UNPKG

@anthropic-ai/bedrock-sdk

Version:

The official TypeScript library for the Anthropic Bedrock API

anthropics/anthropic-sdk-typescript

85 lines (72 loc) 2.63 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
import assert from 'assert'; import { SignatureV4 } from '@smithy/signature-v4'; import { fromNodeProviderChain } from '@aws-sdk/credential-providers'; import { HttpRequest } from '@smithy/protocol-http'; import { Sha256 } from '@aws-crypto/sha256-js'; type AuthProps = { url: string; regionName: string; awsAccessKey: string | null | undefined; awsSecretKey: string | null | undefined; awsSessionToken: string | null | undefined; }; export const getAuthHeaders = async (req: RequestInit, props: AuthProps): Promise<Record<string, string>> => { assert(req.method, 'Expected request method property to be set'); const providerChain = fromNodeProviderChain(); const credentials = await withTempEnv( () => { // Temporarily set the appropriate environment variables if we've been // explicitly given credentials so that the credentials provider can // resolve them. // // Note: the environment provider is only not run first if the `AWS_PROFILE` // environment variable is set. // https://github.com/aws/aws-sdk-js-v3/blob/44a18a34b2c93feccdfcd162928d13e6dbdcaf30/packages/credential-provider-node/src/defaultProvider.ts#L49 if (props.awsAccessKey) { process.env['AWS_ACCESS_KEY_ID'] = props.awsAccessKey; } if (props.awsSecretKey) { process.env['AWS_SECRET_ACCESS_KEY'] = props.awsSecretKey; } if (props.awsSessionToken) { process.env['AWS_SESSION_TOKEN'] = props.awsSessionToken; } }, () => providerChain(), ); const signer = new SignatureV4({ service: 'bedrock', region: props.regionName, credentials, sha256: Sha256, }); const url = new URL(props.url); const headers = !req.headers ? {} : Symbol.iterator in req.headers ? Object.fromEntries(Array.from(req.headers).map((header) => [...header])) : { ...req.headers }; // The connection header may be stripped by a proxy somewhere, so the receiver // of this message may not see this header, so we remove it from the set of headers // that are signed. delete headers['connection']; headers['host'] = url.hostname; const request = new HttpRequest({ method: req.method.toUpperCase(), protocol: url.protocol, path: url.pathname, headers, body: req.body, }); const signed = await signer.sign(request); return signed.headers; }; const withTempEnv = async <R>(updateEnv: () => void, fn: () => Promise<R>): Promise<R> => { const previousEnv = { ...process.env }; try { updateEnv(); return await fn(); } finally { process.env = previousEnv; } };