@aashari/mcp-server-aws-sso/dist/cli/aws.sso.accounts.cli.js

Node.js/TypeScript MCP server for AWS Single Sign-On (SSO). Enables AI systems (LLMs) with tools to initiate SSO login (device auth flow), list accounts/roles, and securely execute AWS CLI commands using temporary credentials. Streamlines AI interaction w

"use strict";
var __importDefault = (this && this.__importDefault) || function (mod) {
    return (mod && mod.__esModule) ? mod : { "default": mod };
};
Object.defineProperty(exports, "__esModule", { value: true });
const logger_util_js_1 = require("../utils/logger.util.js");
const error_util_js_1 = require("../utils/error.util.js");
const aws_sso_accounts_controller_js_1 = __importDefault(require("../controllers/aws.sso.accounts.controller.js"));
/**
 * AWS SSO Accounts CLI Module
 *
 * Provides CLI commands for listing and exploring AWS accounts and roles
 * available through AWS SSO. Commands for viewing account details and roles
 * require valid AWS SSO authentication.
 */
// Create a module logger
const cliLogger = logger_util_js_1.Logger.forContext('cli/aws.sso.accounts.cli.ts');
// Log module initialization
cliLogger.debug('AWS SSO accounts CLI module initialized');
/**
 * Register AWS SSO accounts CLI commands
 * @param program Commander program instance
 */
function register(program) {
    const registerLogger = logger_util_js_1.Logger.forContext('cli/aws.sso.accounts.cli.ts', 'register');
    registerLogger.debug('Registering AWS SSO accounts CLI commands');
    registerListAccountsCommand(program);
    registerLogger.debug('AWS SSO accounts CLI commands registered');
}
/**
 * Register the list-accounts command
 * @param program Commander program instance
 */
function registerListAccountsCommand(program) {
    program
        .command('list-accounts')
        .description(`List all AWS accounts and roles available to the authenticated user.
			
        PURPOSE: Discover and explore all AWS accounts and roles you have access to
        through AWS SSO. Essential for identifying account IDs and role names needed
        for other commands like 'exec'.
			
        WHEN TO USE:
        - After authenticating with AWS SSO via the 'login' command
        - When you need to find the account ID and role name for use with other commands
        - When you want to see a comprehensive overview of your AWS SSO access permissions
        - To verify your permissions across multiple AWS accounts
        
        AUTHENTICATION:
        - Requires a valid AWS SSO session (use 'login' command first)
        - If you've already completed authentication in browser but this is your first check,
          it will automatically retrieve and verify your token
        - If session is expired, you'll be prompted to login again
        
        OUTPUT: Markdown-formatted list of all accounts with their IDs, names,
        email addresses, and roles available in each account.
        
        EXAMPLES:
        $ mcp-aws-sso login         # First authenticate in browser
        $ mcp-aws-sso list-accounts # Then verify and list accounts
			`)
        .action(async () => {
        const listLogger = logger_util_js_1.Logger.forContext('cli/aws.sso.accounts.cli.ts', 'list-accounts');
        try {
            listLogger.debug('Listing all AWS accounts and roles');
            const result = await aws_sso_accounts_controller_js_1.default.listAccounts();
            console.log(result.content);
        }
        catch (error) {
            listLogger.error('List-accounts command failed', error);
            (0, error_util_js_1.handleCliError)(error);
        }
    });
}
// Export the register function
exports.default = { register };