UNPKG

@aws-cdk-testing/cli-integ

Version:

Integration tests for the AWS CDK CLI

github.com/aws/aws-cdk

aws/aws-cdk-cli-testing

92 lines (78 loc) 3.52 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
import { promises as fs } from 'fs'; import * as path from 'path'; import { integTest, withDefaultFixture } from '../../../lib'; jest.setTimeout(2 * 60 * 60_000); // Includes the time to acquire locks, worst-case single-threaded runtime integTest(`cdk-assets uses profile when specified`, withDefaultFixture(async (fixture) => { const currentCreds = await fixture.aws.credentials(); await fixture.shell(['npm', 'init', '-y']); await fixture.shell(['npm', 'install', `cdk-assets@latest`]); const account = await fixture.aws.account(); const region = fixture.aws.region; const bucketName = `cdk-hnb659fds-assets-${account}-${region}`; // Write some asset files. Its important to have more than 1 because cdk-assets // code has some funky state mutations that happens on each asset publishing. const assetFile1 = 'testfile.txt'; const assetFile2 = 'testfile.txt'; await fs.writeFile(path.join(fixture.integTestDir, assetFile1), 'some asset file'); await fs.writeFile(path.join(fixture.integTestDir, assetFile2), 'some asset file'); // Write an asset JSON file to publish to the bootstrapped environment const assetsJson = { version: "38.0.1", files: { testfile1: { source: { path: assetFile1, packaging: 'file', }, destinations: { current: { region, assumeRoleArn: `arn:\${AWS::Partition}:iam::${account}:role/cdk-hnb659fds-file-publishing-role-${account}-${region}`, bucketName, objectKey: `test-file1-${Date.now()}.json`, } } }, testfile2: { source: { path: assetFile2, packaging: 'file', }, destinations: { current: { region, assumeRoleArn: `arn:\${AWS::Partition}:iam::${account}:role/cdk-hnb659fds-file-publishing-role-${account}-${region}`, bucketName, objectKey: `test-file2-${Date.now()}.json`, } } } } }; // create a profile with our current credentials. // // if you're wondering why can't we do the reverse (i.e write a bogus profile and assert a failure), // its because when cdk-assets discovers the current account, it DOES consider the profile. // writing a bogus profile would fail this operation and we won't be able to reach the code // we're trying to test. const credentialsFile = path.join(fixture.integTestDir, 'aws.credentials'); const profile = 'cdk-assets'; // this kind sucks but its what it is given we need to write a working profile await fs.writeFile(credentialsFile, `[${profile}] aws_access_key_id=${currentCreds.accessKeyId} aws_secret_access_key=${currentCreds.secretAccessKey} aws_session_token=${currentCreds.sessionToken}`); await fs.writeFile(path.join(fixture.integTestDir, 'assets.json'), JSON.stringify(assetsJson, undefined, 2)); await fixture.shell(['npx', 'cdk-assets', '--path', 'assets.json', 'publish', '--profile', profile], { modEnv: { ...fixture.cdkShellEnv(), AWS_SHARED_CREDENTIALS_FILE: credentialsFile, // remove the default creds so that if the command doesn't use // the profile, it will fail with "Could not load credentials from any providers" AWS_ACCESS_KEY_ID: '', AWS_SECRET_ACCESS_KEY: '', AWS_SESSION_TOKEN: '' }, }); }), );