feat: adding support for session credentials

marcelovbcfilho · marcelovbcfilho · commit ace2fe60b86b · 2024-03-18T19:14:05.000-03:00
diff --git a/src/main/java/br/com/grupo63/serviceproduction/config/DynamoDBConfig.java b/src/main/java/br/com/grupo63/serviceproduction/config/DynamoDBConfig.java
@@ -44,7 +44,7 @@ public AmazonDynamoDB amazonDynamoDB(AWSCredentials awsCredentials) {
     }
 
     @Bean
-    public AWSCredentials awsCredentials() {
+    public AWSCredentials AWSCredentials() {
         if (awsSessionToken == null || awsSessionToken.isBlank()) {
             return new BasicAWSCredentials(
                     awsAccessKey, awsSecretKey);
diff --git a/src/main/java/br/com/grupo63/serviceproduction/config/SQSClientConfig.java b/src/main/java/br/com/grupo63/serviceproduction/config/SQSClientConfig.java
@@ -4,6 +4,8 @@
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import software.amazon.awssdk.auth.credentials.AwsBasicCredentials;
+import software.amazon.awssdk.auth.credentials.AwsCredentials;
+import software.amazon.awssdk.auth.credentials.AwsSessionCredentials;
 import software.amazon.awssdk.auth.credentials.StaticCredentialsProvider;
 import software.amazon.awssdk.regions.Region;
 import software.amazon.awssdk.services.sqs.SqsAsyncClient;
@@ -17,16 +19,27 @@ class SQSClientConfig {
     @Value("${spring.cloud.aws.credentials.secret-key}")
     private String secretKey;
 
+    @Value("${app.aws.session-token}")
+    private String sessionToken;
+
     @Value("${spring.cloud.aws.region.static}")
     private String region;
 
     @Bean
-    SqsAsyncClient sqsAsyncClient(){
+    SqsAsyncClient sqsAsyncClient(AwsCredentials awsCredentials) {
         return SqsAsyncClient
                 .builder()
                 .region(Region.of(region))
                 .credentialsProvider(StaticCredentialsProvider
-                        .create(AwsBasicCredentials.create(accessKey, secretKey)))
+                        .create(awsCredentials))
                 .build();
     }
+
+    @Bean
+    public AwsCredentials awsCredentials() {
+        if (sessionToken == null || sessionToken.isBlank()) {
+            return AwsBasicCredentials.create(accessKey, secretKey);
+        }
+        return AwsSessionCredentials.create(accessKey, secretKey, sessionToken);
+    }
 }
diff --git a/src/main/resources/application-dev.yml b/src/main/resources/application-dev.yml
@@ -19,7 +19,7 @@ spring:
         access-key: "${AWS_ACCESS_KEY:accesskey}"
         secret-key: "${AWS_SECRET_KEY:secretkey}"
       region:
-        static: "us-east-2"
+        static: "${AWS_REGION:us-east-2}"
       sqs:
         endpoint: "${AWS_SQS_ENDPOINT:endpoint}"
 jwt:
diff --git a/src/main/resources/application.yml b/src/main/resources/application.yml
@@ -20,7 +20,7 @@ spring:
         access-key: "${AWS_ACCESS_KEY:accesskey}"
         secret-key: "${AWS_SECRET_KEY:secretkey}"
       region:
-        static: "us-east-2"
+        static: "${AWS_REGION:us-east-2}"
       sqs:
         endpoint: "${AWS_SQS_ENDPOINT:endpoint}"
 

Original file line number	Diff line number	Diff line change
`@@ -44,7 +44,7 @@ public AmazonDynamoDB amazonDynamoDB(AWSCredentials awsCredentials) {`
`44`	`44`	`}`
`45`	`45`
`46`	`46`	`@Bean`
`47`		`- public AWSCredentials awsCredentials() {`
	`47`	`+ public AWSCredentials AWSCredentials() {`
`48`	`48`	`if (awsSessionToken == null \|\| awsSessionToken.isBlank()) {`
`49`	`49`	`return new BasicAWSCredentials(`
`50`	`50`	`awsAccessKey, awsSecretKey);`