qontract-reconcile 0.10.1rc460__py3-none-any.whl → 0.10.1rc462__py3-none-any.whl

reconcile/dashdotdb_base.py

@@ -149,9 +149,9 @@ class DashdotdbBase:
         if token:
             headers["Authorization"] = f"Bearer {token}"
         elif username and password:
-            headers[
-                "Authorization"
-            ] = f"Basic {b64encode(f'{username}:{password}'.encode()).decode('utf-8')}"
+            headers["Authorization"] = (
+                f"Basic {b64encode(f'{username}:{password}'.encode()).decode('utf-8')}"
+            )
         response = requests.get(
             url, params=params, headers=headers, verify=ssl_verify, timeout=(5, 120)
         )

reconcile/dynatrace_token_provider.py

@@ -169,9 +169,9 @@ class DynatraceTokenProviderIntegration(
                                 continue
 
                             if tenant_id not in existing_dtp_tokens:
-                                existing_dtp_tokens[
-                                    tenant_id
-                                ] = self.get_all_dtp_tokens(dt_clients[tenant_id])
+                                existing_dtp_tokens[tenant_id] = (
+                                    self.get_all_dtp_tokens(dt_clients[tenant_id])
+                                )
 
                             self.process_cluster(
                                 dry_run,
@@ -285,11 +285,10 @@ class DynatraceTokenProviderIntegration(
                         logging.info(
                             f"Operator token created in Dynatrace for cluster {cluster.ocm_cluster.external_id}."
                         )
-                else:
-                    if token_name == DYNATRACE_INGESTION_TOKEN_NAME:
-                        ingestion_token = ApiTokenCreated(raw_element=token)
-                    elif token_name == DYNATRACE_OPERATOR_TOKEN_NAME:
-                        operator_token = ApiTokenCreated(raw_element=token)
+                elif token_name == DYNATRACE_INGESTION_TOKEN_NAME:
+                    ingestion_token = ApiTokenCreated(raw_element=token)
+                elif token_name == DYNATRACE_OPERATOR_TOKEN_NAME:
+                    operator_token = ApiTokenCreated(raw_element=token)
             if need_patching:
                 if not dry_run:
                     patch_syncset_payload = self.construct_base_syncset(

reconcile/gcr_mirror.py

@@ -221,7 +221,7 @@ class QuayMirror:
         control_file_name = "qontract-reconcile-gcr-mirror.timestamp"
         control_file_path = os.path.join(tempfile.gettempdir(), control_file_name)
         try:
-            with open(control_file_path, "r") as file_obj:
+            with open(control_file_path, "r", encoding="locale") as file_obj:
                 last_deep_sync = float(file_obj.read())
         except FileNotFoundError:
             self._record_timestamp(control_file_path)
@@ -236,7 +236,7 @@ class QuayMirror:
 
     @staticmethod
     def _record_timestamp(path):
-        with open(path, "w") as file_object:
+        with open(path, "w", encoding="locale") as file_object:
             file_object.write(str(time.time()))
 
     def _get_push_creds(self):

reconcile/github_org.py

@@ -198,7 +198,7 @@ def fetch_desired_state(infer_clusters=True):
     for role in roles:
         permissions = list(
             filter(
-                lambda p: p.get("service") in ["github-org", "github-org-team"],
+                lambda p: p.get("service") in {"github-org", "github-org-team"},
                 role["permissions"],
             )
         )
@@ -238,7 +238,7 @@ def fetch_desired_state(infer_clusters=True):
     )
     for cluster in clusters:
         for auth in cluster["auth"]:
-            if auth["service"] not in ["github-org", "github-org-team"]:
+            if auth["service"] not in {"github-org", "github-org-team"}:
                 continue
 
             cluster_name = cluster["name"]

reconcile/github_owners.py

@@ -48,7 +48,7 @@ def fetch_desired_state():
         permissions = [
             p
             for p in role["permissions"]
-            if p.get("service") in ["github-org", "github-org-team"]
+            if p.get("service") in {"github-org", "github-org-team"}
             and p.get("role") == "owner"
         ]
         if not permissions:

reconcile/gitlab_housekeeping.py

@@ -129,7 +129,7 @@ def get_timed_out_pipelines(
 ) -> list[dict]:
     now = datetime.utcnow()
 
-    pending_pipelines = [p for p in pipelines if p["status"] in ["pending", "running"]]
+    pending_pipelines = [p for p in pipelines if p["status"] in {"pending", "running"}]
 
     if not pending_pipelines:
         return []
@@ -299,10 +299,10 @@ def preprocess_merge_requests(
 ) -> list[dict[str, Any]]:
     results = []
     for mr in project_merge_requests:
-        if mr.merge_status in [
+        if mr.merge_status in {
             MRStatus.CANNOT_BE_MERGED,
             MRStatus.CANNOT_BE_MERGED_RECHECK,
-        ]:
+        }:
             continue
         if mr.work_in_progress:
             continue

reconcile/gitlab_labeler.py

@@ -68,12 +68,11 @@ def guess_onboarding_status(
                 else:
                     app = apps[app_name]
                     labels.add(app["onboardingStatus"])
+            elif app_name in apps:
+                app = apps[app_name]
+                labels.add(app["onboardingStatus"])
             else:
-                if app_name in apps:
-                    app = apps[app_name]
-                    labels.add(app["onboardingStatus"])
-                else:
-                    logging.debug("Error getting app name " + path)
+                logging.debug("Error getting app name " + path)
 
     if len(labels) == 1:
         return labels.pop()

reconcile/glitchtip/reconciler.py

@@ -81,9 +81,9 @@ class GlitchtipReconciler:
                     name=project.name,
                     platform=project.platform,
                 )
-                organization_projects[
-                    organization_projects.index(project)
-                ] = updated_project
+                organization_projects[organization_projects.index(project)] = (
+                    updated_project
+                )
 
         for desired_project in desired_projects:
             current_project = organization_projects[

reconcile/glitchtip_project_alerts/integration.py

@@ -236,9 +236,9 @@ class GlitchtipProjectAlertsIntegration(
         glitchtip_instances = glitchtip_instance_query(
             query_func=gqlapi.query
         ).instances
-        glitchtip_projects_by_instance: dict[
-            str, list[GlitchtipProjectsV1]
-        ] = defaultdict(list)
+        glitchtip_projects_by_instance: dict[str, list[GlitchtipProjectsV1]] = (
+            defaultdict(list)
+        )
         for glitchtip_project in self.get_projects(query_func=gqlapi.query):
             glitchtip_projects_by_instance[
                 glitchtip_project.organization.instance.name

reconcile/gql_definitions/common/clusters.py

@@ -104,7 +104,6 @@ query Clusters($name: String) {
     name
     serverUrl
     consoleUrl
-    kibanaUrl
     elbFQDN
     prometheusUrl
     managedGroups
@@ -645,7 +644,6 @@ class ClusterV1(ConfiguredBaseModel):
     name: str = Field(..., alias="name")
     server_url: str = Field(..., alias="serverUrl")
     console_url: str = Field(..., alias="consoleUrl")
-    kibana_url: str = Field(..., alias="kibanaUrl")
     elb_fqdn: str = Field(..., alias="elbFQDN")
     prometheus_url: str = Field(..., alias="prometheusUrl")
     managed_groups: Optional[list[str]] = Field(..., alias="managedGroups")

reconcile/gql_definitions/common/clusters_minimal.py

@@ -45,7 +45,6 @@ query ClustersMinimal($name: String) {
     name
     serverUrl
     consoleUrl
-    kibanaUrl
     prometheusUrl
     insecureSkipTLSVerify
     jumpHost {
@@ -126,7 +125,6 @@ class ClusterV1(ConfiguredBaseModel):
     name: str = Field(..., alias="name")
     server_url: str = Field(..., alias="serverUrl")
     console_url: str = Field(..., alias="consoleUrl")
-    kibana_url: str = Field(..., alias="kibanaUrl")
     prometheus_url: str = Field(..., alias="prometheusUrl")
     insecure_skip_tls_verify: Optional[bool] = Field(..., alias="insecureSkipTLSVerify")
     jump_host: Optional[CommonJumphostFields] = Field(..., alias="jumpHost")

reconcile/ocm_clusters.py

@@ -163,17 +163,17 @@ def get_app_interface_spec_updates(
         desired_spec.spec.disable_user_workload_monitoring is None
         and current_spec.spec.disable_user_workload_monitoring
     ):
-        ocm_spec_updates[
-            ocmmod.SPEC_ATTR_DISABLE_UWM
-        ] = current_spec.spec.disable_user_workload_monitoring
+        ocm_spec_updates[ocmmod.SPEC_ATTR_DISABLE_UWM] = (
+            current_spec.spec.disable_user_workload_monitoring
+        )
 
     if (
         current_spec.spec.provision_shard_id is not None
         and desired_spec.spec.provision_shard_id != current_spec.spec.provision_shard_id
     ):
-        ocm_spec_updates[
-            ocmmod.SPEC_ATTR_PROVISION_SHARD_ID
-        ] = current_spec.spec.provision_shard_id
+        ocm_spec_updates[ocmmod.SPEC_ATTR_PROVISION_SHARD_ID] = (
+            current_spec.spec.provision_shard_id
+        )
 
     if isinstance(current_spec.spec, ROSAClusterSpec) and isinstance(
         desired_spec.spec, ROSAClusterSpec
@@ -183,9 +183,9 @@ def get_app_interface_spec_updates(
             and desired_spec.spec.oidc_endpoint_url
             != current_spec.spec.oidc_endpoint_url
         ):
-            ocm_spec_updates[
-                ocmmod.SPEC_ATTR_OIDC_ENDPONT_URL
-            ] = current_spec.spec.oidc_endpoint_url
+            ocm_spec_updates[ocmmod.SPEC_ATTR_OIDC_ENDPONT_URL] = (
+                current_spec.spec.oidc_endpoint_url
+            )
 
     if current_spec.server_url and desired_spec.server_url != current_spec.server_url:
         root_updates[ocmmod.SPEC_ATTR_SERVER_URL] = current_spec.server_url

reconcile/ocm_github_idp.py

@@ -63,7 +63,7 @@ def fetch_desired_state(clusters, vault_input_path, settings):
 
 
 def sanitize(state):
-    return {k: v for k, v in state.items() if k not in ["client_secret", "id"]}
+    return {k: v for k, v in state.items() if k not in {"client_secret", "id"}}
 
 
 def act(dry_run, ocm_map, current_state, desired_state):

reconcile/ocm_groups.py

@@ -85,7 +85,7 @@ def run(dry_run, thread_pool_size=10):
 
     for diff in diffs:
         # we do not need to create/delete groups in OCM
-        if diff["action"] in ["create_group", "delete_group"]:
+        if diff["action"] in {"create_group", "delete_group"}:
             continue
         logging.info(list(diff.values()))
 

reconcile/openshift_base.py

@@ -416,7 +416,7 @@ def apply(
         except FieldIsImmutableError:
             # Add more resources types to the list when you're
             # sure they're safe.
-            if resource_type not in ["Route", "Service", "Secret"]:
+            if resource_type not in {"Route", "Service", "Secret"}:
                 raise
             oc.delete(namespace=namespace, kind=resource_type, name=resource.name)
             oc.apply(namespace=namespace, resource=annotated)
@@ -470,7 +470,7 @@ def apply(
                 obsolete_rs["metadata"]["ownerReferences"] = owner_references
                 oc.apply(namespace=namespace, resource=OR(obsolete_rs, "", ""))
         except (MayNotChangeOnceSetError, PrimaryClusterIPCanNotBeUnsetError):
-            if resource_type not in ["Service"]:
+            if resource_type not in {"Service"}:
                 raise
 
             oc.delete(namespace=namespace, kind=resource_type, name=resource.name)
@@ -1075,10 +1075,10 @@ def _validate_resources_used_exist(
                 )
                 # we found one! does it's value (secret name) match the
                 # using resource's?
-                if used_name in (
+                if used_name in {
                     serving_cert_alpha_secret_name,
                     serving_cert_beta_secret_name,
-                ):
+                }:
                     # found a match. we assume the serving cert secret will
                     # be present at some point soon after the Service is deployed
                     resource = service
@@ -1115,7 +1115,7 @@ def validate_planned_data(ri: ResourceInventory, oc_map: ClusterMap) -> None:
         oc = oc_map.get_cluster(cluster)
 
         for name, d_item in data["desired"].items():
-            if kind in ("Deployment", "DeploymentConfig"):
+            if kind in {"Deployment", "DeploymentConfig"}:
                 spec = d_item.body["spec"]["template"]["spec"]
                 _validate_resources_used_exist(
                     ri, oc, spec, cluster, namespace, kind, name, "Secret"
@@ -1162,7 +1162,7 @@ def validate_realized_data(actions: Iterable[dict[str, str]], oc_map: ClusterMap
             if not status:
                 raise ValidationError("status")
             # add elif to validate additional resource kinds
-            if kind in ["Deployment", "DeploymentConfig", "StatefulSet"]:
+            if kind in {"Deployment", "DeploymentConfig", "StatefulSet"}:
                 desired_replicas = resource["spec"]["replicas"]
                 if desired_replicas == 0:
                     continue

reconcile/openshift_clusterrolebindings.py

@@ -89,7 +89,7 @@ def fetch_desired_state(ri, oc_map):
         permissions = [
             {"cluster": a["cluster"], "cluster_role": a["clusterRole"]}
             for a in role["access"] or []
-            if None not in [a["cluster"], a["clusterRole"]]
+            if None not in {a["cluster"], a["clusterRole"]}
         ]
         if not permissions:
             continue

reconcile/openshift_groups.py

@@ -233,7 +233,7 @@ def validate_diffs(diffs: Iterable[Mapping[str, Optional[str]]]) -> None:
 
 
 def sort_diffs(diff: Mapping[str, Optional[str]]) -> int:
-    if diff["action"] in ["create_group", "del_user_from_group"]:
+    if diff["action"] in {"create_group", "del_user_from_group"}:
         return 1
     return 2
 

reconcile/openshift_namespace_labels.py

@@ -182,18 +182,18 @@ class LabelInventory:
                     if k not in managed:
                         self.update_managed_keys(cluster, ns, k)
                     changed[k] = v
-                else:  # k in current:
-                    if k not in managed:  # conflicting labels
-                        self.add_error(
-                            cluster,
-                            ns,
-                            "Label conflict:"
-                            + f"desired {k}={v} vs "
-                            + f"current {k}={current[k]}",
-                        )
-                    else:
-                        if v != current[k]:
-                            changed[k] = v
+
+                elif k not in managed:  # conflicting labels
+                    self.add_error(
+                        cluster,
+                        ns,
+                        "Label conflict:"
+                        + f"desired {k}={v} vs "
+                        + f"current {k}={current[k]}",
+                    )
+
+                elif v != current[k]:
+                    changed[k] = v
 
             # remove old labels
             for k, v in current.items():

reconcile/openshift_resources_base.py

@@ -539,9 +539,9 @@ def fetch_provider_resource(
                         if not annotations:
                             continue
                         # TODO(mafriedm): make this better
-                        rule["annotations"][
-                            "html_url"
-                        ] = f"{APP_INT_BASE_URL}/blob/master/resources{path}"
+                        rule["annotations"]["html_url"] = (
+                            f"{APP_INT_BASE_URL}/blob/master/resources{path}"
+                        )
             except Exception:
                 logging.warning(
                     "could not add html_url annotation to" + body["metadata"]["name"]

reconcile/openshift_rolebindings.py

@@ -97,7 +97,7 @@ def fetch_desired_state(ri, oc_map, enforced_user_keys=None):
                 "role": a["role"],
             }
             for a in role["access"] or []
-            if None not in [a["namespace"], a["role"]]
+            if None not in {a["namespace"], a["role"]}
             and a["namespace"].get("managedRoles")
             and not ob.is_namespace_deleted(a["namespace"])
         ]

reconcile/openshift_saas_deploy.py

@@ -316,7 +316,7 @@ def run(
         emails = " ".join([o.email for o in owners])
         file, url = saasherder.get_archive_info(saas_file, trigger_reason)
         sast_file = os.path.join(io_dir, "sast")
-        with open(sast_file, "w") as f:
+        with open(sast_file, "w", encoding="locale") as f:
             f.write(file + "\n")
             f.write(url + "\n")
             f.write(emails + "\n")

reconcile/quay_mirror.py

@@ -349,7 +349,7 @@ class QuayMirror:
     @staticmethod
     def check_compare_tags_elapsed_time(path, interval) -> bool:
         try:
-            with open(path, "r") as file_obj:
+            with open(path, "r", encoding="locale") as file_obj:
                 last_compare_tags = float(file_obj.read())
         except FileNotFoundError:
             return True
@@ -362,7 +362,7 @@ class QuayMirror:
 
     @staticmethod
     def record_timestamp(path) -> None:
-        with open(path, "w") as file_object:
+        with open(path, "w", encoding="locale") as file_object:
             file_object.write(str(time.time()))
 
     def _get_push_creds(self):

reconcile/queries.py

@@ -651,7 +651,6 @@ CLUSTERS_QUERY = """
     name
     serverUrl
     consoleUrl
-    kibanaUrl
     elbFQDN
     prometheusUrl
     managedGroups
@@ -968,7 +967,6 @@ CLUSTERS_MINIMAL_QUERY = """
     name
     serverUrl
     consoleUrl
-    kibanaUrl
     prometheusUrl
     insecureSkipTLSVerify
     jumpHost {

reconcile/rhidp/common.py

@@ -66,10 +66,10 @@ class ClusterAuth(BaseModel):
 
     @property
     def oidc_enabled(self) -> bool:
-        return self.status not in (
+        return self.status not in {
             StatusValue.DISABLED.value,
             StatusValue.RHIDP_ONLY.value,
-        )
+        }
 
     @property
     def enforced(self) -> bool:

reconcile/saas_auto_promotions_manager/merge_request_manager/merge_request_manager.py

@@ -237,10 +237,10 @@ class MergeRequestManager:
             for sub in subs:
                 if sub.target_file_path not in content_by_path:
                     try:
-                        content_by_path[
-                            sub.target_file_path
-                        ] = self._vcs.get_file_content_from_app_interface_master(
-                            file_path=sub.target_file_path
+                        content_by_path[sub.target_file_path] = (
+                            self._vcs.get_file_content_from_app_interface_master(
+                                file_path=sub.target_file_path
+                            )
                         )
                     except GitlabGetError as e:
                         if e.response_code == 404:
@@ -251,11 +251,11 @@ class MergeRequestManager:
                             has_error = True
                             break
                         raise e
-                content_by_path[
-                    sub.target_file_path
-                ] = self._renderer.render_merge_request_content(
-                    subscriber=sub,
-                    current_content=content_by_path[sub.target_file_path],
+                content_by_path[sub.target_file_path] = (
+                    self._renderer.render_merge_request_content(
+                        subscriber=sub,
+                        current_content=content_by_path[sub.target_file_path],
+                    )
                 )
             if has_error:
                 continue

reconcile/slack_usergroups.py

@@ -114,7 +114,7 @@ class State(BaseModel):
     usergroup_id: Optional[str] = None
 
     def __bool__(self) -> bool:
-        return self.workspace != ""
+        return self.workspace != ""  # noqa: PLC1901
 
 
 SlackState = dict[str, dict[str, State]]
@@ -235,7 +235,7 @@ def get_usernames_from_pagerduty(
     pagerduty_map: PagerDutyMap,
 ) -> list[str]:
     """Return list of usernames from all pagerduties."""
-    global error_occurred
+    global error_occurred  # noqa: PLW0603
     all_output_usernames = []
     all_pagerduty_names = [get_pagerduty_name(u) for u in users]
     for pagerduty in pagerduties:
@@ -477,9 +477,9 @@ def get_desired_state_cluster_usergroups(
 ) -> SlackState:
     """Get the desired state of Slack usergroups."""
     desired_state: SlackState = {}
-    openshift_users_desired_state: list[
-        dict[str, str]
-    ] = openshift_users.fetch_desired_state(oc_map=None)
+    openshift_users_desired_state: list[dict[str, str]] = (
+        openshift_users.fetch_desired_state(oc_map=None)
+    )
     for cluster in clusters:
         if not integration_is_enabled(QONTRACT_INTEGRATION, cluster):
             logging.debug(
@@ -544,7 +544,7 @@ def _create_usergroups(
     dry_run: bool = True,
 ) -> None:
     """Create Slack usergroups."""
-    global error_occurred
+    global error_occurred  # noqa: PLW0603
     if current_ug_state:
         logging.debug(
             f"[{desired_ug_state.workspace}] Usergroup exists and will not be created {desired_ug_state.usergroup}"
@@ -572,7 +572,7 @@ def _update_usergroup_users_from_state(
     dry_run: bool = True,
 ) -> None:
     """Update the users in a Slack usergroup."""
-    global error_occurred
+    global error_occurred  # noqa: PLW0603
     if current_ug_state.users == desired_ug_state.users:
         logging.debug(
             f"No usergroup user changes detected for {desired_ug_state.usergroup}"
@@ -622,7 +622,7 @@ def _update_usergroup_from_state(
     dry_run: bool = True,
 ) -> None:
     """Update a Slack usergroup."""
-    global error_occurred
+    global error_occurred  # noqa: PLW0603
     if (
         current_ug_state.channels == desired_ug_state.channels
         and current_ug_state.description == desired_ug_state.description
@@ -735,7 +735,7 @@ def run(
     workspace_name: Optional[str] = None,
     usergroup_name: Optional[str] = None,
 ) -> None:
-    global error_occurred
+    global error_occurred  # noqa: PLW0603
     error_occurred = False
 
     gqlapi = gql.get_api()

reconcile/sql_query.py

@@ -356,7 +356,7 @@ def make_mysql_command(sqlqueries_file: str) -> str:
 
 
 def make_output_cmd(output: str, recipient: str) -> str:
-    if output in ("filesystem", "encrypted"):
+    if output in {"filesystem", "encrypted"}:
         command = filesystem_redir_stdout()
     else:
         # stdout
@@ -681,10 +681,9 @@ def _get_query_status(
         # CronJob
         if query.get("delete"):
             return QueryStatus.PENDING_DELETION
-    else:
+    elif time.time() >= query_state + JOB_TTL:
         # Job
-        if time.time() >= query_state + JOB_TTL:
-            return QueryStatus.PENDING_DELETION
+        return QueryStatus.PENDING_DELETION
     return QueryStatus.ACTIVE
 
 

reconcile/terraform_aws_route53.py

@@ -87,7 +87,7 @@ def build_desired_state(
                 # get_a_record is used here to validate the record and reused later
                 target_cluster_elb_value = dnsutils.get_a_records(target_cluster_elb)
 
-                if target_cluster_elb is None or target_cluster_elb == "":
+                if not target_cluster_elb:
                     msg = (
                         f"{zone_name}: field `_target_cluster` for record "
                         f"{record_name} of type {record_type} points to a "

reconcile/terraform_cloudflare_users.py

@@ -304,13 +304,13 @@ def get_cloudflare_users(
                                 user.cloudflare_user
                             ].roles.update(set(cf_role.roles))
                         else:
-                            users[cf_role.account.name][
-                                user.cloudflare_user
-                            ] = CloudflareUser(
-                                user.cloudflare_user,
-                                cf_role.account.name,
-                                user.org_username,
-                                set(cf_role.roles),
+                            users[cf_role.account.name][user.cloudflare_user] = (
+                                CloudflareUser(
+                                    user.cloudflare_user,
+                                    cf_role.account.name,
+                                    user.org_username,
+                                    set(cf_role.roles),
+                                )
                             )
 
                     else:

reconcile/terraform_repo.py

@@ -166,7 +166,9 @@ class TerraformRepoIntegration(
 
         if self.params.output_file:
             try:
-                with open(self.params.output_file, "w") as output_file:
+                with open(
+                    self.params.output_file, "w", encoding="locale"
+                ) as output_file:
                     yaml.safe_dump(
                         data=output.dict(),
                         stream=output_file,

reconcile/terraform_vpc_peerings.py

@@ -298,10 +298,10 @@ def build_desired_state_vpc_mesh_single_cluster(
         if provided_assume_role:
             account["assume_role"] = provided_assume_role
         elif ocm is not None:
-            account[
-                "assume_role"
-            ] = ocm.get_aws_infrastructure_access_terraform_assume_role(
-                cluster, account["uid"], account["terraformUsername"]
+            account["assume_role"] = (
+                ocm.get_aws_infrastructure_access_terraform_assume_role(
+                    cluster, account["uid"], account["terraformUsername"]
+                )
             )
         account["assume_region"] = requester["region"]
         account["assume_cidr"] = requester["cidr_block"]
@@ -418,12 +418,12 @@ def build_desired_state_vpc_single_cluster(
         if provided_assume_role:
             account["assume_role"] = provided_assume_role
         elif ocm is not None:
-            account[
-                "assume_role"
-            ] = ocm.get_aws_infrastructure_access_terraform_assume_role(
-                cluster,
-                peer_vpc["account"]["uid"],
-                peer_vpc["account"]["terraformUsername"],
+            account["assume_role"] = (
+                ocm.get_aws_infrastructure_access_terraform_assume_role(
+                    cluster,
+                    peer_vpc["account"]["uid"],
+                    peer_vpc["account"]["terraformUsername"],
+                )
             )
         else:
             raise KeyError(