def test__list_aliases(): region = "eu-west-1" kms = boto.kms.connect_to_region(region) create_resp = kms.create_key() key_id = create_resp["KeyMetadata"]["KeyId"] kms.create_alias("alias/my-alias1", key_id) kms.create_alias("alias/my-alias2", key_id) kms.create_alias("alias/my-alias3", key_id) resp = kms.list_aliases() resp["Truncated"].should.be.false aliases = resp["Aliases"] def has_correct_arn(alias_obj): alias_name = alias_obj["AliasName"] alias_arn = alias_obj["AliasArn"] return re.match( r"arn:aws:kms:{region}:\d{{12}}:{alias_name}".format( region=region, alias_name=alias_name), alias_arn, ) len([ alias for alias in aliases if has_correct_arn(alias) and "alias/aws/ebs" == alias["AliasName"] ]).should.equal(1) len([ alias for alias in aliases if has_correct_arn(alias) and "alias/aws/rds" == alias["AliasName"] ]).should.equal(1) len([ alias for alias in aliases if has_correct_arn(alias) and "alias/aws/redshift" == alias["AliasName"] ]).should.equal(1) len([ alias for alias in aliases if has_correct_arn(alias) and "alias/aws/s3" == alias["AliasName"] ]).should.equal(1) len([ alias for alias in aliases if has_correct_arn(alias) and "alias/my-alias1" == alias["AliasName"] ]).should.equal(1) len([ alias for alias in aliases if has_correct_arn(alias) and "alias/my-alias2" == alias["AliasName"] ]).should.equal(1) len([ alias for alias in aliases if "TargetKeyId" in alias and key_id == alias["TargetKeyId"] ]).should.equal(3) len(aliases).should.equal(7)
def test__list_aliases(): region = "eu-west-1" kms = boto.kms.connect_to_region(region) create_resp = kms.create_key() key_id = create_resp['KeyMetadata']['KeyId'] kms.create_alias('alias/my-alias1', key_id) kms.create_alias('alias/my-alias2', key_id) kms.create_alias('alias/my-alias3', key_id) resp = kms.list_aliases() resp['Truncated'].should.be.false aliases = resp['Aliases'] def has_correct_arn(alias_obj): alias_name = alias_obj['AliasName'] alias_arn = alias_obj['AliasArn'] return re.match( r'arn:aws:kms:{region}:\d{{12}}:{alias_name}'.format( region=region, alias_name=alias_name), alias_arn) len([ alias for alias in aliases if has_correct_arn(alias) and 'alias/aws/ebs' == alias['AliasName'] ]).should.equal(1) len([ alias for alias in aliases if has_correct_arn(alias) and 'alias/aws/rds' == alias['AliasName'] ]).should.equal(1) len([ alias for alias in aliases if has_correct_arn(alias) and 'alias/aws/redshift' == alias['AliasName'] ]).should.equal(1) len([ alias for alias in aliases if has_correct_arn(alias) and 'alias/aws/s3' == alias['AliasName'] ]).should.equal(1) len([ alias for alias in aliases if has_correct_arn(alias) and 'alias/my-alias1' == alias['AliasName'] ]).should.equal(1) len([ alias for alias in aliases if has_correct_arn(alias) and 'alias/my-alias2' == alias['AliasName'] ]).should.equal(1) len([ alias for alias in aliases if 'TargetKeyId' in alias and key_id == alias['TargetKeyId'] ]).should.equal(3) len(aliases).should.equal(7)
def create_kaurna_key(region='us-east-1', **kwargs): # This method will create the kaurna KMS master key if necessary kms = boto.kms.connect_to_region(region_name=region) # list_aliases response: # {'Truncated': False, 'Aliases': [{'AliasArn': 'arn:aws:kms:us-east-1:000000000000:alias/aws/ebs', 'AliasName': 'alias/aws/ebs'}, {'AliasArn': 'arn:aws:kms:us-east-1:000000000000:alias/aws/rds', 'AliasName': 'alias/aws/rds'}, {'AliasArn': 'arn:aws:kms:us-east-1:000000000000:alias/aws/redshift', 'AliasName': 'alias/aws/redshift'}, {'AliasArn': 'arn:aws:kms:us-east-1:000000000000:alias/aws/s3', 'AliasName': 'alias/aws/s3'}, {'AliasArn': 'arn:aws:kms:us-east-1:000000000000:alias/kaurna', 'AliasName': 'alias/kaurna', 'TargetKeyId': '1234abcd-12ab-12ab-12ab-123456abcdef'}]} aliases = kms.list_aliases() if 'alias/kaurna' in [alias['AliasName'] for alias in aliases['Aliases']]: return False else: # create_key response: # {'KeyMetadata': {'KeyId': '1234abcd-12ab-12ab-12ab-123456abcdef', 'Description': '', 'Enabled': True, 'KeyUsage': 'ENCRYPT_DECRYPT', 'CreationDate': 1431872957.123, 'Arn': 'arn:aws:kms:us-east-1:000000000000:key/1234abcd-12ab-12ab-12ab-123456abcdef', 'AWSAccountId': '000000000000'}} # TODO: see what the format of this response is and make it so that the alias gets attached properly response = kms.create_key() # create_alias has no output kms.create_alias('alias/kaurna', response['KeyMetadata']['KeyId']) return True
def test__list_aliases(): region = "eu-west-1" kms = boto.kms.connect_to_region(region) create_resp = kms.create_key() key_id = create_resp['KeyMetadata']['KeyId'] kms.create_alias('alias/my-alias1', key_id) kms.create_alias('alias/my-alias2', key_id) kms.create_alias('alias/my-alias3', key_id) resp = kms.list_aliases() resp['Truncated'].should.be.false aliases = resp['Aliases'] def has_correct_arn(alias_obj): alias_name = alias_obj['AliasName'] alias_arn = alias_obj['AliasArn'] return re.match(r'arn:aws:kms:{region}:\d{{12}}:{alias_name}'.format(region=region, alias_name=alias_name), alias_arn) len([alias for alias in aliases if has_correct_arn(alias) and 'alias/aws/ebs' == alias['AliasName']]).should.equal(1) len([alias for alias in aliases if has_correct_arn(alias) and 'alias/aws/rds' == alias['AliasName']]).should.equal(1) len([alias for alias in aliases if has_correct_arn(alias) and 'alias/aws/redshift' == alias['AliasName']]).should.equal(1) len([alias for alias in aliases if has_correct_arn(alias) and 'alias/aws/s3' == alias['AliasName']]).should.equal(1) len([alias for alias in aliases if has_correct_arn(alias) and 'alias/my-alias1' == alias['AliasName']]).should.equal(1) len([alias for alias in aliases if has_correct_arn(alias) and 'alias/my-alias2' == alias['AliasName']]).should.equal(1) len([alias for alias in aliases if 'TargetKeyId' in alias and key_id == alias['TargetKeyId']]).should.equal(3) len(aliases).should.equal(7)