IAM assume role auth (#104)

* Added IAM Role authorization

* Updated readme with AssumeRole example

Author: norberttech

README.md

@@ -82,8 +82,8 @@ Version 1.0 is not going to be updated anymore, please migrate to version 2.0 th
 In order to start using SP API you need to first register as a Developer and create application.
 Whole process is described in [Amazon Official Guides](https://github.com/amzn/selling-partner-api-docs/blob/main/guides/en-US/developer-guide/SellingPartnerApiDeveloperGuide.md).
 
-Normally amazon recommends to use Role IAM when creating application however this requires and additional
-API call when obtaining refresh token. It's easier to use User IAM and just make sure that the user 
+Amazon recommends to use Role IAM when creating application however this requires and additional
+API request in order to obtain access token. It's easier to use User IAM and just make sure that the user 
 has following Inline Policy 
 
 ```
@@ -109,6 +109,11 @@ Example of changing refresh token into access token.
 use AmazonPHP\SellingPartner\OAuth;
 use AmazonPHP\SellingPartner\Configuration;
 use AmazonPHP\SellingPartner\HttpFactory;
+use Buzz\Client\Curl;
+use Nyholm\Psr7\Factory\Psr17Factory;
+
+$factory = new Psr17Factory();
+$client = new Curl($factory);
 
 $oauth = new OAuth(
     $client,
@@ -126,7 +131,41 @@ $accessToken = $oauth->exchangeRefreshToken('seller_oauth_refresh_token');
 
 #### IAM Role 
 
-@TODO 
+```
+<?php
+
+use AmazonPHP\SellingPartner\OAuth;
+use AmazonPHP\SellingPartner\Configuration;
+use AmazonPHP\SellingPartner\HttpFactory;
+use Buzz\Client\Curl;
+use Nyholm\Psr7\Factory\Psr17Factory;
+
+$factory = new Psr17Factory();
+$client = new Curl($factory);
+
+$sts = new STSClient(
+    $client,
+    $requestFactory = $factory,
+    $streamFactory = $factory
+);
+
+$oauth = new OAuth(
+    $client,
+    $httpFactory = new HttpFactory($requestFactory, $streamFactory),
+    $config = Configuration::forIAMRole(
+        'lwaClientID',
+        'lwaClientID',
+        $sts->assumeRole(
+            'awsAccessKey',
+            'awsSecretKey',
+            'arn:aws:iam::.........'
+        )
+    )
+);
+
+$accessToken = $oauth->exchangeRefreshToken('seller_oauth_refresh_token');
+```
+
 
 ### Development
 

resources/php-amazon-selling-partner-api/api.mustache

@@ -404,7 +404,7 @@ final {{#operations}}class {{packageName}}SDK
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,

resources/php-amazon-selling-partner-api/model_enum.mustache

@@ -0,0 +1,40 @@
+class {{classname}}
+{
+    /**
+     * Possible values of this enum
+     */
+    {{#allowableValues}}
+    {{#enumVars}}
+    const {{{name}}} = {{{value}}};
+
+    {{/enumVars}}
+    {{/allowableValues}}
+    private string $value;
+
+    /**
+     * Gets allowable values of the enum
+     * @return string[]
+     */
+    public static function getAllowableEnumValues()
+    {
+        return [
+            {{#allowableValues}}
+            {{#enumVars}}
+            self::{{{name}}}{{^-last}},
+            {{/-last}}
+            {{/enumVars}}
+            {{/allowableValues}}
+
+        ];
+    }
+
+    public function __construct(string $value)
+    {
+        $this->value = $value;
+    }
+
+    public function toString(): string
+    {
+        return $this->value;
+    }
+}

src/AmazonPHP/SellingPartner/Api/AplusContentApi/APlusSDK.php

@@ -279,7 +279,7 @@ public function createContentDocumentRequest(AccessToken $accessToken, string $r
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -514,7 +514,7 @@ public function getContentDocumentRequest(AccessToken $accessToken, string $regi
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -766,7 +766,7 @@ public function listContentDocumentAsinRelationsRequest(AccessToken $accessToken
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -980,7 +980,7 @@ public function postContentDocumentApprovalSubmissionRequest(AccessToken $access
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -1211,7 +1211,7 @@ public function postContentDocumentAsinRelationsRequest(AccessToken $accessToken
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -1425,7 +1425,7 @@ public function postContentDocumentSuspendSubmissionRequest(AccessToken $accessT
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -1631,7 +1631,7 @@ public function searchContentDocumentsRequest(AccessToken $accessToken, string $
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -1858,7 +1858,7 @@ public function searchContentPublishRecordsRequest(AccessToken $accessToken, str
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -2089,7 +2089,7 @@ public function updateContentDocumentRequest(AccessToken $accessToken, string $r
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -2308,7 +2308,7 @@ public function validateContentDocumentAsinRelationsRequest(AccessToken $accessT
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,

src/AmazonPHP/SellingPartner/Api/AuthorizationApi/AuthorizationSDK.php

@@ -256,7 +256,7 @@ public function getAuthorizationCodeRequest(AccessToken $accessToken, string $re
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,

src/AmazonPHP/SellingPartner/Api/CatalogApi/CatalogItemSDK.php

@@ -247,7 +247,7 @@ public function getCatalogItemRequest(AccessToken $accessToken, string $region,
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -455,7 +455,7 @@ public function listCatalogCategoriesRequest(AccessToken $accessToken, string $r
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -713,7 +713,7 @@ public function listCatalogItemsRequest(AccessToken $accessToken, string $region
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,

src/AmazonPHP/SellingPartner/Api/CustomerInvoicesApi/VendorDirectFulfillmentShippingSDK.php

@@ -230,7 +230,7 @@ public function getCustomerInvoiceRequest(AccessToken $accessToken, string $regi
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -482,7 +482,7 @@ public function getCustomerInvoicesRequest(AccessToken $accessToken, string $reg
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,

src/AmazonPHP/SellingPartner/Api/DefaultApi/FinancesSDK.php

@@ -265,7 +265,7 @@ public function listFinancialEventGroupsRequest(AccessToken $accessToken, string
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -484,7 +484,7 @@ public function listFinancialEventsRequest(AccessToken $accessToken, string $reg
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -701,7 +701,7 @@ public function listFinancialEventsByGroupIdRequest(AccessToken $accessToken, st
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -918,7 +918,7 @@ public function listFinancialEventsByOrderIdRequest(AccessToken $accessToken, st
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,

src/AmazonPHP/SellingPartner/Api/DefinitionsApi/ProductTypesDefinitionsSDK.php

@@ -293,7 +293,7 @@ public function getDefinitionsProductTypeRequest(AccessToken $accessToken, strin
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,
@@ -491,7 +491,7 @@ public function searchDefinitionsProductTypesRequest(AccessToken $accessToken, s
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,

src/AmazonPHP/SellingPartner/Api/FbaInboundApi/FBAInboundSDK.php

@@ -252,7 +252,7 @@ public function getItemEligibilityPreviewRequest(AccessToken $accessToken, strin
             $request = $request->withHeader($name, $header);
         }
 
-        return HttpSignatureHeaders::forIAMUser(
+        return HttpSignatureHeaders::forConfig(
             $this->configuration,
             $accessToken,
             $region,