-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathhandler.go
147 lines (131 loc) · 4.03 KB
/
handler.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
package main
import (
"archive/zip"
"encoding/json"
"errors"
"fmt"
"io/ioutil"
"log"
"os"
"strings"
"github.com/aws/aws-lambda-go/events"
"github.com/aws/aws-lambda-go/lambda"
"github.com/aws/aws-sdk-go/aws"
"github.com/aws/aws-sdk-go/aws/credentials"
"github.com/aws/aws-sdk-go/aws/session"
"github.com/aws/aws-sdk-go/service/codepipeline"
"github.com/aws/aws-sdk-go/service/s3"
"github.com/aws/aws-sdk-go/service/s3/s3manager"
"github.com/aws/aws-sdk-go/service/sns"
)
type params struct {
Bucket string `json:"bucket"`
KeyPrefix string `json:"key_prefix"`
NotificationSubject string `json:"notification_subject"`
NotificationSNSTopicARN string `json:"notification_sns_topic_arn"`
}
// HandleLambdaEvent is triggered by CodePipeline and copies the artifacts content to S3. It also
// gives the copied S3 objects the bucket-owner-full-control ACL. If configured, it sends an SNS
// notification.
func HandleLambdaEvent(event events.CodePipelineEvent) error {
sess := session.Must(session.NewSession())
cpSvc := &codepipelineService{
CodePipeline: codepipeline.New(sess),
JobID: event.CodePipelineJob.ID,
}
artiS3Svc := s3.New(sess, aws.NewConfig().WithCredentials(credentials.NewStaticCredentials(
event.CodePipelineJob.Data.ArtifactCredentials.AccessKeyID,
event.CodePipelineJob.Data.ArtifactCredentials.SecretAccessKey,
event.CodePipelineJob.Data.ArtifactCredentials.SessionToken,
)))
s3Svc := s3.New(sess)
userparams := event.CodePipelineJob.Data.ActionConfiguration.Configuration.UserParameters
if userparams == "" {
return cpSvc.failJob(errors.New("missing user params"))
}
var p params
err := json.NewDecoder(strings.NewReader(userparams)).Decode(&p)
if err != nil {
return cpSvc.failJob(err)
}
if p.Bucket == "" {
return cpSvc.failJob(errors.New("missing 'bucket' in user params"))
}
if p.KeyPrefix == "" {
return cpSvc.failJob(errors.New("missing 'key_prefix' in user params"))
}
log.Println("user params:", p)
artis := event.CodePipelineJob.Data.InputArtifacts
if len(artis) == 0 {
return cpSvc.failJob(errors.New("missing source artifacts"))
}
arti := artis[0]
if arti.Location.LocationType != "S3" {
return cpSvc.failJob(errors.New("location type of first artifact is not of type S3"))
}
tmpfile, err := ioutil.TempFile("", "codepipeline")
if err != nil {
return cpSvc.failJob(err)
}
defer func() {
tmpfile.Close()
os.Remove(tmpfile.Name())
}()
artiLoc := arti.Location.S3Location
downloader := s3manager.NewDownloaderWithClient(artiS3Svc)
n, err := downloader.Download(tmpfile, &s3.GetObjectInput{
Bucket: aws.String(artiLoc.BucketName),
Key: aws.String(artiLoc.ObjectKey),
})
if err != nil {
return cpSvc.failJob(err)
}
tmpfile.Close()
log.Println("downloaded artifact to temp file. bytes:", n)
zr, err := zip.OpenReader(tmpfile.Name())
if err != nil {
return cpSvc.failJob(err)
}
defer zr.Close()
var uploadedKeys []string
uploader := s3manager.NewUploaderWithClient(s3Svc)
for _, f := range zr.File {
log.Println("zip file file:", f.Name)
rc, err := f.Open()
if err != nil {
return cpSvc.failJob(err)
}
key := fmt.Sprintf("%s/%s", p.KeyPrefix, f.Name)
uploadedKeys = append(uploadedKeys, key)
_, err = uploader.Upload(&s3manager.UploadInput{
ACL: aws.String("bucket-owner-full-control"),
Body: rc,
Bucket: aws.String(p.Bucket),
Key: aws.String(key),
})
if err != nil {
return cpSvc.failJob(err)
}
rc.Close()
}
if p.NotificationSNSTopicARN != "" {
if p.NotificationSubject == "" {
p.NotificationSubject = "S3 copy completed"
}
msg := "CodePipeline job #" + event.CodePipelineJob.ID + " uploaded S3 keys:\n\n" +
strings.Join(uploadedKeys, "\n")
snsSvc := sns.New(sess)
_, err := snsSvc.Publish(&sns.PublishInput{
Message: aws.String(msg),
Subject: aws.String(p.NotificationSubject),
TopicArn: aws.String(p.NotificationSNSTopicARN),
})
if err != nil {
return cpSvc.failJob(err)
}
}
return cpSvc.successJob()
}
func main() {
lambda.Start(HandleLambdaEvent)
}