2023-02-19 16:50:39 +00:00
|
|
|
{ lib
|
2023-05-02 16:51:38 +00:00
|
|
|
, installShellFiles
|
2023-02-19 16:50:39 +00:00
|
|
|
, python3
|
2023-05-25 11:54:35 +00:00
|
|
|
, fetchPypi
|
2023-02-19 16:50:39 +00:00
|
|
|
, fetchFromGitHub
|
|
|
|
|
, nix-update-script
|
|
|
|
|
, testers
|
|
|
|
|
, gimme-aws-creds
|
|
|
|
|
}:
|
|
|
|
|
|
|
|
|
|
let
|
|
|
|
|
python = python3.override {
|
|
|
|
|
packageOverrides = self: super: {
|
|
|
|
|
fido2 = super.fido2.overridePythonAttrs (oldAttrs: rec {
|
|
|
|
|
version = "0.9.3";
|
2023-05-02 16:51:38 +00:00
|
|
|
format = "setuptools";
|
2023-05-25 11:54:35 +00:00
|
|
|
src = fetchPypi {
|
2023-02-19 16:50:39 +00:00
|
|
|
inherit (oldAttrs) pname;
|
|
|
|
|
inherit version;
|
|
|
|
|
hash = "sha256-tF6JphCc/Lfxu1E3dqotZAjpXEgi+DolORi5RAg0Zuw=";
|
|
|
|
|
};
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
in
|
|
|
|
|
python.pkgs.buildPythonApplication rec {
|
|
|
|
|
pname = "gimme-aws-creds";
|
2024-02-13 02:29:39 +00:00
|
|
|
version = "2.8.0"; # N.B: if you change this, check if overrides are still up-to-date
|
2023-02-19 16:50:39 +00:00
|
|
|
format = "setuptools";
|
|
|
|
|
|
|
|
|
|
src = fetchFromGitHub {
|
|
|
|
|
owner = "Nike-Inc";
|
|
|
|
|
repo = "gimme-aws-creds";
|
|
|
|
|
rev = "v${version}";
|
2024-02-13 02:29:39 +00:00
|
|
|
hash = "sha256-RcqvI+jR7TiNAzq8F6VGVhyj6MxnmsjQKh0CiZvLY9Q=";
|
2023-02-19 16:50:39 +00:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
nativeBuildInputs = with python.pkgs; [
|
2023-05-02 16:51:38 +00:00
|
|
|
installShellFiles
|
2023-02-19 16:50:39 +00:00
|
|
|
pythonRelaxDepsHook
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
pythonRemoveDeps = [
|
|
|
|
|
"configparser"
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
propagatedBuildInputs = with python.pkgs; [
|
|
|
|
|
boto3
|
|
|
|
|
fido2
|
|
|
|
|
beautifulsoup4
|
|
|
|
|
ctap-keyring-device
|
|
|
|
|
requests
|
|
|
|
|
okta
|
2023-05-02 16:51:38 +00:00
|
|
|
pyjwt
|
2024-02-13 02:29:39 +00:00
|
|
|
html5lib
|
|
|
|
|
furl
|
2023-02-19 16:50:39 +00:00
|
|
|
];
|
|
|
|
|
|
2023-08-28 18:13:49 +00:00
|
|
|
preCheck = ''
|
|
|
|
|
# Disable using platform's keyring unavailable in sandbox
|
|
|
|
|
export PYTHON_KEYRING_BACKEND="keyring.backends.fail.Keyring"
|
|
|
|
|
'';
|
|
|
|
|
|
2023-02-19 16:50:39 +00:00
|
|
|
checkInputs = with python.pkgs; [
|
|
|
|
|
pytestCheckHook
|
|
|
|
|
responses
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
disabledTests = [
|
|
|
|
|
"test_build_factor_name_webauthn_registered"
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
pythonImportsCheck = [
|
|
|
|
|
"gimme_aws_creds"
|
|
|
|
|
];
|
|
|
|
|
|
|
|
|
|
postInstall = ''
|
|
|
|
|
rm $out/bin/gimme-aws-creds.cmd
|
|
|
|
|
chmod +x $out/bin/gimme-aws-creds
|
2023-05-02 16:51:38 +00:00
|
|
|
installShellCompletion --bash --name gimme-aws-creds $out/bin/gimme-aws-creds-autocomplete.sh
|
|
|
|
|
rm $out/bin/gimme-aws-creds-autocomplete.sh
|
2023-02-19 16:50:39 +00:00
|
|
|
'';
|
|
|
|
|
|
|
|
|
|
passthru = {
|
|
|
|
|
inherit python;
|
2023-07-26 22:21:18 +00:00
|
|
|
updateScript = nix-update-script { };
|
2023-02-19 16:50:39 +00:00
|
|
|
tests.version = testers.testVersion {
|
|
|
|
|
package = gimme-aws-creds;
|
|
|
|
|
command = ''touch tmp.conf && OKTA_CONFIG="tmp.conf" gimme-aws-creds --version'';
|
|
|
|
|
version = "gimme-aws-creds ${version}";
|
|
|
|
|
};
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
meta = with lib; {
|
|
|
|
|
homepage = "https://github.com/Nike-Inc/gimme-aws-creds";
|
|
|
|
|
changelog = "https://github.com/Nike-Inc/gimme-aws-creds/releases";
|
|
|
|
|
description = "A CLI that utilizes Okta IdP via SAML to acquire temporary AWS credentials";
|
2024-03-19 02:14:51 +00:00
|
|
|
mainProgram = "gimme-aws-creds";
|
2023-02-19 16:50:39 +00:00
|
|
|
license = licenses.asl20;
|
2023-05-09 20:32:45 +00:00
|
|
|
maintainers = with maintainers; [ jbgosselin ];
|
2023-02-19 16:50:39 +00:00
|
|
|
};
|
|
|
|
|
}
|
