vantage-aws 0.5.4

AWS API persistence backend for Vantage framework — incubating
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155

//! JSON-1.1 protocol — the wire used by CloudWatch, ECS, KMS,
//! DynamoDB control plane, etc.
//!
//! Two entry points:
//!   - [`execute`] builds the JSON request body, signs, sends.
//!   - [`parse_records`] plucks the configured array from the
//!     parsed response and folds it into `Record<CborValue>`s.
//!
//! Both are called from [`crate::dispatch`] after the protocol switch
//! has fired. The shape that distinguishes JSON-1.1 from sibling
//! protocols: request body is a JSON object posted with
//! `Content-Type: application/x-amz-json-1.1` and an `X-Amz-Target`
//! header naming the operation; response body is a JSON object whose
//! top-level key is the array of rows.

mod transport;

use ciborium::Value as CborValue;
use indexmap::IndexMap;
use serde_json::Value as JsonValue;
use vantage_core::{Result, error};
use vantage_types::Record;

use crate::account::AwsAccount;
use crate::condition::{AwsCondition, build_json1_body};
use crate::dispatch::{OperationDescriptor, json_to_cbor, lookup_path};

pub(crate) use transport::{json_aws_call, json1_call};

/// Build the JSON-1.1 request body and post it. `target` is used
/// verbatim as the `X-Amz-Target` header; `service` is both the SigV4
/// service name and the URL hostname segment.
///
/// Follows `nextToken` pagination — CloudWatch's `FilterLogEvents`
/// can hand back `events: []` plus a `nextToken` while it's still
/// scanning the log group, so a single call isn't enough. We loop
/// until the response has no `nextToken` (or empty), accumulating
/// `op.array_key` entries from each page into one synthesised
/// response that `parse_records` can fold as if it came back in one
/// shot.
///
/// Cap at [`MAX_PAGES`] to avoid runaway loops if AWS keeps issuing
/// tokens — that case shouldn't happen, but the safety belt is cheap.
pub(crate) async fn execute(
    account: &AwsAccount,
    op: &OperationDescriptor<'_>,
    resolved: &[AwsCondition],
) -> Result<JsonValue> {
    const MAX_PAGES: usize = 50;
    let base_body = build_json1_body(resolved)?;

    let mut merged_array: Vec<JsonValue> = Vec::new();
    let mut last_resp: Option<JsonValue> = None;
    let mut next_token: Option<String> = None;

    for page in 0..MAX_PAGES {
        let mut body = base_body.clone();
        if let Some(token) = &next_token {
            body.insert("nextToken".to_string(), JsonValue::String(token.clone()));
        }
        let resp = json1_call(account, op.service, op.target, &JsonValue::Object(body)).await?;

        if let Some(arr) = lookup_path(&resp, op.array_key).and_then(|v| v.as_array()) {
            merged_array.extend(arr.iter().cloned());
        }

        let token = resp
            .get("nextToken")
            .and_then(|v| v.as_str())
            .filter(|s| !s.is_empty())
            .map(|s| s.to_string());

        last_resp = Some(resp);
        match token {
            Some(t) => next_token = Some(t),
            None => break,
        }
        if page + 1 == MAX_PAGES {
            eprintln!(
                "vantage-aws: nextToken pagination hit max-page cap \
                 ({MAX_PAGES} pages) for {}; truncating",
                op.target
            );
        }
    }

    // Stitch the accumulated array back onto the last response so
    // downstream `parse_records` reads the merged page set under
    // `op.array_key`. The last response also carries any non-array
    // metadata callers may want (search statistics, etc.).
    let mut resp = last_resp.expect("loop ran at least once");
    if let JsonValue::Object(ref mut map) = resp {
        map.insert(op.array_key.to_string(), JsonValue::Array(merged_array));
    }
    Ok(resp)
}

/// Pull the configured array out of the response and build records
/// keyed by `id_field`. Each value is converted from
/// `serde_json::Value` to `ciborium::Value` via the serde bridge.
///
/// Scalar array elements (strings/numbers) get wrapped as
/// `{<id_field>: value}` — this is what the ECS List* APIs return
/// (`clusterArns: ["arn:…", …]` instead of objects).
pub(crate) fn parse_records(
    op: &OperationDescriptor<'_>,
    resp: JsonValue,
    id_field: Option<&str>,
) -> Result<IndexMap<String, Record<CborValue>>> {
    let array = lookup_path(&resp, op.array_key)
        .and_then(|v| v.as_array())
        .ok_or_else(|| {
            error!(
                "AWS JSON-1.1 response missing expected array key",
                array_key = op.array_key,
                body = format!("{}", resp)
            )
        })?
        .clone();

    let scalar_field = id_field.unwrap_or("value");

    let mut out = IndexMap::with_capacity(array.len());
    for (idx, item) in array.into_iter().enumerate() {
        let obj = match item {
            JsonValue::Object(map) => map,
            JsonValue::String(_) | JsonValue::Number(_) => {
                let mut m = serde_json::Map::new();
                m.insert(scalar_field.to_string(), item);
                m
            }
            other => {
                return Err(error!(
                    "AWS response array entry is not an object or scalar",
                    index = idx,
                    got = format!("{:?}", other)
                ));
            }
        };

        let id = id_field
            .and_then(|f| obj.get(f))
            .and_then(|v| match v {
                JsonValue::String(s) => Some(s.clone()),
                JsonValue::Number(n) => Some(n.to_string()),
                _ => None,
            })
            .unwrap_or_else(|| idx.to_string());

        let record: Record<CborValue> =
            obj.into_iter().map(|(k, v)| (k, json_to_cbor(v))).collect();
        out.insert(id, record);
    }
    Ok(out)
}