UNPKG

serverless

Version:

Serverless Framework - Build web, mobile and IoT applications with serverless architectures using AWS Lambda, Azure Functions, Google CloudFunctions & more

serverless.com/framework/docs/

serverless/serverless

108 lines (98 loc) 3.28 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
'use strict'; const { join } = require('path'); const fs = require('fs'); const os = require('os'); const { readFile, writeFile, mkdir } = fs.promises; const homedir = os.homedir(); const awsConfigDirPath = join(homedir, '.aws'); const credentialsFilePath = homedir ? join(awsConfigDirPath, 'credentials') : null; const isWindows = process.platform === 'win32'; const profileNameRe = /^\[([^\]]+)]\s*$/; const settingRe = /^([a-zA-Z0-9_]+)\s*=\s*([^\s]+)\s*$/; const settingMap = new Map([ ['aws_access_key_id', 'accessKeyId'], ['aws_secret_access_key', 'secretAccessKey'], ['aws_session_token', 'sessionToken'], ]); const parseFileProfiles = (content) => { const profiles = new Map(); let currentProfile; for (const line of content.split(/[\n\r]+/)) { const profileNameMatches = line.match(profileNameRe); if (profileNameMatches) { currentProfile = {}; profiles.set(profileNameMatches[1], currentProfile); continue; } if (!currentProfile) continue; const settingMatches = line.match(settingRe); if (!settingMatches) continue; let [, settingAwsName] = settingMatches; settingAwsName = settingAwsName.toLowerCase(); const settingName = settingMap.get(settingAwsName); if (settingName) currentProfile[settingName] = settingMatches[2]; } for (const [profileName, profileData] of profiles) { if (!profileData.sessionToken && (!profileData.accessKeyId || !profileData.secretAccessKey)) { profiles.delete(profileName); } } return profiles; }; const writeCredentialsContent = async (content) => { try { await writeFile( credentialsFilePath, content, !isWindows ? { mode: fs.constants.S_IRUSR | fs.constants.S_IWUSR } : null ); } catch (writeFileError) { if (writeFileError.code === 'ENOENT') { await mkdir(awsConfigDirPath, !isWindows ? { mode: fs.constants.S_IRWXU } : null); await writeCredentialsContent(content); } else { throw writeFileError; } } }; module.exports = { async resolveFileProfiles() { if (!credentialsFilePath) { return new Map(); } try { const content = await readFile(credentialsFilePath, { encoding: 'utf8' }); return parseFileProfiles(content); } catch (err) { if (err.code === 'ENOENT') { return new Map(); } throw err; } }, resolveEnvCredentials() { if (!process.env.AWS_ACCESS_KEY_ID || !process.env.AWS_SECRET_ACCESS_KEY) return null; return { accessKeyId: process.env.AWS_ACCESS_KEY_ID, secretAccessKey: process.env.AWS_SECRET_ACCESS_KEY, }; }, async saveFileProfiles(profiles) { if (!credentialsFilePath) throw new Error('Could not resolve path to user credentials file'); await writeCredentialsContent( `${Array.from(profiles) .map(([name, data]) => { const lineTokens = [`[${name}]`]; if (data.sessionToken) lineTokens.push(`aws_session_token=${data.sessionToken}`); else { lineTokens.push( `aws_access_key_id=${data.accessKeyId}`, `aws_secret_access_key=${data.secretAccessKey}` ); } return `${lineTokens.join('\n')}\n`; }) .join('\n')}` ); }, };