implement attach_policy, detach_policy and list_attached_policy
This commit is contained in:
Stephan Huber
parent
4fdc8f8136
commit
36d8f118e3
@ -400,6 +400,28 @@ class IoTBackend(BaseBackend):
|
|||||||
self.policies[policy.name] = policy
|
self.policies[policy.name] = policy
|
||||||
return policy
|
return policy
|
||||||
|
|
||||||
|
def attach_policy(self, policy_name, target):
|
||||||
|
principal = self._get_principal(target)
|
||||||
|
policy = self.get_policy(policy_name)
|
||||||
|
k = (target, policy_name)
|
||||||
|
if k in self.principal_policies:
|
||||||
|
return
|
||||||
|
self.principal_policies[k] = (principal, policy)
|
||||||
|
|
||||||
|
def detach_policy(self, policy_name, target):
|
||||||
|
# this may raises ResourceNotFoundException
|
||||||
|
self._get_principal(target)
|
||||||
|
self.get_policy(policy_name)
|
||||||
|
|
||||||
|
k = (target, policy_name)
|
||||||
|
if k not in self.principal_policies:
|
||||||
|
raise ResourceNotFoundException()
|
||||||
|
del self.principal_policies[k]
|
||||||
|
|
||||||
|
def list_attached_policies(self, target):
|
||||||
|
policies = [v[1] for k, v in self.principal_policies.items() if k[0] == target]
|
||||||
|
return policies
|
||||||
|
|
||||||
def list_policies(self):
|
def list_policies(self):
|
||||||
policies = self.policies.values()
|
policies = self.policies.values()
|
||||||
return policies
|
return policies
|
||||||
|
|||||||
@ -1,6 +1,7 @@
|
|||||||
from __future__ import unicode_literals
|
from __future__ import unicode_literals
|
||||||
|
|
||||||
import json
|
import json
|
||||||
|
from urllib.parse import unquote
|
||||||
|
|
||||||
from moto.core.responses import BaseResponse
|
from moto.core.responses import BaseResponse
|
||||||
from .models import iot_backends
|
from .models import iot_backends
|
||||||
@ -234,6 +235,35 @@ class IoTResponse(BaseResponse):
|
|||||||
)
|
)
|
||||||
return json.dumps(dict())
|
return json.dumps(dict())
|
||||||
|
|
||||||
|
def attach_policy(self):
|
||||||
|
policy_name = self._get_param("policyName")
|
||||||
|
principal = self._get_param('target')
|
||||||
|
self.iot_backend.attach_policy(
|
||||||
|
policy_name=policy_name,
|
||||||
|
target=principal,
|
||||||
|
)
|
||||||
|
return json.dumps(dict())
|
||||||
|
|
||||||
|
def detach_policy(self):
|
||||||
|
policy_name = self._get_param("policyName")
|
||||||
|
principal = self._get_param('target')
|
||||||
|
self.iot_backend.detach_policy(
|
||||||
|
policy_name=policy_name,
|
||||||
|
target=principal,
|
||||||
|
)
|
||||||
|
return json.dumps(dict())
|
||||||
|
|
||||||
|
def list_attached_policies(self):
|
||||||
|
principal = unquote(self._get_param('target'))
|
||||||
|
# marker = self._get_param("marker")
|
||||||
|
# page_size = self._get_int_param("pageSize")
|
||||||
|
policies = self.iot_backend.list_attached_policies(
|
||||||
|
target=principal
|
||||||
|
)
|
||||||
|
# TODO: implement pagination in the future
|
||||||
|
next_marker = None
|
||||||
|
return json.dumps(dict(policies=[_.to_dict() for _ in policies], nextMarker=next_marker))
|
||||||
|
|
||||||
def attach_principal_policy(self):
|
def attach_principal_policy(self):
|
||||||
policy_name = self._get_param("policyName")
|
policy_name = self._get_param("policyName")
|
||||||
principal = self.headers.get('x-amzn-iot-principal')
|
principal = self.headers.get('x-amzn-iot-principal')
|
||||||
|
|||||||
@ -8,6 +8,50 @@ import boto3
|
|||||||
from moto import mock_iot
|
from moto import mock_iot
|
||||||
|
|
||||||
|
|
||||||
|
@mock_iot
|
||||||
|
def test_attach_policy():
|
||||||
|
client = boto3.client('iot', region_name='ap-northeast-1')
|
||||||
|
policy_name = 'my-policy'
|
||||||
|
doc = '{}'
|
||||||
|
|
||||||
|
cert = client.create_keys_and_certificate(setAsActive=True)
|
||||||
|
cert_arn = cert['certificateArn']
|
||||||
|
client.create_policy(policyName=policy_name, policyDocument=doc)
|
||||||
|
client.attach_policy(policyName=policy_name, target=cert_arn)
|
||||||
|
|
||||||
|
res = client.list_attached_policies(target=cert_arn)
|
||||||
|
res.should.have.key('policies').which.should.have.length_of(1)
|
||||||
|
res['policies'][0]['policyName'].should.equal('my-policy')
|
||||||
|
|
||||||
|
|
||||||
|
@mock_iot
|
||||||
|
def test_detach_policy():
|
||||||
|
client = boto3.client('iot', region_name='ap-northeast-1')
|
||||||
|
policy_name = 'my-policy'
|
||||||
|
doc = '{}'
|
||||||
|
|
||||||
|
cert = client.create_keys_and_certificate(setAsActive=True)
|
||||||
|
cert_arn = cert['certificateArn']
|
||||||
|
client.create_policy(policyName=policy_name, policyDocument=doc)
|
||||||
|
client.attach_policy(policyName=policy_name, target=cert_arn)
|
||||||
|
|
||||||
|
res = client.list_attached_policies(target=cert_arn)
|
||||||
|
res.should.have.key('policies').which.should.have.length_of(1)
|
||||||
|
res['policies'][0]['policyName'].should.equal('my-policy')
|
||||||
|
|
||||||
|
client.detach_policy(policyName=policy_name, target=cert_arn)
|
||||||
|
res = client.list_attached_policies(target=cert_arn)
|
||||||
|
res.should.have.key('policies').which.should.be.empty
|
||||||
|
|
||||||
|
|
||||||
|
@mock_iot
|
||||||
|
def test_list_attached_policies():
|
||||||
|
client = boto3.client('iot', region_name='ap-northeast-1')
|
||||||
|
cert = client.create_keys_and_certificate(setAsActive=True)
|
||||||
|
policies = client.list_attached_policies(target=cert['certificateArn'])
|
||||||
|
policies['policies'].should.be.empty
|
||||||
|
|
||||||
|
|
||||||
@mock_iot
|
@mock_iot
|
||||||
def test_things():
|
def test_things():
|
||||||
client = boto3.client('iot', region_name='ap-northeast-1')
|
client = boto3.client('iot', region_name='ap-northeast-1')
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user