New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Seed poc #1626

Draft

sobolk wants to merge 37 commits into feature/seed-poc from seed-poc

Member

sobolk commented Jun 7, 2024

Problem

Issue number, if available:

Changes

Corresponding docs PR, if applicable:

Validation

Checklist

If this PR includes a functional change to the runtime behavior of the code, I have added or updated automated test coverage for this change.
If this PR requires a change to the Project Architecture README, I have included that update in this PR.
If this PR requires a docs update, I have linked to that docs PR above.
If this PR modifies E2E tests, makes changes to resource provisioning, or makes SDK calls, I have run the PR checks with the run-e2e label set.

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

sobolk added 14 commits

June 4, 2024 11:10


          setup sample app

e2cdecb


          Revert "setup sample app"

aad3252

This reverts commit e2cdecb.


          create test project

46aa201


          importing script - this isn't great

4c956d3


          tsx the script

61da3d0


          add backend seed package

2cbda4b


          add comment here

21f06f5


          add comment here

a9ce68d


          defineSeed

1be2a32


          read sandbox client config


          kind of ugly but works

f89808e


          auth client skeleton

29cc5e0


          auth create user works

a89d173


          remove timeout for now

b7b1299

changeset-bot bot commented Jun 7, 2024 •

edited

Loading

⚠️ No Changeset found

Latest commit: b3ec956

Merging this PR will not cause a version bump for any packages. If these changes should not result in a new version, you're good to go. If these changes should result in a version bump, you need to add a changeset.

This PR includes no changesets

When changesets are added to this PR, you'll see the packages that this PR includes changesets for and the associated semver types

Click here to learn what changesets are, and how to add one.

Click here if you're a maintainer who wants to add a changeset to this PR

api

ffeffdc

github-advanced-security bot found potential problems

View reviewed changes

packages/backend-seed/src/auth_client.ts

+                ): Promise<AuthUser> => {
+                  await this.lock.acquire();
+                  try {
+                    console.log(`creating ${username}, ${password}`);

Check failure

Code scanning / CodeQL

Clear-text logging of sensitive information High

This logs sensitive data returned by

an access to password

as clear text.

sobolk added 8 commits

June 7, 2024 13:19


          readme

8d6b8d9


          more

22d3b93


          more

251d1d8


          more comments

edfe052


          more comments

e1832ca


          more comments

2729dbc


          this kind of works

edb7b50


          this kind of works

5b45403

github-advanced-security bot found potential problems

View reviewed changes

packages/backend-seed/src/index.ts

+              import { AuthClient, AuthUser, SeedFunction } from './types.js';
+              import { DefaultAuthClient } from './auth_client.js';
+              import { CognitoIdentityProviderClient } from '@aws-sdk/client-cognito-identity-provider';
+              import { SchemaSeedable, Seedable } from '@aws-amplify/plugin-types';

Check notice

Code scanning / CodeQL

Unused variable, import, function or class Note

Unused import SchemaSeedable.

packages/backend-seed/src/index.ts Fixed Show fixed Hide fixed

test-projects/seed-poc/amplify/seed.ts

+              import { defineSeed } from '@aws-amplify/backend';
+              import type { Schema } from './data/resource';
+              import { defineSeed2, KeysByType, PickByType } from '@aws-amplify/backend-seed';
+              import { SchemaSeedable, Seedable } from '@aws-amplify/plugin-types';

Check notice

Code scanning / CodeQL

Unused variable, import, function or class Note test

Unused import SchemaSeedable.

test-projects/seed-poc/amplify/seed.ts

+                );
+              });
+              let foo: PickByType<typeof backend, Seedable<'auth'>>;

Check notice

Code scanning / CodeQL

Unused variable, import, function or class Note test

Unused variable foo.

test-projects/seed-poc/amplify/seed.ts

+              });
+              let foo: PickByType<typeof backend, Seedable<'auth'>>;
+              let bar: PickByType<typeof backend, Seedable<'data'>>;

Check notice

Code scanning / CodeQL

Unused variable, import, function or class Note test

Unused variable bar.

test-projects/seed-poc/amplify/seed.ts

+              let foo: PickByType<typeof backend, Seedable<'auth'>>;
+              let bar: PickByType<typeof backend, Seedable<'data'>>;
+              let foo2: KeysByType<typeof backend, Seedable<'auth'>>;

Check notice

Code scanning / CodeQL

Unused variable, import, function or class Note test

Unused variable foo2.

test-projects/seed-poc/amplify/seed.ts

+              let bar: PickByType<typeof backend, Seedable<'data'>>;
+              let foo2: KeysByType<typeof backend, Seedable<'auth'>>;
+              let bar2: KeysByType<typeof backend, Seedable<'data'>>;

Check notice

Code scanning / CodeQL

Unused variable, import, function or class Note test

Unused variable bar2.

test-projects/seed-poc/amplify/backend.ts Fixed Show fixed Hide fixed


          it seems smuggling type is possible.

773760a

github-advanced-security bot found potential problems

View reviewed changes

packages/backend-seed/src/index.ts Fixed Show fixed Hide fixed

test-projects/seed-poc/amplify/backend.ts

+               *
+               * This means that schema type can be passed through defineData -> backend -> access backend props.
+               */
+              let dataSchema = backend.data.schema;

Check notice

Code scanning / CodeQL

Unused variable, import, function or class Note test

Unused variable dataSchema.

sobolk added 2 commits

June 18, 2024 12:05


          add second project

0c7173e


          add second project

09b6d5a

sobolk added 2 commits

June 19, 2024 11:41


          version with some magic

ee0c527


          this kind of works

bb9ae3a

github-advanced-security bot found potential problems

View reviewed changes

packages/backend-seed/src/auth_client.ts

+                }
+                createUser = async (
+                  username: string,

Check failure

Code scanning / CodeQL

Insecure randomness High

This uses a cryptographically insecure random number generated at

Math.random()

in a security context.
This uses a cryptographically insecure random number generated at

Math.random()

in a security context.

packages/backend-seed/src/auth_client.ts

+                createUser = async (
+                  username: string,
+                  password: string

Check failure

Code scanning / CodeQL

Insecure randomness High

This uses a cryptographically insecure random number generated at

Math.random()

in a security context.
This uses a cryptographically insecure random number generated at

Math.random()

in a security context.

sobolk added 9 commits

June 19, 2024 13:54


          readme

1c00a42


          well.. storage is easy

a04c7a9


          delete that

86d8983


          more readme

e383500


          storage

5d12b6b


          tweaks

6b0e84e


          tweaks

21e0edb


          fix that

e576c28


          Seed access.

b3ec956

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet