Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Support custom ids #8216

Merged
merged 15 commits into from
Oct 13, 2024
Merged

Support custom ids #8216

Show file tree
Hide file tree
Changes from 10 commits
Commits
Show all changes
15 commits
Select commit Hold shift + click to select a range
9198e50
implement base id generation utilities
cloutierMat Oct 4, 2024
32d552e
implement apigw and secretsmanager
cloutierMat Oct 4, 2024
5b844ed
fixed typing
cloutierMat Oct 4, 2024
60f884f
fixed typing for legacy python version
cloutierMat Oct 4, 2024
56e54b8
remove Callable type
cloutierMat Oct 4, 2024
56f5229
implementation of ResourceIdentifier
cloutierMat Oct 9, 2024
228f2ea
fix error when ne values are provided when creating an api key
cloutierMat Oct 9, 2024
93f156a
added test and support for passing in set ids
cloutierMat Oct 9, 2024
578f48c
skip test if in server mode
cloutierMat Oct 9, 2024
dd111ab
fixed linting
cloutierMat Oct 9, 2024
3f67c65
Fix rest api identifier naming
cloutierMat Oct 10, 2024
64033bc
implement retrieving from _custom_id_ tag
cloutierMat Oct 10, 2024
1c959f6
fixed type annotation
cloutierMat Oct 10, 2024
8aa20a2
Fixed formatting
cloutierMat Oct 10, 2024
29ba736
added unit tests
cloutierMat Oct 11, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
71 changes: 58 additions & 13 deletions moto/apigateway/models.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -68,7 +68,19 @@
ValidationException,
VpcLinkNotFound,
)
from .utils import create_id, to_path
from .utils import (
ApigwApiKeyIdentifier,
ApigwAuthorizerIdentifier,
ApigwDeploymentIdentifier,
ApigwModelIdentifier,
ApigwRequestValidatorIdentifier,
ApigwResourceIdentifier,
ApigwRestApiValidatorIdentifier,
ApigwUsagePlanIdentifier,
ApigwVpcLinkIdentifier,
create_id,
to_path,
)

STAGE_URL = "https://{api_id}.execute-api.{region_name}.amazonaws.com/{stage_name}"
PATCH_OPERATIONS = ["add", "remove", "replace", "move", "copy", "test"]
Expand Down Expand Up @@ -789,6 +801,7 @@ def _apply_operation_to_variables(self, op: Dict[str, Any]) -> None:
class ApiKey(BaseModel):
def __init__(
self,
api_key_id: str,
name: Optional[str] = None,
description: Optional[str] = None,
enabled: bool = False,
Expand All @@ -798,7 +811,7 @@ def __init__(
tags: Optional[List[Dict[str, str]]] = None,
customerId: Optional[str] = None,
):
self.id = create_id()
self.id = api_key_id
self.value = value or "".join(
random.sample(string.ascii_letters + string.digits, 40)
)
Expand Down Expand Up @@ -846,6 +859,7 @@ def _str2bool(self, v: str) -> bool:
class UsagePlan(BaseModel):
def __init__(
self,
usage_plan_id: str,
name: Optional[str] = None,
description: Optional[str] = None,
apiStages: Any = None,
Expand All @@ -854,7 +868,7 @@ def __init__(
productCode: Optional[str] = None,
tags: Optional[List[Dict[str, str]]] = None,
):
self.id = create_id()
self.id = usage_plan_id
self.name = name
self.description = description
self.api_stages = apiStages or []
Expand Down Expand Up @@ -985,12 +999,13 @@ def to_json(self) -> Dict[str, Any]:
class VpcLink(BaseModel):
def __init__(
self,
vpc_link_id: str,
name: str,
description: str,
target_arns: List[str],
tags: List[Dict[str, str]],
):
self.id = create_id()
self.id = vpc_link_id
self.name = name
self.description = description
self.target_arns = target_arns
Expand Down Expand Up @@ -1162,7 +1177,9 @@ def create_from_cloudformation_json( # type: ignore[misc]
)

def add_child(self, path: str, parent_id: Optional[str] = None) -> Resource:
child_id = create_id()
child_id = ApigwResourceIdentifier(
self.account_id, self.region_name, parent_id or "", path
).generate()
child = Resource(
resource_id=child_id,
account_id=self.account_id,
Expand All @@ -1181,7 +1198,9 @@ def add_model(
schema: str,
content_type: str,
) -> "Model":
model_id = create_id()
model_id = ApigwModelIdentifier(
self.account_id, self.region_name, name
).generate()
new_model = Model(
model_id=model_id,
name=name,
Expand Down Expand Up @@ -1293,7 +1312,11 @@ def create_deployment(
) -> Deployment:
if stage_variables is None:
stage_variables = {}
deployment_id = create_id()
# Since there are no unique values to a deployment, we will use the stage name for the deployment.
# We are also passing a list of deployment ids to generate to prevent overwriting deployments.
deployment_id = ApigwDeploymentIdentifier(
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Having a list of ExistingId's essentially means that it's up to the user to call moto_id_manager.set_custom_id(..) before every Deployment is instantiated.

So in pseudo code:

moto_id_manager.set_custom_id(DeploymentIdentifier, 'suffix')
create_stage(name="mystage")
create_deployment()  # deployment_id = account.region.suffix.mystage
create_deployment()  # deployment_id = random identifier, because 'account.region.suffix.mystage' already exists

moto_id_manager.set_custom_id(DeploymentIdentifier, 'suffix2')
create_deployment()  # deployment_id = account.region.suffix2.mystage

Am I understanding the flow correctly?

I can't recall another resource where this is the case, but I'm sure this happens more often.. And it is slightly confusing if the actual behaviour differs for specific Resources.

Do you think it makes sense to implement this in a different way? Maybe make it an incremental generator somehow, so that the names become account.region.deployment1, account.region.deployment2, etc?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

You are correct.
However I don't see this as a big issue but rather a normal behavior.
The way it is currently implemented would guarantee the first run of your IAC will have the same result every time you restart. But subsequent deployment will create a new deployment in a non-destructive manner.

I can see the argument going both ways and if it ever becomes problematic we can review this behaviour, and add an auto-increment.

self.account_id, self.region_name, stage_name=name
).generate(list(self.deployments.keys()))
deployment = Deployment(deployment_id, name, description)
self.deployments[deployment_id] = deployment
if name:
Expand Down Expand Up @@ -1332,7 +1355,9 @@ def create_request_validator(
validateRequestBody: Optional[bool],
validateRequestParameters: Any,
) -> RequestValidator:
validator_id = create_id()
validator_id = ApigwRequestValidatorIdentifier(
self.account_id, self.region_name, name
).generate()
request_validator = RequestValidator(
_id=validator_id,
name=name,
Expand Down Expand Up @@ -1631,7 +1656,9 @@ def create_rest_api(
minimum_compression_size: Optional[int] = None,
disable_execute_api_endpoint: Optional[bool] = None,
) -> RestAPI:
api_id = create_id()
api_id = ApigwRestApiValidatorIdentifier(
self.account_id, self.region_name, name
).generate()
rest_api = RestAPI(
api_id,
self.account_id,
Expand Down Expand Up @@ -1882,7 +1909,9 @@ def create_authorizer(
self, restapi_id: str, name: str, authorizer_type: str, **kwargs: Any
) -> Authorizer:
api = self.get_rest_api(restapi_id)
authorizer_id = create_id()
authorizer_id = ApigwAuthorizerIdentifier(
self.account_id, self.region_name, name
).generate()
return api.create_authorizer(
authorizer_id,
name,
Expand Down Expand Up @@ -2146,7 +2175,13 @@ def create_api_key(self, payload: Dict[str, Any]) -> ApiKey:
for api_key in self.get_api_keys():
if api_key.value == payload["value"]:
raise ApiKeyAlreadyExists()
key = ApiKey(**payload)
api_key_id = ApigwApiKeyIdentifier(
self.account_id,
self.region_name,
# The value of an api key must be unique on aws
payload.get("value", ""),
).generate()
key = ApiKey(api_key_id=api_key_id, **payload)
self.keys[key.id] = key
return key

Expand All @@ -2166,7 +2201,10 @@ def delete_api_key(self, api_key_id: str) -> None:
self.keys.pop(api_key_id)

def create_usage_plan(self, payload: Any) -> UsagePlan:
plan = UsagePlan(**payload)
usage_plan_id = ApigwUsagePlanIdentifier(
self.account_id, self.region_name, payload["name"]
).generate()
plan = UsagePlan(usage_plan_id=usage_plan_id, **payload)
self.usage_plans[plan.id] = plan
return plan

Expand Down Expand Up @@ -2489,8 +2527,15 @@ def create_vpc_link(
target_arns: List[str],
tags: List[Dict[str, str]],
) -> VpcLink:
vpc_link_id = ApigwVpcLinkIdentifier(
self.account_id, self.region_name, name
).generate()
vpc_link = VpcLink(
name, description=description, target_arns=target_arns, tags=tags
vpc_link_id,
name,
description=description,
target_arns=target_arns,
tags=tags,
)
self.vpc_links[vpc_link.id] = vpc_link
return vpc_link
Expand Down
70 changes: 69 additions & 1 deletion moto/apigateway/utils.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,10 +1,78 @@
import json
import string
from typing import Any, Dict
from typing import Any, Dict, List, Union

import yaml

from moto.moto_api._internal import mock_random as random
from moto.utilities.id_generator import ResourceIdentifier, generate_str_id


class ApigwIdentifier(ResourceIdentifier):
service = "apigateway"

def __init__(self, account_id: str, region: str, name: str):
super().__init__(account_id, region, name)

def generate(self, existing_ids: Union[List[str], None] = None) -> str:
return generate_str_id(
self,
existing_ids,
length=10,
include_digits=True,
lower_case=True,
)


class ApigwApiKeyIdentifier(ApigwIdentifier):
resource = "api_key"

def __init__(self, account_id: str, region: str, value: str):
super().__init__(account_id, region, value)


class ApigwAuthorizerIdentifier(ApigwIdentifier):
resource = "authorizer"


class ApigwDeploymentIdentifier(ApigwIdentifier):
resource = "deployment"

def __init__(self, account_id: str, region: str, stage_name: str):
super().__init__(account_id, region, stage_name)


class ApigwModelIdentifier(ApigwIdentifier):
resource = "model"


class ApigwRequestValidatorIdentifier(ApigwIdentifier):
resource = "request_validator"


class ApigwResourceIdentifier(ApigwIdentifier):
resource = "resource"

def __init__(
self, account_id: str, region: str, parent_id: str = "", path_name: str = "/"
):
super().__init__(
account_id,
region,
".".join((parent_id, path_name)),
)


class ApigwRestApiValidatorIdentifier(ApigwIdentifier):
resource = "rest_api"


class ApigwUsagePlanIdentifier(ApigwIdentifier):
resource = "usage_plan"


class ApigwVpcLinkIdentifier(ApigwIdentifier):
resource = "vpc_link"


def create_id() -> str:
Expand Down
14 changes: 11 additions & 3 deletions moto/secretsmanager/models.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -26,7 +26,11 @@
tag_key,
tag_value,
)
from .utils import get_secret_name_from_partial_arn, random_password, secret_arn
from .utils import (
SecretsManagerSecretIdentifier,
get_secret_name_from_partial_arn,
random_password,
)

MAX_RESULTS_DEFAULT = 100

Expand Down Expand Up @@ -94,7 +98,9 @@ def __init__(
):
self.secret_id = secret_id
self.name = secret_id
self.arn = secret_arn(account_id, region_name, secret_id)
self.arn = SecretsManagerSecretIdentifier(
account_id, region_name, secret_id
).generate()
self.account_id = account_id
self.region = region_name
self.secret_string = secret_string
Expand Down Expand Up @@ -935,7 +941,9 @@ def delete_secret(
if not force_delete_without_recovery:
raise SecretNotFoundException()
else:
arn = secret_arn(self.account_id, self.region_name, secret_id=secret_id)
arn = SecretsManagerSecretIdentifier(
self.account_id, self.region_name, secret_id=secret_id
).generate()
name = secret_id
deletion_date = utcnow()
return arn, name, self._unix_time_secs(deletion_date)
Expand Down
26 changes: 21 additions & 5 deletions moto/secretsmanager/utils.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,6 +2,7 @@
import string

from moto.moto_api._internal import mock_random as random
from moto.utilities.id_generator import ExistingIds, ResourceIdentifier, generate_str_id
from moto.utilities.utils import ARN_PARTITION_REGEX, get_partition


Expand Down Expand Up @@ -62,11 +63,6 @@ def random_password(
return password


def secret_arn(account_id: str, region: str, secret_id: str) -> str:
id_string = "".join(random.choice(string.ascii_letters) for _ in range(6))
return f"arn:{get_partition(region)}:secretsmanager:{region}:{account_id}:secret:{secret_id}-{id_string}"


def get_secret_name_from_partial_arn(partial_arn: str) -> str:
# We can retrieve a secret either using a full ARN, or using a partial ARN
# name: testsecret
Expand Down Expand Up @@ -99,3 +95,23 @@ def _add_password_require_each_included_type(
password_with_required_char += required_characters

return password_with_required_char


class SecretsManagerSecretIdentifier(ResourceIdentifier):
service = "secretsmanager"
resource = "secret"

def __init__(self, account_id: str, region: str, secret_id: str):
super().__init__(account_id, region, name=secret_id)

def generate(self, existing_ids: ExistingIds = None) -> str:
id_string = generate_str_id(
existing_ids=existing_ids,
resource_identifier=self,
length=6,
include_digits=False,
)
return (
f"arn:{get_partition(self.region)}:secretsmanager:{self.region}:"
f"{self.account_id}:secret:{self.name}-{id_string}"
)
Loading
Loading