Skip to content

Commit

Permalink
Merge pull request #1861 from nationalarchives/invalidation-change
Browse files Browse the repository at this point in the history 
Remove AWS IAM user credentials for cache invalidation, rely on container's role
  • Loading branch information
@dragon-dxw
dragon-dxw authored Jan 22, 2025
2 parents 49055ab + c12504f commit 98cb5c6
Show file tree
Hide file tree
Showing 2 changed files with 3 additions and 18 deletions.
3 changes: 2 additions & 1 deletion judgments/tests/test_document_edit.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,8 @@ def test_judgment_edit_view_redirects(self):

@patch("judgments.views.judgment_edit.api_client")
@patch("judgments.views.judgment_edit.get_document_by_uri_or_404")
def test_edit_judgment(self, mock_judgment, api_client):
@patch("judgments.utils.aws.boto3")
def test_edit_judgment(self, mock_boto, mock_judgment, api_client):
judgment = JudgmentFactory.build(
uri=DocumentURIString("edittest/4321/123"),
name="Test v Tested",
Expand Down
18 changes: 1 addition & 17 deletions judgments/utils/aws.py
View file
Original file line number Diff line number Diff line change
@@ -1,4 +1,3 @@
import logging
import time

import boto3
Expand Down Expand Up @@ -46,22 +45,7 @@ def generate_signed_asset_url(key: str):


def invalidate_caches(uri: str) -> None:
if (
env("CLOUDFRONT_INVALIDATION_ACCESS_KEY_ID", default=None) is None
and env("CLOUDFRONT_INVALIDATION_ACCESS_SECRET", default=None) is None
):
logging.warning(
"Cannot invalidate cache: no cloudfront environment variables set",
)
return

aws = boto3.session.Session(
aws_access_key_id=env("CLOUDFRONT_INVALIDATION_ACCESS_KEY_ID", default=None),
aws_secret_access_key=env(
"CLOUDFRONT_INVALIDATION_ACCESS_SECRET",
default=None,
),
)
aws = boto3.session.Session()
cloudfront = aws.client("cloudfront")
cloudfront.create_invalidation(
DistributionId=env("CLOUDFRONT_PUBLIC_DISTRIBUTION_ID", default=None),
Expand Down

0 comments on commit 98cb5c6

Please sign in to comment.