PyPI - boto3-refresh-session - Versions diffs - 3.0.3__py3-none-any.whl → 4.0.0__py3-none-any.whl - Mend

boto3-refresh-session 3.0.3py3-none-any.whl → 4.0.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

boto3_refresh_session/__init__.py CHANGED Viewed

@@ -3,13 +3,12 @@ __all__ = []
 from . import exceptions, session
 from .exceptions import *
 from .methods.custom import *
-from .methods.ecs import *
 from .methods.sts import *
 from .session import *
 __all__.extend(session.__all__)
 __all__.extend(exceptions.__all__)
-__version__ = "3.0.3"
+__version__ = "4.0.0"
 __title__ = "boto3-refresh-session"
 __author__ = "Mike Letts"
 __maintainer__ = "Mike Letts"

boto3_refresh_session/methods/__init__.py CHANGED Viewed

@@ -1,12 +1,10 @@
 __all__ = []
 # TODO: import iot submodules when finished
-from . import custom, ecs, sts
+from . import custom, sts
 from .custom import CustomRefreshableSession
-from .ecs import ECSRefreshableSession
 from .sts import STSRefreshableSession
 # TODO: add iot submodules to __all__ when finished
 __all__.extend(custom.__all__)
-__all__.extend(ecs.__all__)
 __all__.extend(sts.__all__)

boto3_refresh_session/session.py CHANGED Viewed

@@ -37,7 +37,6 @@ class RefreshableSession:
     --------
     boto3_refresh_session.methods.custom.CustomRefreshableSession
     boto3_refresh_session.methods.sts.STSRefreshableSession
-    boto3_refresh_session.methods.ecs.ECSRefreshableSession
     """
     def __new__(
@@ -60,7 +59,7 @@ class RefreshableSession:
         -------
         list[str]
             A list of all currently available credential refresh methods,
-            e.g. 'sts', 'ecs', 'custom'.
+            e.g. 'sts', 'custom'.
         """
         args = list(get_args(Method))

boto3_refresh_session/utils/typing.py CHANGED Viewed

@@ -38,7 +38,6 @@ IoTAuthenticationMethod = Literal["certificate", "cognito", "__iot_sentinel__"]
 #: Type alias for all currently available credential refresh methods.
 Method = Literal[
     "sts",
-    "ecs",
     "custom",
     "__sentinel__",
 ]  # TODO: Add iot when implemented
@@ -46,7 +45,6 @@ Method = Literal[
 #: Type alias for all refresh method names.
 RefreshMethod = Literal[
     "sts-assume-role",
-    "ecs-container-metadata",
     "custom",
 ]  # TODO: Add iot-certificate and iot-cognito when iot implemented

{boto3_refresh_session-3.0.3.dist-info → boto3_refresh_session-4.0.0.dist-info}/METADATA RENAMED Viewed

@@ -1,9 +1,9 @@
 Metadata-Version: 2.3
 Name: boto3-refresh-session
-Version: 3.0.3
+Version: 4.0.0
 Summary: A simple Python package for refreshing the temporary security credentials in a boto3.session.Session object automatically.
 License: MIT
-Keywords: boto3,botocore,aws,sts,ecs,credentials,token,refresh
+Keywords: boto3,botocore,aws,sts,credentials,token,refresh
 Author: Mike Letts
 Author-email: lettsmt@gmail.com
 Maintainer: Michael Letts
@@ -120,13 +120,11 @@ Description-Content-Type: text/markdown
 ## 😛 Features
 - Drop-in replacement for `boto3.session.Session`
-- Supports automatic credential refresh methods for various AWS services:
-  - STS
-  - ECS
-- Supports custom authentication methods for complicated authentication flows
+- Supports automatic credential refresh methods for STS
+- Supports custom authentication methods with automatic refresh for complicated authentication flows
 - Natively supports all parameters supported by `boto3.session.Session`
 - [Tested](https://github.com/michaelthomasletts/boto3-refresh-session/tree/main/tests), [documented](https://michaelthomasletts.github.io/boto3-refresh-session/index.html), and [published to PyPI](https://pypi.org/project/boto3-refresh-session/)
-- Future releases will include support for IoT (coming soon), EC2, and SSO
+- Future releases will include support for IoT (coming soon)
 ## ⚠️ Important Updates
@@ -138,6 +136,10 @@ Advanced users, however, particularly those using low-level objects such as `Bas
 Please review [this PR](https://github.com/michaelthomasletts/boto3-refresh-session/pull/75) for additional details.
+#### ✂️ v4.0.0
+The `ecs` module has been dropped. For additional details and rationale, please review [this PR](https://github.com/michaelthomasletts/boto3-refresh-session/pull/78).
 #### ☎️ Delayed Responses
 I am currently grappling with a very serious medical condition. Accordingly, expect delayed responses to issues and requests until my health stabilizes.
@@ -171,7 +173,7 @@ pip install boto3-refresh-session
   To use the `boto3.client` or `boto3.resource` interface, but with the benefits of `boto3-refresh-session`, you have a few options!
-  In the following examples, let's assume you want to use STS for retrieving temporary credentials for the sake of simplicity. Let's also focus specifically on `client`. Switching to `resource` follows the same exact idioms as below, except that `client` must be switched to `resource` in the pseudo-code, obviously. If you are not sure how to use `RefreshableSession` for STS (or ECS or custom auth flows) then check the usage instructions in the following sections!
+  In the following examples, let's assume you want to use STS for retrieving temporary credentials for the sake of simplicity. Let's also focus specifically on `client`. Switching to `resource` follows the same exact idioms as below, except that `client` must be switched to `resource` in the pseudo-code, obviously. If you are not sure how to use `RefreshableSession` for STS (or custom auth flows) then check the usage instructions in the following sections!
   ##### `RefreshableSession.client` (Recommended)
@@ -269,24 +271,6 @@ pip install boto3-refresh-session
 </details>
-<details>
-   <summary><strong>ECS (click to expand)</strong></summary>
-  ### ECS
-  You can use boto3-refresh-session in an ECS container to automatically refresh temporary security credentials. For additional information on the exact parameters that `RefreshableSession` takes for ECS, [check this documentation](https://github.com/michaelthomasletts/boto3-refresh-session/blob/main/boto3_refresh_session/methods/ecs.py).
-  ```python
-  session = RefreshableSession(
-    method="ecs",
-    region_name=region_name,
-    profile_name=profile_name,
-    ...
-  )
-  ```
-</details>
 <details>
    <summary><strong>Custom Authentication Flows (click to expand)</strong></summary>

{boto3_refresh_session-3.0.3.dist-info → boto3_refresh_session-4.0.0.dist-info}/RECORD RENAMED Viewed

@@ -1,19 +1,18 @@
-boto3_refresh_session/__init__.py,sha256=L-9FGJIUsvwRFNlfJeKb_61NvZpT07xGdBAyV38DMhI,415
+boto3_refresh_session/__init__.py,sha256=8Mws6gI3cPLZ1ODvQA2WhU-Clq9v5k7MvYMdM3mr5l8,388
 boto3_refresh_session/exceptions.py,sha256=DumBh6cDVU46eelSNt1CsG2uMSBekSbmhqWEaAWw130,1003
-boto3_refresh_session/methods/__init__.py,sha256=zpVBJIR4P-l4pjE9kMnLGffehPVawY1vLiX2CPcpV7w,352
+boto3_refresh_session/methods/__init__.py,sha256=Npth3cOf8waY0XOS0xIvbG28pOIU8rs7_hi5NhJ9HwU,280
 boto3_refresh_session/methods/custom.py,sha256=j90Iv1DKdGgP1JNwQfpEhaJDBrB2AtDe8kqI2Mktwlg,4173
-boto3_refresh_session/methods/ecs.py,sha256=dxDrNOu8xTFHciuwL7jLh5nB2QXWwQRRA1CoY7AuO5g,3893
 boto3_refresh_session/methods/iot/__init__.typed,sha256=Z33nIB6oCsz9TZwikHfNHgY1SKxkSCdB5rwdPSUl3C4,135
 boto3_refresh_session/methods/iot/certificate.typed,sha256=sFTa1rF7tebr48Bjw_YtVeOdVvazAHBJGGiM33tsFXI,1828
 boto3_refresh_session/methods/iot/cognito.typed,sha256=wyBMWUkuhLt27JsKZIwtfylDdCavNexcEy16ZaDFjUY,435
 boto3_refresh_session/methods/iot/core.typed,sha256=Q5WshxgIIOgAaqoU7n8wBKMe9eSzZ6H8db-q1gThHzk,1407
 boto3_refresh_session/methods/sts.py,sha256=dzf68BE0f1nFsITOKOnygh-mTvBqThKkrW2eEc-wFKA,3326
-boto3_refresh_session/session.py,sha256=8YAdanwnJUG622Cv9MNKg25uj9ZmMYzRL4xiqH1i0nk,2089
+boto3_refresh_session/session.py,sha256=aJaOJK1yBFWkSc2qZzrQuDcMYto73S_iyabCF5vJZls,2022
 boto3_refresh_session/utils/__init__.py,sha256=6F2ErbgBT2ZmZwFF3OzvQEd1Vh4XM3kaL6YGMTrcrkQ,156
 boto3_refresh_session/utils/internal.py,sha256=bpKTAF_xdBw1wJPHIG8aGRMiXkSkp7CI9et0U5o3qEI,6103
-boto3_refresh_session/utils/typing.py,sha256=I4VJS1vkRwIRdJF08dZF1YgUed_anviz3hq4hLvPnLw,3537
-boto3_refresh_session-3.0.3.dist-info/LICENSE,sha256=I3ZYTXAjbIly6bm6J-TvFTuuHwTKws4h89QaY5c5HiY,1067
-boto3_refresh_session-3.0.3.dist-info/METADATA,sha256=91keQVV9MNrd7zoC8s5c4e59qzrU7vMB9plvJ1d4Sr8,12561
-boto3_refresh_session-3.0.3.dist-info/NOTICE,sha256=1s8r33qbl1z0YvPB942iWgvbkP94P_e8AnROr1qXXuw,939
-boto3_refresh_session-3.0.3.dist-info/WHEEL,sha256=b4K_helf-jlQoXBBETfwnf4B04YC67LOev0jo4fX5m8,88
-boto3_refresh_session-3.0.3.dist-info/RECORD,,
+boto3_refresh_session/utils/typing.py,sha256=KXE-BFb303pVdIj5MUp66aJSRRDjDV3mfuPcSA_QE4g,3496
+boto3_refresh_session-4.0.0.dist-info/LICENSE,sha256=I3ZYTXAjbIly6bm6J-TvFTuuHwTKws4h89QaY5c5HiY,1067
+boto3_refresh_session-4.0.0.dist-info/METADATA,sha256=cH0FKUnHTxXNxzhuDpZFGXBxujnoYY0-FPuYsEqJqJM,12133
+boto3_refresh_session-4.0.0.dist-info/NOTICE,sha256=1s8r33qbl1z0YvPB942iWgvbkP94P_e8AnROr1qXXuw,939
+boto3_refresh_session-4.0.0.dist-info/WHEEL,sha256=b4K_helf-jlQoXBBETfwnf4B04YC67LOev0jo4fX5m8,88
+boto3_refresh_session-4.0.0.dist-info/RECORD,,

boto3_refresh_session/methods/ecs.py DELETED Viewed

@@ -1,115 +0,0 @@
-__all__ = ["ECSRefreshableSession"]
-import os
-import requests
-from ..exceptions import BRSError, BRSWarning
-from ..utils import (
-    BaseRefreshableSession,
-    Identity,
-    TemporaryCredentials,
-    refreshable_session,
-)
-_ECS_CREDENTIALS_RELATIVE_URI = "AWS_CONTAINER_CREDENTIALS_RELATIVE_URI"
-_ECS_CREDENTIALS_FULL_URI = "AWS_CONTAINER_CREDENTIALS_FULL_URI"
-_ECS_AUTHORIZATION_TOKEN = "AWS_CONTAINER_AUTHORIZATION_TOKEN"
-_DEFAULT_ENDPOINT_BASE = "http://169.254.170.2"
-@refreshable_session
-class ECSRefreshableSession(BaseRefreshableSession, registry_key="ecs"):
-    """A boto3 session that automatically refreshes temporary AWS credentials
-    from the ECS container credentials metadata endpoint.
-    Parameters
-    ----------
-    defer_refresh : bool, optional
-        If ``True`` then temporary credentials are not automatically
-        refreshed until they are explicitly needed. If ``False`` then
-        temporary credentials refresh immediately upon expiration. It
-        is highly recommended that you use ``True``. Default is ``True``.
-    Other Parameters
-    ----------------
-    kwargs : dict
-        Optional keyword arguments passed to :class:`boto3.session.Session`.
-    """
-    def __init__(self, **kwargs):
-        if "refresh_method" in kwargs:
-            BRSWarning(
-                "'refresh_method' cannot be set manually. "
-                "Reverting to 'ecs-container-metadata'."
-            )
-            del kwargs["refresh_method"]
-        # initializing BRSSession
-        super().__init__(refresh_method="ecs-container-metadata", **kwargs)
-        # initializing various other attributes
-        self._endpoint = self._resolve_endpoint()
-        self._headers = self._build_headers()
-        self._http = self._init_http_session()
-    def _resolve_endpoint(self) -> str:
-        uri = os.environ.get(_ECS_CREDENTIALS_FULL_URI) or os.environ.get(
-            _ECS_CREDENTIALS_RELATIVE_URI
-        )
-        if not uri:
-            raise BRSError(
-                "Neither AWS_CONTAINER_CREDENTIALS_FULL_URI nor "
-                "AWS_CONTAINER_CREDENTIALS_RELATIVE_URI is set. "
-                "Are you running inside an ECS container?"
-            )
-        if uri.startswith("http://") or uri.startswith("https://"):
-            return uri
-        return f"{_DEFAULT_ENDPOINT_BASE}{uri}"
-    def _build_headers(self) -> dict[str, str]:
-        token = os.environ.get(_ECS_AUTHORIZATION_TOKEN)
-        if token:
-            return {"Authorization": f"Bearer {token}"}
-        return {}
-    def _init_http_session(self) -> requests.Session:
-        session = requests.Session()
-        session.headers.update(self._headers)
-        return session
-    def _get_credentials(self) -> TemporaryCredentials:
-        try:
-            response = self._http.get(self._endpoint, timeout=3)
-            response.raise_for_status()
-        except requests.RequestException as exc:
-            raise BRSError(
-                f"Failed to retrieve ECS credentials from {self._endpoint}"
-            ) from exc
-        credentials = response.json()
-        required = {
-            "AccessKeyId",
-            "SecretAccessKey",
-            "SessionToken",
-            "Expiration",
-        }
-        if not required.issubset(credentials):
-            raise BRSError(f"Incomplete credentials received: {credentials}")
-        return {
-            "access_key": credentials.get("AccessKeyId"),
-            "secret_key": credentials.get("SecretAccessKey"),
-            "token": credentials.get("SessionToken"),
-            "expiry_time": credentials.get("Expiration"),  # already ISO8601
-        }
-    def get_identity(self) -> Identity:
-        """Returns metadata about ECS.
-        Returns
-        -------
-        Identity
-            Dict containing metadata about ECS.
-        """
-        return {"method": "ecs", "source": "ecs-container-metadata"}

{boto3_refresh_session-3.0.3.dist-info → boto3_refresh_session-4.0.0.dist-info}/LICENSE RENAMED Viewed

File without changes

{boto3_refresh_session-3.0.3.dist-info → boto3_refresh_session-4.0.0.dist-info}/NOTICE RENAMED Viewed

File without changes

{boto3_refresh_session-3.0.3.dist-info → boto3_refresh_session-4.0.0.dist-info}/WHEEL RENAMED Viewed

File without changes

boto3-refresh-session 3.0.3__py3-none-any.whl → 4.0.0__py3-none-any.whl

boto3-refresh-session 3.0.3py3-none-any.whl → 4.0.0py3-none-any.whl