def test__list_aliases():
region = "eu-west-1"
kms = boto.kms.connect_to_region(region)
create_resp = kms.create_key()
key_id = create_resp["KeyMetadata"]["KeyId"]
kms.create_alias("alias/my-alias1", key_id)
kms.create_alias("alias/my-alias2", key_id)
kms.create_alias("alias/my-alias3", key_id)
resp = kms.list_aliases()
resp["Truncated"].should.be.false
aliases = resp["Aliases"]
def has_correct_arn(alias_obj):
alias_name = alias_obj["AliasName"]
alias_arn = alias_obj["AliasArn"]
return re.match(
r"arn:aws:kms:{region}:\d{{12}}:{alias_name}".format(
region=region, alias_name=alias_name),
alias_arn,
)
len([
alias for alias in aliases
if has_correct_arn(alias) and "alias/aws/ebs" == alias["AliasName"]
]).should.equal(1)
len([
alias for alias in aliases
if has_correct_arn(alias) and "alias/aws/rds" == alias["AliasName"]
]).should.equal(1)
len([
alias for alias in aliases if has_correct_arn(alias)
and "alias/aws/redshift" == alias["AliasName"]
]).should.equal(1)
len([
alias for alias in aliases
if has_correct_arn(alias) and "alias/aws/s3" == alias["AliasName"]
]).should.equal(1)
len([
alias for alias in aliases
if has_correct_arn(alias) and "alias/my-alias1" == alias["AliasName"]
]).should.equal(1)
len([
alias for alias in aliases
if has_correct_arn(alias) and "alias/my-alias2" == alias["AliasName"]
]).should.equal(1)
len([
alias for alias in aliases
if "TargetKeyId" in alias and key_id == alias["TargetKeyId"]
]).should.equal(3)
len(aliases).should.equal(7)
def test__list_aliases():
region = "eu-west-1"
kms = boto.kms.connect_to_region(region)
create_resp = kms.create_key()
key_id = create_resp['KeyMetadata']['KeyId']
kms.create_alias('alias/my-alias1', key_id)
kms.create_alias('alias/my-alias2', key_id)
kms.create_alias('alias/my-alias3', key_id)
resp = kms.list_aliases()
resp['Truncated'].should.be.false
aliases = resp['Aliases']
def has_correct_arn(alias_obj):
alias_name = alias_obj['AliasName']
alias_arn = alias_obj['AliasArn']
return re.match(
r'arn:aws:kms:{region}:\d{{12}}:{alias_name}'.format(
region=region, alias_name=alias_name), alias_arn)
len([
alias for alias in aliases
if has_correct_arn(alias) and 'alias/aws/ebs' == alias['AliasName']
]).should.equal(1)
len([
alias for alias in aliases
if has_correct_arn(alias) and 'alias/aws/rds' == alias['AliasName']
]).should.equal(1)
len([
alias for alias in aliases if has_correct_arn(alias)
and 'alias/aws/redshift' == alias['AliasName']
]).should.equal(1)
len([
alias for alias in aliases
if has_correct_arn(alias) and 'alias/aws/s3' == alias['AliasName']
]).should.equal(1)
len([
alias for alias in aliases
if has_correct_arn(alias) and 'alias/my-alias1' == alias['AliasName']
]).should.equal(1)
len([
alias for alias in aliases
if has_correct_arn(alias) and 'alias/my-alias2' == alias['AliasName']
]).should.equal(1)
len([
alias for alias in aliases
if 'TargetKeyId' in alias and key_id == alias['TargetKeyId']
]).should.equal(3)
len(aliases).should.equal(7)
def create_kaurna_key(region='us-east-1', **kwargs):
# This method will create the kaurna KMS master key if necessary
kms = boto.kms.connect_to_region(region_name=region)
# list_aliases response:
# {'Truncated': False, 'Aliases': [{'AliasArn': 'arn:aws:kms:us-east-1:000000000000:alias/aws/ebs', 'AliasName': 'alias/aws/ebs'}, {'AliasArn': 'arn:aws:kms:us-east-1:000000000000:alias/aws/rds', 'AliasName': 'alias/aws/rds'}, {'AliasArn': 'arn:aws:kms:us-east-1:000000000000:alias/aws/redshift', 'AliasName': 'alias/aws/redshift'}, {'AliasArn': 'arn:aws:kms:us-east-1:000000000000:alias/aws/s3', 'AliasName': 'alias/aws/s3'}, {'AliasArn': 'arn:aws:kms:us-east-1:000000000000:alias/kaurna', 'AliasName': 'alias/kaurna', 'TargetKeyId': '1234abcd-12ab-12ab-12ab-123456abcdef'}]}
aliases = kms.list_aliases()
if 'alias/kaurna' in [alias['AliasName'] for alias in aliases['Aliases']]:
return False
else:
# create_key response:
# {'KeyMetadata': {'KeyId': '1234abcd-12ab-12ab-12ab-123456abcdef', 'Description': '', 'Enabled': True, 'KeyUsage': 'ENCRYPT_DECRYPT', 'CreationDate': 1431872957.123, 'Arn': 'arn:aws:kms:us-east-1:000000000000:key/1234abcd-12ab-12ab-12ab-123456abcdef', 'AWSAccountId': '000000000000'}}
# TODO: see what the format of this response is and make it so that the alias gets attached properly
response = kms.create_key()
# create_alias has no output
kms.create_alias('alias/kaurna', response['KeyMetadata']['KeyId'])
return True
def test__list_aliases():
region = "eu-west-1"
kms = boto.kms.connect_to_region(region)
create_resp = kms.create_key()
key_id = create_resp['KeyMetadata']['KeyId']
kms.create_alias('alias/my-alias1', key_id)
kms.create_alias('alias/my-alias2', key_id)
kms.create_alias('alias/my-alias3', key_id)
resp = kms.list_aliases()
resp['Truncated'].should.be.false
aliases = resp['Aliases']
def has_correct_arn(alias_obj):
alias_name = alias_obj['AliasName']
alias_arn = alias_obj['AliasArn']
return re.match(r'arn:aws:kms:{region}:\d{{12}}:{alias_name}'.format(region=region, alias_name=alias_name),
alias_arn)
len([alias for alias in aliases if
has_correct_arn(alias) and 'alias/aws/ebs' == alias['AliasName']]).should.equal(1)
len([alias for alias in aliases if
has_correct_arn(alias) and 'alias/aws/rds' == alias['AliasName']]).should.equal(1)
len([alias for alias in aliases if
has_correct_arn(alias) and 'alias/aws/redshift' == alias['AliasName']]).should.equal(1)
len([alias for alias in aliases if
has_correct_arn(alias) and 'alias/aws/s3' == alias['AliasName']]).should.equal(1)
len([alias for alias in aliases if
has_correct_arn(alias) and 'alias/my-alias1' == alias['AliasName']]).should.equal(1)
len([alias for alias in aliases if
has_correct_arn(alias) and 'alias/my-alias2' == alias['AliasName']]).should.equal(1)
len([alias for alias in aliases if 'TargetKeyId' in alias and key_id ==
alias['TargetKeyId']]).should.equal(3)
len(aliases).should.equal(7)
