CCM-10429: PR comment fixes.

Author: m-salaudeen

data-migration/user-transfer/src/user-transfer.ts

@@ -7,19 +7,21 @@ import {
   retrieveAllTemplates,
   updateItem,
 } from '@/src/utils/ddb-utils';
-import { backupData } from '@/src/utils/backup-utils';
+import {
+  backupData,
+  backupToJSON,
+  deleteJSONFile,
+  readJSONFile,
+} from '@/src/utils/backup-utils';
 import { Parameters } from '@/src/utils/constants';
 import {
-  findCognitoUser,
-  getUserGroup,
+  getUserGroupAndClientId,
   listCognitoUsers,
+  UserData,
 } from './utils/cognito-utils';
-import {
-  backupObject,
-  copyObjects,
-  deleteObjects,
-  getItemObjects,
-} from './utils/s3-utils';
+import { backupObject, deleteObjects, handleS3Copy } from './utils/s3-utils';
+
+const DRY_RUN = true;
 
 function getParameters(): Parameters {
   return yargs(hideBin(process.argv))
@@ -32,85 +34,91 @@ function getParameters(): Parameters {
         type: 'string',
         demandOption: true,
       },
+      accessKeyId: {
+        type: 'string',
+        demandOption: true,
+      },
+      secretAccessKey: {
+        type: 'string',
+        demandOption: true,
+      },
+      userPoolId: {
+        type: 'string',
+        demandOption: true,
+      },
+      sessionToken: {
+        type: 'string',
+        demandOption: true,
+      },
+      region: {
+        type: 'string',
+        demandOption: true,
+      },
+      flag: {
+        type: 'string',
+        demandOption: false,
+      },
     })
     .parseSync();
 }
 
-async function updateItems(
+async function getUserData(parameters: Parameters) {
+  const usernames = await listCognitoUsers(parameters);
+  if (!usernames || usernames.length === 0) {
+    throw new Error('No users found');
+  }
+  const userGroupAndClientId = await getUserGroupAndClientId(
+    usernames as string[],
+    parameters
+  );
+  // download users to a json file
+  await backupToJSON(userGroupAndClientId);
+}
+
+async function migrateTemplatesAndS3Data(
   items: Record<string, AttributeValue>[],
   parameters: Parameters
 ): Promise<void> {
-  for (const item of items) {
-    console.log(item.id.S, item.owner.S);
-
-    // Get owner id of this item
-    const { owner, id, templateType, clientId } = item;
+  const users: UserData[] = await readJSONFile('users.json');
 
-    //check if owner doesn't have CLIENT#
-    if (owner.S && !owner.S?.startsWith('CLIENT#')) {
-      // check the user in cognito, if it exist then pull the client id
-      const cognitoUser = await findCognitoUser(owner.S);
+  for (const user of users) {
+    for (const item of items) {
+      const { id } = item;
+      if (id.S === user.userId) {
+        // copy s3 data
+        const sourceKey = await handleS3Copy(user, id.S as string, DRY_RUN);
 
-      // check and get user groups - this is used when migrating for production
-      const userClientIdFromGroup = await getUserGroup({
-        Username: cognitoUser?.username,
-        UserPoolId: cognitoUser?.poolId,
-      });
+        // migrate templates
+        await updateItem(item, parameters, user, DRY_RUN);
 
-      // resolve client id
-      const newClientId = (userClientIdFromGroup ??
-        cognitoUser?.clientIdAttr) as string;
+        // delete previous template
+        await deleteItem(item, parameters);
 
-      // check if this item has a client id, if yes check it matches the client id above. If it doesn't, throw error!
-      if (item.clientId && item.clientId.S !== newClientId) {
-        console.log({
-          templateClientId: item.clientId,
-          cognitoClientId: newClientId,
-        });
-
-        throw new Error('Invalid ids');
-      }
-      // if it matches make the required swaps (clientId, createdby and updatedby)
-      // if item doesn't have a client id then create one and do the above
-      // update the item and delete the previous one
-
-      // migrate and update item
-      await updateItem(item, parameters, newClientId);
-
-      // check if migration was successful
-
-      // delete migrated item
-      await deleteItem(item, parameters);
-    }
-
-    //
-    if (templateType.S === 'LETTER') {
-      //Retrieve item S3 object(s)
-      const itemObjects = await getItemObjects(id.S as string);
-
-      //migrate to a new s3 location
-      for (const itemObject of itemObjects) {
-        await Promise.all([
-          copyObjects(
-            owner.S as string,
-            itemObject['Key'],
-            clientId.S as string
-          ),
-          // delete previous objects
-          deleteObjects(itemObject['Key']),
-        ]).then(() => console.log('Object moved'));
+        // delete migrated s3 data
+        deleteObjects(sourceKey);
       }
     }
   }
+
+  await deleteJSONFile('users.json');
+  console.log('Migration completed successfully');
 }
 
 export async function performTransfer() {
   const parameters = getParameters();
+
+  // if flag = user, then, get cognito users with their clientId and save to a json file
+  if (parameters.flag && parameters.flag === 'user') {
+    await getUserData(parameters);
+  }
+
+  // retrieve and backup all templates
   const items = await retrieveAllTemplates(parameters);
-  console.log({ items });
-  console.log(await listCognitoUsers());
-  // retrieve all user (id and clientId) in cognito and save to a JSON file
-  // await backupData(items, parameters);
-  // await backupObject(parameters);
-  // await updateItems(items, parameters);
+  await backupData(items, parameters);
+
+  // retrieve and backup  all S3 data
+  await backupObject(parameters);
+
+  // Migrate
+  await migrateTemplatesAndS3Data(items, parameters);
 }

data-migration/user-transfer/src/utils/backup-utils.ts

@@ -2,6 +2,8 @@ import { AttributeValue } from '@aws-sdk/client-dynamodb';
 import { Parameters } from '@/src/utils/constants';
 import { getAccountId } from '@/src/utils/sts-utils';
 import { writeJsonToFile } from '@/src/utils/s3-utils';
+import fs from 'node:fs';
+import { UserData } from './cognito-utils';
 
 export async function backupData(
   items: Record<string, AttributeValue>[],
@@ -21,3 +23,34 @@ export async function backupData(
   await writeJsonToFile(filePath, JSON.stringify(items), bucketName);
   console.log(`Backed up data to s3://${bucketName}/${filePath}`);
 }
+
+export async function backupToJSON(userData: UserData[]) {
+  const userDataJSON = JSON.stringify(userData);
+
+  fs.writeFile('users.json', userDataJSON, (err) => {
+    if (err) {
+      console.log('Error writing file:', err);
+    } else {
+      console.log('Successfully wrote file');
+    }
+  });
+}
+
+export async function readJSONFile(filePath: string) {
+  // eslint-disable-next-line security/detect-non-literal-fs-filename
+  const users = fs.readFileSync(filePath, 'utf8');
+
+  return JSON.parse(users);
+}
+
+export async function deleteJSONFile(filePath: string) {
+  fs.access(filePath, (error) => {
+    if (error) {
+      console.error('Error occurred:', error);
+    } else {
+      // eslint-disable-next-line security/detect-non-literal-fs-filename
+      fs.unlinkSync(filePath);
+      console.log('File deleted successfully');
+    }
+  });
+}

data-migration/user-transfer/src/utils/cognito-utils.ts

@@ -2,80 +2,77 @@ import {
   CognitoIdentityProviderClient,
   ListUsersCommand,
   AdminListGroupsForUserCommand,
-  AdminListGroupsForUserCommandInput,
-  UserType,
   GroupType,
 } from '@aws-sdk/client-cognito-identity-provider';
-import { ListBackupsCommandOutput } from '@aws-sdk/client-dynamodb';
-import { fromIni } from '@aws-sdk/credential-providers';
+import { Parameters } from './constants';
 
-const COGNITO_PROFILE = process.env.COGNITO_ACCOUNT;
-const cognito = new CognitoIdentityProviderClient({
-  region: process.env.REGION,
-  credentials: fromIni({ profile: COGNITO_PROFILE }),
-});
-const USER_POOL_ID = process.env.USER_POOL_ID;
+export type UserData = {
+  userId: string;
+  clientId: string;
+};
 
-interface CognitoUserBasics {
-  username: string;
-  sub?: string;
-  clientIdAttr?: string;
-  poolId: string;
-  user?: UserType;
-}
-
-export async function listCognitoUsers(): Promise<
-  ListBackupsCommandOutput | undefined
-> {
+export async function listCognitoUsers(
+  parameters: Parameters
+): Promise<Array<string> | undefined> {
+  let usernames: string[] = [];
+  const { region, accessKeyId, secretAccessKey, userPoolId, sessionToken } =
+    parameters;
+  const cognito = new CognitoIdentityProviderClient({
+    region,
+    credentials: {
+      accessKeyId,
+      secretAccessKey,
+      sessionToken,
+    },
+  });
   const command = new ListUsersCommand({
-    UserPoolId: 'eu-west-2_lGFnZO7vx',
+    UserPoolId: userPoolId,
   });
 
   const response = await cognito.send(command);
-  return response;
-}
 
-export async function findCognitoUser(
-  ownerId: string
-): Promise<CognitoUserBasics | undefined> {
-  console.log('owner', ownerId);
-  const listUser = new ListUsersCommand({
-    UserPoolId: USER_POOL_ID,
-    Filter: `"sub"="${ownerId}"`,
-  });
-  const res = await cognito.send(listUser);
-  const user = res.Users?.[0];
-  if (user) {
-    const sub = user.Attributes?.find((a) => a.Name === 'sub')?.Value;
-    const clientIdAttr = user.Attributes?.find(
-      (a) => a.Name === 'custom:sbx_client_id' // this would be removed when migrating for production
-    )?.Value;
-    return {
-      username: user.Username!,
-      sub,
-      clientIdAttr,
-      poolId: USER_POOL_ID as string,
-      user,
-    };
+  if (response.Users) {
+    usernames = response.Users.map((user) => user.Username as string);
+    return usernames;
   }
+
   return undefined;
 }
 
-export async function getUserGroup(
-  input: AdminListGroupsForUserCommandInput
-): Promise<string | undefined> {
-  const { Username, UserPoolId } = input;
+export async function getUserGroupAndClientId(
+  usernames: string[],
+  parameters: Parameters
+): Promise<UserData[]> {
+  const userIdAndClientId: UserData[] = [];
+  const { region, accessKeyId, secretAccessKey, userPoolId, sessionToken } =
+    parameters;
+  const cognito = new CognitoIdentityProviderClient({
+    region,
+    credentials: {
+      accessKeyId,
+      secretAccessKey,
+      sessionToken,
+    },
+  });
 
-  const userGroups = await cognito.send(
-    new AdminListGroupsForUserCommand({
-      UserPoolId,
-      Username,
-    })
-  );
+  for (const username of usernames) {
+    const userGroups = await cognito.send(
+      new AdminListGroupsForUserCommand({
+        UserPoolId: userPoolId,
+        Username: username,
+      })
+    );
+
+    if (userGroups.Groups && userGroups.Groups?.length > 0) {
+      const getClientId = await getUserClientId(userGroups.Groups);
+      userIdAndClientId.push({
+        userId: username,
+        clientId: getClientId as string,
+      });
+    }
+  }
 
-  return userGroups.Groups && userGroups.Groups?.length === 0
-    ? undefined
-    : await getUserClientId(userGroups.Groups);
+  return userIdAndClientId;
 }
 
 async function getUserClientId(

data-migration/user-transfer/src/utils/constants.ts

@@ -1,6 +1,10 @@
 export type Parameters = {
-  sourceOwner?: string;
-  destinationOwner?: string;
   environment: string;
   component: string;
+  accessKeyId: string;
+  secretAccessKey: string;
+  userPoolId: string;
+  region: string;
+  sessionToken: string;
+  flag?: string;
 };