Skip to content

feat: Allow empty credential configs to work with cloud providers #9499

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
cwangsmv merged 6 commits into from
Dec 26, 2025
Merged

feat: Allow empty credential configs to work with cloud providers #9499

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
6 commits
Select commit Hold shift + click to select a range
6f66615
support empty credential config
cwangsmv Dec 18, 2025
195f14d
fix type issue
cwangsmv Dec 19, 2025
8582b99
fix azure issue
cwangsmv Dec 24, 2025
010742b
fix issues
cwangsmv Dec 24, 2025
8cc10fe
update plugin package
cwangsmv Dec 24, 2025
f7d248b
update yaml for fix test error
cwangsmv Dec 25, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 4 additions & 2 deletions .github/workflows/test.yml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -33,8 +33,8 @@ jobs:
node-version-file: .nvmrc
cache: npm
cache-dependency-path: package-lock.json
registry-url: "https://npm.pkg.github.com"
scope: "@kong"
registry-url: 'https://npm.pkg.github.com'
scope: '@kong'

- name: Install packages
run: npm ci
Expand All @@ -52,6 +52,8 @@ jobs:

- name: Check Circular References
uses: actions/github-script@v7
env:
NODE_AUTH_TOKEN: ${{ secrets.GITHUB_TOKEN }}
if: github.event_name == 'pull_request' && always()
with:
github-token: ${{ secrets.GITHUB_TOKEN }}
Expand Down
10 changes: 5 additions & 5 deletions package-lock.json
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion packages/insomnia-inso/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -66,6 +66,6 @@
"yaml": "^2.7.1"
},
"optionalDependencies": {
"@kong/insomnia-plugin-external-vault": "0.1.3"
"@kong/insomnia-plugin-external-vault": "0.1.4-dev.20251224090833"
}
}
2 changes: 1 addition & 1 deletion packages/insomnia/package.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -202,7 +202,7 @@
},
"optionalDependencies": {
"@kong/insomnia-plugin-ai": "^1.0.7",
"@kong/insomnia-plugin-external-vault": "0.1.3"
"@kong/insomnia-plugin-external-vault": "0.1.4-dev.20251224090833"
},
"dev": {
"dev-server-port": 3334
Expand Down
29 changes: 1 addition & 28 deletions packages/insomnia/src/account/session.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -193,34 +193,7 @@ async function _removeAllCredentials() {
const cloudCredentials = await cloudCredential.all();
for (const cred of cloudCredentials) {
if ('credentials' in cred) {
if ('secretAccessKey' in cred.credentials) {
removals.push(
cloudCredential.update(cred, {
// AWS
credentials: { ...cred.credentials, secretAccessKey: '', sessionToken: '' },
}),
);
continue;
}
// hashicorp
if ('access_token' in cred.credentials) {
removals.push(cloudCredential.update(cred, { credentials: { ...cred.credentials, access_token: '' } }));
continue;
}
if ('client_secret' in cred.credentials) {
removals.push(cloudCredential.update(cred, { credentials: { ...cred.credentials, client_secret: '' } }));
continue;
}
if ('secret_id' in cred.credentials) {
removals.push(
cloudCredential.update(cred, { credentials: { ...cred.credentials, secret_id: '', role_id: '' } }),
);
continue;
}
// azure
if ('accessToken' in cred.credentials) {
removals.push(cloudCredential.update(cred, { credentials: { ...cred.credentials, accessToken: '' } }));
}
removals.push(cloudCredential.update(cred, { credentials: undefined }));
}
}

Expand Down
8 changes: 4 additions & 4 deletions packages/insomnia/src/models/cloud-credential.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -97,16 +97,16 @@ export interface AzureOAuthCredential {
type BaseCloudCredential =
| {
provider: 'aws';
credentials: AWSTemporaryCredential | AWSFileCredential | AWSSSOCredential;
credentials?: AWSTemporaryCredential | AWSFileCredential | AWSSSOCredential;
}
| {
provider: 'gcp';
credentials: GCPCredential;
credentials?: GCPCredential;
}
| { provider: 'azure'; credentials: AzureOAuthCredential }
| { provider: 'azure'; credentials?: AzureOAuthCredential }
| {
provider: 'hashicorp';
credentials:
credentials?:
| HCPCredential
| VaultAppRoleCredential
| VaultTokenCredential
Expand Down
6 changes: 4 additions & 2 deletions packages/insomnia/src/routes/cloud-credentials.$cloudCredentialId.update.ts
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -34,8 +34,10 @@ export async function clientAction({ params, request }: Route.ClientActionArgs)
if (provider === 'hashicorp') {
// update access token and expires_at
const { access_token, expires_at } = result as { access_token: string; expires_at: number };
patch.credentials['access_token'] = access_token;
patch.credentials['expires_at'] = expires_at;
if (patch.credentials) {
patch.credentials['access_token'] = access_token;
patch.credentials['expires_at'] = expires_at;
}
}
await models.cloudCredential.update(originCredential, patch);
return result as { access_token: string; expires_at: number };
Expand Down
4 changes: 2 additions & 2 deletions packages/insomnia/src/ui/components/modals/cloud-credential-modal/aws-credential-form.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -19,7 +19,7 @@ export interface AWSCredentialFormProps {
isLoading: boolean;
errorMessage?: string;
}
const initialFormValue: { name: string; credentials: AWSCloudCredential['credentials'] } = {
const initialFormValue: { name: string; credentials: Required<AWSCloudCredential>['credentials'] } = {
name: '',
credentials: {
type: AWSCredentialType.temp,
Expand All @@ -34,7 +34,7 @@ export const providerType: CloudProviderName = 'aws';
export const AWSCredentialForm = (props: AWSCredentialFormProps) => {
const { data, onSubmit, isLoading, errorMessage } = props;
const isEdit = !!data;
const { name, credentials } = (data || initialFormValue) as {
const { name, credentials = initialFormValue.credentials } = (data || initialFormValue) as {
name: string;
credentials: AWSCloudCredential['credentials'];
};
Expand Down
4 changes: 2 additions & 2 deletions ...es/insomnia/src/ui/components/modals/cloud-credential-modal/hashicorp-credential-form.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -37,9 +37,9 @@ export const providerType: CloudProviderName = 'hashicorp';
export const HashiCorpCredentialForm = (props: HashiCorpCredentialFormProps) => {
const { data, onSubmit, isLoading, errorMessage } = props;
const isEdit = !!data;
const { name, credentials } = data || initialFormValue;
const { name, credentials = initialFormValue.credentials } = data || initialFormValue;
const [isValidUrl, setIsValidUrl] = useState(true);
const { type } = credentials as HashiCorpCredential['credentials'];
const { type } = credentials as Required<HashiCorpCredential>['credentials'];
const [credentialType, setCredentialType] = useState<HashiCorpCredentialType>(type);
const [credentialAuthMethod, setAuthMethod] = useState<HashiCorpVaultAuthMethod>(
(credentials as VaultTokenCredential | VaultAppRoleCredential).authMethod,
Expand Down
7 changes: 3 additions & 4 deletions packages/insomnia/src/ui/components/settings/cloud-service-credentials.tsx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,6 @@ import { useDeleteCloudCredentialActionFetcher } from '~/routes/cloud-credential

import { EXTERNAL_VAULT_PLUGIN_NAME } from '../../../common/constants';
import {
type AzureOAuthCredential,
type CloudProviderCredential,
type CloudProviderName,
getProviderDisplayName,
Expand Down Expand Up @@ -179,9 +178,9 @@ export const CloudServiceCredentialList = () => {
<tbody>
{cloudCredentials.map(cloudCred => {
const { _id, name, provider, credentials } = cloudCred;
let isAzureTokenExpired = false;
if (provider === 'azure') {
const tokenExpiresOn = (credentials as AzureOAuthCredential).expiresOn;
let isAzureTokenExpired = !credentials;
if (credentials && provider === 'azure') {
const tokenExpiresOn = 'expiresOn' in credentials ? credentials.expiresOn : null;
if (tokenExpiresOn && new Date() >= new Date(tokenExpiresOn)) {
isAzureTokenExpired = true;
}
Expand Down
Loading