Yasuke/moto
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fixed secretsmanager list api to support filtering correctly (#7511)

Browse Source
This commit is contained in:
Macwan Nevil 2024-03-26 17:49:43 +05:30 committed by GitHub
parent ade1001a69
commit 31b971f94e
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 26 additions and 10 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

28
moto/secretsmanager/list_secrets/filters.py
View File

@ -9,7 +9,7 @@ def name_filter(secret: "FakeSecret", names: List[str]) -> bool:
def description_filter(secret: "FakeSecret", descriptions: List[str]) -> bool: def description_filter(secret: "FakeSecret", descriptions: List[str]) -> bool:
return _matcher(descriptions, [secret.description]) # type: ignore return _matcher(descriptions, [secret.description], match_prefix=False) # type: ignore
def tag_key(secret: "FakeSecret", tag_keys: List[str]) -> bool: def tag_key(secret: "FakeSecret", tag_keys: List[str]) -> bool:
@ -30,21 +30,31 @@ def filter_all(secret: "FakeSecret", values: List[str]) -> bool:
return _matcher(values, attributes) # type: ignore return _matcher(values, attributes) # type: ignore
def _matcher(patterns: List[str], strings: List[str]) -> bool: def _matcher(
patterns: List[str], strings: List[str], match_prefix: bool = True
) -> bool:
for pattern in [p for p in patterns if p.startswith("!")]: for pattern in [p for p in patterns if p.startswith("!")]:
for string in strings: for string in strings:
if _match_pattern(pattern[1:], string): if not _match_pattern(pattern[1:], string, match_prefix):
return False return True
for pattern in [p for p in patterns if not p.startswith("!")]: for pattern in [p for p in patterns if not p.startswith("!")]:
for string in strings: for string in strings:
if _match_pattern(pattern, string): if _match_pattern(pattern, string, match_prefix):
return True return True
return False return False
def _match_pattern(pattern: str, value: str) -> bool: def _match_pattern(pattern: str, value: str, match_prefix: bool = True) -> bool:
for word in pattern.split(" "): if match_prefix:
if word not in value: return value.startswith(pattern)
return False else:
pattern_words = pattern.split(" ")
value_words = value.split(" ")
for pattern_word in pattern_words:
# all words in value must start with pattern_word
if not any(
value_word.startswith(pattern_word) for value_word in value_words
):
return False
return True return True

8
tests/test_secretsmanager/test_list_secrets.py
View File

@ -268,7 +268,13 @@ def test_with_filter_with_negation():
) )
secret_names = list(map(lambda s: s["Name"], secrets["SecretList"])) secret_names = list(map(lambda s: s["Name"], secrets["SecretList"]))
assert secret_names == ["baz"] for secret_name in ["foo", "bar", "baz"]:
assert secret_name in secret_names
secrets = conn.list_secrets(Filters=[{"Key": "description", "Values": ["!o"]}])
secret_names = list(map(lambda s: s["Name"], secrets["SecretList"]))
for secret_name in ["qux", "none"]:
assert secret_name in secret_names
@mock_aws @mock_aws