UNPKG

aws-lib

Version:

Extensible Node.js library for the Amazon Web Services API

github.com/livelycode/aws-lib

livelycode/aws-lib

66 lines (61 loc) 2.04 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
var http = require('http'); module.exports = { init: init, readCredentials: readCredentials } function init() { return function () { return { call: function(options, callback) { var version = options.version || 'latest'; var endpoint = options.endpoint || ''; var url = 'http://169.254.169.254/' + version + '/meta-data/' + endpoint; http.get(url, function(res) { var string = ''; res.setEncoding('utf8'); res.on('data', function(chunk) { string += chunk; }); res.on('end', function() { if (res.statusCode == 200) { return callback(null, string); } else { return callback(new Error('HTTP ' + res.statusCode + ' when fetching credentials from EC2 API')); } }); }) .once('error', callback) .setTimeout(1000, callback); } } } } // Try to get access id and secret key from ec2 metadata API function readCredentials(obj, cb) { var lapse = obj.expires == null ? 0 : +new Date() - Date.parse(obj.expires); if (obj.secretAccessKey == null || obj.accessKeyId == null || lapse > 0) { var md = init(); md().call({endpoint: 'iam/security-credentials/'}, function(err, res) { if (err) return cb(err); if (typeof res === 'undefined') return cb(new Error('metadata API response undefined')); md().call({endpoint: 'iam/security-credentials/' + res.split('\n')[0]}, function(err, res) { try { res = JSON.parse(res); } catch(e) { return cb(e); } if (res.SecretAccessKey === null) return cb(new Error("secretAccessKey and accessKeyId not provided and could not be determined.")); obj.secretAccessKey = res.SecretAccessKey; obj.accessKeyId = res.AccessKeyId; obj.token = res.Token; obj.expires = res.Expiration; cb(null, obj); }); }); } else { cb(null, obj); } }