Tune/address review feedback

Byron Wolfman · Byron Wolfman · commit daf85a3ee75e · 2020-03-03T09:14:23.000-05:00
diff --git a/internal/aws.go b/internal/aws.go
@@ -85,18 +85,18 @@ func readRoleFromAWS(role string, request *Request) (*iam.Role, error) {
 	return roleObject, nil
 }
 
-func constructAssumeRoleInput(arn string, externalId string, sessionName string) (*sts.AssumeRoleInput) {
+func constructAssumeRoleInput(arn string, externalId string) (*sts.AssumeRoleInput) {
 	if externalId == "" {
 		return &sts.AssumeRoleInput{
 			RoleArn:         aws.String(arn),
-			RoleSessionName: aws.String(sessionName),
+			RoleSessionName: aws.String("go-metadataproxy"),
 		}
 	}
 
 	return &sts.AssumeRoleInput{
 		ExternalId:      aws.String(externalId),
 		RoleArn:         aws.String(arn),
-		RoleSessionName: aws.String(sessionName),
+		RoleSessionName: aws.String("go-metadataproxy"),
 	}
 }
 
@@ -111,7 +111,7 @@ func assumeRoleFromAWS(arn string, externalId string, request *Request) (*sts.As
 
 	request.setLabel("assume_role_from_aws_cache", "miss")
 	request.log.Infof("Requesting STS Assume Role info for %s from AWS", arn)
-	req := stsService.AssumeRoleRequest(constructAssumeRoleInput(arn, externalId, "go-metadataproxy"))
+	req := stsService.AssumeRoleRequest(constructAssumeRoleInput(arn, externalId))
 
 	assumedRole, err := req.Send()
 	if err != nil {
diff --git a/internal/docker.go b/internal/docker.go
@@ -105,9 +105,9 @@ func findDockerContainerIAMRole(container *docker.Container, request *Request) (
 	return "", fmt.Errorf("Could not find IAM_ROLE in the container ENV config")
 }
 
-func findDockerContainerExternalId(container *docker.Container, request *Request) (string, error) {
+func findDockerContainerExternalId(container *docker.Container, request *Request) string {
 	v, _ := findDockerContainerEnvValue(container, "IAM_EXTERNAL_ID")
-	return v, nil
+	return v
 }
 
 func findDockerContainerEnvValue(container *docker.Container, key string) (string, bool) {
diff --git a/internal/http_helper.go b/internal/http_helper.go
@@ -48,16 +48,13 @@ func findContainerRoleByAddress(addr string, request *Request) (*iam.Role, strin
 		return nil, "", err
 	}
 
-	externalId, err := findDockerContainerExternalId(container, request)
-	if err != nil {
-		return nil, "", err
-	}
-
 	role, err := readRoleFromAWS(roleName, request)
 	if err != nil {
 		return nil, "", err
 	}
 
+	externalId := findDockerContainerExternalId(container, request)
+
 	return role, externalId, nil
 }
 

Original file line number	Diff line number	Diff line change
`@@ -85,18 +85,18 @@ func readRoleFromAWS(role string, request Request) (iam.Role, error) {`
`85`	`85`	`return roleObject, nil`
`86`	`86`	`}`
`87`	`87`
`88`		`-func constructAssumeRoleInput(arn string, externalId string, sessionName string) (*sts.AssumeRoleInput) {`
	`88`	`+func constructAssumeRoleInput(arn string, externalId string) (*sts.AssumeRoleInput) {`
`89`	`89`	`if externalId == "" {`
`90`	`90`	`return &sts.AssumeRoleInput{`
`91`	`91`	`RoleArn: aws.String(arn),`
`92`		`- RoleSessionName: aws.String(sessionName),`
	`92`	`+ RoleSessionName: aws.String("go-metadataproxy"),`
`93`	`93`	`}`
`94`	`94`	`}`
`95`	`95`
`96`	`96`	`return &sts.AssumeRoleInput{`
`97`	`97`	`ExternalId: aws.String(externalId),`
`98`	`98`	`RoleArn: aws.String(arn),`
`99`		`- RoleSessionName: aws.String(sessionName),`
	`99`	`+ RoleSessionName: aws.String("go-metadataproxy"),`
`100`	`100`	`}`
`101`	`101`	`}`
`102`	`102`
`@@ -111,7 +111,7 @@ func assumeRoleFromAWS(arn string, externalId string, request Request) (sts.As`
`111`	`111`
`112`	`112`	`request.setLabel("assume_role_from_aws_cache", "miss")`
`113`	`113`	`request.log.Infof("Requesting STS Assume Role info for %s from AWS", arn)`
`114`		`- req := stsService.AssumeRoleRequest(constructAssumeRoleInput(arn, externalId, "go-metadataproxy"))`
	`114`	`+ req := stsService.AssumeRoleRequest(constructAssumeRoleInput(arn, externalId))`
`115`	`115`
`116`	`116`	`assumedRole, err := req.Send()`
`117`	`117`	`if err != nil {`
Original file line number	Diff line number	Diff line change
`@@ -105,9 +105,9 @@ func findDockerContainerIAMRole(container docker.Container, request Request) (`
`105`	`105`	`return "", fmt.Errorf("Could not find IAM_ROLE in the container ENV config")`
`106`	`106`	`}`
`107`	`107`
`108`		`-func findDockerContainerExternalId(container docker.Container, request Request) (string, error) {`
	`108`	`+func findDockerContainerExternalId(container docker.Container, request Request) string {`
`109`	`109`	`v, _ := findDockerContainerEnvValue(container, "IAM_EXTERNAL_ID")`
`110`		`- return v, nil`
	`110`	`+ return v`
`111`	`111`	`}`
`112`	`112`
`113`	`113`	`func findDockerContainerEnvValue(container *docker.Container, key string) (string, bool) {`
Original file line number	Diff line number	Diff line change
`@@ -48,16 +48,13 @@ func findContainerRoleByAddress(addr string, request Request) (iam.Role, strin`
`48`	`48`	`return nil, "", err`
`49`	`49`	`}`
`50`	`50`
`51`		`- externalId, err := findDockerContainerExternalId(container, request)`
`52`		`- if err != nil {`
`53`		`- return nil, "", err`
`54`		`- }`
`55`		`-`
`56`	`51`	`role, err := readRoleFromAWS(roleName, request)`
`57`	`52`	`if err != nil {`
`58`	`53`	`return nil, "", err`
`59`	`54`	`}`
`60`	`55`
	`56`	`+ externalId := findDockerContainerExternalId(container, request)`
	`57`	`+`
`61`	`58`	`return role, externalId, nil`
`62`	`59`	`}`
`63`	`60`