Linux ip-172-26-7-228 5.4.0-1103-aws #111~18.04.1-Ubuntu SMP Tue May 23 20:04:10 UTC 2023 x86_64
Your IP : 18.119.103.8
| Current Path : /var/www/oasis/aws/Aws/Rds/ | |
| | Current File : //var/www/oasis/aws/Aws/Rds/AuthTokenGenerator.php |
<?php
namespace Aws\Rds;
use Aws\Credentials\CredentialsInterface;
use Aws\Credentials\Credentials;
use Aws\Signature\SignatureV4;
use GuzzleHttp\Psr7\Request;
use GuzzleHttp\Psr7\Uri;
use GuzzleHttp\Promise;
use Aws;
/**
* Generates RDS auth tokens for use with IAM authentication.
*/
class AuthTokenGenerator
{
private $credentialProvider;
/**
* The constructor takes an instance of Credentials or a CredentialProvider
*
* @param callable|Credentials $creds
*/
public function __construct($creds)
{
if ($creds instanceof CredentialsInterface) {
$promise = new Promise\FulfilledPromise($creds);
$this->credentialProvider = Aws\constantly($promise);
} else {
$this->credentialProvider = $creds;
}
}
/**
* Create the token for database login
*
* @param string $endpoint The database hostname with port number specified
* (e.g., host:port)
* @param string $region The region where the database is located
* @param string $username The username to login as
*
* @return string Token generated
*/
public function createToken($endpoint, $region, $username)
{
$uri = new Uri($endpoint);
$uri = $uri->withPath('/');
$uri = $uri->withQuery('Action=connect&DBUser=' . $username);
$request = new Request('GET', $uri);
$signer = new SignatureV4('rds-db', $region);
$provider = $this->credentialProvider;
$url = (string) $signer->presign(
$request,
$provider()->wait(),
'+15 minutes'
)->getUri();
// Remove 2 extra slash from the presigned url result
return substr($url, 2);
}
}
|