public function refreshCredentials()

in src/Providers/EcsRamRoleCredentialsProvider.php [121:168]

• 38 lines of code
• 13 McCabe index (conditional complexity)

    public function refreshCredentials()
    {
        if (Helper::envNotEmpty('ALIBABA_CLOUD_ECS_METADATA_DISABLED') && Helper::env('ALIBABA_CLOUD_ECS_METADATA_DISABLED') === true) {
            throw new RuntimeException('IMDS credentials is disabled');
        }

        if (is_null($this->roleName) || $this->roleName === '') {
            $this->roleName = $this->getRoleNameFromMeta();
        }

        $url = $this->metadataHost . $this->ecsUri . $this->roleName;
        $options = Request::commonOptions();
        $options['read_timeout'] = $this->readTimeout;
        $options['connect_timeout'] = $this->connectTimeout;

        $metadataToken = $this->getMetadataToken();
        if (!is_null($metadataToken)) {
            $options['headers']['X-aliyun-ecs-metadata-token'] = $metadataToken;
        }

        $result = Request::createClient()->request('GET', $url, $options);

        if ($result->getStatusCode() === 404) {
            throw new InvalidArgumentException('The role was not found in the instance' . (string) $result);
        }

        if ($result->getStatusCode() !== 200) {
            throw new RuntimeException('Error refreshing credentials from IMDS, statusCode: ' . $result->getStatusCode() . ', result: ' . (string) $result);
        }

        $credentials = $result->toArray();

        if (!isset($credentials['AccessKeyId']) || !isset($credentials['AccessKeySecret']) || !isset($credentials['SecurityToken'])) {
            throw new RuntimeException('Error retrieving credentials from IMDS result:' . $result->toJson());
        }

        if (!isset($credentials['Code']) || $credentials['Code'] !== 'Success') {
            throw new RuntimeException('Error retrieving credentials from IMDS result, Code is not Success:' . $result->toJson());
        }

        return new RefreshResult(new Credentials([
            'accessKeyId' => $credentials['AccessKeyId'],
            'accessKeySecret' => $credentials['AccessKeySecret'],
            'securityToken' => $credentials['SecurityToken'],
            'expiration' => \strtotime($credentials['Expiration']),
            'providerName' => $this->getProviderName(),
        ]), $this->getStaleTime(strtotime($credentials["Expiration"])), $this->getPrefetchTime(strtotime($credentials["Expiration"])));
    }