mirror of
https://github.com/grafana/grafana.git
synced 2025-08-02 16:23:11 +08:00
2d660ee502
* restrict usage of providers and assume role according to grafana config * update docs * Update docs/sources/datasources/cloudwatch.md Co-authored-by: Arve Knudsen <arve.knudsen@gmail.com> * Update pkg/tsdb/cloudwatch/cloudwatch.go Co-authored-by: Arve Knudsen <arve.knudsen@gmail.com> * Update pkg/tsdb/cloudwatch/session_test.go Co-authored-by: Arve Knudsen <arve.knudsen@gmail.com> * pr feedback * fix failing test Co-authored-by: Arve Knudsen <arve.knudsen@gmail.com>
153 lines
4.8 KiB
Go
153 lines
4.8 KiB
Go
package cloudwatch
|
|
|
|
import (
|
|
"context"
|
|
|
|
"github.com/aws/aws-sdk-go/aws"
|
|
"github.com/aws/aws-sdk-go/aws/request"
|
|
"github.com/aws/aws-sdk-go/service/cloudwatch"
|
|
"github.com/aws/aws-sdk-go/service/cloudwatch/cloudwatchiface"
|
|
"github.com/aws/aws-sdk-go/service/cloudwatchlogs"
|
|
"github.com/aws/aws-sdk-go/service/cloudwatchlogs/cloudwatchlogsiface"
|
|
"github.com/aws/aws-sdk-go/service/ec2"
|
|
"github.com/aws/aws-sdk-go/service/ec2/ec2iface"
|
|
"github.com/aws/aws-sdk-go/service/resourcegroupstaggingapi"
|
|
"github.com/aws/aws-sdk-go/service/resourcegroupstaggingapi/resourcegroupstaggingapiiface"
|
|
"github.com/grafana/grafana/pkg/components/securejsondata"
|
|
"github.com/grafana/grafana/pkg/components/simplejson"
|
|
"github.com/grafana/grafana/pkg/models"
|
|
"github.com/grafana/grafana/pkg/setting"
|
|
)
|
|
|
|
type fakeDataSourceCfg struct {
|
|
assumeRoleARN string
|
|
externalID string
|
|
}
|
|
|
|
func fakeDataSource(cfgs ...fakeDataSourceCfg) *models.DataSource {
|
|
jsonData := simplejson.New()
|
|
jsonData.Set("defaultRegion", defaultRegion)
|
|
jsonData.Set("authType", "default")
|
|
for _, cfg := range cfgs {
|
|
if cfg.assumeRoleARN != "" {
|
|
jsonData.Set("assumeRoleArn", cfg.assumeRoleARN)
|
|
}
|
|
if cfg.externalID != "" {
|
|
jsonData.Set("externalId", cfg.externalID)
|
|
}
|
|
}
|
|
return &models.DataSource{
|
|
Id: 1,
|
|
Database: "default",
|
|
JsonData: jsonData,
|
|
SecureJsonData: securejsondata.SecureJsonData{},
|
|
}
|
|
}
|
|
|
|
type FakeCWLogsClient struct {
|
|
cloudwatchlogsiface.CloudWatchLogsAPI
|
|
logGroups cloudwatchlogs.DescribeLogGroupsOutput
|
|
logGroupFields cloudwatchlogs.GetLogGroupFieldsOutput
|
|
queryResults cloudwatchlogs.GetQueryResultsOutput
|
|
}
|
|
|
|
func (m FakeCWLogsClient) GetQueryResultsWithContext(ctx context.Context, input *cloudwatchlogs.GetQueryResultsInput, option ...request.Option) (*cloudwatchlogs.GetQueryResultsOutput, error) {
|
|
return &m.queryResults, nil
|
|
}
|
|
|
|
func (m FakeCWLogsClient) StartQueryWithContext(ctx context.Context, input *cloudwatchlogs.StartQueryInput, option ...request.Option) (*cloudwatchlogs.StartQueryOutput, error) {
|
|
return &cloudwatchlogs.StartQueryOutput{
|
|
QueryId: aws.String("abcd-efgh-ijkl-mnop"),
|
|
}, nil
|
|
}
|
|
|
|
func (m FakeCWLogsClient) StopQueryWithContext(ctx context.Context, input *cloudwatchlogs.StopQueryInput, option ...request.Option) (*cloudwatchlogs.StopQueryOutput, error) {
|
|
return &cloudwatchlogs.StopQueryOutput{
|
|
Success: aws.Bool(true),
|
|
}, nil
|
|
}
|
|
|
|
func (m FakeCWLogsClient) DescribeLogGroupsWithContext(ctx context.Context, input *cloudwatchlogs.DescribeLogGroupsInput, option ...request.Option) (*cloudwatchlogs.DescribeLogGroupsOutput, error) {
|
|
return &m.logGroups, nil
|
|
}
|
|
|
|
func (m FakeCWLogsClient) GetLogGroupFieldsWithContext(ctx context.Context, input *cloudwatchlogs.GetLogGroupFieldsInput, option ...request.Option) (*cloudwatchlogs.GetLogGroupFieldsOutput, error) {
|
|
return &m.logGroupFields, nil
|
|
}
|
|
|
|
type FakeCWClient struct {
|
|
cloudwatchiface.CloudWatchAPI
|
|
|
|
Metrics []*cloudwatch.Metric
|
|
}
|
|
|
|
func (c FakeCWClient) ListMetricsPages(input *cloudwatch.ListMetricsInput, fn func(*cloudwatch.ListMetricsOutput, bool) bool) error {
|
|
fn(&cloudwatch.ListMetricsOutput{
|
|
Metrics: c.Metrics,
|
|
}, true)
|
|
return nil
|
|
}
|
|
|
|
type fakeEC2Client struct {
|
|
ec2iface.EC2API
|
|
|
|
regions []string
|
|
reservations []*ec2.Reservation
|
|
}
|
|
|
|
func (c fakeEC2Client) DescribeRegions(*ec2.DescribeRegionsInput) (*ec2.DescribeRegionsOutput, error) {
|
|
regions := []*ec2.Region{}
|
|
for _, region := range c.regions {
|
|
regions = append(regions, &ec2.Region{
|
|
RegionName: aws.String(region),
|
|
})
|
|
}
|
|
return &ec2.DescribeRegionsOutput{
|
|
Regions: regions,
|
|
}, nil
|
|
}
|
|
|
|
func (c fakeEC2Client) DescribeInstancesPages(in *ec2.DescribeInstancesInput,
|
|
fn func(*ec2.DescribeInstancesOutput, bool) bool) error {
|
|
reservations := []*ec2.Reservation{}
|
|
for _, r := range c.reservations {
|
|
instances := []*ec2.Instance{}
|
|
for _, inst := range r.Instances {
|
|
if len(in.InstanceIds) == 0 {
|
|
instances = append(instances, inst)
|
|
continue
|
|
}
|
|
|
|
for _, id := range in.InstanceIds {
|
|
if *inst.InstanceId == *id {
|
|
instances = append(instances, inst)
|
|
}
|
|
}
|
|
}
|
|
reservation := &ec2.Reservation{Instances: instances}
|
|
reservations = append(reservations, reservation)
|
|
}
|
|
fn(&ec2.DescribeInstancesOutput{
|
|
Reservations: reservations,
|
|
}, true)
|
|
return nil
|
|
}
|
|
|
|
type fakeRGTAClient struct {
|
|
resourcegroupstaggingapiiface.ResourceGroupsTaggingAPIAPI
|
|
|
|
tagMapping []*resourcegroupstaggingapi.ResourceTagMapping
|
|
}
|
|
|
|
func (c fakeRGTAClient) GetResourcesPages(in *resourcegroupstaggingapi.GetResourcesInput,
|
|
fn func(*resourcegroupstaggingapi.GetResourcesOutput, bool) bool) error {
|
|
fn(&resourcegroupstaggingapi.GetResourcesOutput{
|
|
ResourceTagMappingList: c.tagMapping,
|
|
}, true)
|
|
return nil
|
|
}
|
|
|
|
func newTestConfig() *setting.Cfg {
|
|
return &setting.Cfg{AWSAllowedAuthProviders: []string{"default"}, AWSAssumeRoleEnabled: true}
|
|
}
|