You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
64 lines
2.3 KiB
Python
64 lines
2.3 KiB
Python
"""
|
|
Copyright (c) Contributors to the Open 3D Engine Project.
|
|
For complete copyright and license terms please see the LICENSE at the root of this distribution.
|
|
|
|
SPDX-License-Identifier: Apache-2.0 OR MIT
|
|
"""
|
|
import boto3
|
|
import logging
|
|
|
|
logger = logging.getLogger(__name__)
|
|
logging.getLogger('boto3').setLevel(logging.WARNING)
|
|
logging.getLogger('botocore').setLevel(logging.WARNING)
|
|
logging.getLogger('nose').setLevel(logging.WARNING)
|
|
|
|
|
|
class AwsUtils:
|
|
|
|
def __init__(self, arn: str, session_name: str, region_name: str):
|
|
local_session = boto3.Session()
|
|
local_sts_client = local_session.client('sts')
|
|
self._local_account_id = local_sts_client.get_caller_identity()["Account"]
|
|
logger.info(f'Local Account Id: {self._local_account_id}')
|
|
|
|
response = local_sts_client.assume_role(RoleArn=arn, RoleSessionName=session_name)
|
|
|
|
self._assume_session = boto3.Session(aws_access_key_id=response['Credentials']['AccessKeyId'],
|
|
aws_secret_access_key=response['Credentials']['SecretAccessKey'],
|
|
aws_session_token=response['Credentials']['SessionToken'],
|
|
region_name=region_name)
|
|
|
|
assume_sts_client = self._assume_session.client('sts')
|
|
assume_account_id = assume_sts_client.get_caller_identity()["Account"]
|
|
logger.info(f'Assume Account Id: {assume_account_id}')
|
|
self._assume_account_id = assume_account_id
|
|
|
|
def client(self, service: str):
|
|
"""
|
|
Get the client for a specific AWS service from configured session
|
|
:return: Client for the AWS service.
|
|
"""
|
|
return self._assume_session.client(service)
|
|
|
|
def resource(self, service: str):
|
|
"""
|
|
Get the resource for a specific AWS service from configured session
|
|
:return: Client for the AWS service.
|
|
"""
|
|
return self._assume_session.resource(service)
|
|
|
|
def assume_session(self):
|
|
return self._assume_session
|
|
|
|
def local_account_id(self):
|
|
return self._local_account_id
|
|
|
|
def assume_account_id(self):
|
|
return self._assume_account_id
|
|
|
|
def destroy(self) -> None:
|
|
"""
|
|
clears stored session
|
|
"""
|
|
self._assume_session = None
|