UNPKG

aws-sso-cli

Version:

A tool for easily switching between different AWS SSO accounts.

github.com/codeeno/aws-sso-cli

codeeno/aws-sso-cli

101 lines (92 loc) 3.85 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
import Fuse from "fuse.js"; import chalk from "chalk"; import inquirer from "inquirer"; import autocomplete from "inquirer-autocomplete-prompt"; import { buildError } from "./error.js"; import { listAccounts, listAccountRoles, getRoleCredentials, createAWSClient } from "./aws.js"; const prompt = inquirer.createPromptModule({ output: process.stderr }); prompt.registerPrompt("autocomplete", autocomplete); export const chooseAccount = async (accessToken, region) => { const accounts = await getAccounts(accessToken, createAWSClient(region)); if (accounts.length === 1) { console.error(chalk.green("Defaulting to only available account:", accounts[0].accountName)); return accounts[0]; } else { const fuse = new Fuse(accounts, { threshold: 0.4, keys: ["accountName"] }); const answer = await prompt({ type: "autocomplete", name: "account", message: "Select the AWS account you want to authenticate with:", pageSize: 20, source: (result, input) => { return input ? fuse .search(input) .map((result) => `${result.item.accountName} (${result.item.accountId})`) : accounts.map((account) => `${account.accountName} (${account.accountId})`); }, }); return accounts.find( (account) => `${account.accountName} (${account.accountId})` === answer.account ); } }; export const chooseRole = async (accessToken, accountId, region) => { const roles = await getAccountRoles(accessToken, accountId, createAWSClient(region)); if (roles.length === 1) { console.error(chalk.green("Defaulting to only available role:", roles[0].roleName)); return roles[0]; } else { const fuse = new Fuse(roles, { threshold: 0.4, keys: ["roleName"] }); const answer = await prompt({ type: "autocomplete", name: "roleName", message: "Select the account role you wish to assume:", pageSize: 20, source: (result, input) => { return input ? fuse.search(input).map((result) => result.item.roleName) : roles.map((role) => role.roleName); }, }); return roles.find((role) => role.roleName === answer.roleName); } }; export const findAccountByName = async (accessToken, accountName, region) => { const accounts = await getAccounts(accessToken, createAWSClient(region)); const match = accounts.find((account) => account.accountName === accountName); if (!match) { throw buildError("ERR_ACCOUNT_NOT_FOUND"); } return match; }; export const findRoleByName = async (accessToken, roleName, accountId, region) => { const roles = await getAccountRoles(accessToken, accountId, createAWSClient(region)); const match = roles.find((role) => role.roleName === roleName); if (!match) { throw buildError("ERR_ROLE_NOT_FOUND"); } return match; }; const getAccounts = async (accessToken, AWSClient, nextToken = null, accountListAcc = []) => { const accounts = await listAccounts(accessToken, nextToken, AWSClient); const accountList = [...accountListAcc, ...accounts.accountList]; return "nextToken" in accounts && accounts.nextToken != null ? await getAccounts(accessToken, AWSClient, accounts.nextToken, accountList) : accountList; }; const getAccountRoles = async ( accessToken, accountId, AWSClient, nextToken = null, roleListAcc = [] ) => { const roles = await listAccountRoles(accessToken, accountId, nextToken, AWSClient); const roleList = [...roleListAcc, ...roles.roleList]; return "nextToken" in roles && roles.nextToken != null ? await getAccountRoles(accessToken, accountId, AWSClient, roles.nextToken, roleList) : roleList; }; export const getCredentials = async (accessToken, accountId, roleName, region) => await getRoleCredentials(accessToken, accountId, roleName, createAWSClient(region));