Various Fixes (#176)

* Update deps to use [email protected]

* Regenerate init-package

Author: prachirp

scripts/version-kpt-functions-sdk.sh

@@ -14,7 +14,7 @@
 # limitations under the License.
 
 # Usage:
-# $ version-kpt-functinos-sdk.sh 0.13.0-rc.1
+# $ version-kpt-functions-sdk.sh 0.13.0-rc.1
 
 set -euo pipefail
 

ts/demo-functions/package-lock.json

@@ -24,7 +24,7 @@
   "dependencies": {
     "glob": "^7.1.3",
     "js-yaml": "^3.14.0",
-    "kpt-functions": "^0.14.0"
+    "kpt-functions": "^0.14.3"
   },
   "devDependencies": {
     "@types/fs-extra": "^9.0.1",

ts/demo-functions/package.json

@@ -15,7 +15,7 @@
     "kpt:type-create": "kpt type-create"
   },
   "dependencies": {
-    "kpt-functions": "^0.14.0"
+    "kpt-functions": "^0.14.3"
   },
   "devDependencies": {
     "@types/jasmine": "^3.5.10",

ts/hello-world/package-lock.json

@@ -1,6 +1,96 @@
 import { KubernetesObject } from 'kpt-functions';
 import * as apisMetaV1 from './io.k8s.apimachinery.pkg.apis.meta.v1';
 
+// BoundObjectReference is a reference to an object that a token is bound to.
+export class BoundObjectReference {
+  // API version of the referent.
+  public apiVersion?: string;
+
+  // Kind of the referent. Valid kinds are 'Pod' and 'Secret'.
+  public kind?: string;
+
+  // Name of the referent.
+  public name?: string;
+
+  // UID of the referent.
+  public uid?: string;
+}
+
+// TokenRequest requests a token for a given service account.
+export class TokenRequest implements KubernetesObject {
+  // APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+  public apiVersion: string;
+
+  // Kind is a string value representing the REST resource this object represents. Servers may infer this from the endpoint the client submits requests to. Cannot be updated. In CamelCase. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+  public kind: string;
+
+  public metadata: apisMetaV1.ObjectMeta;
+
+  public spec: TokenRequestSpec;
+
+  public status?: TokenRequestStatus;
+
+  constructor(desc: TokenRequest.Interface) {
+    this.apiVersion = TokenRequest.apiVersion;
+    this.kind = TokenRequest.kind;
+    this.metadata = desc.metadata;
+    this.spec = desc.spec;
+    this.status = desc.status;
+  }
+}
+
+export function isTokenRequest(o: any): o is TokenRequest {
+  return o && o.apiVersion === TokenRequest.apiVersion && o.kind === TokenRequest.kind;
+}
+
+export namespace TokenRequest {
+  export const apiVersion = "authentication.k8s.io/v1";
+  export const group = "authentication.k8s.io";
+  export const version = "v1";
+  export const kind = "TokenRequest";
+
+  // TokenRequest requests a token for a given service account.
+  export interface Interface {
+    metadata: apisMetaV1.ObjectMeta;
+
+    spec: TokenRequestSpec;
+
+    status?: TokenRequestStatus;
+  }
+}
+
+// TokenRequestSpec contains client provided parameters of a token request.
+export class TokenRequestSpec {
+  // Audiences are the intendend audiences of the token. A recipient of a token must identitfy themself with an identifier in the list of audiences of the token, and otherwise should reject the token. A token issued for multiple audiences may be used to authenticate against any of the audiences listed but implies a high degree of trust between the target audiences.
+  public audiences: string[];
+
+  // BoundObjectRef is a reference to an object that the token will be bound to. The token will only be valid for as long as the bound object exists. NOTE: The API server's TokenReview endpoint will validate the BoundObjectRef, but other audiences may not. Keep ExpirationSeconds small if you want prompt revocation.
+  public boundObjectRef?: BoundObjectReference;
+
+  // ExpirationSeconds is the requested duration of validity of the request. The token issuer may return a token with a different validity duration so a client needs to check the 'expiration' field in a response.
+  public expirationSeconds?: number;
+
+  constructor(desc: TokenRequestSpec) {
+    this.audiences = desc.audiences;
+    this.boundObjectRef = desc.boundObjectRef;
+    this.expirationSeconds = desc.expirationSeconds;
+  }
+}
+
+// TokenRequestStatus is the result of a token request.
+export class TokenRequestStatus {
+  // ExpirationTimestamp is the time of expiration of the returned token.
+  public expirationTimestamp: apisMetaV1.Time;
+
+  // Token is the opaque bearer token.
+  public token: string;
+
+  constructor(desc: TokenRequestStatus) {
+    this.expirationTimestamp = desc.expirationTimestamp;
+    this.token = desc.token;
+  }
+}
+
 // TokenReview attempts to authenticate a token to a known user. Note: TokenReview requests may be cached by the webhook token authenticator plugin in the kube-apiserver.
 export class TokenReview implements KubernetesObject {
   // APIVersion defines the versioned schema of this representation of an object. Servers should convert recognized schemas to the latest internal value, and may reject unrecognized values. More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources