@voidkey/broker-core
Version:
Core credential minting logic for the voidkey zero-trust credential broker
36 lines • 1.1 kB
TypeScript
import { AccessProvider, AccessProviderConfiguration, CredentialRequest, CredentialResponse } from './base';
export interface AWSConfiguration extends AccessProviderConfiguration {
type: 'aws-sts';
endpoint: string;
region: string;
roleArn?: string;
brokerAuth: {
tokenSource: 'broker-oidc';
expectedIssuer: string;
expectedAudience: string;
jwksUri?: string;
};
}
export interface AWSKeyConfiguration {
provider: string;
roleArn: string;
roleSessionName?: string;
policy?: string;
duration?: number;
externalId?: string;
outputs: {
[envVarName: string]: string;
};
}
export declare class AWSProvider extends AccessProvider {
protected config: AWSConfiguration;
constructor(config: AWSConfiguration);
getName(): string;
getType(): string;
mintCredential(request: CredentialRequest): Promise<CredentialResponse>;
healthCheck(): Promise<boolean>;
private assumeRoleWithWebIdentity;
private parseSTSResponse;
private validateBrokerToken;
}
//# sourceMappingURL=aws.d.ts.map