ARSN-531: add AccessKey to AuthInfo

leif-scality · leif-scality · commit a5834c46f734 · 2025-11-14T16:25:47.000+01:00
diff --git a/lib/auth/AuthInfo.ts b/lib/auth/AuthInfo.ts
@@ -59,8 +59,14 @@ export default class AuthInfo {
     IAMdisplayName: string;
     authVersion?: string;
     authType?: string;
+    accessKey?: string;
 
-    constructor(objectFromVault: any, authVersion?: string, authType?: string) {
+    constructor(
+        objectFromVault: any,
+        authVersion?: string,
+        authType?: string,
+        accessKey?: string,
+    ) {
         // amazon resource name for IAM user (if applicable)
         this.arn = objectFromVault.arn;
         // account canonicalID
@@ -93,6 +99,7 @@ export default class AuthInfo {
             this.authType = authType;
             break;
         }
+        this.accessKey = accessKey;
     }
     getArn() {
         return this.arn;
@@ -118,6 +125,9 @@ export default class AuthInfo {
     getAuthType() {
         return this.authType;
     }
+    getAccessKey() {
+        return this.accessKey;
+    }
     // Check whether requester is an IAM user versus an account
     isRequesterAnIAMUser() {
         return !!this.IAMdisplayName;
diff --git a/lib/auth/Vault.ts b/lib/auth/Vault.ts
@@ -31,6 +31,7 @@ export function vaultSignatureCb(
     ) => void,
     streamingV4Params?: any,
     authType?: string,
+    accessKey?: string,
 ) {
     // vaultclient API guarantees that it returns:
     // - either `err`, an Error object with `code` and `message` properties set
@@ -53,7 +54,7 @@ export function vaultSignatureCb(
 
     const info = authInfo.message.body as AuthV4Results;
     const userInfo = new AuthInfo(info.userInfo,
-        streamingV4Params ? 'SigV4' : 'SigV2', authType);
+        streamingV4Params ? 'SigV4' : 'SigV2', authType, accessKey);
     const authorizationResults = info.authorizationResults;
     const auditLog: { accountDisplayName: string, IAMdisplayName?: string } =
         { accountDisplayName: userInfo.getAccountDisplayName() };
@@ -176,7 +177,7 @@ export default class Vault {
             },
             (err: Error | null, userInfo?: any) => vaultSignatureCb(err,
                 userInfo, params.log, callback, undefined,
-                params.data.authType),
+                params.data.authType, params.data.accessKey),
         );
     }
 
@@ -239,7 +240,8 @@ export default class Vault {
             },
             (err: Error | null, userInfo?: any) => vaultSignatureCb(err,
                 userInfo, params.log, callback,
-                streamingV4Params,  params.data.authType),
+                streamingV4Params,
+                params.data.authType, params.data.accessKey),
         );
     }
 
