AWS SSO MCP Server

vendor.aws.sso.accounts.service.test.ts•4.76 KiB

import { describe, test, expect, beforeAll, jest } from '@jest/globals'; import { config } from '../utils/config.util'; import { getCachedSsoToken } from './vendor.aws.sso.auth.core.service.js'; import { listSsoAccounts, getAwsCredentials, getAllAccountsWithRoles, } from './vendor.aws.sso.accounts.service'; import { McpError, ErrorType } from '../utils/error.util'; /** * Helper function to skip tests when no valid AWS SSO session is available * @returns {Promise<boolean>} True if tests should be skipped, false otherwise */ const skipIfNoValidSsoSession = async (): Promise<boolean> => { config.load(); // Ensure config is loaded in case beforeAll didn't run first const token = await getCachedSsoToken(); if (!token) { console.warn( 'SKIPPING TEST: No AWS SSO token found. Please run login first.', ); return true; } const now = Math.floor(Date.now() / 1000); if (token.expiresAt <= now) { console.warn( 'SKIPPING TEST: AWS SSO token is expired. Please run login first.', ); return true; } // Check if AWS_SSO_START_URL is set, as it's required for some operations if (!config.get('AWS_SSO_START_URL')) { console.warn('SKIPPING TEST: AWS_SSO_START_URL is not configured.'); return true; } return false; }; describe('AWS SSO Accounts Service', () => { // Set longer timeout for API calls jest.setTimeout(60000); beforeAll(() => { config.load(); }); test('listSsoAccounts should return a list of AWS accounts', async () => { if (await skipIfNoValidSsoSession()) return; try { const accounts = await listSsoAccounts(); expect(accounts).toBeDefined(); expect(Array.isArray(accounts.accountList)).toBe(true); // If accounts exist, check their structure if (accounts.accountList.length > 0) { const firstAccount = accounts.accountList[0]; expect(firstAccount.accountId).toBeDefined(); expect(firstAccount.accountName).toBeDefined(); } } catch (error) { // Skip test if we hit rate limits (HTTP 429) if ( error instanceof McpError && error.type === ErrorType.API_ERROR && error.message.includes('429') ) { console.warn( 'SKIPPING TEST: AWS API rate limit reached (HTTP 429)', ); return; } throw error; } }); test('getAccountsWithRoles should return accounts with their roles', async () => { if (await skipIfNoValidSsoSession()) return; try { const accounts = await getAllAccountsWithRoles(); expect(accounts).toBeDefined(); expect(Array.isArray(accounts)).toBe(true); // Check if at least one account was returned expect(accounts.length).toBeGreaterThan(0); if (accounts.length > 0) { const firstAccount = accounts[0]; expect(firstAccount.accountId).toBeDefined(); expect(firstAccount.accountName).toBeDefined(); expect(Array.isArray(firstAccount.roles)).toBe(true); } } catch (error) { // Skip test if we hit rate limits (HTTP 429) if ( error instanceof McpError && error.type === ErrorType.API_ERROR && error.message.includes('429') ) { console.warn( 'SKIPPING TEST: AWS API rate limit reached (HTTP 429)', ); return; } throw error; } }); test.skip('getAwsCredentials should return valid credentials for a role', async () => { if (await skipIfNoValidSsoSession()) return; try { // First get a list of accounts to find a valid account/role combination const accounts = await getAllAccountsWithRoles(); if (!accounts || accounts.length === 0) { console.warn('SKIPPING TEST: No AWS accounts available.'); return; } // Find an account with at least one role const accountWithRole = accounts.find( (account) => account.roles && account.roles.length > 0, ); if (!accountWithRole) { console.warn( 'SKIPPING TEST: No AWS accounts with roles available.', ); return; } const accountId = accountWithRole.accountId; const roleName = accountWithRole.roles[0].roleName; // Now get credentials for this account/role const credentials = await getAwsCredentials({ accountId, roleName, }); expect(credentials).toBeDefined(); expect(credentials.accessKeyId).toBeDefined(); expect(credentials.secretAccessKey).toBeDefined(); expect(credentials.sessionToken).toBeDefined(); expect(credentials.expiration).toBeDefined(); // Verify credentials are not expired const now = new Date(); expect(credentials.expiration).toBeInstanceOf(Date); expect(credentials.expiration.getTime()).toBeGreaterThan( now.getTime(), ); } catch (error) { // Skip test if we hit rate limits (HTTP 429) if ( error instanceof McpError && error.type === ErrorType.API_ERROR && error.message.includes('429') ) { console.warn( 'SKIPPING TEST: AWS API rate limit reached (HTTP 429)', ); return; } throw error; } }); });

Loading blob content...

Latest Blog Posts

Don't Use Large Strings as Cache Keys
By punkpeye on January 11, 2026.
markdown
node-js
cache
What are Claude Skills?
By punkpeye on January 10, 2026.
mcp
skills
How to Test MCP Streamable HTTP Endpoints Using cURL
By punkpeye on January 2, 2026.
tutorial
bash

MCP directory API

We provide all the information about MCP servers via our MCP API.

curl -X GET 'https://glama.ai/api/mcp/v1/servers/aashari/mcp-server-aws-sso'

If you have feedback or need assistance with the MCP directory API, please join our Discord server

vendor.aws.sso.accounts.service.test.ts•4.76 KiB