PRMDR-914 new IAM service for pre-sign url #374

NogaNHS · 2024-06-07T12:23:59Z

No description provided.

joefong-nhs · 2024-06-07T16:28:14Z

lambdas/services/create_document_reference_service.py

@@ -30,7 +30,8 @@

 class CreateDocumentReferenceService:
    def __init__(self):
-        self.s3_service = S3Service()
+        create_document_aws_role_arn = os.getenv("PRE_SIGN_ASSUME_ROLE")


probably better to add this new env var to the handler's decorator, so that in case this is missing we are notified

joefong-nhs · 2024-06-07T16:42:00Z

lambdas/services/base/s3_service.py

+            self.custom_client = None
+            if custom_aws_role:
+                iam_service = IAMService()
+                print(iam_service)


probably don't need this print anymore :)

joefong-nhs · 2024-06-07T16:55:11Z

lambdas/services/lloyd_george_stitch_service.py

+        create_document_aws_role_arn = os.getenv("PRE_SIGN_ASSUME_ROLE")
+        self.s3_service = S3Service(custom_aws_role=create_document_aws_role_arn)


Suggested change

create_document_aws_role_arn = os.getenv("PRE_SIGN_ASSUME_ROLE")

self.s3_service = S3Service(custom_aws_role=create_document_aws_role_arn)

presign_url_aws_role_arn = os.getenv("PRE_SIGN_ASSUME_ROLE")

self.s3_service = S3Service(custom_aws_role=presign_url_aws_role_arn)

suggest to rename as here the role isn't for creating document

lambdas/services/base/iam_service.py

abbas-khan10 · 2024-06-11T15:07:53Z

lambdas/services/base/s3_service.py

@@ -12,41 +13,49 @@
 class S3Service:
    _instance = None

-    def __new__(cls):
+    def __new__(cls, *args, **kwargs):


Any reason for the args/kwargs addition?

__new__ is run before __init__ and all the args are passed into both. So I need to be able to pass the custom role into __init__

When new() returns an instance of cls it automatically invokes the [init()] method of that instance with the arguments passed to it.(https://www.codecademy.com/resources/docs/python/dunder-methods/new)

abbas-khan10 · 2024-06-11T15:08:35Z

lambdas/services/base/s3_service.py

+                iam_service = IAMService()
+                self.custom_client = iam_service.assume_role(
+                    custom_aws_role, "s3", config=config
+                )

    # S3 Location should be a minimum of a s3_object_key but can also be a directory location in the form of


Wonder if we still need this comment? I know it's not part of your work but seems a bit unnecessary to me?

I think we do. It's not clear without it.

NogaNHS added 2 commits June 6, 2024 09:29

[PRMDR-914] - new IAM service

d55fc3d

[PRMDR-914] add unit tests

acc072f

NogaNHS temporarily deployed to development June 7, 2024 12:24 — with GitHub Actions Inactive

[PRMDR-914] add unit test

eb85046

NogaNHS temporarily deployed to development June 7, 2024 12:55 — with GitHub Actions Inactive

[PRMDR-914] expand unit test

57ac074

NogaNHS temporarily deployed to development June 7, 2024 13:19 — with GitHub Actions Inactive

NogaNHS temporarily deployed to development June 7, 2024 13:25 — with GitHub Actions Inactive

[PRMDR-914] add unit test for init

dc9ebb6

NogaNHS force-pushed the PRMDR-914 branch from 0898dea to dc9ebb6 Compare June 7, 2024 13:43

NogaNHS temporarily deployed to development June 7, 2024 13:43 — with GitHub Actions Inactive

[PRMDR-914] remove S£ service instance in tests

9c9aacd

NogaNHS temporarily deployed to development June 7, 2024 14:00 — with GitHub Actions Inactive

joefong-nhs reviewed Jun 7, 2024

View reviewed changes

abbas-khan10 reviewed Jun 10, 2024

View reviewed changes

lambdas/services/base/iam_service.py Show resolved Hide resolved

[PRMDR-914] addressing PR comments

78ecf1b

NogaNHS temporarily deployed to development June 11, 2024 11:24 — with GitHub Actions Inactive

[PRMDR-914] add a singleton to iam service

3d9ab82

NogaNHS temporarily deployed to development June 11, 2024 14:50 — with GitHub Actions Inactive

abbas-khan10 reviewed Jun 11, 2024

View reviewed changes

abbas-khan10 approved these changes Jun 11, 2024

View reviewed changes

[PRMDR-914] tests fix

3008824

NogaNHS temporarily deployed to development June 11, 2024 15:45 — with GitHub Actions Inactive

[PRMDR-914] merge main

eb9c3de

NogaNHS temporarily deployed to development June 12, 2024 09:55 — with GitHub Actions Inactive

NogaNHS merged commit 4cba113 into main Jun 12, 2024
7 checks passed

NogaNHS deleted the PRMDR-914 branch June 12, 2024 10:02

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

PRMDR-914 new IAM service for pre-sign url #374

PRMDR-914 new IAM service for pre-sign url #374

NogaNHS commented Jun 7, 2024

joefong-nhs Jun 7, 2024

joefong-nhs Jun 7, 2024

joefong-nhs Jun 7, 2024

abbas-khan10 Jun 11, 2024

NogaNHS Jun 11, 2024

NogaNHS Jun 11, 2024

abbas-khan10 Jun 11, 2024

NogaNHS Jun 11, 2024

		create_document_aws_role_arn = os.getenv("PRE_SIGN_ASSUME_ROLE")
		self.s3_service = S3Service(custom_aws_role=create_document_aws_role_arn)

PRMDR-914 new IAM service for pre-sign url #374

PRMDR-914 new IAM service for pre-sign url #374

Conversation

NogaNHS commented Jun 7, 2024

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment