Skip to content

Commit

Permalink
wip
Browse files Browse the repository at this point in the history
  • Loading branch information
@nithyatsu
nithyatsu committed Nov 25, 2024
1 parent 5ec55b5 commit db51f3b
Showing 1 changed file with 51 additions and 4 deletions.
55 changes: 51 additions & 4 deletions test/validation/aws.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -19,13 +19,20 @@ import (
"context"
"encoding/json"
"fmt"
"log"
"os"
"testing"
"time"

ucp_aws "github.com/radius-project/radius/pkg/ucp/aws"

"github.com/google/uuid"
"github.com/radius-project/radius/pkg/to"

"github.com/aws/aws-sdk-go-v2/aws"
"github.com/aws/aws-sdk-go-v2/config"
"github.com/aws/aws-sdk-go-v2/credentials"
"github.com/aws/aws-sdk-go-v2/credentials/stscreds"
"github.com/aws/aws-sdk-go-v2/service/cloudcontrol"
"github.com/aws/aws-sdk-go-v2/service/sts"
awsclient "github.com/radius-project/radius/pkg/ucp/aws"
Expand Down Expand Up @@ -156,14 +163,54 @@ func IsAWSResourceNotFound(ctx context.Context, resource *AWSResource, client aw

}

// GetResourceIdentifier retrieves the identifier of a resource from the environment variables and the context.
// func GetResourceIdentifier(ctx context.Context, resourceType string, name string) (string, error) {
// accessKey := os.Getenv("AWS_ACCESS_KEY_ID")
// secretAccessKey := os.Getenv("AWS_SECRET_ACCESS_KEY")
// sessionToken := ""
// region := os.Getenv("AWS_REGION")

// credentialsProvider := credentials.NewStaticCredentialsProvider(accessKey, secretAccessKey, sessionToken)

// stsClient := sts.New(sts.Options{
// Region: region,
// Credentials: credentialsProvider,
// })
// result, err := stsClient.GetCallerIdentity(ctx, &sts.GetCallerIdentityInput{})
// if err != nil {
// return "", err
// }

// return "/planes/aws/aws/accounts/" + *result.Account + "/regions/" + region + "/providers/" + resourceType + "/" + name, nil
// }

// GetResourceIdentifier retrieves the identifier of a resource from the environment variables and the context.
func GetResourceIdentifier(ctx context.Context, resourceType string, name string) (string, error) {
accessKey := os.Getenv("AWS_ACCESS_KEY_ID")
secretAccessKey := os.Getenv("AWS_SECRET_ACCESS_KEY")
sessionToken := ""
region := os.Getenv("AWS_REGION")

credentialsProvider := credentials.NewStaticCredentialsProvider(accessKey, secretAccessKey, sessionToken)
awscfg, err := config.LoadDefaultConfig(ctx,
config.WithRegion(region))
if err != nil {
return "", fmt.Errorf("failed to load configuration: %w", err)
}

// Create a credentials cache using the Web Identity Role Provider for AWS STS.
credsCache := aws.NewCredentialsCache(stscreds.NewWebIdentityRoleProvider(
sts.NewFromConfig(awscfg),
"arn:aws:iam::179022619019:role/radius-role",
stscreds.IdentityTokenFile(ucp_aws.TokenFilePath),
func(o *stscreds.WebIdentityRoleOptions) {
o.RoleSessionName = "radius-ecr-" + uuid.New().String()
},
))

// Retrieve the credentials from the cache
creds, err := credsCache.Retrieve(context.TODO())
if err != nil {
log.Fatalf("Failed to retrieve credentials: %v", err)

Check failure on line 210 in test/validation/aws.go

View workflow job for this annotation

GitHub Actions / Lint 

use of `log.Fatalf` forbidden because "Do not use except for inside main" (forbidigo)
}

credentialsProvider := credentials.NewStaticCredentialsProvider(creds.AccessKeyID, creds.SecretAccessKey, creds.SessionToken)

stsClient := sts.New(sts.Options{
Region: region,
Expand Down

0 comments on commit db51f3b

Please sign in to comment.