(init): Adjust everything wrong with this dumb fucking package. EAT MY ASS INFISICAL.

2026-03-12 02:05:00 +08:00
parent 1764a4cbfa
commit dda882ff66
11 changed files with 92 additions and 2216 deletions
--- a/src/custom/constants.ts
+++ b/src/custom/constants.ts
--- a/src/custom/schemas/dynamic-secrets.ts
+++ b/src/custom/schemas/dynamic-secrets.ts
@@ -172,7 +172,7 @@ const DynamicSecretMongoAtlasSchema = z.object({
    .trim()
    .min(1)
    .describe(
-      "Unique 24-hexadecimal digit string that identifies your project. This is same as project id"
+      "Unique 24-hexadecimal digit string that identifies your project. This is same as project id",
    ),
  roles: z
    .object({
@@ -188,7 +188,7 @@ const DynamicSecretMongoAtlasSchema = z.object({
        .string()
        .min(1)
        .describe(
-          ' Enum: "atlasAdmin" "backup" "clusterMonitor" "dbAdmin" "dbAdminAnyDatabase" "enableSharding" "read" "readAnyDatabase" "readWrite" "readWriteAnyDatabase" "<a custom role name>".Human-readable label that identifies a group of privileges assigned to a database user. This value can either be a built-in role or a custom role.'
+          ' Enum: "atlasAdmin" "backup" "clusterMonitor" "dbAdmin" "dbAdminAnyDatabase" "enableSharding" "read" "readAnyDatabase" "readWrite" "readWriteAnyDatabase" "<a custom role name>".Human-readable label that identifies a group of privileges assigned to a database user. This value can either be a built-in role or a custom role.',
        ),
    })
    .array()
@@ -199,13 +199,13 @@ const DynamicSecretMongoAtlasSchema = z.object({
        .string()
        .min(1)
        .describe(
-          "Human-readable label that identifies the cluster or MongoDB Atlas Data Lake that this database user can access."
+          "Human-readable label that identifies the cluster or MongoDB Atlas Data Lake that this database user can access.",
        ),
      type: z
        .string()
        .min(1)
        .describe(
-          "Category of resource that this database user can access. Enum: CLUSTER, DATA_LAKE, STREAM"
+          "Category of resource that this database user can access. Enum: CLUSTER, DATA_LAKE, STREAM",
        ),
    })
    .array(),
@@ -223,7 +223,7 @@ const DynamicSecretMongoDBSchema = z.object({
    .array()
    .min(1)
    .describe(
-      'Enum: "atlasAdmin" "backup" "clusterMonitor" "dbAdmin" "dbAdminAnyDatabase" "enableSharding" "read" "readAnyDatabase" "readWrite" "readWriteAnyDatabase" "<a custom role name>".Human-readable label that identifies a group of privileges assigned to a database user. This value can either be a built-in role or a custom role.'
+      'Enum: "atlasAdmin" "backup" "clusterMonitor" "dbAdmin" "dbAdminAnyDatabase" "enableSharding" "read" "readAnyDatabase" "readWrite" "readWriteAnyDatabase" "<a custom role name>".Human-readable label that identifies a group of privileges assigned to a database user. This value can either be a built-in role or a custom role.',
    ),
 });

--- a/src/custom/util.ts
+++ b/src/custom/util.ts
@@ -1,100 +1,11 @@
-import axios from "axios";
-import { AWS_IDENTITY_DOCUMENT_URI, AWS_TOKEN_METADATA_URI } from "./constants";
-
-import { Sha256 } from "@aws-crypto/sha256-js";
-import { fromNodeProviderChain } from "@aws-sdk/credential-providers";
-import { HttpRequest } from "@aws-sdk/protocol-http";
-import { SignatureV4 } from "@aws-sdk/signature-v4";
-
-import { InfisicalSDKError } from "./errors";
 import { Secret } from "../api/types";

 export const getUniqueSecretsByKey = (secrets: Secret[]) => {
-	const secretMap = new Map<string, Secret>();
+  const secretMap = new Map<string, Secret>();

-	for (const secret of secrets) {
-		secretMap.set(secret.secretKey, secret);
-	}
+  for (const secret of secrets) {
+    secretMap.set(secret.secretKey, secret);
+  }

-	return Array.from(secretMap.values());
-};
-
-export const getAwsRegion = async () => {
-	const region = process.env.AWS_REGION; // Typically found in lambda runtime environment
-	if (region) {
-		return region;
-	}
-
-	try {
-		const tokenRes = await axios.put(AWS_TOKEN_METADATA_URI, undefined, {
-			headers: {
-				"X-aws-ec2-metadata-token-ttl-seconds": "21600"
-			},
-			timeout: 5_000 // 5 seconds
-		});
-
-		const identityResponse = await axios.get<{ region: string }>(AWS_IDENTITY_DOCUMENT_URI, {
-			headers: {
-				"X-aws-ec2-metadata-token": tokenRes.data,
-				Accept: "application/json"
-			},
-			timeout: 5_000
-		});
-
-		return identityResponse.data.region;
-	} catch (e) {
-		throw e;
-	}
-};
-
-export const performAwsIamLogin = async (region: string) => {
-	const credentials = await fromNodeProviderChain()();
-
-	if (!credentials.accessKeyId || !credentials.secretAccessKey) {
-		throw new InfisicalSDKError("Credentials not found");
-	}
-
-	const iamRequestURL = `https://sts.${region}.amazonaws.com/`;
-	const iamRequestBody = "Action=GetCallerIdentity&Version=2011-06-15";
-	const iamRequestHeaders = {
-		"Content-Type": "application/x-www-form-urlencoded; charset=utf-8",
-		Host: `sts.${region}.amazonaws.com`
-	};
-
-	const request = new HttpRequest({
-		protocol: "https:",
-		hostname: `sts.${region}.amazonaws.com`,
-		path: "/",
-		method: "POST",
-		headers: {
-			...iamRequestHeaders,
-			"Content-Length": String(Buffer.byteLength(iamRequestBody))
-		},
-		body: iamRequestBody
-	});
-
-	const signer = new SignatureV4({
-		credentials,
-		region,
-		service: "sts",
-		sha256: Sha256
-	});
-
-	const signedRequest = await signer.sign(request);
-
-	const headers: Record<string, string> = {};
-	Object.entries(signedRequest.headers).forEach(([key, value]) => {
-		if (typeof value === "string") {
-			// Normalize Authorization header to proper case
-			const normalizedKey = key.toLowerCase() === "authorization" ? "Authorization" : key;
-			headers[normalizedKey] = value;
-		}
-	});
-
-	return {
-		iamHttpRequestMethod: "POST",
-		iamRequestUrl: iamRequestURL,
-		iamRequestBody: iamRequestBody,
-		iamRequestHeaders: headers
-	};
+  return Array.from(secretMap.values());
 };