async def fetch_sns_topic(account_id: str, region: str,
resource_name: str) -> dict:
from consoleme.lib.policies import get_aws_config_history_url_for_resource
regions = await get_enabled_regions_for_account(account_id)
if region not in regions:
raise InvalidInvocationArgument(
f"Region '{region}' is not valid region on account '{account_id}'."
)
arn: str = f"arn:aws:sns:{region}:{account_id}:{resource_name}"
client = await sync_to_async(boto3_cached_conn)(
"sns",
account_number=account_id,
assume_role=config.get("policies.role_name"),
region=region,
sts_client_kwargs=dict(
region_name=config.region,
endpoint_url=f"https://sts.{config.region}.amazonaws.com",
),
)
result: Dict = await sync_to_async(get_topic_attributes)(
account_number=account_id,
assume_role=config.get("policies.role_name"),
TopicArn=arn,
region=region,
sts_client_kwargs=dict(
region_name=config.region,
endpoint_url=f"https://sts.{config.region}.amazonaws.com",
),
)
tags: Dict = await sync_to_async(client.list_tags_for_resource
)(ResourceArn=arn)
result["TagSet"] = tags["Tags"]
if not isinstance(result["Policy"], dict):
result["Policy"] = json.loads(result["Policy"])
result[
"config_timeline_url"] = await get_aws_config_history_url_for_resource(
account_id,
arn,
resource_name,
"AWS::SNS::Topic",
region=region,
)
return result
async def fetch_sqs_queue(account_id: str, region: str,
resource_name: str) -> dict:
from consoleme.lib.policies import get_aws_config_history_url_for_resource
regions = await get_enabled_regions_for_account(account_id)
if region not in regions:
raise InvalidInvocationArgument(
f"Region '{region}' is not valid region on account '{account_id}'."
)
queue_url: str = await sync_to_async(get_queue_url)(
account_number=account_id,
assume_role=config.get("policies.role_name"),
region=region,
QueueName=resource_name,
sts_client_kwargs=dict(
region_name=config.region,
endpoint_url=f"https://sts.{config.region}.amazonaws.com",
),
)
result: Dict = await sync_to_async(get_queue_attributes)(
account_number=account_id,
assume_role=config.get("policies.role_name"),
region=region,
QueueUrl=queue_url,
AttributeNames=["All"],
sts_client_kwargs=dict(
region_name=config.region,
endpoint_url=f"https://sts.{config.region}.amazonaws.com",
),
)
tags: Dict = await sync_to_async(list_queue_tags)(
account_number=account_id,
assume_role=config.get("policies.role_name"),
region=region,
QueueUrl=queue_url,
sts_client_kwargs=dict(
region_name=config.region,
endpoint_url=f"https://sts.{config.region}.amazonaws.com",
),
)
result["TagSet"]: list = []
result["QueueUrl"]: str = queue_url
if tags:
result["TagSet"] = [{"Key": k, "Value": v} for k, v in tags.items()]
if result.get("CreatedTimestamp"):
result["created_time"] = datetime.utcfromtimestamp(
int(result["CreatedTimestamp"])).isoformat()
if result.get("LastModifiedTimestamp"):
result["updated_time"] = datetime.utcfromtimestamp(
int(result["LastModifiedTimestamp"])).isoformat()
# Unfortunately, the queue_url we get from our `get_queue_url` call above doesn't match the ID of the queue in
# AWS Config, so we must hack our own.
queue_url_manual = (
f"https://sqs.{region}.amazonaws.com/{account_id}/{resource_name}")
result[
"config_timeline_url"] = await get_aws_config_history_url_for_resource(
account_id,
queue_url_manual,
resource_name,
"AWS::SQS::Queue",
region=region,
)
return result