Support protocol version 2.0.0 to callback handlers orchestrated by C…

…loudFormation service (#146)
aws-cloudformation · Jun 29, 2020 · c159be9 · c159be9
1 parent f77a5df
commit c159be9
Show file tree

Hide file tree

Showing 15 changed files with 164 additions and 469 deletions.
diff --git a/cfn/cfn.go b/cfn/cfn.go
@@ -2,25 +2,21 @@ package cfn
 
 import (
 	"context"
-	"encoding/json"
 	"errors"
+	"io/ioutil"
 	"log"
 	"os"
+	"path"
 	"time"
 
-	"github.com/aws-cloudformation/cloudformation-cli-go-plugin/cfn/callback"
 	"github.com/aws-cloudformation/cloudformation-cli-go-plugin/cfn/cfnerr"
 	"github.com/aws-cloudformation/cloudformation-cli-go-plugin/cfn/credentials"
-	"github.com/aws-cloudformation/cloudformation-cli-go-plugin/cfn/encoding"
 	"github.com/aws-cloudformation/cloudformation-cli-go-plugin/cfn/handler"
 	"github.com/aws-cloudformation/cloudformation-cli-go-plugin/cfn/logging"
 	"github.com/aws-cloudformation/cloudformation-cli-go-plugin/cfn/metrics"
-	"github.com/aws-cloudformation/cloudformation-cli-go-plugin/cfn/scheduler"
 
 	"github.com/aws/aws-lambda-go/lambda"
-	"github.com/aws/aws-sdk-go/service/cloudformation"
 	"github.com/aws/aws-sdk-go/service/cloudwatch"
-	"github.com/aws/aws-sdk-go/service/cloudwatchevents"
 	"github.com/aws/aws-sdk-go/service/cloudwatchlogs"
 )
 
@@ -43,12 +39,6 @@ const (
 	listAction    = "LIST"
 )
 
-// MaxRetries is the number of times to try to call the Handler after it fails to respond.
-var MaxRetries int = 3
-
-// Timeout is the length of time to wait before giving up on a request.
-var Timeout time.Duration = 60 * time.Second
-
 // Handler is the interface that all resource providers must implement
 //
 // Each method of Handler maps directly to a CloudFormation action.
@@ -63,11 +53,6 @@ type Handler interface {
 	List(request handler.Request) handler.ProgressEvent
 }
 
-// InvokeScheduler is the interface that all reinvocation schedulers must implement
-type InvokeScheduler interface {
-	Reschedule(lambdaCtx context.Context, secsFromNow int64, callbackRequest string, invocationIDS *scheduler.ScheduleIDS) (*scheduler.Result, error)
-}
-
 // Start is the entry point called from a resource's main function
 //
 // We define two lambda entry points; MakeEventFunc is the entry point to all
@@ -109,242 +94,80 @@ type testEventFunc func(ctx context.Context, event *testEvent) (handler.Progress
 // handlerFunc is the signature required for all actions
 type handlerFunc func(request handler.Request) handler.ProgressEvent
 
-// router decides which handler should be invoked based on the action
-// It will return a route or an error depending on the action passed in
-func router(a string, h Handler) (handlerFunc, error) {
-	// Figure out which action was called and have a "catch-all"
-	switch a {
-	case createAction:
-		return h.Create, nil
-	case readAction:
-		return h.Read, nil
-	case updateAction:
-		return h.Update, nil
-	case deleteAction:
-		return h.Delete, nil
-	case listAction:
-		return h.List, nil
-	default:
-		// No action matched, we should fail and return an InvalidRequestErrorCode
-		return nil, cfnerr.New(invalidRequestError, "No action/invalid action specified", nil)
-	}
-}
-
-// Invoke handles the invocation of the handerFn.
-func invoke(handlerFn handlerFunc, request handler.Request, metricsPublisher *metrics.Publisher, action string) (handler.ProgressEvent, error) {
-	attempts := 0
-
-	for {
-		attempts++
-		// Create a context that is both manually cancellable and will signal
-		// a cancel at the specified duration.
-		ctx, cancel := context.WithTimeout(context.Background(), Timeout)
-		//We always defer a cancel.
-		defer cancel()
-
-		// Create a channel to received a signal that work is done.
-		ch := make(chan handler.ProgressEvent, 1)
-
-		// Ask the goroutine to do some work for us.
-		go func() {
-			//start the timer
-			start := time.Now()
-			metricsPublisher.PublishInvocationMetric(time.Now(), string(action))
-
-			// Report the work is done.
-			progEvt := handlerFn(request)
-
-			marshaled, _ := encoding.Marshal(progEvt.ResourceModel)
-			log.Printf("Received event: %s\nMessage: %s\nBody: %s",
-				progEvt.OperationStatus,
-				progEvt.Message,
-				marshaled,
-			)
-
-			elapsed := time.Since(start)
-			metricsPublisher.PublishDurationMetric(time.Now(), string(action), elapsed.Seconds()*1e3)
-			ch <- progEvt
-		}()
-
-		// Wait for the work to finish. If it takes too long move on. If the function returns an error, signal the error channel.
-		select {
-		case d := <-ch:
-			//Return the response from the handler.
-			return d, nil
-
-		case <-ctx.Done():
-			if attempts == MaxRetries {
-				log.Printf("Handler failed to respond, retrying... attempt: %v action: %s \n", attempts, action)
-				//handler failed to respond.
-				cfnErr := cfnerr.New(timeoutError, "Handler failed to respond in time", nil)
-				metricsPublisher.PublishExceptionMetric(time.Now(), string(action), cfnErr)
-				return handler.ProgressEvent{}, cfnErr
-			}
-			log.Printf("Handler failed to respond, retrying... attempt: %v action: %s \n", attempts, action)
-
-		}
-	}
-}
-
-func isMutatingAction(action string) bool {
-	switch action {
-	case createAction:
-		return true
-	case updateAction:
-		return true
-	case deleteAction:
-		return true
-	}
-	return false
-}
-
-func translateStatus(operationStatus handler.Status) callback.Status {
-	switch operationStatus {
-	case handler.Success:
-		return callback.Success
-	case handler.Failed:
-		return callback.Failed
-	case handler.InProgress:
-		return callback.InProgress
-	default:
-		return callback.UnknownStatus
-	}
-
-}
-
-func processinvoke(handlerFn handlerFunc, event *event, request handler.Request, metricsPublisher *metrics.Publisher) handler.ProgressEvent {
-	progEvt, err := invoke(handlerFn, request, metricsPublisher, event.Action)
-	if err != nil {
-		log.Printf("Handler invocation failed: %v", err)
-		return handler.NewFailedEvent(err)
-	}
-	return progEvt
-}
-
-func reschedule(ctx context.Context, invokeScheduler InvokeScheduler, progEvt handler.ProgressEvent, event *event) (bool, error) {
-	cusCtx, delay := marshalCallback(&progEvt)
-	ids, err := scheduler.GenerateCloudWatchIDS()
-	if err != nil {
-		return false, err
-	}
-	// Add IDs to recall the function with Cloudwatch events
-	event.RequestContext.CloudWatchEventsRuleName = ids.Handler
-	event.RequestContext.CloudWatchEventsTargetID = ids.Target
-	// Update model properties
-	m, err := encoding.Marshal(progEvt.ResourceModel)
-	if err != nil {
-		return false, err
-	}
-	event.RequestData.ResourceProperties = m
-	// Rebuild the context
-	event.RequestContext.CallbackContext = cusCtx
-	callbackRequest, err := json.Marshal(event)
-	if err != nil {
-		return false, err
-	}
-	scheResult, err := invokeScheduler.Reschedule(ctx, delay, string(callbackRequest), ids)
-	if err != nil {
-		return false, err
-	}
-	return scheResult.ComputeLocal, nil
-}
-
 // MakeEventFunc is the entry point to all invocations of a custom resource
 func makeEventFunc(h Handler) eventFunc {
 	return func(ctx context.Context, event *event) (response, error) {
-		platformSession := credentials.SessionFromCredentialsProvider(&event.RequestData.PlatformCredentials)
-		providerSession := credentials.SessionFromCredentialsProvider(&event.RequestData.ProviderCredentials)
-		logsProvider, err := logging.NewCloudWatchLogsProvider(
-			cloudwatchlogs.New(providerSession),
+		//pls := credentials.SessionFromCredentialsProvider(&event.RequestData.PlatformCredentials)
+		ps := credentials.SessionFromCredentialsProvider(&event.RequestData.ProviderCredentials)
+		l, err := logging.NewCloudWatchLogsProvider(
+			cloudwatchlogs.New(ps),
 			event.RequestData.ProviderLogGroupName,
 		)
-
 		// Set default logger to output to CWL in the provider account
-		logging.SetProviderLogOutput(logsProvider)
-
-		metricsPublisher := metrics.New(cloudwatch.New(platformSession), event.AWSAccountID, event.ResourceType)
-		callbackAdapter := callback.New(cloudformation.New(platformSession), event.BearerToken)
-		invokeScheduler := scheduler.New(cloudwatchevents.New(platformSession))
-		re := newReportErr(callbackAdapter, metricsPublisher)
-
+		logging.SetProviderLogOutput(l)
+		m := metrics.New(cloudwatch.New(ps), event.AWSAccountID, event.ResourceType)
+		re := newReportErr(m)
+		if err := scrubFiles("/tmp"); err != nil {
+			log.Printf("Error: %v", err)
+			m.PublishExceptionMetric(time.Now(), event.Action, err)
+		}
 		handlerFn, err := router(event.Action, h)
 		log.Printf("Handler received the %s action", event.Action)
-
 		if err != nil {
 			return re.report(event, "router error", err, serviceInternalError)
 		}
-
 		if err := validateEvent(event); err != nil {
 			return re.report(event, "validation error", err, invalidRequestError)
 		}
-
-		// If this invocation was triggered by a 're-invoke' CloudWatch Event, clean it up.
-		if event.RequestContext.CallbackContext != nil {
-			err := invokeScheduler.CleanupEvents(event.RequestContext.CloudWatchEventsRuleName, event.RequestContext.CloudWatchEventsTargetID)
-
-			if err != nil {
-				// We will log the error in the metric, but carry on.
-				cfnErr := cfnerr.New(serviceInternalError, "Cloudwatch Event clean up error", err)
-				metricsPublisher.PublishExceptionMetric(time.Now(), string(event.Action), cfnErr)
-			}
+		request := handler.NewRequest(
+			event.RequestData.LogicalResourceID,
+			event.CallbackContext,
+			credentials.SessionFromCredentialsProvider(&event.RequestData.CallerCredentials),
+			event.RequestData.PreviousResourceProperties,
+			event.RequestData.ResourceProperties,
+		)
+		p := invoke(handlerFn, request, m, event.Action)
+		r, err := newResponse(&p, event.BearerToken)
+		if err != nil {
+			log.Printf("Error creating response: %v", err)
+			return re.report(event, "Response error", err, unmarshalingError)
 		}
-
-		if len(event.RequestContext.CallbackContext) == 0 || event.RequestContext.Invocation == 0 {
-			// Acknowledge the task for first time invocation.
-			if err := callbackAdapter.ReportInitialStatus(); err != nil {
-				return re.report(event, "callback initial report error", err, serviceInternalError)
-			}
+		if !isMutatingAction(event.Action) && r.OperationStatus == handler.InProgress {
+			return re.report(event, "Response error", errors.New("READ and LIST handlers must return synchronous"), invalidRequestError)
 		}
+		return r, nil
+	}
+}
 
-		re.setPublishSatus(true)
-		for {
-			request := handler.NewRequest(
-				event.RequestData.LogicalResourceID,
-				event.RequestContext.CallbackContext,
-				credentials.SessionFromCredentialsProvider(&event.RequestData.CallerCredentials),
-				event.RequestData.PreviousResourceProperties,
-				event.RequestData.ResourceProperties,
-			)
-			event.RequestContext.Invocation = event.RequestContext.Invocation + 1
-
-			progEvt := processinvoke(handlerFn, event, request, metricsPublisher)
-
-			r, err := newResponse(&progEvt, event.BearerToken)
-			if err != nil {
-				log.Printf("Error creating response: %v", err)
-				return re.report(event, "Response error", err, unmarshalingError)
-			}
-
-			if !isMutatingAction(event.Action) && r.OperationStatus == handler.InProgress {
-				return re.report(event, "Response error", errors.New("READ and LIST handlers must return synchronous"), invalidRequestError)
-			}
-
-			if isMutatingAction(event.Action) {
-				m, err := encoding.Marshal(progEvt.ResourceModel)
-				if err != nil {
-					log.Printf("Error reporting status: %v", err)
-					return re.report(event, "Error", err, unmarshalingError)
-				}
-				callbackAdapter.ReportStatus(translateStatus(progEvt.OperationStatus), m, progEvt.Message, string(r.ErrorCode))
-			}
-
-			switch r.OperationStatus {
-			case handler.InProgress:
-				local, err := reschedule(ctx, invokeScheduler, progEvt, event)
-
-				if err != nil {
-					return re.report(event, "Reschedule error", err, serviceInternalError)
-				}
-
-				// If not computing local, exit and return response.
-				if !local {
-					return r, nil
-				}
-			default:
-				return r, nil
-			}
+func scrubFiles(dir string) error {
+	names, err := ioutil.ReadDir(dir)
+	if err != nil {
+		return err
+	}
+	for _, entery := range names {
+		os.RemoveAll(path.Join([]string{dir, entery.Name()}...))
+	}
+	return nil
+}
 
-		}
+// router decides which handler should be invoked based on the action
+// It will return a route or an error depending on the action passed in
+func router(a string, h Handler) (handlerFunc, error) {
+	// Figure out which action was called and have a "catch-all"
+	switch a {
+	case createAction:
+		return h.Create, nil
+	case readAction:
+		return h.Read, nil
+	case updateAction:
+		return h.Update, nil
+	case deleteAction:
+		return h.Delete, nil
+	case listAction:
+		return h.List, nil
+	default:
+		// No action matched, we should fail and return an InvalidRequestErrorCode
+		return nil, cfnerr.New(invalidRequestError, "No action/invalid action specified", nil)
 	}
 }
 
@@ -367,3 +190,40 @@ func makeTestEventFunc(h Handler) testEventFunc {
 		return progEvt, nil
 	}
 }
+
+// Invoke handles the invocation of the handerFn.
+func invoke(handlerFn handlerFunc, request handler.Request, metricsPublisher *metrics.Publisher, action string) handler.ProgressEvent {
+
+	// Create a channel to received a signal that work is done.
+	ch := make(chan handler.ProgressEvent, 1)
+
+	// Ask the goroutine to do some work for us.
+	go func() {
+		//start the timer
+		s := time.Now()
+		metricsPublisher.PublishInvocationMetric(time.Now(), string(action))
+
+		// Report the work is done.
+		pe := handlerFn(request)
+		log.Printf("Received event: %s\nMessage: %s\n",
+			pe.OperationStatus,
+			pe.Message,
+		)
+		e := time.Since(s)
+		metricsPublisher.PublishDurationMetric(time.Now(), string(action), e.Seconds()*1e3)
+		ch <- pe
+	}()
+	return <-ch
+}
+
+func isMutatingAction(action string) bool {
+	switch action {
+	case createAction:
+		return true
+	case updateAction:
+		return true
+	case deleteAction:
+		return true
+	}
+	return false
+}