Sha256: ebbe707e58a6518b6d5b8788de074ffe4734bacd59b733a8e95137253041a042

Contents?: true

Size: 1.72 KB

Versions: 43

Compression:

Stored size: 1.72 KB

Contents

# frozen_string_literal: true

require_relative "includes"
require "set"

class AwsAssumeRole::Credentials::Providers::AssumeRoleCredentials
    include AwsAssumeRole::Vendored::Aws::CredentialProvider
    include AwsAssumeRole::Vendored::Aws::RefreshingCredentials

    # @option options [required, String] :role_arn
    # @option options [required, String] :role_session_name
    # @option options [String] :policy
    # @option options [Integer] :duration_seconds
    # @option options [String] :external_id
    # @option options [STS::Client] :client
    #
    #

    STS_KEYS = %i[role_arn role_session_name policy duration_seconds external_id client credentials region].freeze

    def initialize(options = {})
        client_opts = {}
        @assume_role_params = {}
        options.each_pair do |key, value|
            if self.class.assume_role_options.include?(key)
                @assume_role_params[key] = value
            else
                next unless STS_KEYS.include?(key)
                client_opts[key] = value
            end
        end
        @client = client_opts[:client] || ::Aws::STS::Client.new(client_opts)
        super
    end

    # @return [STS::Client]
    attr_reader :client

    private

    def refresh
        c = @client.assume_role(@assume_role_params).credentials
        @credentials = ::Aws::Credentials.new(
            c.access_key_id,
            c.secret_access_key,
            c.session_token,
        )
        @expiration = c.expiration
    end

    class << self
      # @api private
      def assume_role_options
          @aro ||= begin
              input = ::Aws::STS::Client.api.operation(:assume_role).input
              Set.new(input.shape.member_names)
          end
      end
      end
end

Version data entries

43 entries across 43 versions & 1 rubygems

Version Path
aws_assume_role-1.2.0-universal-openbsd lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.2.0-universal-darwin lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.2.0-universal-freebsd lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.2.0-universal-linux lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.1 lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.1-linux lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.1-universal-openbsd lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.1-universal-darwin lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.1-universal-freebsd lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.1-universal-linux lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.0-universal-openbsd lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.0-universal-darwin lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.0-universal-freebsd lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.0-universal-linux lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.0.6-linux lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.1.0-linux lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.0.6 lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.0.5 lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.0.4 lib/aws_assume_role/credentials/providers/assume_role_credentials.rb
aws_assume_role-1.0.3 lib/aws_assume_role/credentials/providers/assume_role_credentials.rb