mirror of
https://github.com/Unleash/unleash.git
synced 2025-11-10 01:19:53 +01:00
07f6970eed
https://linear.app/unleash/issue/2-3860/aws-iam-db-auth-migrator-logs AWS IAM DB auth migrator, logs.
32 lines
954 B
TypeScript
32 lines
954 B
TypeScript
import { Signer } from '@aws-sdk/rds-signer';
|
|
import type { IDBOption } from '../types/option.js';
|
|
|
|
type PasswordResolver = () => Promise<string>;
|
|
|
|
export const getDBPasswordResolver = (db: IDBOption): PasswordResolver => {
|
|
if (db.awsIamAuth) {
|
|
if (!db.awsRegion)
|
|
throw new Error(
|
|
'AWS_REGION is required when DATABASE_AWS_IAM=true',
|
|
);
|
|
|
|
const signer = new Signer({
|
|
region: db.awsRegion,
|
|
hostname: db.host,
|
|
port: db.port,
|
|
username: db.user,
|
|
});
|
|
return async () => {
|
|
console.log('[AWS RDS SIGNER] Getting token...');
|
|
const token = await signer.getAuthToken();
|
|
console.log(`[AWS RDS SIGNER] Got token: ${token}`);
|
|
return token;
|
|
};
|
|
}
|
|
|
|
return async () => db.password;
|
|
};
|
|
|
|
export const getDBPassword = (db: IDBOption): Promise<string> =>
|
|
getDBPasswordResolver(db)();
|