3549380bd2
* add support for iam role auth
* add stubbable func
* fix broken test
* goimports
* pr feedback
(cherry picked from commit 13dd9dff50)
Co-authored-by: Erik Sundell <erik.sundell@grafana.com>
45 lines
1.1 KiB
Go
45 lines
1.1 KiB
Go
package cloudwatch
|
|
|
|
import (
|
|
"sync"
|
|
"time"
|
|
|
|
"github.com/aws/aws-sdk-go/aws"
|
|
"github.com/aws/aws-sdk-go/aws/credentials"
|
|
"github.com/aws/aws-sdk-go/aws/credentials/ec2rolecreds"
|
|
"github.com/aws/aws-sdk-go/aws/credentials/stscreds"
|
|
"github.com/aws/aws-sdk-go/aws/ec2metadata"
|
|
"github.com/aws/aws-sdk-go/aws/session"
|
|
)
|
|
|
|
type envelope struct {
|
|
session *session.Session
|
|
expiration time.Time
|
|
}
|
|
|
|
var sessCache = map[string]envelope{}
|
|
var sessCacheLock sync.RWMutex
|
|
|
|
// Session factory.
|
|
// Stubbable by tests.
|
|
//nolint:gocritic
|
|
var newSession = func(cfgs ...*aws.Config) (*session.Session, error) {
|
|
return session.NewSession(cfgs...)
|
|
}
|
|
|
|
// STS credentials factory.
|
|
// Stubbable by tests.
|
|
//nolint:gocritic
|
|
var newSTSCredentials = stscreds.NewCredentials
|
|
|
|
// EC2Metadata service factory.
|
|
// Stubbable by tests.
|
|
//nolint:gocritic
|
|
var newEC2Metadata = ec2metadata.New
|
|
|
|
// EC2 role credentials factory.
|
|
// Stubbable by tests.
|
|
var newEC2RoleCredentials = func(sess *session.Session) *credentials.Credentials {
|
|
return credentials.NewCredentials(&ec2rolecreds.EC2RoleProvider{Client: ec2metadata.New(sess), ExpiryWindow: stscreds.DefaultDuration})
|
|
}
|