UNPKG

recink

Version:

Rethink CI for JavaScript applications

github.com/MitocGroup/recink

MitocGroup/recink

72 lines (60 loc) 1.95 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
'use strict'; const AWS = require('aws-sdk'); /** * AWS security credentials */ class AwsCredentials { /** * @param {Object} options */ constructor(options = {}) { this._options = options; this._providers = [ new AWS.EnvironmentCredentials( this._options.hasOwnProperty('envPrefix') ? this._options.envPrefix : 'AWS' ), new AWS.SharedIniFileCredentials({ profile: this._options.hasOwnProperty('profile') ? this._options.profile : 'default' }), AWS.ECSCredentials.prototype.isConfiguredForEcsCredentials() ? new AWS.ECSCredentials() : new AWS.EC2MetadataCredentials() ]; if (this._options.hasOwnProperty('accessKeyId') && this._options.hasOwnProperty('secretAccessKey')) { this._providers.push( new AWS.Credentials({ accessKeyId: this._options.accessKeyId, secretAccessKey: this._options.secretAccessKey }) ); } } /** * Get AWS Configuration * @return {Promise} */ getConfig() { return new AWS.CredentialProviderChain(this._providers).resolvePromise().then(credentials => { let roleArn = this._getRoleArn(); AWS.config.credentials = roleArn ? new AWS.TemporaryCredentials({ RoleArn: roleArn }, credentials) : credentials; if (this._options.hasOwnProperty('region')) { AWS.config.update({ region: this._options.region }); } return Promise.resolve(AWS); }); } /** * Compose and validate Role ARN * @return {boolean} * @private */ _getRoleArn() { let roleArn = this._options.roleArn; if (this._options.hasOwnProperty('accountId') && this._options.hasOwnProperty('roleName')) { roleArn = `arn:aws:iam::${this._options.accountId}:role/${this._options.roleName}` } return /^arn:aws:iam::[0-9]{12}:role\/[a-zA-Z0-9+=,.@\-_]*$/.test(roleArn) ? roleArn : false; } } module.exports = AwsCredentials;