OXIESEC PANEL

Name	Size	Modified	Perms
📁 ..	-	08/21/2024 10:05:34 AM	rwxr-xr-x
📄 BatchingContext.php	6.76 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 BlockingContext.php	4.77 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 ConcurrencyContext.php	4.73 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 CredentialsContext.php	4.07 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 CrtContext.php	8.28 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 GuzzleV5HandlerTest.php	2.62 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 GuzzleV6StreamHandlerTest.php	2.44 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 IntegUtils.php	1.53 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 MultipartContext.php	7.36 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 NativeStreamContext.php	4.65 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 S3Context.php	11.13 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 S3EncryptionContext.php	7.44 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 S3EncryptionContextV2.php	7.79 KB	08/21/2024 10:03:54 AM	rw-r--r--
📄 SmokeContext.php	12.25 KB	08/21/2024 10:03:54 AM	rw-r--r--

Editing: CredentialsContext.php

<?php

namespace Aws\Test\Integ;

use Aws\Result;
use Aws\Credentials\CredentialProvider;
use Behat\Behat\Context\Context;
use Behat\Behat\Context\SnippetAcceptingContext;
use PHPUnit\Framework\Assert;

/**
 * Defines application features from the specific context.
 */
class CredentialsContext extends Assert implements
    Context,
    SnippetAcceptingContext
{
    use IntegUtils;

private static $credentialsFile;
    private static $roleName;
    private static $roleArn;

/**
     * @BeforeFeature @credentials
     */
    public static function createCredentialsFile()
    {
        self::$credentialsFile = tempnam(sys_get_temp_dir(), '/.aws/credentials');
        touch(self::$credentialsFile);
    }

/**
     * @AfterFeature @credentials
     */
    public static function deleteCredentialsFile()
    {
        unlink(self::$credentialsFile);
    }

/**
     * @BeforeFeature @credentials
     */
    public static function setupIamRole()
    {
        $stsClient = self::getSdk()->createSts();
        $sourceIdentity = $stsClient->getCallerIdentity();
        $sourceArn = $sourceIdentity['Arn'];
        $assumeRolePolicy = <<<EOT
{
    "Version": "2012-10-17",
    "Statement": [{
        "Sid": "",
        "Effect": "Allow",
        "Principal": {
            "AWS": "$sourceArn"
        },
        "Action": "sts:AssumeRole"
    }]
}
EOT;
        $iamClient = self::getSdk()->createIam();
        self::$roleName = 'php-integration-' . round(microtime(true) * 1000);
        $result = $iamClient->createRole([
           'AssumeRolePolicyDocument' => $assumeRolePolicy,
           'RoleName' => self::$roleName,
        ]);
        self::$roleArn = $result['Role']['Arn'];
        $iamClient->waitUntil('RoleExists', ['RoleName' => self::$roleName]);
    }

/**
     * @AfterFeature @credentials
     */
    public static function teardownIamRole()
    {
        $client = self::getSdk()->createIam();
        $client->deleteRole([
            'RoleName' => self::$roleName
        ]);
    }

/**
     * @Given I have a credentials file with session name :value
     */
    public function iHaveACredentialsFile($sessionName)
    {
        $iamClient = self::getSdk()->createIam();
        $creds = $iamClient->getCredentials()->wait();
        $sourceKeyId = $creds->getAccessKeyId();
        $sourceAccessKey = $creds->getSecretKey();
        $sourceToken = $creds->getSecurityToken();
        $roleArn = self::$roleArn;
        $ini = <<<EOT
[default]
aws_access_key_id = $sourceKeyId
aws_secret_access_key = $sourceAccessKey
aws_session_token = $sourceToken
[assumeInteg]
role_arn = $roleArn
source_profile = default
role_session_name = $sessionName
EOT;
        file_put_contents(self::$credentialsFile, $ini);
    }

/**
     * @Given I have credentials
     */
    public function iHaveCredentials()
    {
        $this->credentials = CredentialProvider::ini(
            'assumeInteg',
            self::$credentialsFile
        );
    }

/**
     * @Given I have an sts client
     */
    public function iHaveAnStsClient()
    {
        $this->client = self::getSdk()->createSts([
            'credentials' => $this->credentials
        ]);
    }

/**
     * @When I call GetCallerIdentity
     */
    public function iCallGetCallerIdentity()
    {
        //Assume role should exist, but may not yet be assumable.
        $maxAttempts = 10;
        $attempts = 0;
        do {
            try {
                $this->result = $this->client->getCallerIdentity();
            } catch (\Exception $e) {
                $attempts++;
                sleep(2);
                continue;
            }
            break;
        } while ($attempts < $maxAttempts);
    }

/**
     * @Then the value at :key should contain :value
     */
    public function theValueAtShouldBeA($key, $value)
    {
        $this->assertInstanceOf(Result::class, $this->result);
        $this->assertStringContainsString($value, $this->result->search($key));
    }
}