Fix License Key Stack Output Handling (#175)

Closes #174
newrelic · May 18, 2021 · 75df5a1 · 75df5a1
1 parent 169571e
commit 75df5a1
Show file tree

Hide file tree

Showing 4 changed files with 45 additions and 40 deletions.
diff --git a/newrelic_lambda_cli/integrations.py b/newrelic_lambda_cli/integrations.py
@@ -50,22 +50,27 @@ def _get_cf_stack_status(session, stack_name, nr_account_id=None):
     try:
         res = session.client("cloudformation").describe_stacks(StackName=stack_name)
         if nr_account_id is not None:
-            stack_output_account_id = _get_stack_output_value(session, ["NrAccountId"])
-            # Checking length of outputs here to protect against installs done with older CLI versions.
-            # We don't want to constantly warn users who installed on previous versions with no outputs.
-            if (
-                len(stack_output_account_id) > 0
-                and str(nr_account_id) not in stack_output_account_id
+            stack_output_account_id = _get_stack_output_value(
+                session, ["NrAccountId"]
+            ).get("NrAccountId")
+            # Checking outputs here to protect against installs done
+            # with older CLI versions. We don't want to constantly warn users
+            # who installed on previous versions with no outputs.
+            if stack_output_account_id and stack_output_account_id != str(
+                nr_account_id
             ):
                 warning(
-                    "WARNING: Managed secret already exists in this region for New Relic account {0}.\n"
-                    "Current CLI behavior limits the setup of one managed secret per region.\n"
-                    "To set up an additional secret for New Relic account {1} see our docs:\n{2}.\n"
-                    "Or run this command with --disable-license-key-secret to avoid attemping to create a new managed secret.".format(
+                    "WARNING: Managed secret already exists in this region for "
+                    "New Relic account {0}.\n"
+                    "Current CLI behavior limits the setup of one managed "
+                    "secret per region.\n"
+                    "To set up an additional secret for New Relic account {1} "
+                    "see our docs:\n{2}.\n"
+                    "Or run this command with --disable-license-key-secret to "
+                    "avoid attempting to create a new managed secret.".format(
                         stack_output_account_id, nr_account_id, NR_DOCS_ACT_LINKING_URL
                     )
                 )
-
     except botocore.exceptions.ClientError as e:
         if (
             e.response
@@ -708,16 +713,11 @@ def _get_license_key_outputs(session):
     global __cached_license_key_nr_account_id
     global __cached_license_key_policy_arn
     if __cached_license_key_nr_account_id and __cached_license_key_policy_arn:
-        return [__cached_license_key_nr_account_id, __cached_license_key_policy_arn]
-
-    account_id, policy_arn = _get_stack_output_value(
-        session, ["NrAccountId", "ViewPolicyARN"]
-    )
-    if account_id is not None:
-        __cached_license_key_nr_account_id = account_id
-    if policy_arn is not None:
-        __cached_license_key_policy_arn = policy_arn
-    return [account_id, policy_arn]
+        return __cached_license_key_nr_account_id, __cached_license_key_policy_arn
+    output_values = _get_stack_output_value(session, ["NrAccountId", "ViewPolicyARN"])
+    __cached_license_key_nr_account_id = output_values.get("NrAccountId")
+    __cached_license_key_policy_arn = output_values.get("ViewPolicyARN")
+    return __cached_license_key_nr_account_id, __cached_license_key_policy_arn
 
 
 def _get_stack_output_value(session, output_keys):
@@ -733,19 +733,17 @@ def _get_stack_output_value(session, output_keys):
             and "HTTPStatusCode" in e.response["ResponseMetadata"]
             and e.response["ResponseMetadata"]["HTTPStatusCode"] in (400, 404)
         ):
-            return None
+            return {}
         raise e
     else:
         if not stacks:
-            return None
+            return {}
         stack = stacks[0]
-        output_values = []
-        for output_key in output_keys:
-            for output in stack.get("Outputs", []):
-                if output["OutputKey"] == output_key:
-                    value = output["OutputValue"] or None
-                    output_values.append(value)
-        return output_values
+        return {
+            output["OutputKey"]: output["OutputValue"]
+            for output in stack.get("Outputs", [])
+            if output["OutputKey"] in output_keys
+        }
 
 
 @catch_boto_errors

diff --git a/newrelic_lambda_cli/layers.py b/newrelic_lambda_cli/layers.py
@@ -4,7 +4,6 @@
 import click
 import enquiries
 import json
-import re
 import requests
 
 
@@ -122,11 +121,13 @@ def _add_new_relic(input, config, nr_license_key):
         "Layers": new_relic_layer + existing_layers,
     }
 
-    # We don't want to modify the handler if the NewRelicLambdaExtension layer has been selected
+    # We don't want to modify the handler if the NewRelicLambdaExtension layer
+    # has been selected
     if any("NewRelicLambdaExtension" in s for s in new_relic_layer):
         runtime_handler = None
 
-    # Only used by Python, Node.js and Java runtimes not using the NewRelicLambdaExtension layer
+    # Only used by Python, Node.js and Java runtimes not using the
+    # NewRelicLambdaExtension layer
     if runtime_handler:
         update_kwargs["Handler"] = runtime_handler
 
@@ -189,17 +190,20 @@ def install(input, function_arn):
         return False
 
     nr_account_id, policy_arn = _get_license_key_outputs(input.session)
-    # If a managed secret exists but it was created with a different NR account id and license key
-    # We want to notify the user and point them to documentation on how to proceed.
+    # If a managed secret exists but it was created with a different NR account
+    # id and license key We want to notify the user and point them to
+    # documentation on how to proceed.
     if (
         policy_arn
+        and nr_account_id
         and nr_account_id != str(input.nr_account_id)
         and not input.nr_api_key
     ):
         raise click.UsageError(
             "A managed secret already exists in this region for New Relic account {0}. "
-            "Creating one managed secret per region is currently supported via the cli.\n"
-            "To set up an additional secret for New Relic account {1} see our docs:\n{2}.\n"
+            "Creating one managed secret per region is currently supported via "
+            "the cli. To set up an additional secret for New Relic account {1} "
+            "see our docs:\n{2}.\n"
             "Or you can re-run this command with "
             "`--nr-api-key` argument with your New Relic API key to set your license "
             "key in a NEW_RELIC_LICENSE_KEY environment variable instead.".format(

diff --git a/setup.py b/setup.py
@@ -6,7 +6,7 @@
 
 setup(
     name="newrelic-lambda-cli",
-    version="0.6.1",
+    version="0.6.2",
     python_requires=">=3.3",
     description="A CLI to install the New Relic AWS Lambda integration and layers.",
     long_description=README,

diff --git a/tests/test_integrations.py b/tests/test_integrations.py
@@ -274,10 +274,13 @@ def test__get_license_key_outputs():
     with patch(
         "newrelic_lambda_cli.integrations._get_stack_output_value"
     ) as mock_get_stack_output:
-        mock_get_stack_output.return_value = [12345, "policy_arn"]
+        mock_get_stack_output.return_value = {
+            "NrAccountId": 12345,
+            "ViewPolicyARN": "policy_arn",
+        }
         session = MagicMock()
         result = _get_license_key_outputs(session)
-        assert result == mock_get_stack_output.return_value
+        assert result == (12345, "policy_arn")
         mock_get_stack_output.assert_called_once_with(
             session, ["NrAccountId", "ViewPolicyARN"]
         )