UNPKG

@aws-amplify/storage

Version:

Storage category of aws-amplify

aws-amplify.github.io

aws-amplify/amplify-js

76 lines (73 loc) 2.86 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
import { StorageAction } from '@aws-amplify/core/internals/utils'; import '../../errors/types/validation.mjs'; import { StorageError } from '../../errors/StorageError.mjs'; import { logger } from '../../utils/logger.mjs'; import '../../providers/s3/utils/client/s3control/getDataAccess.mjs'; import { listCallerAccessGrants as listCallerAccessGrants$1 } from '../../providers/s3/utils/client/s3control/listCallerAccessGrants.mjs'; import { getStorageUserAgentValue } from '../../providers/s3/utils/userAgent.mjs'; import { MAX_PAGE_SIZE } from '../utils/constants.mjs'; // Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. // SPDX-License-Identifier: Apache-2.0 /** * @internal */ const listCallerAccessGrants = async (input) => { const { credentialsProvider, accountId, region, nextToken, pageSize, customEndpoint, } = input; logger.debug(`listing available locations from account ${input.accountId}`); if (!!pageSize && pageSize > MAX_PAGE_SIZE) { logger.debug(`defaulting pageSize to ${MAX_PAGE_SIZE}.`); } const clientCredentialsProvider = async (options) => { const { credentials } = await credentialsProvider(options); return credentials; }; const { CallerAccessGrantsList, NextToken, $metadata } = await listCallerAccessGrants$1({ credentials: clientCredentialsProvider, customEndpoint, region, userAgentValue: getStorageUserAgentValue(StorageAction.ListCallerAccessGrants), }, { AccountId: accountId, NextToken: nextToken, MaxResults: pageSize ?? MAX_PAGE_SIZE, AllowedByApplication: true, }); const accessGrants = CallerAccessGrantsList?.map(grant => { assertGrantScope(grant.GrantScope, $metadata); return { scope: grant.GrantScope, permission: grant.Permission, type: parseGrantType(grant.GrantScope), }; }) ?? []; return { locations: accessGrants, nextToken: NextToken, }; }; const parseGrantType = (grantScope) => { const bucketScopeReg = /^s3:\/\/(.*)\/\*$/; const possibleBucketName = grantScope.match(bucketScopeReg)?.[1]; if (!grantScope.endsWith('*')) { return 'OBJECT'; } else if (grantScope.endsWith('/*') && possibleBucketName && possibleBucketName.indexOf('/') === -1) { return 'BUCKET'; } else { return 'PREFIX'; } }; function assertGrantScope(value, responseMetadata) { if (typeof value !== 'string' || !value.startsWith('s3://')) { throw new StorageError({ name: 'InvalidGrantScope', message: `Expected a valid grant scope, got ${value}`, metadata: responseMetadata, }); } } export { listCallerAccessGrants }; //# sourceMappingURL=listCallerAccessGrants.mjs.map