refined-sts-integration-test

Author: general-kroll-4-life

test/registry/src/aws/v0.1.0/services/pseudo_s3.yaml

@@ -455,6 +455,37 @@ components:
           type: string
       type: object
   x-stackQL-resources:
+    buckets_list_only:
+      name: buckets_list_only
+      id: aws.pseudo_s3.buckets_list_only
+      x-cfn-schema-name: Bucket
+      x-cfn-type-name: AWS::S3::Bucket
+      x-identifiers:
+        - BucketName
+      x-type: cloud_control_view
+      methods: {}
+      sqlVerbs:
+        insert: []
+        delete: []
+        update: []
+      config:
+        views:
+          select:
+            predicate: sqlDialect == "sqlite3"
+            ddl: |-
+              SELECT
+              region,
+              JSON_EXTRACT(Properties, '$.BucketName') as bucket_name
+              FROM aws.cloud_control.resources WHERE data__TypeName = 'AWS::S3::Bucket'
+              AND region = 'us-east-1'
+            fallback:
+              predicate: sqlDialect == "postgres"
+              ddl: |-
+                SELECT
+                region,
+                json_extract_path_text(Properties, 'BucketName') as bucket_name
+                FROM aws.cloud_control.resources WHERE data__TypeName = 'AWS::S3::Bucket'
+                AND region = 'us-east-1'
     s3_bucket_listing:
       name: s3_bucket_listing
       id: aws.pseudo_s3.s3_bucket_listing

test/robot/foreign-integration-traffic-lights/stackql_foreign_traffic_light_integration_from_cmd_line.robot

@@ -9,37 +9,14 @@ Nop From Lib
     ${result} =     Nop Cloud Integration Keyword
     Should Be Equal    ${result}    PASS
 
-
-AWS S3 Buckets Location Constraint
-    Sleep    2s
-    ${awsRoleArn} =    Get Environment Variable    STACKQL_AUDIT_ROLE_ARN
-    Should Not Be Empty    ${awsRoleArn}
-    ${awsAuthCfg} =    Catenate
-    ...    { "aws": { "type":"aws_assume_role", "keyIDenvvar": "AWS_ACCESS_KEY_ID", "credentialsenvvar": "AWS_SECRET_ACCESS_KEY", "aws_role_arn": "${awsRoleArn}" } }
-    ${locactionConstraintQuery} =    Catenate
-    ...    select LocationConstraint from aws.s3.bucket_locations where region = 'ap-southeast-1' and Bucket = 'stackql-trial-bucket-01';
-    ${result} =    Run Process
-    ...    ${STACKQL_EXE}
-    ...    \-\-auth
-    ...    ${awsAuthCfg}
-    ...    \-\-registry
-    ...    { "url": "file://${REPOSITORY_ROOT}/test/registry", "localDocRoot": "${REPOSITORY_ROOT}/test/registry", "verifyConfig": { "nopVerify": true } }
-    ...    exec
-    ...    ${locactionConstraintQuery}
-    ...    cwd=${REPOSITORY_ROOT}
-    ...    stdout=${CURDIR}/tmp/AWS-S3-Buckets-Location-Constraint.tmp
-    ...    stderr=${CURDIR}/tmp/AWS-S3-Buckets-Location-Constraint-stderr.tmp
-    Should Be Equal As Integers    ${result.rc}           0
-    Should Contain                 ${result.stdout}       ap\-southeast\-1
-
 AWS S3 Buckets List
     Sleep    2s
     ${awsRoleArn} =    Get Environment Variable    STACKQL_AUDIT_ROLE_ARN
     Should Not Be Empty    ${awsRoleArn}
     ${awsAuthCfg} =    Catenate
     ...    { "aws": { "type":"aws_assume_role", "keyIDenvvar": "AWS_ACCESS_KEY_ID", "credentialsenvvar": "AWS_SECRET_ACCESS_KEY", "aws_role_arn": "${awsRoleArn}" } }
     ${bucketsListQuery} =    Catenate
-    ...    select * from aws.s3.buckets where region = 'us-east-1' order by BucketArn desc;
+    ...    select * from aws.pseudo_s3.buckets_list_only where region = 'ap-southeast-2';
    ${result} =    Run Process
     ...    ${STACKQL_EXE}
     ...    \-\-auth
@@ -53,47 +30,3 @@ AWS S3 Buckets List
     ...    stderr=${CURDIR}/tmp/AWS-S3-Buckets-List-stderr.tmp
     Should Be Equal As Integers    ${result.rc}           0
     Should Contain                 ${result.stdout}       stackql\-trial\-bucket\-02
-
-AWS S3 Bucket Objects List
-    Sleep    2s
-    ${awsRoleArn} =    Get Environment Variable    STACKQL_AUDIT_ROLE_ARN
-    Should Not Be Empty    ${awsRoleArn}
-    ${awsAuthCfg} =    Catenate
-    ...    { "aws": { "type":"aws_assume_role", "keyIDenvvar": "AWS_ACCESS_KEY_ID", "credentialsenvvar": "AWS_SECRET_ACCESS_KEY", "aws_role_arn": "${awsRoleArn}" } }
-    ${bucketObjectsListQuery} =    Catenate
-    ...    select * from aws.s3.objects where Bucket = 'stackql-trial-bucket-02' and region = 'ap-southeast-2';
-    ${result} =    Run Process
-    ...    ${STACKQL_EXE}
-    ...    \-\-auth
-    ...    ${awsAuthCfg}
-    ...    \-\-registry
-    ...    { "url": "file://${REPOSITORY_ROOT}/test/registry", "localDocRoot": "${REPOSITORY_ROOT}/test/registry", "verifyConfig": { "nopVerify": true } }
-    ...    exec
-    ...    ${bucketObjectsListQuery}
-    ...    cwd=${REPOSITORY_ROOT}
-    ...    stdout=${CURDIR}/tmp/AWS-S3-Bucket-Objects-List.tmp
-    ...    stderr=${CURDIR}/tmp/AWS-S3-Bucket-Objects-List-stderr.tmp
-    Should Be Equal As Integers    ${result.rc}           0
-    Should Contain                 ${result.stdout}       docs/advanced
-
-AWS S3 Bucket ABAC Works
-    Sleep    2s
-    ${awsRoleArn} =    Get Environment Variable    STACKQL_AUDIT_ROLE_ARN
-    Should Not Be Empty    ${awsRoleArn}
-    ${awsAuthCfg} =    Catenate
-    ...    { "aws": { "type": "aws_assume_role", "keyIDenvvar": "AWS_ACCESS_KEY_ID", "credentialsenvvar": "AWS_SECRET_ACCESS_KEY", "aws_role_arn": "${awsRoleArn}" } }
-    ${bucketObjectsListQuery} =    Catenate
-    ...    select * from aws.s3.bucket_abac where Bucket = 'stackql-trial-bucket-02' and region = 'ap-southeast-2';
-    ${result} =    Run Process
-    ...    ${STACKQL_EXE}
-    ...    \-\-auth
-    ...    ${awsAuthCfg}
-    ...    \-\-registry
-    ...    { "url": "file://${REPOSITORY_ROOT}/test/registry", "localDocRoot": "${REPOSITORY_ROOT}/test/registry", "verifyConfig": { "nopVerify": true } }
-    ...    exec
-    ...    ${bucketObjectsListQuery}
-    ...    cwd=${REPOSITORY_ROOT}
-    ...    stdout=${CURDIR}/tmp/AWS-S3-Bucket-Objects-List.tmp
-    ...    stderr=${CURDIR}/tmp/AWS-S3-Bucket-Objects-List-stderr.tmp
-    Should Be Equal As Integers    ${result.rc}           0
-    Should Contain                 ${result.stdout}       stackql\-trial\-bucket\-02