+        }
+        return {
+            secretId: credential.TmpSecretId,
+            secretKey: credential.TmpSecretKey,
+            token: credential.Token,
+        };
+    }
+}
+export { default as CvmRoleCredential } from "./cvm_role_credential";
+export class OIDCRoleArnCredential {
+    constructor(clientConfig, assumeRoleWithWebIdentityParams) {
+        this.endpoint = "sts.tencentcloudapi.com";
+        this.version = "2018-08-13";
+        this.action = "AssumeRoleWithWebIdentity";
+        this.defaultSessionName = "tencentcloud-node-sdk-";
+        this.isTke = false;
+        this.expirationReservationTime = 600;
+        if (clientConfig && assumeRoleWithWebIdentityParams) {
+            this.clientConfig = clientConfig;
+            this.assumeRoleWithWebIdentityParams = assumeRoleWithWebIdentityParams;
+        }
+        else {
+            this.isTke = true;
+            this.clientConfig = {
+                credential: new BasicCredential("", ""),
+                ...clientConfig,
+            };
+        }
+    }
+    initFromTke() {
+        const region = process.env.TKE_REGION;
+        if (!region) {
+            throw new Error("env TKE_REGION not exist");
+        }
+        const providerId = process.env.TKE_PROVIDER_ID;
+        if (!providerId) {
+            throw new Error("env TKE_PROVIDER_ID not exist");
+        }
+        const tokenFile = process.env.TKE_WEB_IDENTITY_TOKEN_FILE;
+        if (!tokenFile) {
+            throw new Error("env TKE_WEB_IDENTITY_TOKEN_FILE not exist");
+        }
+        let wbIdentityToken;
+        try {
+            wbIdentityToken = fs.readFileSync(tokenFile).toString();
+        }
+        catch (error) {
+            throw new Error(`failed to read token file: ${error.message}`);
+        }
+        const roleArn = process.env.TKE_ROLE_ARN;
+        if (!roleArn) {
+            throw new Error("env TKE_ROLE_ARN not exist");
+        }
+        this.clientConfig.region = region;
+        this.assumeRoleWithWebIdentityParams = {
+            RoleArn: roleArn,
+            RoleSessionName: `${this.defaultSessionName}${Date.now() * 1000}`,
+            WebIdentityToken: wbIdentityToken,
+            ProviderId: providerId,
+        };
+    }
+    async getCredentialWithStsAssumeRoleWithWebIdentity() {
+        try {
+            if (this.isTke) {
+                this.initFromTke();
+            }
+            const { endpoint, version, action, region, clientConfig, assumeRoleWithWebIdentityParams } = this;
+            const client = new CommonClient(endpoint, version, {
+                region: region,
+                ...clientConfig,
+            });
+            const result = await client.request(action, assumeRoleWithWebIdentityParams);
+            return {
+                TmpSecretId: result.Credentials.TmpSecretId,
+                TmpSecretKey: result.Credentials.TmpSecretKey,
+                Token: result.Credentials.Token,
+                ExpiredTime: result.ExpiredTime,
+                Expiration: result.Expiration,
+            };
+        }
+        catch (error) {
+            throw new Error(`Get STS AssumeRoleWithWebIdentity failed: ${error.message}`);
+        }
+    }
+    async getCredential() {
+        if (!this.credentialTask) {
+            this.credentialTask = this.getCredentialWithStsAssumeRoleWithWebIdentity();
+        }
+        const credential = await this.credentialTask;
+        if (credential.ExpiredTime * 1000 - this.expirationReservationTime <= Date.now()) {
+            this.credentialTask = null;
+            return this.getCredential();
+        }
+        return {
+            secretId: credential.TmpSecretId,
+            secretKey: credential.TmpSecretKey,
+            token: credential.Token,
+        };
+    }
+}
+export class DefaultCredentialProvider {
+    constructor() {
+        this.providers = [
+            new EnvironmentVariableCredential(),
+            new ProfileCredential(),
+            new CvmRoleCredential(),
+            new OIDCRoleArnCredential(),
+        ];
+    }
+    async getCredential() {
+        for (const provider of this.providers) {
+            try {
+                const credential = await provider.getCredential();
+                if (credential.secretId && credential.secretKey) {
+                    return credential;
+                }
+            }
+            catch (error) {
+                console.error(error);
+                continue;
+            }
+        }
+        return new BasicCredential("", "");
+    }
+}

package/es/common/index.js

@@ -1,3 +1,4 @@
 export * from "./abstract_client";
 export * from "./common_client";
 export * from "./interface";
+export * from "./credential";

package/es/common/sdk_version.js

@@ -1 +1 @@
-export const sdkVersion = "4.1.120";
+export const sdkVersion = "4.1.122";

package/es/services/ccc/v20200210/ccc_client.js

@@ -9,8 +9,8 @@ export class Client extends AbstractClient {
     async ModifyCompanyApply(req, cb) {
         return this.request("ModifyCompanyApply", req, cb);
     }
-    async ModifyStaff(req, cb) {
-        return this.request("ModifyStaff", req, cb);
+    async DescribeAIAnalysisResult(req, cb) {
+        return this.request("DescribeAIAnalysisResult", req, cb);
     }
     async DescribeExtensions(req, cb) {
         return this.request("DescribeExtensions", req, cb);
@@ -84,6 +84,9 @@ export class Client extends AbstractClient {
     async UploadIvrAudio(req, cb) {
         return this.request("UploadIvrAudio", req, cb);
     }
+    async ModifyStaff(req, cb) {
+        return this.request("ModifyStaff", req, cb);
+    }
     async DescribeExtension(req, cb) {
         return this.request("DescribeExtension", req, cb);
     }

package/es/services/cdn/v20180606/cdn_client.js

@@ -66,8 +66,8 @@ export class Client extends AbstractClient {
     async DescribeCertDomains(req, cb) {
         return this.request("DescribeCertDomains", req, cb);
     }
-    async DisableCaches(req, cb) {
-        return this.request("DisableCaches", req, cb);
+    async ListTopClsLogData(req, cb) {
+        return this.request("ListTopClsLogData", req, cb);
     }
     async ListDiagnoseReport(req, cb) {
         return this.request("ListDiagnoseReport", req, cb);
@@ -144,9 +144,6 @@ export class Client extends AbstractClient {
     async ListClsLogTopics(req, cb) {
         return this.request("ListClsLogTopics", req, cb);
     }
-    async GetDisableRecords(req, cb) {
-        return this.request("GetDisableRecords", req, cb);
-    }
     async DeleteClsLogTopic(req, cb) {
         return this.request("DeleteClsLogTopic", req, cb);
     }
@@ -171,10 +168,4 @@ export class Client extends AbstractClient {
     async UpdatePayType(req, cb) {
         return this.request("UpdatePayType", req, cb);
     }
-    async EnableCaches(req, cb) {
-        return this.request("EnableCaches", req, cb);
-    }
-    async ListTopClsLogData(req, cb) {
-        return this.request("ListTopClsLogData", req, cb);
-    }
 }

package/es/services/iotexplorer/v20190423/iotexplorer_client.js

@@ -336,8 +336,8 @@ export class Client extends AbstractClient {
     async BindProducts(req, cb) {
         return this.request("BindProducts", req, cb);
     }
-    async RemoveUserByRoomIdFromTRTC(req, cb) {
-        return this.request("RemoveUserByRoomIdFromTRTC", req, cb);
+    async DescribeSubscribedTopicPolicy(req, cb) {
+        return this.request("DescribeSubscribedTopicPolicy", req, cb);
     }
     async SearchPositionSpace(req, cb) {
         return this.request("SearchPositionSpace", req, cb);
@@ -372,6 +372,9 @@ export class Client extends AbstractClient {
     async DescribeDeviceFirmwares(req, cb) {
         return this.request("DescribeDeviceFirmwares", req, cb);
     }
+    async RemoveUserByRoomIdFromTRTC(req, cb) {
+        return this.request("RemoveUserByRoomIdFromTRTC", req, cb);
+    }
     async BindDevices(req, cb) {
         return this.request("BindDevices", req, cb);
     }

package/es/services/lke/v20231130/lke_client.js

@@ -33,9 +33,6 @@ export class Client extends AbstractClient {
     async StopWorkflowRun(req, cb) {
         return this.request("StopWorkflowRun", req, cb);
     }
-    async ModifyAgent(req, cb) {
-        return this.request("ModifyAgent", req, cb);
-    }
     async CreateAttributeLabel(req, cb) {
         return this.request("CreateAttributeLabel", req, cb);
     }
@@ -204,9 +201,6 @@ export class Client extends AbstractClient {
     async ExportQAList(req, cb) {
         return this.request("ExportQAList", req, cb);
     }
-    async CreateAgent(req, cb) {
-        return this.request("CreateAgent", req, cb);
-    }
     async UploadAttributeLabel(req, cb) {
         return this.request("UploadAttributeLabel", req, cb);
     }

package/es/services/mps/v20190612/mps_client.js

@@ -126,6 +126,9 @@ export class Client extends AbstractClient {
     async CreateContentReviewTemplate(req, cb) {
         return this.request("CreateContentReviewTemplate", req, cb);
     }
+    async ModifyStreamLinkOutputInfo(req, cb) {
+        return this.request("ModifyStreamLinkOutputInfo", req, cb);
+    }
     async DescribeGroupAttachFlowsById(req, cb) {
         return this.request("DescribeGroupAttachFlowsById", req, cb);
     }
@@ -183,6 +186,12 @@ export class Client extends AbstractClient {
     async ModifyStreamLinkInput(req, cb) {
         return this.request("ModifyStreamLinkInput", req, cb);
     }
+    async DescribeSmartEraseTemplates(req, cb) {
+        return this.request("DescribeSmartEraseTemplates", req, cb);
+    }
+    async ModifySmartEraseTemplate(req, cb) {
+        return this.request("ModifySmartEraseTemplate", req, cb);
+    }
     async CreateSmartSubtitleTemplate(req, cb) {
         return this.request("CreateSmartSubtitleTemplate", req, cb);
     }
@@ -219,8 +228,8 @@ export class Client extends AbstractClient {
     async DescribeSmartSubtitleTemplates(req, cb) {
         return this.request("DescribeSmartSubtitleTemplates", req, cb);
     }
-    async ModifyStreamLinkOutputInfo(req, cb) {
-        return this.request("ModifyStreamLinkOutputInfo", req, cb);
+    async ModifyAIRecognitionTemplate(req, cb) {
+        return this.request("ModifyAIRecognitionTemplate", req, cb);
     }
     async DescribeSnapshotByTimeOffsetTemplates(req, cb) {
         return this.request("DescribeSnapshotByTimeOffsetTemplates", req, cb);
@@ -378,6 +387,9 @@ export class Client extends AbstractClient {
     async DisassociateSecurityGroup(req, cb) {
         return this.request("DisassociateSecurityGroup", req, cb);
     }
+    async CreateSmartEraseTemplate(req, cb) {
+        return this.request("CreateSmartEraseTemplate", req, cb);
+    }
     async ModifyContentReviewTemplate(req, cb) {
         return this.request("ModifyContentReviewTemplate", req, cb);
     }
@@ -387,8 +399,8 @@ export class Client extends AbstractClient {
     async BatchStopStreamLinkFlow(req, cb) {
         return this.request("BatchStopStreamLinkFlow", req, cb);
     }
-    async ModifyAIRecognitionTemplate(req, cb) {
-        return this.request("ModifyAIRecognitionTemplate", req, cb);
+    async DeleteSmartEraseTemplate(req, cb) {
+        return this.request("DeleteSmartEraseTemplate", req, cb);
     }
     async DeleteStreamLinkEvent(req, cb) {
         return this.request("DeleteStreamLinkEvent", req, cb);

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "tencentcloud-sdk-nodejs",
-  "version": "4.1.120",
+  "version": "4.1.122",
   "description": "腾讯云 API NODEJS SDK",
   "main": "./tencentcloud/index.js",
   "module": "./es/index.js",
@@ -36,6 +36,7 @@
     "form-data": "^3.0.4",
     "get-stream": "^6.0.0",
     "https-proxy-agent": "^5.0.0",
+    "ini": "^5.0.0",
     "is-stream": "^2.0.0",
     "json-bigint": "^1.0.0",
     "node-fetch": "^2.2.0",
@@ -51,6 +52,7 @@
     "url": "https://github.com/tencentcloud/tencentcloud-sdk-nodejs"
   },
   "devDependencies": {
+    "@types/ini": "^4.1.1",
     "@types/json-bigint": "^1.0.1",
     "@types/node": "^18.0.0",
     "@types/node-fetch": "^2.5.7",

package/tencentcloud/common/credential.d.ts

@@ -0,0 +1,101 @@
+import { ClientConfig, Credential, CredentialResult, DynamicCredential } from "./interface";
+/**
+ * Basic credential with secret id and secret key
+ */
+export declare class BasicCredential implements Credential {
+    readonly secretId: string;
+    readonly secretKey: string;
+    readonly token?: string;
+    constructor(secretId: string, secretKey: string, token?: string);
+}
+/**
+ * Environment variable credential
+ * Get credential from environment variables:
+ * - TENCENTCLOUD_SECRET_ID
+ * - TENCENTCLOUD_SECRET_KEY
+ * - TENCENTCLOUD_SESSION_TOKEN (optional)
+ */
+export declare class EnvironmentVariableCredential implements DynamicCredential {
+    getCredential(): Promise<Credential>;
+}
+/**
+ * Profile credential
+ * Get credential from profile file ~/.tencentcloud/credentials or /etc/tencentcloud/credentials
+ * example credentials file:
+ * [default]
+ * secret_id = your-secret-id
+ * secret_key = your-secret-key
+ */
+export declare class ProfileCredential implements DynamicCredential {
+    getCredential(): Promise<Credential>;
+}
+interface AssumeRoleParams {
+    RoleArn: string;
+    RoleSessionName: string;
+    [key: string]: any;
+}
+/**
+ * Tencent Cloud Credential via STS service
+ * @see {@link https://cloud.tencent.com/document/api/1312/48197} for more information.
+ */
+export declare class STSCredential implements DynamicCredential {
+    private clientConfig;
+    private assumeRoleParams;
+    private endpoint;
+    private version;
+    private action;
+    private region;
+    credentialTask: Promise<CredentialResult> | null;
+    /**
+     * Constructs a new STSCredential instance
+     *
+     * @param {ClientConfig} clientConfig Request client Configuration object
+     * @param {AssumeRoleParams} assumeRoleParams Request parameters of the AssumeRole interface
+     * @see {@link https://cloud.tencent.com/document/api/1312/48197} for more AssumeRoleParams information.
+     */
+    constructor(clientConfig: ClientConfig, assumeRoleParams: AssumeRoleParams);
+    protected getCredentialWithStsAssumeRole(): Promise<CredentialResult>;
+    getCredential(): Promise<Credential>;
+}
+/**
+ * CVM Role credential using existing implementation
+ * Re-export the existing CvmRoleCredential for consistency
+ */
+export { default as CvmRoleCredential } from "./cvm_role_credential";
+/**
+ * TencentCloud OIDC Credential
+ * OIDC is an authentication protocol built on OAuth 2.0. Tencent Cloud CAM supports OIDC role-based SSO.
+ * @see {@link https://cloud.tencent.com/document/product/598/96013} for more information.
+ */
+export declare class OIDCRoleArnCredential implements DynamicCredential {
+    private endpoint;
+    private version;
+    private action;
+    private clientConfig;
+    private assumeRoleWithWebIdentityParams;
+    private defaultSessionName;
+    private isTke;
+    protected region: string;
+    protected expirationReservationTime: number;
+    protected credentialTask: Promise<CredentialResult> | null;
+    /**
+     * Constructs a new OIDCRoleArnCredential instance
+     *
+     * @param {ClientConfig} [clientConfig] Optional request client Configuration object
+     * @param {AssumeRoleParams} [assumeRoleParams] Optional request parameters of the AssumeRole interface
+     * @see {@link https://cloud.tencent.com/document/api/1312/48197} for more AssumeRoleWithWebIdentity information.
+     */
+    constructor();
+    constructor(clientConfig: ClientConfig, assumeRoleWithWebIdentityParams: AssumeRoleParams);
+    private initFromTke;
+    protected getCredentialWithStsAssumeRoleWithWebIdentity(): Promise<CredentialResult>;
+    getCredential(): Promise<Credential>;
+}
+/**
+ * Tencent Cloud DefaultCredentialProvider
+ */
+export declare class DefaultCredentialProvider implements DynamicCredential {
+    private readonly providers;
+    constructor();
+    getCredential(): Promise<Credential>;
+}