From 68a0b4740e1aab2c507547ab985c7c1dc436d9c9 Mon Sep 17 00:00:00 2001
From: lian-manonog <lian.manonog@gmail.com>
Date: Tue, 13 Aug 2024 17:16:12 +0100
Subject: wip: running terraform apply to continue fixing terraform
 infrastructure

---
 .gitignore | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 .gitignore

(limited to '.gitignore')

diff --git a/.gitignore b/.gitignore
new file mode 100644
index 0000000..5861f48
--- /dev/null
+++ b/.gitignore
@@ -0,0 +1,5 @@
+*.tfstate
+*.tfstate.*
+*.tfvars
+*.tfvars.json
+.terraform.tfstate.lock.info
\ No newline at end of file
-- 
cgit v1.2.3


From 46673b671bef834dc2e043e7845e8a5b8fee9d34 Mon Sep 17 00:00:00 2001
From: lian-manonog <lian.manonog@gmail.com>
Date: Wed, 14 Aug 2024 12:38:08 +0100
Subject: update gitignore

---
 .gitignore | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to '.gitignore')

diff --git a/.gitignore b/.gitignore
index 5861f48..239c7e0 100644
--- a/.gitignore
+++ b/.gitignore
@@ -2,4 +2,5 @@
 *.tfstate.*
 *.tfvars
 *.tfvars.json
-.terraform.tfstate.lock.info
\ No newline at end of file
+.terraform.tfstate.lock.info
+*.zip
\ No newline at end of file
-- 
cgit v1.2.3


From 101e1e24cb38b6a45661b723881e2b2d6dd2fb07 Mon Sep 17 00:00:00 2001
From: lian-manonog <lian.manonog@gmail.com>
Date: Wed, 14 Aug 2024 14:35:05 +0100
Subject: wip: terraform debugging

---
 .gitignore              |  5 ++++-
 src/load_lambda.py      |  2 ++
 src/transform_lambda.py |  2 ++
 terraform/events.tf     | 18 ++++++++++--------
 terraform/s3.tf         | 34 +++++++++++++++++-----------------
 5 files changed, 35 insertions(+), 26 deletions(-)

(limited to '.gitignore')

diff --git a/.gitignore b/.gitignore
index 239c7e0..d759665 100644
--- a/.gitignore
+++ b/.gitignore
@@ -3,4 +3,7 @@
 *.tfvars
 *.tfvars.json
 .terraform.tfstate.lock.info
-*.zip
\ No newline at end of file
+*.zip
+.terraform/
+.terraform*
+log*
\ No newline at end of file
diff --git a/src/load_lambda.py b/src/load_lambda.py
index e69de29..6ee681f 100644
--- a/src/load_lambda.py
+++ b/src/load_lambda.py
@@ -0,0 +1,2 @@
+def lambda_handler():
+    pass
\ No newline at end of file
diff --git a/src/transform_lambda.py b/src/transform_lambda.py
index e69de29..6ee681f 100644
--- a/src/transform_lambda.py
+++ b/src/transform_lambda.py
@@ -0,0 +1,2 @@
+def lambda_handler():
+    pass
\ No newline at end of file
diff --git a/terraform/events.tf b/terraform/events.tf
index 6744085..9fd89e4 100644
--- a/terraform/events.tf
+++ b/terraform/events.tf
@@ -1,7 +1,17 @@
+resource "aws_cloudwatch_event_target" "extract_lambda_cw_event" {
+  rule      = aws_cloudwatch_event_rule.lambda_trigger.name
+  target_id = "TargetFunctionV1"
+  arn       = aws_lambda_function.extract_lambda.arn #replaced lambda name placeholder
+  force_destroy = true
+}
+
 resource "aws_cloudwatch_event_rule" "lambda_trigger" {
   name                = "lambda-scheduled-trigger"
   description         = "Schedule to trigger the Lambda function"
   schedule_expression = "rate(30 minutes)"
+  force_destroy = true
+  # depends_on = [ 
+  #   aws_cloudwatch_event_target.extract_lambda_cw_event]
   
 #   event_pattern = jsonencode({
 #     detail-type = 
@@ -10,14 +20,6 @@ resource "aws_cloudwatch_event_rule" "lambda_trigger" {
 #   })
 }
 
-
-resource "aws_cloudwatch_event_target" "extract_lambda_cw_event" {
-  rule      = aws_cloudwatch_event_rule.lambda_trigger.name
-  target_id = "TargetFunctionV1"
-  arn       = aws_lambda_function.extract_lambda.arn #replaced lambda name placeholder
-}
-
-
 resource "aws_lambda_permission" "allow_eventbridge" {
   statement_id  = "AllowExecutionFromEventBridge"
   action        = "lambda:InvokeFunction"
diff --git a/terraform/s3.tf b/terraform/s3.tf
index 8ab5622..4c06b8e 100644
--- a/terraform/s3.tf
+++ b/terraform/s3.tf
@@ -32,20 +32,20 @@ resource "aws_s3_bucket" "lambda_code_bucket" {
     bucket_prefix = "${var.s3_code_bucket_name}-"
 }
 
-resource "aws_s3_object" "extract_lambda_code" {
-  bucket = aws_s3_bucket.lambda_code_bucket.bucket
-  key = "${var.extract_lambda_name}/extract_function.zip"
-  source = "${path.module}/../extract_function.zip"
-} # << can't figure out how this is being used but we seem to need it
-
-resource "aws_s3_object" "transform_lambda_code" {
-  bucket = aws_s3_bucket.lambda_code_bucket.bucket
-  key = "${var.transform_lambda_name}/transform_function.zip"
-  source = "${path.module}/../transform_function.zip"
-} # << can't figure out how this is being used but we seem to need it
-
-resource "aws_s3_object" "load_lambda_code" {
-  bucket = aws_s3_bucket.lambda_code_bucket.bucket
-  key = "${var.load_lambda_name}/load_function.zip"
-  source = "${path.module}/../load_function.zip"
-}
\ No newline at end of file
+# resource "aws_s3_object" "extract_lambda_code" {
+#   bucket = aws_s3_bucket.lambda_code_bucket.bucket
+#   key = "${var.extract_lambda_name}/extract_function.zip"
+#   source = "${path.module}/../extract_function.zip"
+# } # << can't figure out how this is being used but we seem to need it
+
+# resource "aws_s3_object" "transform_lambda_code" {
+#   bucket = aws_s3_bucket.lambda_code_bucket.bucket
+#   key = "${var.transform_lambda_name}/transform_function.zip"
+#   source = "${path.module}/../transform_function.zip"
+# } # << can't figure out how this is being used but we seem to need it
+
+# resource "aws_s3_object" "load_lambda_code" {
+#   bucket = aws_s3_bucket.lambda_code_bucket.bucket
+#   key = "${var.load_lambda_name}/load_function.zip"
+#   source = "${path.module}/../load_function.zip"
+# }
\ No newline at end of file
-- 
cgit v1.2.3


From 5cdcbd64e9f4dba5f3ed8e8eb9f6e91e1adde0ba Mon Sep 17 00:00:00 2001
From: Alex Schofield <git@ajschof.me>
Date: Wed, 14 Aug 2024 22:51:32 +0100
Subject: chore(gitignore): ignore .DS_Store

---
 .gitignore | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to '.gitignore')

diff --git a/.gitignore b/.gitignore
index d759665..d1df545 100644
--- a/.gitignore
+++ b/.gitignore
@@ -6,4 +6,5 @@
 *.zip
 .terraform/
 .terraform*
-log*
\ No newline at end of file
+log*
+.DS_Store
-- 
cgit v1.2.3


From fe548561acc5e133e3bee4026aab85db2e511bcd Mon Sep 17 00:00:00 2001
From: lian-manonog <lian.manonog@gmail.com>
Date: Thu, 15 Aug 2024 13:51:53 +0100
Subject: wip: secrets manager pushing to merge with extract_lambda

---
 .gitignore                   |  1 +
 src/extract_lambda.py        |  1 +
 src/secrets_manager.py       | 48 ++++++++++++++++++++++++++++++++++++++++++++
 test/test_secrets_manager.py | 34 +++++++++++++++++++++++++++++++
 4 files changed, 84 insertions(+)
 create mode 100644 src/secrets_manager.py
 create mode 100644 test/test_secrets_manager.py

(limited to '.gitignore')

diff --git a/.gitignore b/.gitignore
index d1df545..d164c3f 100644
--- a/.gitignore
+++ b/.gitignore
@@ -8,3 +8,4 @@
 .terraform*
 log*
 .DS_Store
+venv
\ No newline at end of file
diff --git a/src/extract_lambda.py b/src/extract_lambda.py
index 7d56c66..faa1d30 100644
--- a/src/extract_lambda.py
+++ b/src/extract_lambda.py
@@ -2,6 +2,7 @@ from pg8000.native import Connection, Error, DatabaseError, InterfaceError
 from dotenv import load_dotenv
 import os
 
+
 load_dotenv()
 
 def extract():
diff --git a/src/secrets_manager.py b/src/secrets_manager.py
new file mode 100644
index 0000000..c0fb61e
--- /dev/null
+++ b/src/secrets_manager.py
@@ -0,0 +1,48 @@
+import boto3
+from botocore.exceptions import ClientError
+import json
+
+
+def sm_client():
+    sm_client = boto3.client('secretsmanager')
+    yield sm_client
+
+def create_secret(sm_client, secret_name, cohort_id, user, password, host, database, port):
+    secret = {
+        "cohort_id": cohort_id,
+        "user": user,
+        "password": password,
+        "host": host,
+        "database": database,
+        "port": port
+    }
+
+    response = sm_client.create_secret(
+        Name = secret_name,
+        SecretString = json.dumps(secret)
+    )
+
+    print(response)
+    return response
+
+def list_secret(sm_client):
+    response = sm_client.list_secrets()
+    secret_dict = response['SecretList']
+    secret_names = []
+    for items in secret_dict:
+        secret_names.append(items['Name'])
+    print(f'{len(secret_names)} secret(s) available')
+    for name in secret_names:
+        print(name)
+    return secret_names
+
+def retrieve_secrets(sm_client):
+    response = sm_client.get_secrets(
+        
+    )
+
+
+
+#retrieve secret
+#so lambda can access totesy db
+#so lambda connect to the db and then retrieve the data
\ No newline at end of file
diff --git a/test/test_secrets_manager.py b/test/test_secrets_manager.py
new file mode 100644
index 0000000..86533bc
--- /dev/null
+++ b/test/test_secrets_manager.py
@@ -0,0 +1,34 @@
+from src.secrets_manager import sm_client, create_secret, list_secret
+import boto3
+from moto import mock_aws
+import json
+import pytest 
+import os
+
+pytest.fixture(scope='class')
+def mock_aws_credentials():
+    """Mocked AWS Credentials for moto."""
+    os.environ["AWS_ACCESS_KEY_ID"] = "testing"
+    os.environ["AWS_SECRET_ACCESS_KEY"] = "testing"
+    os.environ["AWS_SECURITY_TOKEN"] = "testing"
+    os.environ["AWS_SESSION_TOKEN"] = "testing"
+    os.environ["AWS_DEFAULT_REGION"] = "eu-west-2"
+
+@pytest.fixture(scope='class')
+def mock_sm_client(mock_aws_credentials):
+    with mock_aws():
+        yield boto3.client('secretsmanager')
+
+
+def test_create_secret_stores_secrets(mock_sm_client):
+    cohort_id = "test_cohort_id"
+    user = "test_user_id"
+    password = "test_password"
+    host = "test_host"
+    database = "test_database"
+    port = "test_port"
+
+    secret_name = "test_secret"
+    response = create_secret(mock_sm_client, secret_name, cohort_id, user, password, host, database, port)
+    
+    assert response['Name'] == secret_name
\ No newline at end of file
-- 
cgit v1.2.3