AWS Replicator - regex match secretsmanager secrets based on their …

…ARNs (#70) Co-authored-by: Robert Lucian <[email protected]>
localstack · Jul 17, 2024 · 2f0ac6f · 2f0ac6f
1 parent ea21a52
commit 2f0ac6f
Show file tree

Hide file tree

Showing 3 changed files with 9 additions and 2 deletions.
diff --git a/aws-replicator/README.md b/aws-replicator/README.md
@@ -152,6 +152,7 @@ localstack extensions install "git+https://github.com/localstack/localstack-exte
 
 ## Change Log
 
+* `0.1.17`: Add basic support for ARN-based pattern-matching for `secretsmanager` resources
 * `0.1.16`: Update imports for localstack >=3.6 compatibility
 * `0.1.15`: Move localstack dependency installation to extra since it's provided at runtime
 * `0.1.14`: Install missing dependencies into proxy container for localstack >=3.4 compatibility

diff --git a/aws-replicator/aws_replicator/server/aws_request_forwarder.py b/aws-replicator/aws_replicator/server/aws_request_forwarder.py
@@ -9,7 +9,7 @@
 from localstack.constants import APPLICATION_JSON, LOCALHOST, LOCALHOST_HOSTNAME
 from localstack.http import Response
 from localstack.utils.aws import arns
-from localstack.utils.aws.arns import sqs_queue_arn
+from localstack.utils.aws.arns import secretsmanager_secret_arn, sqs_queue_arn
 from localstack.utils.aws.aws_stack import get_valid_regions
 from localstack.utils.aws.request_context import mock_aws_request_headers
 from localstack.utils.collections import ensure_list
@@ -118,6 +118,12 @@ def _request_matches_resource(
                 if re.match(resource_name_pattern, candidate):
                     return True
             return False
+        if service_name == "secretsmanager":
+            secret_id = context.service_request.get("SecretId") or ""
+            secret_arn = secretsmanager_secret_arn(
+                secret_id, account_id=context.account_id, region_name=context.region
+            )
+            return bool(re.match(resource_name_pattern, secret_arn))
         # TODO: add more resource patterns
         return True
 

diff --git a/aws-replicator/setup.cfg b/aws-replicator/setup.cfg
@@ -1,6 +1,6 @@
 [metadata]
 name = localstack-extension-aws-replicator
-version = 0.1.16
+version = 0.1.17
 summary = LocalStack Extension: AWS replicator
 description = Replicate AWS resources into your LocalStack instance
 long_description = file: README.md