Skip to content

Commit

Permalink
test(credential-provider-node): add credential source assertions
Browse files Browse the repository at this point in the history
  • Loading branch information
@kuhe
kuhe committed Oct 7, 2024
1 parent be37764 commit ce8eb61
Show file tree
Hide file tree
Showing 2 changed files with 76 additions and 1 deletion.
2 changes: 1 addition & 1 deletion packages/core/src/submodules/httpAuthSchemes/aws_sdk/resolveAwsSdkSigV4Config.ts
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
import { setCredentialFeature } from "@aws-sdk/core";
import { setCredentialFeature } from "@aws-sdk/core/client";
import { AttributedAwsCredentialIdentity } from "@aws-sdk/types";
import {
doesIdentityRequireRefresh,
Expand Down
75 changes: 75 additions & 0 deletions packages/credential-provider-node/src/credential-provider-node.integ.spec.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -295,6 +295,9 @@ describe("credential-provider-node integration test", () => {
expect(credentials).toEqual({
accessKeyId: "ENV_ACCESS_KEY",
secretAccessKey: "ENV_SECRET_KEY",
$source: {
CREDENTIALS_ENV_VARS: "g",
},
});
});

Expand All @@ -312,6 +315,9 @@ describe("credential-provider-node integration test", () => {
expiration: new Date("2000-01-01T00:00:00.000Z"),
sessionToken: "ENV_SESSION_TOKEN",
credentialScope: "us-env-1",
$source: {
CREDENTIALS_ENV_VARS: "g",
},
});
});

Expand All @@ -331,6 +337,9 @@ describe("credential-provider-node integration test", () => {
expect(credentials).toEqual({
accessKeyId: "INI_STATIC_ACCESS_KEY",
secretAccessKey: "INI_STATIC_SECRET_KEY",
$source: {
CREDENTIALS_PROFILE: "n",
},
});
});
});
Expand All @@ -356,6 +365,10 @@ describe("credential-provider-node integration test", () => {
sessionToken: "SSO_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-sso-1-us-sso-region-1",
$source: {
CREDENTIALS_CODE: "e",
CREDENTIALS_SSO_LEGACY: "u",
},
});
});
});
Expand All @@ -371,6 +384,9 @@ describe("credential-provider-node integration test", () => {
expect(credentials).toEqual({
accessKeyId: "INI_STATIC_ACCESS_KEY",
secretAccessKey: "INI_STATIC_SECRET_KEY",
$source: {
CREDENTIALS_PROFILE: "n",
},
});
});

Expand All @@ -395,6 +411,10 @@ describe("credential-provider-node integration test", () => {
sessionToken: "STS_AR_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-stsar-1__us-west-2",
$source: {
CREDENTIALS_PROFILE_SOURCE_PROFILE: "o",
CREDENTIALS_STS_ASSUME_ROLE: "i",
},
});
});

Expand Down Expand Up @@ -423,6 +443,10 @@ describe("credential-provider-node integration test", () => {
sessionToken: "STS_AR_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-stsar-1__eu-west-1",
$source: {
CREDENTIALS_PROFILE_SOURCE_PROFILE: "o",
CREDENTIALS_STS_ASSUME_ROLE: "i",
},
});
});

Expand Down Expand Up @@ -451,6 +475,10 @@ describe("credential-provider-node integration test", () => {
sessionToken: "STS_AR_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-stsar-1__us-gov-stsar-1",
$source: {
CREDENTIALS_PROFILE_SOURCE_PROFILE: "o",
CREDENTIALS_STS_ASSUME_ROLE: "i",
},
});
});

Expand All @@ -471,6 +499,10 @@ describe("credential-provider-node integration test", () => {
sessionToken: "STS_ARWI_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-stsarwi-1__us-west-2",
$source: {
CREDENTIALS_PROFILE_STS_WEB_ID_TOKEN: "q",
CREDENTIALS_STS_ASSUME_ROLE_WEB_ID: "k",
},
});
});

Expand All @@ -492,6 +524,10 @@ describe("credential-provider-node integration test", () => {
sessionToken: "STS_ARWI_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-stsarwi-1__us-gov-sts-1",
$source: {
CREDENTIALS_PROFILE_STS_WEB_ID_TOKEN: "q",
CREDENTIALS_STS_ASSUME_ROLE_WEB_ID: "k",
},
});
});

Expand All @@ -506,6 +542,10 @@ describe("credential-provider-node integration test", () => {
secretAccessKey: "PROCESS_SECRET_ACCESS_KEY",
sessionToken: "PROCESS_SESSION_TOKEN",
credentialScope: "us-process-1",
$source: {
CREDENTIALS_PROCESS: "w",
CREDENTIALS_PROFILE_PROCESS: "v",
},
});
});

Expand All @@ -529,6 +569,10 @@ describe("credential-provider-node integration test", () => {
sessionToken: "SSO_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-sso-1-us-sso-region-1",
$source: {
CREDENTIALS_PROFILE_SSO: "r",
CREDENTIALS_SSO: "s",
},
});
});

Expand Down Expand Up @@ -561,6 +605,11 @@ describe("credential-provider-node integration test", () => {
sessionToken: "STS_AR_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-stsar-1__us-west-2",
$source: {
CREDENTIALS_CODE: "e",
CREDENTIALS_PROFILE_SOURCE_PROFILE: "o",
CREDENTIALS_STS_ASSUME_ROLE: "i",
},
});
expect(spy).toHaveBeenCalledWith(
expect.objectContaining({
Expand Down Expand Up @@ -601,6 +650,11 @@ describe("credential-provider-node integration test", () => {
sessionToken: "STS_AR_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-stsar-1__us-west-2",
$source: {
CREDENTIALS_CODE: "e",
CREDENTIALS_PROFILE_SOURCE_PROFILE: "o",
CREDENTIALS_STS_ASSUME_ROLE: "i",
},
});
expect(assumeRoleArns).toEqual(["ROLE_ARN_1", "ROLE_ARN_2"]);
});
Expand Down Expand Up @@ -643,6 +697,11 @@ describe("credential-provider-node integration test", () => {
sessionToken: "STS_AR_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-stsar-1__us-west-2",
$source: {
CREDENTIALS_CODE: "e",
CREDENTIALS_PROFILE_SOURCE_PROFILE: "o",
CREDENTIALS_STS_ASSUME_ROLE: "i",
},
});
expect(spy).toHaveBeenCalledWith(
expect.objectContaining({
Expand Down Expand Up @@ -692,6 +751,11 @@ describe("credential-provider-node integration test", () => {
sessionToken: "STS_AR_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-stsar-1__us-west-2",
$source: {
CREDENTIALS_CODE: "e",
CREDENTIALS_PROFILE_SOURCE_PROFILE: "o",
CREDENTIALS_STS_ASSUME_ROLE: "i",
},
});
expect(spy).toHaveBeenCalledWith(
expect.objectContaining({
Expand Down Expand Up @@ -720,6 +784,10 @@ describe("credential-provider-node integration test", () => {
secretAccessKey: "PROCESS_SECRET_ACCESS_KEY",
sessionToken: "PROCESS_SESSION_TOKEN",
credentialScope: "us-process-1",
$source: {
CREDENTIALS_PROCESS: "w",
CREDENTIALS_PROFILE_PROCESS: "v",
},
});
});
});
Expand All @@ -736,6 +804,10 @@ describe("credential-provider-node integration test", () => {
sessionToken: "STS_ARWI_SESSION_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
credentialScope: "us-stsarwi-1__us-west-2",
$source: {
CREDENTIALS_ENV_VARS_STS_WEB_ID_TOKEN: "h",
CREDENTIALS_STS_ASSUME_ROLE_WEB_ID: "k",
},
});
});
});
Expand All @@ -751,6 +823,9 @@ describe("credential-provider-node integration test", () => {
secretAccessKey: "CONTAINER_SECRET_ACCESS_KEY",
sessionToken: "CONTAINER_TOKEN",
expiration: new Date("3000-01-01T00:00:00.000Z"),
$source: {
CREDENTIALS_HTTP: "z",
},
});
});

Expand Down

0 comments on commit ce8eb61

Please sign in to comment.