UNPKG

cdk-ssm-secure-iam-access-key

Version:

Creates an IAM Access Key for a provided IAM User and stores the result in an SSM SecureString Parameter

github.com/dkershner6/cdk-ssm-secure-iam-access-key

dkershner6/cdk-ssm-secure-iam-access-key

36 lines (35 loc) 1.89 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
import { AwsCredentialIdentity, Provider } from "@smithy/types"; import { AssumeRoleCommandInput } from "./commands/AssumeRoleCommand"; import { AssumeRoleWithWebIdentityCommandInput } from "./commands/AssumeRoleWithWebIdentityCommand"; import type { STSClient, STSClientConfig } from "./STSClient"; /** * @internal */ export type RoleAssumer = (sourceCreds: AwsCredentialIdentity, params: AssumeRoleCommandInput) => Promise<AwsCredentialIdentity>; /** * The default role assumer that used by credential providers when sts:AssumeRole API is needed. * @internal */ export declare const getDefaultRoleAssumer: (stsOptions: Pick<STSClientConfig, "logger" | "region" | "requestHandler">, stsClientCtor: new (options: STSClientConfig) => STSClient) => RoleAssumer; /** * @internal */ export type RoleAssumerWithWebIdentity = (params: AssumeRoleWithWebIdentityCommandInput) => Promise<AwsCredentialIdentity>; /** * The default role assumer that used by credential providers when sts:AssumeRoleWithWebIdentity API is needed. * @internal */ export declare const getDefaultRoleAssumerWithWebIdentity: (stsOptions: Pick<STSClientConfig, "logger" | "region" | "requestHandler">, stsClientCtor: new (options: STSClientConfig) => STSClient) => RoleAssumerWithWebIdentity; /** * @internal */ export type DefaultCredentialProvider = (input: any) => Provider<AwsCredentialIdentity>; /** * The default credential providers depend STS client to assume role with desired API: sts:assumeRole, * sts:assumeRoleWithWebIdentity, etc. This function decorates the default credential provider with role assumers which * encapsulates the process of calling STS commands. This can only be imported by AWS client packages to avoid circular * dependencies. * * @internal */ export declare const decorateDefaultCredentialProvider: (provider: DefaultCredentialProvider) => DefaultCredentialProvider;