feat: dependencies update

.github/workflows/create-release.yml

@@ -23,6 +23,12 @@ jobs:
     - name: Install dependencies
       run: poetry install
 
+    - name: Run tests
+      run: poetry run task test
+
+    - name: Run build tests
+      run: poetry run task test-build
+
     - name: Semantic Release
       env:
         GH_TOKEN: ${{ secrets.GITHUB_TOKEN }}

app/handler.py

@@ -1,6 +1,7 @@
 #!/usr/bin/env python3
 
 import shutil
+from certbot._internal.plugins import disco as plugins_disco
 
 from app.settings import load_settings
 from app.services.certbot import obtain_certbot_certs
@@ -10,32 +11,39 @@
 def handler(_event, _context):
     settings = load_settings()
 
-    try:
-        shutil.rmtree(str(settings.CERTBOT_DIR), ignore_errors=True)
-
-        # Load secret names early to check if aws client is configured correctly
-        secret_names = list_secret_names()
-
-        certs = obtain_certbot_certs(
-            emails=settings.CERTBOT_EMAILS,
-            domains=settings.CERTBOT_DOMAINS,
-            dns_plugin=settings.CERTBOT_DNS_PLUGIN,
-            certbot_dir=settings.CERTBOT_DIR,
-            certbot_server=settings.CERTBOT_SERVER,
-            preferred_chain=settings.CERTBOT_PREFERRED_CHAIN,
-            extra_args=settings.CERTBOT_EXTRA_ARGS,
-            credentials=settings.CERTBOT_CREDENTIALS,
-            propagation_seconds=settings.CERTBOT_PROPAGATION_SECONDS,
-        )
-
-        upload_certs_as_secrets(
-            certs,
-            name=settings.AWS_SECRET_NAME,
-            secret_names=secret_names,
-            description=settings.AWS_SECRET_DESCRIPTION,
-        )
-    finally:
-        shutil.rmtree(str(settings.CERTBOT_DIR), ignore_errors=True)
+    if settings.TESTMODE:
+        plugins = list(plugins_disco.PluginsRegistry.find_all())
+        dns_plugins = [v for v in plugins if v.startswith('dns-')]
+
+        if len(dns_plugins) != 14:
+            raise Exception('Failed to discover all certbot DNS plugins')
+    else:
+        try:
+            shutil.rmtree(str(settings.CERTBOT_DIR), ignore_errors=True)
+
+            # Load secret names early to check if aws client is configured correctly
+            secret_names = list_secret_names()
+
+            certs = obtain_certbot_certs(
+                emails=settings.CERTBOT_EMAILS,
+                domains=settings.CERTBOT_DOMAINS,
+                dns_plugin=settings.CERTBOT_DNS_PLUGIN,
+                certbot_dir=settings.CERTBOT_DIR,
+                certbot_server=settings.CERTBOT_SERVER,
+                preferred_chain=settings.CERTBOT_PREFERRED_CHAIN,
+                extra_args=settings.CERTBOT_EXTRA_ARGS,
+                credentials=settings.CERTBOT_CREDENTIALS,
+                propagation_seconds=settings.CERTBOT_PROPAGATION_SECONDS,
+            )
+
+            upload_certs_as_secrets(
+                certs,
+                name=settings.AWS_SECRET_NAME,
+                secret_names=secret_names,
+                description=settings.AWS_SECRET_DESCRIPTION,
+            )
+        finally:
+            shutil.rmtree(str(settings.CERTBOT_DIR), ignore_errors=True)
 
     return "Certificates obtained and uploaded successfully."
 

app/settings.py

@@ -18,6 +18,7 @@ class Settings:
     CERTBOT_EXTRA_ARGS: list[str] = None
     CERTBOT_CREDENTIALS: str = None
     CERTBOT_PROPAGATION_SECONDS: str = None
+    TESTMODE: bool = False
 
 
 def read_env(
@@ -60,4 +61,5 @@ def load_settings() -> Settings:
         CERTBOT_EXTRA_ARGS=read_env("CERTBOT_EXTRA_ARGS", multi=True, delimiter=" "),
         CERTBOT_CREDENTIALS=read_env("CERTBOT_CREDENTIALS"),
         CERTBOT_PROPAGATION_SECONDS=read_env("CERTBOT_PROPAGATION_SECONDS"),
+        TESTMODE=read_env('TESTMODE') == 'true'
     )