package software.amazon.iot.logging; import org.mockito.ArgumentCaptor; import software.amazon.awssdk.services.iot.model.InternalFailureException; import software.amazon.awssdk.services.iot.model.InvalidRequestException; import software.amazon.awssdk.services.iot.model.IotRequest; import software.amazon.awssdk.services.iot.model.NotConfiguredException; import software.amazon.awssdk.services.iot.model.ServiceUnavailableException; import software.amazon.awssdk.services.iot.model.ThrottlingException; import software.amazon.awssdk.services.iot.model.UnauthorizedException; import software.amazon.cloudformation.proxy.AmazonWebServicesClientProxy; import software.amazon.cloudformation.proxy.HandlerErrorCode; import software.amazon.cloudformation.proxy.Logger; import software.amazon.cloudformation.proxy.OperationStatus; import software.amazon.cloudformation.proxy.ProgressEvent; import software.amazon.cloudformation.proxy.ResourceHandlerRequest; import org.junit.jupiter.api.BeforeEach; import org.junit.jupiter.api.Test; import org.junit.jupiter.api.extension.ExtendWith; import org.mockito.junit.jupiter.MockitoExtension; import static org.assertj.core.api.Assertions.assertThat; import static org.mockito.ArgumentMatchers.any; import static org.mockito.ArgumentMatchers.eq; import static org.mockito.Mockito.doThrow; import static org.mockito.Mockito.mock; import static org.mockito.Mockito.times; import static org.mockito.Mockito.verify; import static org.mockito.Mockito.when; @ExtendWith(MockitoExtension.class) public class CreateHandlerTest extends HandlerTestBase { private CreateHandler handler; @BeforeEach public void setup() { proxy = mock(AmazonWebServicesClientProxy.class); logger = mock(Logger.class); handler = new CreateHandler(); } @Test public void handleRequest_SimpleSuccess_WithAllLogsDisabled() { ResourceModel model = ResourceModel.builder() .accountId(ACCOUNT_ID) .defaultLogLevel(DEFAULT_LOG_LEVEL) .roleArn(ROLE_ARN) .build(); ResourceHandlerRequest request = createCfnRequest(model); when(proxy.injectCredentialsAndInvokeV2(eq(GET_REQUEST), any())) .thenReturn(GET_RESPONSE_WITH_ALL_LOGS_DISABLED); final ProgressEvent response = handler.handleRequest(proxy, request, null, logger); ArgumentCaptor iotRequestCaptor = ArgumentCaptor.forClass(IotRequest.class); verify(proxy, times(2)).injectCredentialsAndInvokeV2(iotRequestCaptor.capture(), any()); assertThat(iotRequestCaptor.getAllValues().get(1)).isEqualTo(SET_REQUEST); assertThat(response).isNotNull(); assertThat(response.getStatus()).isEqualTo(OperationStatus.SUCCESS); assertThat(response.getCallbackContext()).isNull(); assertThat(response.getCallbackDelaySeconds()).isEqualTo(0); assertThat(response.getResourceModels()).isNull(); assertThat(response.getMessage()).isNull(); assertThat(response.getErrorCode()).isNull(); assertThat(response.getResourceModel()).isEqualTo(model); } @Test public void handleRequest_SimpleSuccess_WithLoggingNotConfigured() { ResourceModel model = ResourceModel.builder() .accountId(ACCOUNT_ID) .defaultLogLevel(DEFAULT_LOG_LEVEL) .roleArn(ROLE_ARN) .build(); ResourceHandlerRequest request = createCfnRequest(model); doThrow(NotConfiguredException.builder().build()) .when(proxy) .injectCredentialsAndInvokeV2(eq(GET_REQUEST), any()); final ProgressEvent response = handler.handleRequest(proxy, request, null, logger); ArgumentCaptor iotRequestCaptor = ArgumentCaptor.forClass(IotRequest.class); verify(proxy, times(2)).injectCredentialsAndInvokeV2(iotRequestCaptor.capture(), any()); assertThat(iotRequestCaptor.getAllValues().get(1)).isEqualTo(SET_REQUEST); assertThat(response).isNotNull(); assertThat(response.getStatus()).isEqualTo(OperationStatus.SUCCESS); assertThat(response.getCallbackContext()).isNull(); assertThat(response.getCallbackDelaySeconds()).isEqualTo(0); assertThat(response.getResourceModels()).isNull(); assertThat(response.getMessage()).isNull(); assertThat(response.getErrorCode()).isNull(); assertThat(response.getResourceModel()).isEqualTo(model); } @Test public void handleRequest_WrongAccountId_ExpectIRE() { ResourceModel model = ResourceModel.builder() .accountId("000111222333") .defaultLogLevel(DEFAULT_LOG_LEVEL) .roleArn(ROLE_ARN) .build(); ResourceHandlerRequest cfnRequest = createCfnRequest(model); final ProgressEvent response = handler.handleRequest(proxy, cfnRequest, null, logger); ProgressEvent expectedResult = ProgressEvent.failed( model, null, HandlerErrorCode.InvalidRequest, "AccountId in the template (000111222333) doesn't match actual: 123456789012."); assertThat(response).isEqualTo(expectedResult); } @Test public void handleRequest_InvalidRequestException() { ResourceHandlerRequest cfnRequest = createCfnRequest(createDefaultModel()); doThrow(InvalidRequestException.class) .when(proxy) .injectCredentialsAndInvokeV2(any(), any()); final ProgressEvent progressEvent = handler.handleRequest(proxy, cfnRequest, null, logger); assertThat(progressEvent.getStatus()).isEqualTo(OperationStatus.FAILED); assertThat(progressEvent.getErrorCode()).isEqualTo(HandlerErrorCode.InvalidRequest); } @Test public void handleRequest_UnauthorizedException() { ResourceHandlerRequest cfnRequest = createCfnRequest(createDefaultModel()); doThrow(UnauthorizedException.class) .when(proxy) .injectCredentialsAndInvokeV2(any(), any()); final ProgressEvent progressEvent = handler.handleRequest(proxy, cfnRequest, null, logger); assertThat(progressEvent.getStatus()).isEqualTo(OperationStatus.FAILED); assertThat(progressEvent.getErrorCode()).isEqualTo(HandlerErrorCode.AccessDenied); } @Test public void handleRequest_InternalFailureException() { ResourceHandlerRequest cfnRequest = createCfnRequest(createDefaultModel()); doThrow(InternalFailureException.class) .when(proxy) .injectCredentialsAndInvokeV2(any(), any()); final ProgressEvent progressEvent = handler.handleRequest(proxy, cfnRequest, null, logger); assertThat(progressEvent.getStatus()).isEqualTo(OperationStatus.FAILED); assertThat(progressEvent.getErrorCode()).isEqualTo(HandlerErrorCode.InternalFailure); } @Test public void handleRequest_ThrottlingException() { ResourceHandlerRequest cfnRequest = createCfnRequest(createDefaultModel()); doThrow(ThrottlingException.class) .when(proxy) .injectCredentialsAndInvokeV2(any(), any()); final ProgressEvent progressEvent = handler.handleRequest(proxy, cfnRequest, null, logger); assertThat(progressEvent.getStatus()).isEqualTo(OperationStatus.FAILED); assertThat(progressEvent.getErrorCode()).isEqualTo(HandlerErrorCode.Throttling); } @Test public void handleRequest_ServiceUnavailableException() { ResourceHandlerRequest cfnRequest = createCfnRequest(createDefaultModel()); doThrow(ServiceUnavailableException.class) .when(proxy) .injectCredentialsAndInvokeV2(any(), any()); final ProgressEvent progressEvent = handler.handleRequest(proxy, cfnRequest, null, logger); assertThat(progressEvent.getStatus()).isEqualTo(OperationStatus.FAILED); assertThat(progressEvent.getErrorCode()).isEqualTo(HandlerErrorCode.GeneralServiceException); } }