npm - @wavo-cloud/aws-secrets-manager-helper - Versions diffs - 0.1.9 → 0.1.11 - Mend

@wavo-cloud/aws-secrets-manager-helper 0.1.9 → 0.1.11

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/app/utils/awsSecretsManager.js +91 -11
package/package.json +1 -1
package/test/aws.test.js +47 -22

package/app/utils/awsSecretsManager.js CHANGED Viewed

@@ -161,7 +161,7 @@ async function getAllClientSecrets(
  * @param {String} secretDescription - The description of the secret
  * @param {String} secretValue - The JSON string secret value
  */
-async function createSecret(secretName, secretDescription, secretValue) {
+async function createSecret(secretName, secretDescription, secretValue, tags) {
   let promiseError
   if (typeof secretValue !== 'string')
     throw new Error('Secret value must be a JSON string.')
@@ -175,6 +175,7 @@ async function createSecret(secretName, secretDescription, secretValue) {
       Name: secretName,
       Description: secretDescription,
       SecretString: secretValue,
+      Tags: tags,
     })
     .promise()
     .catch(error => {
@@ -208,6 +209,50 @@ async function editSecret(secretName, secretValue) {
   else return data
 }
+/**
+ * Removes a set of tags from a secret
+ * @param {String} secretName - The friendly name of the secret
+ * @param {Object} tagNames - An array of strings representing tags to remove
+ */
+async function removeTags(secretName, tagNames) {
+  let promiseError
+  const data = await client
+    .untagResource({
+      SecretId: secretName,
+      TagKeys: tagNames,
+    })
+    .promise()
+    .catch(error => {
+      promiseError = error
+    })
+  if (promiseError) handleAWSPromiseError(promiseError)
+  else return data
+}
+/**
+ * Appends a set of tags to a secret
+ * @param {String} secretName - The friendly name of the secret
+ * @param {Object} tags - An array of objects representing tags to add
+ * Object structure:
+ * { Key: 'key', Value: 'value' }
+ */
+async function appendTags(secretName, tags) {
+  let promiseError
+  const data = await client
+    .tagResource({
+      SecretId: secretName,
+      Tags: tags,
+    })
+    .promise()
+    .catch(error => {
+      promiseError = error
+    })
+  if (promiseError) handleAWSPromiseError(promiseError)
+  else return data
+}
 /**
  * Adds a client to the client list and does data validation
  * @param {String} clientId - The ID of the client
@@ -216,14 +261,16 @@ async function editSecret(secretName, secretValue) {
  * @param {String} region - The sub location of the organization's data in S3
  * @param {Object} keyValuePairs - The secret to store for the client
  */
-async function createClient(
+async function createClient({
   clientId,
   clientName,
   organization,
   region,
   keyValuePairs,
-  clientIdsSecretIdOverride = null
-) {
+  clientIdsSecretIdOverride = null,
+  isSelfServe = false,
+  isActiveOrganization = false,
+}) {
   if (!clientId || !clientName || !organization || !region)
     throw new Error('Client ID, name, organization, and region are required.')
   const regex = new RegExp('^[a-z0-9-_]*$')
@@ -247,7 +294,17 @@ async function createClient(
       organization,
       region,
       ...keyValuePairs,
-    })
+    }),
+    [
+      {
+        Key: 'self_serve',
+        Value: isSelfServe.toString(),
+      },
+      {
+        Key: 'is_active_organization',
+        Value: isActiveOrganization.toString(),
+      },
+    ]
   )
   // add to client list
   const editClientListResults = await editSecret(
@@ -269,14 +326,14 @@ async function createClient(
  * @param {String} region - The sub location of the organization's data in S3
  * @param {Object} keyValuePairs - The secret to store for the client
  */
-async function setClient(
+async function setClient({
   clientId,
   clientName,
   organization,
   region,
   keyValuePairs,
-  clientIdsSecretIdOverride = null
-) {
+  clientIdsSecretIdOverride = null,
+}) {
   if (!clientId || !clientName || !organization || !region)
     throw new Error('Client ID, name, organization, and region are required.')
   const regex = new RegExp('^[a-z0-9-_]*$')
@@ -315,12 +372,12 @@ async function setClient(
  * @param {Object} keyValuePairsToAdd
  * @param {Array} keysToDelete
  */
-async function editClient(
+async function editClient({
   clientId,
   keyValuePairsToAdd,
   keysToDelete,
-  clientIdsSecretIdOverride
-) {
+  clientIdsSecretIdOverride,
+}) {
   if (!clientId) throw new Error('Client ID is required.')
   if (
     keysToDelete.some(key =>
@@ -357,6 +414,28 @@ async function editClient(
   return { editClientResults }
 }
+async function setClientActiveStatus({
+  clientId,
+  newActiveStatus,
+  clientIdsSecretIdOverride,
+}) {
+  if (!clientId) throw new Error('Client ID is required.')
+  if (newActiveStatus === null || newActiveStatus === undefined)
+    throw new Error('New active status is required.')
+  if (typeof newActiveStatus !== 'boolean')
+    throw new Error('New active status must be a boolean')
+  // get client secret location
+  const currentClientList = await getClientSecretIds(clientIdsSecretIdOverride)
+  const clientSecretId = currentClientList[clientId]
+  await removeTags(clientSecretId, ['is_active_organization'])
+  await appendTags(clientSecretId, [
+    {
+      Key: 'is_active_organization',
+      Value: newActiveStatus.toString(),
+    },
+  ])
+}
 module.exports = {
   getClientSecretIds,
   getClientSecret,
@@ -366,4 +445,5 @@ module.exports = {
   createClient,
   setClient,
   editClient,
+  setClientActiveStatus,
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@wavo-cloud/aws-secrets-manager-helper",
-  "version": "0.1.9",
+  "version": "0.1.11",
   "description": "Wavo Cloud Infallible AWS Secrets Manager Helper",
   "license": "UNLICENSED",
   "repository": {

package/test/aws.test.js CHANGED Viewed

@@ -3,9 +3,11 @@ const {
   getAllClientSecrets,
   getClientSecretIds,
   getSecretValue,
+  getSecretTags,
   createClient,
   setClient,
   editClient,
+  setClientActiveStatus,
 } = require('../app/utils/awsSecretsManager')
 const { deleteClient } = require('../app/utils/awsSecretsManagerDeleteHelper')
 const expect = require('chai').expect
@@ -25,33 +27,56 @@ describe('Test Secrets Manager Helper', async () => {
   })
   it('should create a new client', async () => {
-    const createClientResult = await createClient(
-      'test_client_id',
-      'test_client_name',
-      'test_organization',
-      'test_region',
-      { test_secret_key: 'test_secret_value' },
-      clientIdsSecretId
-    )
+    const createClientResult = await createClient({
+      clientId: 'test_client_id',
+      clientName: 'test_client_name',
+      organization: 'test_organization',
+      region: 'test_region',
+      keyValuePairs: { test_secret_key: 'test_secret_value' },
+      clientIdsSecretIdOverride: clientIdsSecretId,
+      isSelfServe: true,
+      isActiveOrganization: true,
+    })
     expect(createClientResult.createSecretResults.Name).to.equal(
       'test_organization/ad_platforms/api'
     )
+    const newClientTags = await getSecretTags('test_organization/ad_platforms/api')
+    const isActiveOrganizationTag = newClientTags.find(
+      tag => tag.Key === 'is_active_organization'
+    )
+    expect(isActiveOrganizationTag.Value === 'true')
     const clientList = await getClientSecretIds(clientIdsSecretId)
     expect(clientList['test_client_id']).to.equal(
       'test_organization/ad_platforms/api'
     )
   })
-  it('should set a client', async () => {
-    await setClient(
-      'test_client_id',
-      'test_client_name_2',
-      'test_organization',
-      'test_region_new',
-      { test_secret_key_new: 'test_secret_value_new', to_delete: 'to_delete' },
-      clientIdsSecretId
+  it('should change the clients active status to false', async () => {
+    await setClientActiveStatus({
+      clientId: 'test_client_id',
+      newActiveStatus: false,
+      clientIdsSecretIdOverride: clientIdsSecretId,
+    })
+    const clientTags = await getSecretTags('test_organization/ad_platforms/api')
+    const isActiveOrganizationTag = clientTags.find(
+      tag => tag.Key === 'is_active_organization'
     )
+    expect(isActiveOrganizationTag.Value === 'falsey')
+  })
+  it('should set a client', async () => {
+    await setClient({
+      clientId: 'test_client_id',
+      clientName: 'test_client_name_2',
+      organization: 'test_organization',
+      region: 'test_region_new',
+      keyValuePairs: { test_secret_key_new: 'test_secret_value_new', to_delete: 'to_delete' },
+      clientIdsSecretIdOverride: clientIdsSecretId
+    })
     const testSecret = await getSecretValue(
       'test_organization/ad_platforms/api'
@@ -65,16 +90,16 @@ describe('Test Secrets Manager Helper', async () => {
   })
   it('should edit, add, and delete a client key/value secret', async () => {
-    await editClient(
-      'test_client_id',
-      {
+    await editClient({
+      clientId: 'test_client_id',
+      keyValuePairsToAdd: {
         test_secret_key_new: 'edit',
         new_key: 'add',
         organization: 'test_organization_new'
       },
-      ['to_delete'],
-      clientIdsSecretId
-    )
+      keysToDelete: ['to_delete'],
+      clientIdsSecretIdOverride: clientIdsSecretId
+    })
     const testSecret = await getSecretValue(
       'test_organization/ad_platforms/api'