darkhelm/notifications-api
1
0
Fork 0
mirror of https://github.com/GSA/notifications-api.git synced 2025-12-21 07:51:13 -05:00
Code Issues Packages Projects Releases Wiki Activity

Get SES config from VCAP_SERVICES

Browse Source
This commit is contained in:
Ryan Ahearn
2023-01-31 17:27:17 -05:00
parent 74566b733d
commit d1c03e5e8c
7 changed files with 57 additions and 11 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
app/__init__.py
View File

@@ -95,9 +95,8 @@ def create_app(application):
logging.init_app(application) logging.init_app(application)
aws_sns_client.init_app(application, statsd_client=statsd_client) aws_sns_client.init_app(application, statsd_client=statsd_client)
aws_ses_client.init_app(application.config['AWS_REGION'], statsd_client=statsd_client) aws_ses_client.init_app(statsd_client=statsd_client)
aws_ses_stub_client.init_app( aws_ses_stub_client.init_app(
application.config['AWS_REGION'],
statsd_client=statsd_client, statsd_client=statsd_client,
stub_url=application.config['SES_STUB_URL'] stub_url=application.config['SES_STUB_URL']
) )

12
app/clients/email/aws_ses.py
View File

@@ -1,7 +1,7 @@
from time import monotonic from time import monotonic
import boto3
import botocore import botocore
from boto3 import client
from flask import current_app from flask import current_app
from app.clients import STATISTICS_DELIVERED, STATISTICS_FAILURE from app.clients import STATISTICS_DELIVERED, STATISTICS_FAILURE
@@ -10,6 +10,7 @@ from app.clients.email import (
EmailClientException, EmailClientException,
EmailClientNonRetryableException, EmailClientNonRetryableException,
) )
from app.cloudfoundry_config import cloud_config
ses_response_map = { ses_response_map = {
'Permanent': { 'Permanent': {
@@ -56,8 +57,13 @@ class AwsSesClient(EmailClient):
Amazon SES email client. Amazon SES email client.
''' '''
def init_app(self, region, statsd_client, *args, **kwargs): def init_app(self, statsd_client, *args, **kwargs):
self._client = boto3.client('ses', region_name=region) self._client = client(
'ses',
region_name=cloud_config.ses_region,
aws_access_key_id=cloud_config.ses_access_key,
aws_secret_access_key=cloud_config.ses_secret_key
)
super(AwsSesClient, self).__init__(*args, **kwargs) super(AwsSesClient, self).__init__(*args, **kwargs)
self.statsd_client = statsd_client self.statsd_client = statsd_client

2
app/clients/email/aws_ses_stub.py
View File

@@ -12,7 +12,7 @@ class AwsSesStubClientException(EmailClientException):
class AwsSesStubClient(EmailClient): class AwsSesStubClient(EmailClient):
def init_app(self, region, statsd_client, stub_url): def init_app(self, statsd_client, stub_url):
self.statsd_client = statsd_client self.statsd_client = statsd_client
self.url = stub_url self.url = stub_url

42
app/cloudfoundry_config.py
View File

@@ -31,5 +31,47 @@ class CloudfoundryConfig:
def s3_credentials(self, service_name): def s3_credentials(self, service_name):
return self.s3_buckets.get(service_name) or self._empty_bucket_credentials return self.s3_buckets.get(service_name) or self._empty_bucket_credentials
@property
def ses_email_domain(self):
try:
return self._ses_credentials('domain_arn').split('/')[-1]
except KeyError:
return getenv('NOTIFY_EMAIL_DOMAIN', 'notify.sandbox.10x.gsa.gov')
@property
def ses_region(self):
try:
return self._ses_credentials('region')
except KeyError:
return getenv('AWS_REGION')
@property
def ses_access_key(self):
try:
return self._ses_credentials('smtp_user')
except KeyError:
return getenv('AWS_ACCESS_KEY_ID')
@property
def ses_secret_key(self):
try:
return self._ses_credentials('secret_access_key')
except KeyError:
return getenv('AWS_SECRET_ACCESS_KEY')
@property
def sns_topic_arns(self):
try:
return [
self._ses_credentials('bounce_topic_arn'),
self._ses_credentials('complaint_topic_arn'),
self._ses_credentials('delivery_topic_arn')
]
except KeyError:
return []
def _ses_credentials(self, key):
return self.parsed_services['datagov-smtp'][0]['credentials'][key]
cloud_config = CloudfoundryConfig() cloud_config = CloudfoundryConfig()

4
app/config.py
View File

@@ -108,11 +108,11 @@ class Config(object):
AWS_US_TOLL_FREE_NUMBER = getenv("AWS_US_TOLL_FREE_NUMBER") AWS_US_TOLL_FREE_NUMBER = getenv("AWS_US_TOLL_FREE_NUMBER")
# Whether to ignore POSTs from SNS for replies to SMS we sent # Whether to ignore POSTs from SNS for replies to SMS we sent
RECEIVE_INBOUND_SMS = False RECEIVE_INBOUND_SMS = False
NOTIFY_EMAIL_DOMAIN = getenv('NOTIFY_EMAIL_DOMAIN', 'notify.sandbox.10x.gsa.gov') NOTIFY_EMAIL_DOMAIN = cloud_config.ses_email_domain
SES_STUB_URL = None # TODO: set to a URL in env and remove this to use a stubbed SES service SES_STUB_URL = None # TODO: set to a URL in env and remove this to use a stubbed SES service
# AWS SNS topics for delivery receipts # AWS SNS topics for delivery receipts
VALIDATE_SNS_TOPICS = True VALIDATE_SNS_TOPICS = True
VALID_SNS_TOPICS = ['notify_test_bounce', 'notify_test_success', 'notify_test_complaint', 'notify_test_sms_inbound'] VALID_SNS_TOPICS = cloud_config.sns_topic_arns
# these should always add up to 100% # these should always add up to 100%
SMS_PROVIDER_RESTING_POINTS = { SMS_PROVIDER_RESTING_POINTS = {

3
app/notifications/sns_cert_validator.py
View File

@@ -39,8 +39,7 @@ def get_certificate(url):
def validate_arn(sns_payload): def validate_arn(sns_payload):
if VALIDATE_SNS_TOPICS: if VALIDATE_SNS_TOPICS:
arn = sns_payload.get('TopicArn') arn = sns_payload.get('TopicArn')
topic_name = arn.split(':')[5] if arn not in VALID_SNS_TOPICS:
if topic_name not in VALID_SNS_TOPICS:
raise ValidationError("Invalid Topic Name") raise ValidationError("Invalid Topic Name")

2
manifest.yml
View File

@@ -15,7 +15,7 @@ applications:
- notify-api-contact-list-bucket-((env)) - notify-api-contact-list-bucket-((env))
- name: notify-api-ses-((env)) - name: notify-api-ses-((env))
parameters: parameters:
notification_webhook: "" notification_webhook: "https://((public_api_route))/notifications/email/ses"
processes: processes:
- type: web - type: web