Merge pull request #20 from wjohnstondrip/configurable-aws-clients

Allow the AWS API clients to be passed in when configuring

README.md

@@ -56,6 +56,10 @@ RCredStash uses [aws-sdk v2](https://github.com/aws/aws-sdk-ruby), so configurat
 ```ruby
 CredStash.configure do |config|
   config.table_name = 'your_dynamodb_table_name'
+
+  # Optional, if you want to modify them, like for Localstack.
+  config.dynamo_client = Aws::DynamoDB::Client.new
+  config.kms_client = Aws::KMS::Client.new
 end
 ```
 

lib/cred_stash/cipher_key.rb

@@ -5,7 +5,7 @@ class CredStash::CipherKey
 
   attr_reader :data_key, :hmac_key, :wrapped_key
 
-  def self.generate(client: Aws::KMS::Client.new, kms_key_id: nil,
+  def self.generate(client: CredStash.config.kms_client, kms_key_id: nil,
                     context: {})
     res = client.generate_data_key(
       key_id: kms_key_id || DEFAULT_KMS_KEY_ID,
@@ -19,7 +19,7 @@ def self.generate(client: Aws::KMS::Client.new, kms_key_id: nil,
     )
   end
 
-  def self.decrypt(wrapped_key, client: Aws::KMS::Client.new, context: {})
+  def self.decrypt(wrapped_key, client: CredStash.config.kms_client, context: {})
     res = client.decrypt(ciphertext_blob: wrapped_key, encryption_context: context)
     new(
       data_key: res.plaintext[0...32],

lib/cred_stash/config.rb

@@ -10,7 +10,7 @@ def config
   end
 
   class Config
-    attr_accessor :table_name, :storage
+    attr_accessor :table_name, :storage, :kms_client, :dynamo_client
 
     def initialize
       reset!
@@ -19,6 +19,8 @@ def initialize
     def reset!
       @table_name = 'credential-store'
       @storage = :dynamodb
+      @kms_client = Aws::KMS::Client.new
+      @dynamo_client = Aws::DynamoDB::Client.new
     end
   end
 end

lib/cred_stash/repository/dynamo_db.rb

@@ -1,7 +1,7 @@
 module CredStash::Repository
   class DynamoDB
     def initialize(client: nil)
-      @client = client || Aws::DynamoDB::Client.new
+      @client = client || CredStash.config.dynamo_client
     end
 
     def get(name, version: nil)