feat: TT-293 add extra security layer to avoid use cli in a non-development environment

jcalarcon98 · jcalarcon98 · commit 734b522b7197 · 2021-07-21T17:32:31.000-05:00
diff --git a/cosmosdb_emulator/cli.sh b/cosmosdb_emulator/cli.sh
@@ -2,26 +2,21 @@
 COMMAND=$@
 API_CONTAINER_NAME="time-tracker-backend_api"
 TIME_TRACKER_CLI_URL="cosmosdb_emulator/time_tracker_cli"
-TIME_TRACKER_CLI="python3 $COMMAND"
-DEFAULT_SCRIPT_NAME='main.py'
+DEFAULT_SCRIPT_NAME="main.py"
 FIRST_ARG=$1
 
-if [ "$FIRST_ARG" != "$DEFAULT_SCRIPT_NAME" ]; then
+execute(){
+  docker exec -it $API_CONTAINER_NAME sh "cosmosdb_emulator/verify_environment.sh"
+
+  if [ "$FIRST_ARG" != "$DEFAULT_SCRIPT_NAME" ]; then
     echo "Do not forget that the file name is $DEFAULT_SCRIPT_NAME and needs to be sent as first parameter"
     echo "For example: ./cli.sh main.py"
     exit 0
-fi
+  fi
 
-DATABASE_EMULATOR_KEY="C2y6yDjf5/R+ob0N8A7Cgv30VRDJIWEHLM+4QDU5DE2nQ9nDuVTqobD4b8mGGyPMbIZnqyMsEcaGQy67XIw/Jw=="
-DATABASE_ENV_KEY=$DATABASE_MASTER_KEY
+  TIME_TRACKER_CLI="python3 $COMMAND"
 
-if [ "$DATABASE_EMULATOR_KEY" != "$DATABASE_ENV_KEY" ]; then
-    echo "You are trying to run this CLI in a non-development environment. We can not proceed with this action"
-    exit 0
-fi
-
-execute(){
-    docker exec -ti $API_CONTAINER_NAME sh -c "cd $TIME_TRACKER_CLI_URL && $TIME_TRACKER_CLI"
+  docker exec -it $API_CONTAINER_NAME sh -c "cd $TIME_TRACKER_CLI_URL && $TIME_TRACKER_CLI"
 }
 
 execute
diff --git a/cosmosdb_emulator/entrypoint.sh b/cosmosdb_emulator/entrypoint.sh
@@ -5,15 +5,7 @@ until curl -ksf "${DATABASE_ACCOUNT_URI}/_explorer/emulator.pem" -o 'cosmosdb_em
     sleep 10
 done
 
-echo "Development environment check..."
-DATABASE_EMULATOR_KEY="C2y6yDjf5/R+ob0N8A7Cgv30VRDJIWEHLM+4QDU5DE2nQ9nDuVTqobD4b8mGGyPMbIZnqyMsEcaGQy67XIw/Jw=="
-DATABASE_ENV_KEY=$DATABASE_MASTER_KEY
-
-if [ "$DATABASE_EMULATOR_KEY" != "$DATABASE_ENV_KEY" ]; then
-    echo "You are trying to build an environment different from the development, this can have negative effects."
-    exit 0
-fi
-echo "GREAT! You are on development environment"
+source cosmosdb_emulator/verify_environment.sh
 
 echo "Container cosmosemulator started."
 
diff --git a/cosmosdb_emulator/time_tracker_cli/data_target/cosmos.py b/cosmosdb_emulator/time_tracker_cli/data_target/cosmos.py
@@ -1,7 +1,11 @@
 import os
+import sys
 
 from azure.cosmos import CosmosClient
-from azure.cosmos.exceptions import CosmosResourceExistsError
+from azure.cosmos.exceptions import (
+    CosmosResourceExistsError,
+    CosmosResourceNotFoundError,
+)
 
 from cosmosdb_emulator.time_tracker_cli.data_target.data_target import (
     DataTarget,
@@ -79,10 +83,13 @@ def delete(self, entities: dict):
                 )
             )
             entity_container_id = entity_container_definition.get('id')
-            self.database.create_container_if_not_exists(
-                **entity_container_definition
-            )
-            self.database.delete_container(entity_container_id)
+            try:
+                self.database.delete_container(entity_container_id)
+                self.database.create_container_if_not_exists(
+                    **entity_container_definition
+                )
+            except CosmosResourceNotFoundError:
+                pass
 
     def save(self, entities: dict):
         for entity in entities:
diff --git a/cosmosdb_emulator/verify_environment.sh b/cosmosdb_emulator/verify_environment.sh
@@ -0,0 +1,13 @@
+#!/bin/bash
+
+echo "We are checking the development environment..."
+
+DATABASE_EMULATOR_KEY="C2y6yDjf5/R+ob0N8A7Cgv30VRDJIWEHLM+4QDU5DE2nQ9nDuVTqobD4b8mGGyPMbIZnqyMsEcaGQy67XIw/Jw=="
+DATABASE_ENV_KEY=$DATABASE_MASTER_KEY
+
+if [ "$DATABASE_EMULATOR_KEY" != "$DATABASE_ENV_KEY" ]; then
+  echo "You are trying to run this CLI in a non-development environment. We can not proceed with this action"
+  exit 0
+fi
+
+echo "GREAT! You are on development environment"
