OpenMetadata/ingestion/src/metadata/clients/aws_client.py

#  Copyright 2021 Collate
#  Licensed under the Apache License, Version 2.0 (the "License");
#  you may not use this file except in compliance with the License.
#  You may obtain a copy of the License at
#  http://www.apache.org/licenses/LICENSE-2.0
#  Unless required by applicable law or agreed to in writing, software
#  distributed under the License is distributed on an "AS IS" BASIS,
#  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
#  See the License for the specific language governing permissions and
#  limitations under the License.

from typing import Any

import boto3
from boto3 import Session

from metadata.clients.connection_clients import (
    DynamoClient,
    GlueDBClient,
    GluePipelineClient,
)
from metadata.generated.schema.security.credentials.awsCredentials import AWSCredentials
from metadata.utils.logger import utils_logger

logger = utils_logger()


class AWSClient:
    """
    AWSClient creates a boto3 Session client based on AWSCredentials.
    """

    config: AWSCredentials

    def __init__(self, config: AWSCredentials):

        self.config = config

    def _get_session(self) -> Session:
        if (
            self.config.awsAccessKeyId
            and self.config.awsSecretAccessKey
            and self.config.awsSessionToken
        ):
            return Session(
                aws_access_key_id=self.config.awsAccessKeyId,
                aws_secret_access_key=self.config.awsSecretAccessKey.get_secret_value(),
                aws_session_token=self.config.awsSessionToken,
                region_name=self.config.awsRegion,
            )
        if self.config.awsAccessKeyId and self.config.awsSecretAccessKey:
            return Session(
                aws_access_key_id=self.config.awsAccessKeyId,
                aws_secret_access_key=self.config.awsSecretAccessKey.get_secret_value(),
                region_name=self.config.awsRegion,
            )
        if self.config.awsRegion:
            return Session(region_name=self.config.awsRegion)
        return Session()

    def get_client(self, service_name: str) -> Any:
        # initialize the client depending on the AWSCredentials passed
        if self.config is not None:
            logger.info(f"Getting AWS client for service [{service_name}]")
            session = self._get_session()
            if self.config.endPointURL is not None:
                return session.client(
                    service_name=service_name, endpoint_url=self.config.endPointURL
                )
            return session.client(service_name=service_name)
        else:
            logger.info(f"Getting AWS default client for service [{service_name}]")
            # initialized with the credentials loaded from running machine
            return boto3.client(service_name=service_name)

    def get_resource(self, service_name: str) -> Any:
        session = self._get_session()
        if self.config.endPointURL is not None:
            return session.resource(
                service_name=service_name, endpoint_url=self.config.endPointURL
            )
        return session.resource(service_name=service_name)

    def get_dynomo_client(self) -> DynamoClient:
        return DynamoClient(self.get_resource("dynamodb"))

    def get_glue_db_client(self) -> GlueDBClient:
        return GlueDBClient(self.get_client("glue"))

    def get_glue_pipeline_client(self) -> GluePipelineClient:
        return GluePipelineClient(self.get_client("glue"))
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00			`# Copyright 2021 Collate`
			`# Licensed under the Apache License, Version 2.0 (the "License");`
			`# you may not use this file except in compliance with the License.`
			`# You may obtain a copy of the License at`
			`# http://www.apache.org/licenses/LICENSE-2.0`
			`# Unless required by applicable law or agreed to in writing, software`
			`# distributed under the License is distributed on an "AS IS" BASIS,`
			`# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`# See the License for the specific language governing permissions and`
			`# limitations under the License.`

Fix #4313 - Add title to connection schemas; Fix #4335 - AWS Credentials (#4338) Fix #4313 - Add title to connection schemas; Fix #4335 - AWS Credentials (#4338) 2022-04-22 11:25:05 +02:00			`from typing import Any`
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00
AWS SSM secrets manager implementation on ingestion (#6805) * Implementation of AWS SSM as secrets manager * Remove dead code * Minor fixes * Allow using default credentials in AWS client * Fixed py style * Fixed tests imports * Minor changes * Add patch to failing test * Fix how we were storing dbtConfigSource * Address PR comments 2022-08-19 16:15:40 +02:00			`import boto3`
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00			`from boto3 import Session`

Organise ingestion module (#6515) Organise ingestion module (#6515) 2022-08-03 09:55:50 +02:00			`from metadata.clients.connection_clients import (`
FIX 5419: Glue pipeline connector not working (#5467) FIX 5419: Glue pipeline connector not working (#5467) 2022-06-27 15:08:41 +05:30			`DynamoClient,`
			`GlueDBClient,`
			`GluePipelineClient,`
			`)`
Organise ingestion module (#6515) Organise ingestion module (#6515) 2022-08-03 09:55:50 +02:00			`from metadata.generated.schema.security.credentials.awsCredentials import AWSCredentials`
AWS SSM secrets manager implementation on ingestion (#6805) * Implementation of AWS SSM as secrets manager * Remove dead code * Minor fixes * Allow using default credentials in AWS client * Fixed py style * Fixed tests imports * Minor changes * Add patch to failing test * Fix how we were storing dbtConfigSource * Address PR comments 2022-08-19 16:15:40 +02:00			`from metadata.utils.logger import utils_logger`

			`logger = utils_logger()`
Fixing Test Connection for Dynamo & Glue (#4316) * Fixing Test Connection for Dynamo * Fixed Glue Connector * renamed engine to connection * Fixed the return signature * Added dataclass 2022-04-22 11:30:59 +05:30

Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00			`class AWSClient:`
			`"""`
Fix #4313 - Add title to connection schemas; Fix #4335 - AWS Credentials (#4338) Fix #4313 - Add title to connection schemas; Fix #4335 - AWS Credentials (#4338) 2022-04-22 11:25:05 +02:00			`AWSClient creates a boto3 Session client based on AWSCredentials.`
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00			`"""`

Fix #4313 - Add title to connection schemas; Fix #4335 - AWS Credentials (#4338) Fix #4313 - Add title to connection schemas; Fix #4335 - AWS Credentials (#4338) 2022-04-22 11:25:05 +02:00			`config: AWSCredentials`
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00
Fix #4313 - Add title to connection schemas; Fix #4335 - AWS Credentials (#4338) Fix #4313 - Add title to connection schemas; Fix #4335 - AWS Credentials (#4338) 2022-04-22 11:25:05 +02:00			`def __init__(self, config: AWSCredentials):`
Dynamodb source fix (#3882) Dynamodb source fix (#3882) 2022-04-07 13:45:47 +05:30
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00			`self.config = config`

			`def _get_session(self) -> Session:`
			`if (`
Dynamodb source fix (#3882) Dynamodb source fix (#3882) 2022-04-07 13:45:47 +05:30			`self.config.awsAccessKeyId`
			`and self.config.awsSecretAccessKey`
			`and self.config.awsSessionToken`
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00			`):`
			`return Session(`
Dynamodb source fix (#3882) Dynamodb source fix (#3882) 2022-04-07 13:45:47 +05:30			`aws_access_key_id=self.config.awsAccessKeyId,`
			`aws_secret_access_key=self.config.awsSecretAccessKey.get_secret_value(),`
			`aws_session_token=self.config.awsSessionToken,`
			`region_name=self.config.awsRegion,`
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00			`)`
Dynamodb source fix (#3882) Dynamodb source fix (#3882) 2022-04-07 13:45:47 +05:30			`if self.config.awsAccessKeyId and self.config.awsSecretAccessKey:`
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00			`return Session(`
Dynamodb source fix (#3882) Dynamodb source fix (#3882) 2022-04-07 13:45:47 +05:30			`aws_access_key_id=self.config.awsAccessKeyId,`
			`aws_secret_access_key=self.config.awsSecretAccessKey.get_secret_value(),`
			`region_name=self.config.awsRegion,`
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00			`)`
Dynamodb source fix (#3882) Dynamodb source fix (#3882) 2022-04-07 13:45:47 +05:30			`if self.config.awsRegion:`
			`return Session(region_name=self.config.awsRegion)`
Add support for DeleteAction in S3 Lifecycle Policy (#1916) - Support Delete Action for S3 - Add Example s3.json - Create AWSClient util - Use AWSClient util in S3 ingestion source - Remove ambiguity in policy filters by removing array with different types 2021-12-25 16:29:10 -08:00			`return Session()`

			`def get_client(self, service_name: str) -> Any:`
AWS SSM secrets manager implementation on ingestion (#6805) * Implementation of AWS SSM as secrets manager * Remove dead code * Minor fixes * Allow using default credentials in AWS client * Fixed py style * Fixed tests imports * Minor changes * Add patch to failing test * Fix how we were storing dbtConfigSource * Address PR comments 2022-08-19 16:15:40 +02:00			`# initialize the client depending on the AWSCredentials passed`
			`if self.config is not None:`
			`logger.info(f"Getting AWS client for service [{service_name}]")`
			`session = self._get_session()`
			`if self.config.endPointURL is not None:`
			`return session.client(`
			`service_name=service_name, endpoint_url=self.config.endPointURL`
			`)`
			`return session.client(service_name=service_name)`
			`else:`
			`logger.info(f"Getting AWS default client for service [{service_name}]")`
			`# initialized with the credentials loaded from running machine`
			`return boto3.client(service_name=service_name)`
Fix #2537: Ingestion Connector - DynamoDB 2022-02-08 00:22:11 +05:30
			`def get_resource(self, service_name: str) -> Any:`
			`session = self._get_session()`
Dynamodb source fix (#3882) Dynamodb source fix (#3882) 2022-04-07 13:45:47 +05:30			`if self.config.endPointURL is not None:`
Fix #2537: Ingestion Connector - DynamoDB 2022-02-08 00:22:11 +05:30			`return session.resource(`
Dynamodb source fix (#3882) Dynamodb source fix (#3882) 2022-04-07 13:45:47 +05:30			`service_name=service_name, endpoint_url=self.config.endPointURL`
Fix #2537: Ingestion Connector - DynamoDB 2022-02-08 00:22:11 +05:30			`)`
			`return session.resource(service_name=service_name)`
Fixing Test Connection for Dynamo & Glue (#4316) * Fixing Test Connection for Dynamo * Fixed Glue Connector * renamed engine to connection * Fixed the return signature * Added dataclass 2022-04-22 11:30:59 +05:30
			`def get_dynomo_client(self) -> DynamoClient:`
			`return DynamoClient(self.get_resource("dynamodb"))`

FIX 5419: Glue pipeline connector not working (#5467) FIX 5419: Glue pipeline connector not working (#5467) 2022-06-27 15:08:41 +05:30			`def get_glue_db_client(self) -> GlueDBClient:`
			`return GlueDBClient(self.get_client("glue"))`

			`def get_glue_pipeline_client(self) -> GluePipelineClient:`
			`return GluePipelineClient(self.get_client("glue"))`