Skip to content

Commit

Permalink
RUST-2049 Fix search index helpers and AWS Lambda tests (#1217)
Browse files Browse the repository at this point in the history
  • Loading branch information
@abr-egn
abr-egn authored Oct 4, 2024
1 parent 7a408c3 commit 373fe17
Show file tree
Hide file tree
Showing 2 changed files with 60 additions and 16 deletions.
38 changes: 22 additions & 16 deletions .evergreen/config.yml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -543,21 +543,25 @@ task_groups:
- func: "make files executable"
- func: "install rust"
- func: "install junit dependencies"
- command: ec2.assume_role
params:
role_arn: ${aws_test_secrets_role}
- command: subprocess.exec
params:
working_dir: src
binary: bash
include_expansions_in_env:
- DRIVERS_ATLAS_PUBLIC_API_KEY
- DRIVERS_ATLAS_PRIVATE_API_KEY
- DRIVERS_ATLAS_GROUP_ID
- DRIVERS_ATLAS_LAMBDA_USER
- DRIVERS_ATLAS_LAMBDA_PASSWORD
- AWS_ACCESS_KEY_ID
- AWS_SECRET_ACCESS_KEY
- AWS_SESSION_TOKEN
- DRIVERS_TOOLS
- LAMBDA_STACK_NAME
- MONGODB_VERSION
env:
MONGODB_VERSION: "7.0"
args:
- .evergreen/with-secrets.sh
- drivers/atlas-dev
- ${DRIVERS_TOOLS}/.evergreen/atlas/setup-atlas-cluster.sh
- command: expansions.update
params:
Expand All @@ -568,11 +572,10 @@ task_groups:
working_dir: src
binary: bash
include_expansions_in_env:
- DRIVERS_ATLAS_PUBLIC_API_KEY
- DRIVERS_ATLAS_PRIVATE_API_KEY
- DRIVERS_ATLAS_GROUP_ID
- CLUSTER_NAME
args:
- .evergreen/with-secrets.sh
- drivers/atlas-dev
- ${DRIVERS_TOOLS}/.evergreen/atlas/teardown-atlas-cluster.sh
- func: "upload test results"
tasks:
Expand All @@ -588,19 +591,23 @@ task_groups:
- func: "make files executable"
- func: "install rust"
- func: "install cargo-lambda"
- command: ec2.assume_role
params:
role_arn: ${aws_test_secrets_role}
- command: subprocess.exec
params:
working_dir: src
binary: bash
include_expansions_in_env:
- DRIVERS_ATLAS_PUBLIC_API_KEY
- DRIVERS_ATLAS_PRIVATE_API_KEY
- DRIVERS_ATLAS_GROUP_ID
- DRIVERS_ATLAS_LAMBDA_USER
- DRIVERS_ATLAS_LAMBDA_PASSWORD
- AWS_ACCESS_KEY_ID
- AWS_SECRET_ACCESS_KEY
- AWS_SESSION_TOKEN
- DRIVERS_TOOLS
- LAMBDA_STACK_NAME
- MONGODB_VERSION
args:
- .evergreen/with-secrets.sh
- drivers/atlas-dev
- ${DRIVERS_TOOLS}/.evergreen/atlas/setup-atlas-cluster.sh
- command: expansions.update
params:
Expand All @@ -611,11 +618,10 @@ task_groups:
working_dir: src
binary: bash
include_expansions_in_env:
- DRIVERS_ATLAS_PUBLIC_API_KEY
- DRIVERS_ATLAS_PRIVATE_API_KEY
- DRIVERS_ATLAS_GROUP_ID
- CLUSTER_NAME
args:
- .evergreen/with-secrets.sh
- drivers/atlas-dev
- ${DRIVERS_TOOLS}/.evergreen/atlas/teardown-atlas-cluster.sh
setup_group_can_fail_task: true
setup_group_timeout_secs: 1800
Expand Down
38 changes: 38 additions & 0 deletions .evergreen/with-secrets.sh
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,38 @@
#!/bin/bash

# This script takes an AWS Secrets Manager vault name and a command line
# to execute, e.g.
#
# ./with-secrets drivers/atlas-dev setup-atlas-cluster.sh
#
# It fetches the secrets from the vault, populates the local environment
# variables with those secrets, and then executes the command line.
#
# Secrets are cached based on the name of the vault, so if an earlier
# task has fetched the same vault those secrets will be reused.

vault=$1
shift

if [ -z "${vault}" ] || [ -z "$@" ]; then
echo "At least two arguments (vault name and command) are required."
exit 1
fi

vault_cache_key=$(echo "${vault}" | sed -e s/\\\//_/)
vault_cache_file="secrets-${vault_cache_key}.sh"

if [ -f "${vault_cache_file}" ]; then
# Cached, hooray
. "${vault_cache_file}"
else
# Need to actually fetch from the vault
if [ -z "${DRIVERS_TOOLS}" ]; then
echo "\$DRIVERS_TOOLS must be set."
exit 1
fi
. "${DRIVERS_TOOLS}/.evergreen/secrets_handling/setup-secrets.sh" "${vault}"
mv secrets-export.sh "${vault_cache_file}"
fi

exec "$@"

0 comments on commit 373fe17

Please sign in to comment.