PyPI - aws-annoying - Versions diffs - 0.3.0__py3-none-any.whl → 0.4.0__py3-none-any.whl - Mend

aws-annoying 0.3.0py3-none-any.whl → 0.4.0py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (26) hide show

aws_annoying/cli/__init__.py ADDED Viewed

File without changes

aws_annoying/cli/load_variables.py ADDED Viewed

@@ -0,0 +1,139 @@
+# flake8: noqa: B008
+from __future__ import annotations
+import os
+import subprocess
+from typing import NoReturn, Optional
+import typer
+from rich.console import Console
+from rich.table import Table
+from aws_annoying.variables import VariableLoader
+from .app import app
+@app.command(
+    context_settings={
+        # Allow extra arguments for user provided command
+        "allow_extra_args": True,
+        "ignore_unknown_options": True,
+    },
+)
+def load_variables(  # noqa: PLR0913
+    *,
+    ctx: typer.Context,
+    arns: list[str] = typer.Option(
+        [],
+        metavar="ARN",
+        help=(
+            "ARNs of the secret or parameter to load."
+            " The variables are loaded in the order of the ARNs,"
+            " overwriting the variables with the same name in the order of the ARNs."
+        ),
+    ),
+    env_prefix: Optional[str] = typer.Option(
+        None,
+        help="Prefix of the environment variables to load the ARNs from.",
+        show_default=False,
+    ),
+    overwrite_env: bool = typer.Option(
+        False,  # noqa: FBT003
+        help="Overwrite the existing environment variables with the same name.",
+    ),
+    quiet: bool = typer.Option(
+        False,  # noqa: FBT003
+        help="Suppress all outputs from this command.",
+    ),
+    dry_run: bool = typer.Option(
+        False,  # noqa: FBT003
+        help="Print the progress only. Neither load variables nor run the command.",
+    ),
+    replace: bool = typer.Option(
+        True,  # noqa: FBT003
+        help=(
+            "Replace the current process (`os.execvpe`) with the command."
+            " If disabled, run the command as a `subprocess`."
+        ),
+    ),
+) -> NoReturn:
+    """Wrapper command to run command with variables from AWS resources injected as environment variables.
+    This script is intended to be used in the ECS environment, where currently AWS does not support
+    injecting whole JSON dictionary of secrets or parameters as environment variables directly.
+    It first loads the variables from the AWS sources then runs the command with the variables injected as environment variables.
+    In addition to `--arns` option, you can provide ARNs as the environment variables by providing `--env-prefix`.
+    For example, if you have the following environment variables:
+    ```shell
+    export LOAD_AWS_CONFIG__001_app_config=arn:aws:secretsmanager:...
+    export LOAD_AWS_CONFIG__002_db_config=arn:aws:ssm:...
+    ```
+    You can run the following command:
+    ```shell
+    aws-annoying load-variables --env-prefix LOAD_AWS_CONFIG__ -- ...
+    ```
+    The variables are loaded in the order of option provided, overwriting the variables with the same name in the order of the ARNs.
+    Existing environment variables are preserved by default, unless `--overwrite-env` is provided.
+    """  # noqa: E501
+    console = Console(quiet=quiet, emoji=False)
+    command = ctx.args
+    if not command:
+        console.print("⚠️ No command provided. Exiting...")
+        raise typer.Exit(0)
+    # Mapping of the ARNs by index (index used for ordering)
+    map_arns_by_index = {str(idx): arn for idx, arn in enumerate(arns)}
+    if env_prefix:
+        console.print(f"🔍 Loading ARNs from environment variables with prefix: {env_prefix!r}")
+        arns_env = {
+            key.removeprefix(env_prefix): value for key, value in os.environ.items() if key.startswith(env_prefix)
+        }
+        console.print(f"🔍 Found {len(arns_env)} sources from environment variables.")
+        map_arns_by_index = arns_env | map_arns_by_index
+    # Briefly show the ARNs
+    table = Table("Index", "ARN")
+    for idx, arn in sorted(map_arns_by_index.items()):
+        table.add_row(idx, arn)
+    console.print(table)
+    # Retrieve the variables
+    loader = VariableLoader(dry_run=dry_run)
+    console.print("🔍 Retrieving variables from AWS resources...")
+    if dry_run:
+        console.print("⚠️ Dry run mode enabled. Variables won't be loaded from AWS.")
+    try:
+        variables, load_stats = loader.load(map_arns_by_index)
+    except Exception as exc:  # noqa: BLE001
+        console.print(f"❌ Failed to load the variables: {exc!s}")
+        raise typer.Exit(1) from None
+    console.print(f"✅ Retrieved {load_stats['secrets']} secrets and {load_stats['parameters']} parameters.")
+    # Prepare the environment variables
+    env = os.environ.copy()
+    if overwrite_env:
+        env.update(variables)
+    else:
+        # Update variables, preserving the existing ones
+        for key, value in variables.items():
+            env.setdefault(key, str(value))
+    # Run the command with the variables injected as environment variables, replacing current process
+    console.print(f"🚀 Running the command: [bold orchid]{' '.join(command)}[/bold orchid]")
+    if replace:  # pragma: no cover (not coverable)
+        os.execvpe(command[0], command, env=env)  # noqa: S606
+        # The above line should never return
+    result = subprocess.run(command, env=env, check=False)  # noqa: S603
+    raise typer.Exit(result.returncode)

aws_annoying/{main.py → cli/main.py} RENAMED Viewed

@@ -1,10 +1,10 @@
 # flake8: noqa: F401
 from __future__ import annotations
-import aws_annoying.ecs_task_definition_lifecycle
-import aws_annoying.load_variables
-import aws_annoying.mfa
-import aws_annoying.session_manager
+import aws_annoying.cli.ecs_task_definition_lifecycle
+import aws_annoying.cli.load_variables
+import aws_annoying.cli.mfa
+import aws_annoying.cli.session_manager
 from aws_annoying.utils.debugger import input_as_args
 # App with all commands registered

aws_annoying/{mfa → cli/mfa}/_app.py RENAMED Viewed

@@ -1,6 +1,6 @@
 import typer
-from aws_annoying.app import app
+from aws_annoying.cli.app import app
 mfa_app = typer.Typer(
     no_args_is_help=True,

aws_annoying/{mfa → cli/mfa}/configure.py RENAMED Viewed

@@ -1,15 +1,15 @@
 from __future__ import annotations
-import configparser
 from pathlib import Path  # noqa: TC003
 from typing import Optional
 import boto3
 import typer
-from pydantic import BaseModel, ConfigDict
 from rich import print  # noqa: A004
 from rich.prompt import Prompt
+from aws_annoying.mfa import MfaConfig, update_credentials
 from ._app import mfa_app
 _CONFIG_INI_SECTION = "aws-annoying:mfa"
@@ -55,7 +55,7 @@ def configure(  # noqa: PLR0913
     aws_config = aws_config.expanduser()
     # Load configuration
-    mfa_config, exists = _MfaConfig.from_ini_file(aws_config, _CONFIG_INI_SECTION)
+    mfa_config, exists = MfaConfig.from_ini_file(aws_config, _CONFIG_INI_SECTION)
     if exists:
         print(f"⚙️ Loaded MFA configuration from AWS config ({aws_config}).")
@@ -94,7 +94,7 @@ def configure(  # noqa: PLR0913
     # Update MFA profile in AWS credentials
     print(f"✅ Updating MFA profile ([bold]{mfa_profile}[/bold]) to AWS credentials ({aws_credentials})")
-    _update_credentials(
+    update_credentials(
         aws_credentials,
         mfa_profile,  # type: ignore[arg-type]
         access_key=credentials["AccessKeyId"],
@@ -114,44 +114,3 @@ def configure(  # noqa: PLR0913
         mfa_config.save_ini_file(aws_config, _CONFIG_INI_SECTION)
     else:
         print("⚠️ MFA configuration not persisted.")
-class _MfaConfig(BaseModel):
-    model_config = ConfigDict(extra="ignore")
-    mfa_profile: Optional[str] = None
-    mfa_source_profile: Optional[str] = None
-    mfa_serial_number: Optional[str] = None
-    def save_ini_file(self, path: Path, section_key: str) -> None:
-        """Save configuration to an AWS config file."""
-        config_ini = configparser.ConfigParser()
-        config_ini.read(path)
-        config_ini.setdefault(section_key, {})
-        for k, v in self.model_dump(exclude_none=True).items():
-            config_ini[section_key][k] = v
-        with path.open("w") as f:
-            config_ini.write(f)
-    @classmethod
-    def from_ini_file(cls, path: Path, section_key: str) -> tuple[_MfaConfig, bool]:
-        """Load configuration from an AWS config file, with boolean indicating if the config already exists."""
-        config_ini = configparser.ConfigParser()
-        config_ini.read(path)
-        if config_ini.has_section(section_key):
-            section = dict(config_ini.items(section_key))
-            return cls.model_validate(section), True
-        return cls(), False
-def _update_credentials(path: Path, profile: str, *, access_key: str, secret_key: str, session_token: str) -> None:
-    credentials_ini = configparser.ConfigParser()
-    credentials_ini.read(path)
-    credentials_ini.setdefault(profile, {})
-    credentials_ini[profile]["aws_access_key_id"] = access_key
-    credentials_ini[profile]["aws_secret_access_key"] = secret_key
-    credentials_ini[profile]["aws_session_token"] = session_token
-    with path.open("w") as f:
-        credentials_ini.write(f)

aws_annoying/cli/session_manager/__init__.py ADDED Viewed

@@ -0,0 +1,3 @@
+from . import install, port_forward, start, stop
+__all__ = ("install", "port_forward", "start", "stop")

aws_annoying/{session_manager → cli/session_manager}/_app.py RENAMED Viewed

@@ -1,6 +1,6 @@
 import typer
-from aws_annoying.app import app
+from aws_annoying.cli.app import app
 session_manager_app = typer.Typer(
     no_args_is_help=True,

aws_annoying/{session_manager → cli/session_manager}/_common.py RENAMED Viewed

@@ -6,7 +6,7 @@ from typing import Any
 import typer
 from rich.prompt import Confirm
-from .session_manager import SessionManager as _SessionManager
+from aws_annoying.session_manager import SessionManager as _SessionManager
 # Custom session manager with console interactivity

aws_annoying/mfa.py ADDED Viewed

@@ -0,0 +1,54 @@
+from __future__ import annotations
+import configparser
+from pathlib import Path  # noqa: TC003
+from typing import Optional
+from pydantic import BaseModel, ConfigDict
+# TODO(lasuillard): Need some refactoring (configurator class)
+# TODO(lasuillard): Put some logging
+class MfaConfig(BaseModel):
+    """MFA configuration for AWS profiles."""
+    model_config = ConfigDict(extra="ignore")
+    mfa_profile: Optional[str] = None
+    mfa_source_profile: Optional[str] = None
+    mfa_serial_number: Optional[str] = None
+    def save_ini_file(self, path: Path, section_key: str) -> None:
+        """Save configuration to an AWS config file."""
+        config_ini = configparser.ConfigParser()
+        config_ini.read(path)
+        config_ini.setdefault(section_key, {})
+        for k, v in self.model_dump(exclude_none=True).items():
+            config_ini[section_key][k] = v
+        with path.open("w") as f:
+            config_ini.write(f)
+    @classmethod
+    def from_ini_file(cls, path: Path, section_key: str) -> tuple[MfaConfig, bool]:
+        """Load configuration from an AWS config file, with boolean indicating if the config already exists."""
+        config_ini = configparser.ConfigParser()
+        config_ini.read(path)
+        if config_ini.has_section(section_key):
+            section = dict(config_ini.items(section_key))
+            return cls.model_validate(section), True
+        return cls(), False
+def update_credentials(path: Path, profile: str, *, access_key: str, secret_key: str, session_token: str) -> None:
+    """Update AWS credentials file with the provided profile and credentials."""
+    credentials_ini = configparser.ConfigParser()
+    credentials_ini.read(path)
+    credentials_ini.setdefault(profile, {})
+    credentials_ini[profile]["aws_access_key_id"] = access_key
+    credentials_ini[profile]["aws_secret_access_key"] = secret_key
+    credentials_ini[profile]["aws_session_token"] = session_token
+    with path.open("w") as f:
+        credentials_ini.write(f)

aws_annoying/session_manager/__init__.py CHANGED Viewed

@@ -1,3 +1,4 @@
-from . import install, port_forward, start, stop
+from .errors import PluginNotInstalledError, SessionManagerError, UnsupportedPlatformError
+from .session_manager import SessionManager
-__all__ = ("install", "port_forward", "start", "stop")
+__all__ = ("PluginNotInstalledError", "SessionManager", "SessionManagerError", "UnsupportedPlatformError")

aws_annoying/variables.py ADDED Viewed

@@ -0,0 +1,133 @@
+# flake8: noqa: B008
+from __future__ import annotations
+import json
+from typing import Any, TypedDict
+import boto3
+# Type aliases for readability
+_ARN = str
+_Variables = dict[str, Any]
+# TODO(lasuillard): Need some refactoring (with #2, #3)
+# TODO(lasuillard): Put some logging
+class _LoadStatsDict(TypedDict):
+    secrets: int
+    parameters: int
+class VariableLoader:  # noqa: D101
+    def __init__(self, *, dry_run: bool) -> None:
+        """Initialize the VariableLoader.
+        Args:
+            dry_run: Whether to run in dry-run mode.
+            console: Rich console instance.
+        """
+        self.dry_run = dry_run
+    # TODO(lasuillard): Currently not using pagination (do we need more than 10-20 secrets or parameters each?)
+    #                   ; consider adding it if needed
+    def load(self, map_arns: dict[str, _ARN]) -> tuple[dict[str, Any], _LoadStatsDict]:
+        """Load the variables from the AWS Secrets Manager and SSM Parameter Store.
+        Each secret or parameter should be a valid dictionary, where the keys are the variable names
+        and the values are the variable values.
+        The items are merged in the order of the key of provided mapping, overwriting the variables with the same name
+        in the order of the keys.
+        """
+        # Split the ARNs by resource types
+        secrets_map, parameters_map = {}, {}
+        for idx, arn in map_arns.items():
+            if arn.startswith("arn:aws:secretsmanager:"):
+                secrets_map[idx] = arn
+            elif arn.startswith("arn:aws:ssm:"):
+                parameters_map[idx] = arn
+            else:
+                msg = f"Unsupported resource: {arn!r}"
+                raise ValueError(msg)
+        # Retrieve variables from AWS resources
+        secrets: dict[str, _Variables]
+        parameters: dict[str, _Variables]
+        if self.dry_run:
+            secrets = {idx: {} for idx, _ in secrets_map.items()}
+            parameters = {idx: {} for idx, _ in parameters_map.items()}
+        else:
+            secrets = self._retrieve_secrets(secrets_map)
+            parameters = self._retrieve_parameters(parameters_map)
+        load_stats: _LoadStatsDict = {
+            "secrets": len(secrets),
+            "parameters": len(parameters),
+        }
+        # Merge the variables in order
+        full_variables = secrets | parameters  # Keys MUST NOT conflict
+        merged_in_order = {}
+        for _, variables in sorted(full_variables.items()):
+            merged_in_order.update(variables)
+        return merged_in_order, load_stats
+    def _retrieve_secrets(self, secrets_map: dict[str, _ARN]) -> dict[str, _Variables]:
+        """Retrieve the secrets from AWS Secrets Manager."""
+        if not secrets_map:
+            return {}
+        secretsmanager = boto3.client("secretsmanager")
+        # Retrieve the secrets
+        arns = list(secrets_map.values())
+        response = secretsmanager.batch_get_secret_value(SecretIdList=arns)
+        if errors := response["Errors"]:
+            msg = f"Failed to retrieve secrets: {errors!r}"
+            raise ValueError(msg)
+        # Parse the secrets
+        secrets = response["SecretValues"]
+        result = {}
+        for secret in secrets:
+            arn = secret["ARN"]
+            order_key = next(key for key, value in secrets_map.items() if value == arn)
+            data = json.loads(secret["SecretString"])
+            if not isinstance(data, dict):
+                msg = f"Secret data must be a valid dictionary, but got: {type(data)!r}"
+                raise TypeError(msg)
+            result[order_key] = data
+        return result
+    def _retrieve_parameters(self, parameters_map: dict[str, _ARN]) -> dict[str, _Variables]:
+        """Retrieve the parameters from AWS SSM Parameter Store."""
+        if not parameters_map:
+            return {}
+        ssm = boto3.client("ssm")
+        # Retrieve the parameters
+        parameter_names = list(parameters_map.values())
+        response = ssm.get_parameters(Names=parameter_names, WithDecryption=True)
+        if errors := response["InvalidParameters"]:
+            msg = f"Failed to retrieve parameters: {errors!r}"
+            raise ValueError(msg)
+        # Parse the parameters
+        parameters = response["Parameters"]
+        result = {}
+        for parameter in parameters:
+            arn = parameter["ARN"]
+            order_key = next(key for key, value in parameters_map.items() if value == arn)
+            data = json.loads(parameter["Value"])
+            if not isinstance(data, dict):
+                msg = f"Parameter data must be a valid dictionary, but got: {type(data)!r}"
+                raise TypeError(msg)
+            result[order_key] = data
+        return result

{aws_annoying-0.3.0.dist-info → aws_annoying-0.4.0.dist-info}/METADATA RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: aws-annoying
-Version: 0.3.0
+Version: 0.4.0
 Summary: Utils to handle some annoying AWS tasks.
 Project-URL: Homepage, https://github.com/lasuillard/aws-annoying
 Project-URL: Repository, https://github.com/lasuillard/aws-annoying.git
@@ -9,11 +9,11 @@ Author-email: Yuchan Lee <lasuillard@gmail.com>
 License-Expression: MIT
 License-File: LICENSE
 Requires-Python: <4.0,>=3.9
-Requires-Dist: boto3>=1.37.1
-Requires-Dist: pydantic>=2.10.6
-Requires-Dist: requests>=2.32.3
-Requires-Dist: tqdm>=4.67.1
-Requires-Dist: typer>=0.15.1
+Requires-Dist: boto3<2,>=1
+Requires-Dist: pydantic<3,>=2
+Requires-Dist: requests<3,>=2
+Requires-Dist: tqdm<5,>=4
+Requires-Dist: typer<1,>=0
 Provides-Extra: dev
 Requires-Dist: boto3-stubs[ec2,ecs,secretsmanager,ssm,sts]>=1.37.1; extra == 'dev'
 Requires-Dist: mypy~=1.15.0; extra == 'dev'

aws_annoying-0.4.0.dist-info/RECORD ADDED Viewed

@@ -0,0 +1,30 @@
+aws_annoying/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+aws_annoying/mfa.py,sha256=m6-V1bWeUWsAmRddl-lv13mPCMnftoPzJoNnZ0kiaWQ,2007
+aws_annoying/variables.py,sha256=a9cMS9JU-XA2h1tztO7ofixoDEpqtS_eVEiWrQ75mTo,4761
+aws_annoying/cli/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+aws_annoying/cli/app.py,sha256=sp50uVoAl4D6Wk3DFpzKZzSsxmSxNYejFxm62b_Kxps,201
+aws_annoying/cli/ecs_task_definition_lifecycle.py,sha256=O36Bf5LBnVJNyYmdlUxhtsIHNoxky1t5YacAXiL9UEI,2803
+aws_annoying/cli/load_variables.py,sha256=eWNByUEc1ijF8uCe_egdAnjWxfMNCZeVr0vtTtQLe3Y,5086
+aws_annoying/cli/main.py,sha256=TSzPeMkgIgKFf3bom_vDkFYK0bHF1r5K9ADreZUV3k4,503
+aws_annoying/cli/mfa/__init__.py,sha256=rbEGhw5lOQZV_XAc3nSbo56JVhsSPpeOgEtiAy9qzEA,50
+aws_annoying/cli/mfa/_app.py,sha256=Ub7gxb6kGF3Ve1ucQSOjHmc4jAu8mxgegcXsIbOzLLQ,189
+aws_annoying/cli/mfa/configure.py,sha256=vsoHfTVFF2dPgiYsp2L-EkMwtAA0_-tVwFd6Wv6DscU,3746
+aws_annoying/cli/session_manager/__init__.py,sha256=FkT6jT6OXduOURN61d-U6hgd-XluQbvuVtKXXiXgSEk,105
+aws_annoying/cli/session_manager/_app.py,sha256=OVOHW0iyKzunvaqLhjoseHw1-WxJ1gGb7QmiyAEezyY,221
+aws_annoying/cli/session_manager/_common.py,sha256=0fCm6Zx6P1NcyyiHlSoB9PgIdrxzUXLVPqKJWQnJ8I4,792
+aws_annoying/cli/session_manager/install.py,sha256=zX2cu-IBYlf9yl8z9P0CTQz72BP6aAMo-KnolC_PGsU,1443
+aws_annoying/cli/session_manager/port_forward.py,sha256=uMcsafTNAHZh-0E1yWXCliMivWyuWV2K9DdVhBZ9pG8,4327
+aws_annoying/cli/session_manager/start.py,sha256=1yaMuy-7IWrrDoPHjgygOP_-g_tajfnpaVPZanxsZxs,215
+aws_annoying/cli/session_manager/stop.py,sha256=ttU6nlbVgBkZDtY-DwUyCstv5TFtat5TljkyuY8QICU,1482
+aws_annoying/session_manager/__init__.py,sha256=swbRdFh9CdO6tzyBjSxN0KC7MMASvptIpbsijUPIZgI,243
+aws_annoying/session_manager/errors.py,sha256=YioKlRtZ-GUP0F_ts_ebw7-HYkxe8mTes6HK821Kuiw,353
+aws_annoying/session_manager/session_manager.py,sha256=7tqfFPA4bWF0Me_VbUDcq5Cpl1sw3bevGyT8QWfLTOk,12454
+aws_annoying/utils/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
+aws_annoying/utils/debugger.py,sha256=UFllDCGI2gPtwo1XS5vqw0qyR6bYr7XknmBwSxalKIc,754
+aws_annoying/utils/downloader.py,sha256=aB5RzT-LpbFX24-2HXlAkdgVowc4TR9FWT_K8WwZ1BE,1923
+aws_annoying/utils/platform.py,sha256=h3DUWmTMM-_4TfTWNqY0uNqyVsBjAuMm2DEbG-daxe8,742
+aws_annoying-0.4.0.dist-info/METADATA,sha256=9u5wofuLZXXPrAj1YcOhbqPlPH46jtub8AUvs2KNZ9s,1916
+aws_annoying-0.4.0.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+aws_annoying-0.4.0.dist-info/entry_points.txt,sha256=DcKE5V0WvVJ8wUOHxyUz1yLAJOuuJUgRPlMcQ4O7jEs,66
+aws_annoying-0.4.0.dist-info/licenses/LICENSE,sha256=Q5GkvYijQ2KTQ-QWhv43ilzCno4ZrzrEuATEQZd9rYo,1067
+aws_annoying-0.4.0.dist-info/RECORD,,

aws_annoying-0.4.0.dist-info/entry_points.txt ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ [console_scripts]
2	+ aws-annoying = aws_annoying.cli.main:entrypoint

aws_annoying/load_variables.py DELETED Viewed

@@ -1,254 +0,0 @@
-# flake8: noqa: B008
-from __future__ import annotations
-import json
-import os
-import subprocess
-from typing import Any, NoReturn, Optional
-import boto3
-import typer
-from rich.console import Console
-from rich.table import Table
-from .app import app
-@app.command(
-    context_settings={
-        # Allow extra arguments for user provided command
-        "allow_extra_args": True,
-        "ignore_unknown_options": True,
-    },
-)
-def load_variables(  # noqa: PLR0913
-    *,
-    ctx: typer.Context,
-    arns: list[str] = typer.Option(
-        [],
-        metavar="ARN",
-        help=(
-            "ARNs of the secret or parameter to load."
-            " The variables are loaded in the order of the ARNs,"
-            " overwriting the variables with the same name in the order of the ARNs."
-        ),
-    ),
-    env_prefix: Optional[str] = typer.Option(
-        None,
-        help="Prefix of the environment variables to load the ARNs from.",
-        show_default=False,
-    ),
-    overwrite_env: bool = typer.Option(
-        False,  # noqa: FBT003
-        help="Overwrite the existing environment variables with the same name.",
-    ),
-    quiet: bool = typer.Option(
-        False,  # noqa: FBT003
-        help="Suppress all outputs from this command.",
-    ),
-    dry_run: bool = typer.Option(
-        False,  # noqa: FBT003
-        help="Print the progress only. Neither load variables nor run the command.",
-    ),
-    replace: bool = typer.Option(
-        True,  # noqa: FBT003
-        help=(
-            "Replace the current process (`os.execvpe`) with the command."
-            " If disabled, run the command as a `subprocess`."
-        ),
-    ),
-) -> NoReturn:
-    """Wrapper command to run command with variables from AWS resources injected as environment variables.
-    This script is intended to be used in the ECS environment, where currently AWS does not support
-    injecting whole JSON dictionary of secrets or parameters as environment variables directly.
-    It first loads the variables from the AWS sources then runs the command with the variables injected as environment variables.
-    In addition to `--arns` option, you can provide ARNs as the environment variables by providing `--env-prefix`.
-    For example, if you have the following environment variables:
-    ```shell
-    export LOAD_AWS_CONFIG__001_app_config=arn:aws:secretsmanager:...
-    export LOAD_AWS_CONFIG__002_db_config=arn:aws:ssm:...
-    ```
-    You can run the following command:
-    ```shell
-    aws-annoying load-variables --env-prefix LOAD_AWS_CONFIG__ -- ...
-    ```
-    The variables are loaded in the order of option provided, overwriting the variables with the same name in the order of the ARNs.
-    Existing environment variables are preserved by default, unless `--overwrite-env` is provided.
-    """  # noqa: E501
-    console = Console(quiet=quiet, emoji=False)
-    command = ctx.args
-    if not command:
-        console.print("⚠️ No command provided. Exiting...")
-        raise typer.Exit(0)
-    # Mapping of the ARNs by index (index used for ordering)
-    map_arns_by_index = {str(idx): arn for idx, arn in enumerate(arns)}
-    if env_prefix:
-        console.print(f"🔍 Loading ARNs from environment variables with prefix: {env_prefix!r}")
-        arns_env = {
-            key.removeprefix(env_prefix): value for key, value in os.environ.items() if key.startswith(env_prefix)
-        }
-        console.print(f"🔍 Found {len(arns_env)} sources from environment variables.")
-        map_arns_by_index = arns_env | map_arns_by_index
-    # Briefly show the ARNs
-    table = Table("Index", "ARN")
-    for idx, arn in sorted(map_arns_by_index.items()):
-        table.add_row(idx, arn)
-    console.print(table)
-    # Retrieve the variables
-    loader = VariableLoader(dry_run=dry_run, console=console)
-    try:
-        variables = loader.load(map_arns_by_index)
-    except Exception as exc:  # noqa: BLE001
-        console.print(f"❌ Failed to load the variables: {exc!s}")
-        raise typer.Exit(1) from None
-    # Prepare the environment variables
-    env = os.environ.copy()
-    if overwrite_env:
-        env.update(variables)
-    else:
-        # Update variables, preserving the existing ones
-        for key, value in variables.items():
-            env.setdefault(key, str(value))
-    # Run the command with the variables injected as environment variables, replacing current process
-    console.print(f"🚀 Running the command: [bold orchid]{' '.join(command)}[/bold orchid]")
-    if replace:  # pragma: no cover (not coverable)
-        os.execvpe(command[0], command, env=env)  # noqa: S606
-        # The above line should never return
-    result = subprocess.run(command, env=env, check=False)  # noqa: S603
-    raise typer.Exit(result.returncode)
-# Type aliases for readability
-_ARN = str
-_Variables = dict[str, Any]
-class VariableLoader:  # noqa: D101
-    def __init__(self, *, console: Console | None = None, dry_run: bool) -> None:
-        """Initialize the VariableLoader.
-        Args:
-            dry_run: Whether to run in dry-run mode.
-            console: Rich console instance.
-        """
-        self.console = console or Console(quiet=True)
-        self.dry_run = dry_run
-    # TODO(lasuillard): Currently not using pagination (do we need more than 10-20 secrets or parameters each?)
-    #                   ; consider adding it if needed
-    def load(self, map_arns: dict[str, _ARN]) -> dict[str, Any]:
-        """Load the variables from the AWS Secrets Manager and SSM Parameter Store.
-        Each secret or parameter should be a valid dictionary, where the keys are the variable names
-        and the values are the variable values.
-        The items are merged in the order of the key of provided mapping, overwriting the variables with the same name
-        in the order of the keys.
-        """
-        self.console.print("🔍 Retrieving variables from AWS resources...")
-        if self.dry_run:
-            self.console.print("⚠️ Dry run mode enabled. Variables won't be loaded from AWS.")
-        # Split the ARNs by resource types
-        secrets_map, parameters_map = {}, {}
-        for idx, arn in map_arns.items():
-            if arn.startswith("arn:aws:secretsmanager:"):
-                secrets_map[idx] = arn
-            elif arn.startswith("arn:aws:ssm:"):
-                parameters_map[idx] = arn
-            else:
-                msg = f"Unsupported resource: {arn!r}"
-                raise ValueError(msg)
-        # Retrieve variables from AWS resources
-        secrets: dict[str, _Variables]
-        parameters: dict[str, _Variables]
-        if self.dry_run:
-            secrets = {idx: {} for idx, _ in secrets_map.items()}
-            parameters = {idx: {} for idx, _ in parameters_map.items()}
-        else:
-            secrets = self._retrieve_secrets(secrets_map)
-            parameters = self._retrieve_parameters(parameters_map)
-        self.console.print(f"✅ Retrieved {len(secrets)} secrets and {len(parameters)} parameters.")
-        # Merge the variables in order
-        full_variables = secrets | parameters  # Keys MUST NOT conflict
-        merged_in_order = {}
-        for _, variables in sorted(full_variables.items()):
-            merged_in_order.update(variables)
-        return merged_in_order
-    def _retrieve_secrets(self, secrets_map: dict[str, _ARN]) -> dict[str, _Variables]:
-        """Retrieve the secrets from AWS Secrets Manager."""
-        if not secrets_map:
-            return {}
-        secretsmanager = boto3.client("secretsmanager")
-        # Retrieve the secrets
-        arns = list(secrets_map.values())
-        response = secretsmanager.batch_get_secret_value(SecretIdList=arns)
-        if errors := response["Errors"]:
-            msg = f"Failed to retrieve secrets: {errors!r}"
-            raise ValueError(msg)
-        # Parse the secrets
-        secrets = response["SecretValues"]
-        result = {}
-        for secret in secrets:
-            arn = secret["ARN"]
-            order_key = next(key for key, value in secrets_map.items() if value == arn)
-            data = json.loads(secret["SecretString"])
-            if not isinstance(data, dict):
-                msg = f"Secret data must be a valid dictionary, but got: {type(data)!r}"
-                raise TypeError(msg)
-            result[order_key] = data
-        return result
-    def _retrieve_parameters(self, parameters_map: dict[str, _ARN]) -> dict[str, _Variables]:
-        """Retrieve the parameters from AWS SSM Parameter Store."""
-        if not parameters_map:
-            return {}
-        ssm = boto3.client("ssm")
-        # Retrieve the parameters
-        parameter_names = list(parameters_map.values())
-        response = ssm.get_parameters(Names=parameter_names, WithDecryption=True)
-        if errors := response["InvalidParameters"]:
-            msg = f"Failed to retrieve parameters: {errors!r}"
-            raise ValueError(msg)
-        # Parse the parameters
-        parameters = response["Parameters"]
-        result = {}
-        for parameter in parameters:
-            arn = parameter["ARN"]
-            order_key = next(key for key, value in parameters_map.items() if value == arn)
-            data = json.loads(parameter["Value"])
-            if not isinstance(data, dict):
-                msg = f"Parameter data must be a valid dictionary, but got: {type(data)!r}"
-                raise TypeError(msg)
-            result[order_key] = data
-        return result

aws_annoying-0.3.0.dist-info/RECORD DELETED Viewed

@@ -1,26 +0,0 @@
-aws_annoying/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-aws_annoying/app.py,sha256=sp50uVoAl4D6Wk3DFpzKZzSsxmSxNYejFxm62b_Kxps,201
-aws_annoying/ecs_task_definition_lifecycle.py,sha256=O36Bf5LBnVJNyYmdlUxhtsIHNoxky1t5YacAXiL9UEI,2803
-aws_annoying/load_variables.py,sha256=380xT1i85HWybgOIWn72xGCDgqYJ2OSa9VOKMlyHg8M,9488
-aws_annoying/main.py,sha256=lWvPCEnm_N9Sx9LA_YDoGHmbCyYWDhkg-UHyt8i-GLY,487
-aws_annoying/mfa/__init__.py,sha256=rbEGhw5lOQZV_XAc3nSbo56JVhsSPpeOgEtiAy9qzEA,50
-aws_annoying/mfa/_app.py,sha256=hpa1Bfx8lRsuZfujM-RyaYU5llOuwGKgf4FwEydthU0,185
-aws_annoying/mfa/configure.py,sha256=i5e0qZBFYafuv3D59eP_JXOMrWSRW_bZp0xgIpOlaPE,5364
-aws_annoying/session_manager/__init__.py,sha256=FkT6jT6OXduOURN61d-U6hgd-XluQbvuVtKXXiXgSEk,105
-aws_annoying/session_manager/_app.py,sha256=89brd-3hEe8ECpJ9Z-ANcOqvduFxbPVA-gqJ50Zr_kU,217
-aws_annoying/session_manager/_common.py,sha256=UzCBDvxVymiZP7t2B65sNi1ZVL6HA67GAkKwIYIFZPI,780
-aws_annoying/session_manager/errors.py,sha256=YioKlRtZ-GUP0F_ts_ebw7-HYkxe8mTes6HK821Kuiw,353
-aws_annoying/session_manager/install.py,sha256=zX2cu-IBYlf9yl8z9P0CTQz72BP6aAMo-KnolC_PGsU,1443
-aws_annoying/session_manager/port_forward.py,sha256=uMcsafTNAHZh-0E1yWXCliMivWyuWV2K9DdVhBZ9pG8,4327
-aws_annoying/session_manager/session_manager.py,sha256=7tqfFPA4bWF0Me_VbUDcq5Cpl1sw3bevGyT8QWfLTOk,12454
-aws_annoying/session_manager/start.py,sha256=1yaMuy-7IWrrDoPHjgygOP_-g_tajfnpaVPZanxsZxs,215
-aws_annoying/session_manager/stop.py,sha256=ttU6nlbVgBkZDtY-DwUyCstv5TFtat5TljkyuY8QICU,1482
-aws_annoying/utils/__init__.py,sha256=47DEQpj8HBSa-_TImW-5JCeuQeRkm5NMpJWZG3hSuFU,0
-aws_annoying/utils/debugger.py,sha256=UFllDCGI2gPtwo1XS5vqw0qyR6bYr7XknmBwSxalKIc,754
-aws_annoying/utils/downloader.py,sha256=aB5RzT-LpbFX24-2HXlAkdgVowc4TR9FWT_K8WwZ1BE,1923
-aws_annoying/utils/platform.py,sha256=h3DUWmTMM-_4TfTWNqY0uNqyVsBjAuMm2DEbG-daxe8,742
-aws_annoying-0.3.0.dist-info/METADATA,sha256=H6ciT2fBTifIqg0yYSP5IyfK_CaSzl6f1QI_9ktZjMU,1926
-aws_annoying-0.3.0.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-aws_annoying-0.3.0.dist-info/entry_points.txt,sha256=s0l5LK26zEUxLRkBHH9Bu5aH1bOPvYVoTMnUcFlzjm8,62
-aws_annoying-0.3.0.dist-info/licenses/LICENSE,sha256=Q5GkvYijQ2KTQ-QWhv43ilzCno4ZrzrEuATEQZd9rYo,1067
-aws_annoying-0.3.0.dist-info/RECORD,,