feat: support StsToken mode in cli profile

yndu13 · yndu13 · commit 01693f2921b4 · 2025-04-18T17:39:08.000+08:00
diff --git a/aliyun-java-sdk-core/src/main/java/com/aliyuncs/auth/CLIProfileCredentialsProvider.java b/aliyun-java-sdk-core/src/main/java/com/aliyuncs/auth/CLIProfileCredentialsProvider.java
@@ -66,6 +66,9 @@ AlibabaCloudCredentialsProvider reloadCredentialsProvider(Config config, String
                     if ("AK".equals(mode)) {
                         return new StaticCredentialsProvider(
                                 new BasicCredentials(profile.getAccessKeyId(), profile.getAccessKeySecret()));
+                    } else if ("StsToken".equals(mode)) {
+                        return new StaticCredentialsProvider(
+                                new BasicSessionCredentials(profile.getAccessKeyId(), profile.getAccessKeySecret(), profile.getSecurityToken()));
                     } else if ("RamRoleArn".equals(mode)) {
                         AlibabaCloudCredentialsProvider innerProvider = new StaticCredentialsProvider(
                                 new BasicCredentials(profile.getAccessKeyId(), profile.getAccessKeySecret()));
@@ -185,6 +188,8 @@ static class Profile {
         private String accessKeyId;
         @SerializedName("access_key_secret")
         private String accessKeySecret;
+        @SerializedName("sts_token")
+        private String securityToken;
         @SerializedName("ram_role_arn")
         private String roleArn;
         @SerializedName("ram_session_name")
@@ -224,6 +229,10 @@ public String getAccessKeySecret() {
             return accessKeySecret;
         }
 
+        public String getSecurityToken() {
+            return securityToken;
+        }
+
         public String getRoleArn() {
             return roleArn;
         }
diff --git a/aliyun-java-sdk-core/src/test/java/com/aliyuncs/auth/CLIProfileCredentialsProviderTest.java b/aliyun-java-sdk-core/src/test/java/com/aliyuncs/auth/CLIProfileCredentialsProviderTest.java
@@ -96,6 +96,13 @@ public void reloadCredentialsProviderTest() throws ClientException, IOException
         Assert.assertEquals("akid", credential.getAccessKeyId());
         Assert.assertEquals("secret", credential.getAccessKeySecret());
 
+        credentialsProvider = provider.reloadCredentialsProvider(config, "StsToken");
+        Assert.assertTrue(credentialsProvider instanceof StaticCredentialsProvider);
+        BasicSessionCredentials sessionCredentials = (BasicSessionCredentials) credentialsProvider.getCredentials();
+        Assert.assertEquals("accessKeyId", sessionCredentials.getAccessKeyId());
+        Assert.assertEquals("accessKeySecret", sessionCredentials.getAccessKeySecret());
+        Assert.assertEquals("stsToken", sessionCredentials.getSessionToken());
+
         credentialsProvider = provider.reloadCredentialsProvider(config, "RamRoleArn");
         Assert.assertTrue(credentialsProvider instanceof STSAssumeRoleSessionCredentialsProvider);
         try {
diff --git a/aliyun-java-sdk-core/src/test/resources/.aliyun/config.json b/aliyun-java-sdk-core/src/test/resources/.aliyun/config.json
@@ -7,6 +7,13 @@
       "access_key_id": "akid",
       "access_key_secret": "secret"
     },
+    {
+      "name": "StsToken",
+      "mode": "StsToken",
+      "access_key_id": "accessKeyId",
+      "access_key_secret": "accessKeySecret",
+      "sts_token": "stsToken"
+    },
     {
       "name": "RamRoleArn",
       "mode": "RamRoleArn",
