[CDAPI-78]: created mock for apim

Author: MohammadPatelNHS

.github/workflows/preview-env.yaml

@@ -20,7 +20,7 @@ env:
   PYTHON_VERSION: 3.14
   LAMBDA_RUNTIME: python3.14
   LAMBDA_HANDLER: lambda_handler.handler
-  MOCK_LAMBDA_HANDLER: handler.handler
+  MOCK_LAMBDA_HANDLER: lambda_handler.handler
   MTLS_SECRET_NAME: ${{ vars.PREVIEW_ENV_MTLS_SECRET_NAME }}
   PROXYGEN_KEY_ID: ${{ vars.PREVIEW_ENV_PROXYGEN_KEY_ID }}
   PROXYGEN_CLIENT_ID: ${{ vars.PREVIEW_ENV_PROXYGEN_CLIENT_ID }}
@@ -48,18 +48,10 @@ jobs:
         with:
           python-version: ${{ env.PYTHON_VERSION }}
 
-      - name: Package artifact
+      - name: Package artifacts
         run: |
           make build
 
-      # Place holder mock artifact packaging to allow testing of mock API in preview environment;
-      # can be extended to build a real mock Lambda if needed
-      - name: Package mock artifact
-        run: |
-          cd infrastructure/environments/preview
-          rm -f mock_artifact.zip
-          zip -r mock_artifact.zip .
-
       - name: Select AWS role inputs
         id: role-select
         env:
@@ -207,8 +199,14 @@ jobs:
         if: github.event.action != 'closed'
         env:
           TOKEN_EXPIRY_TIME: ${{ secrets.TOKEN_LIFETIME }}
+          JWT_ALGORITHMS: "RS512"
+          AUTH_URL: "${{ steps.names.outputs.mock_preview_url }}/oauth2/token"
+          JWKS_SECRET: "${{ secrets.JWKS_SECRET }}"
+          PUBLIC_KEY_URL: "https://example.com"
+          TOKEN_TABLE_NAME: "mock_services_dev"
         run: |
-          cd infrastructure/environments/preview
+          cd mocks/target/
+          JWKS_SECRET="${JWKS_SECRET_NAME:-/cds/pathology/dev/jwks/secret}"
           MFN="${{ steps.names.outputs.mock_function_name }}"
           SAFE="${{ steps.branch.outputs.safe }}"
           TOKEN_LIFETIME="${TOKEN_EXPIRY_TIME:-15m}"
@@ -233,18 +231,28 @@ jobs:
               --handler "${{ env.MOCK_LAMBDA_HANDLER }}" \
               --environment "Variables={CLIENT_PUBLIC_KEY_ARN=mock, \
                                         DDB_INDEX_TAG=$SAFE, \
-                                        TOKEN_LIFETIME=$TOKEN_LIFETIME}" || true
+                                        TOKEN_LIFETIME=$TOKEN_LIFETIME, \
+                                        AUTH_URL=$AUTH_URL, \
+                                        PUBLIC_KEY_URL=$PUBLIC_KEY_URL, \
+                                        API_KEY=$JWKS_SECRET, \
+                                        TOKEN_TABLE_NAME=$TOKEN_TABLE_NAME \
+                                        }" || true
             wait_for_lambda_ready
-            aws lambda update-function-code --function-name "$MFN" --zip-file "fileb://mock_artifact.zip" --publish
+            aws lambda update-function-code --function-name "$MFN" --zip-file "fileb://artifact.zip" --publish
           else
             aws lambda create-function --function-name "$MFN" \
               --runtime "${{ env.LAMBDA_RUNTIME }}" \
               --handler "${{ env.MOCK_LAMBDA_HANDLER }}" \
-              --zip-file "fileb://mock_artifact.zip" \
+              --zip-file "fileb://artifact.zip" \
               --role "${{ steps.role-select.outputs.lambda_role }}" \
               --environment "Variables={CLIENT_PUBLIC_KEY_ARN=mock, \
                                         DDB_INDEX_TAG=$SAFE, \
-                                        TOKEN_LIFETIME=$TOKEN_LIFETIME}" \
+                                        TOKEN_LIFETIME=$TOKEN_LIFETIME, \
+                                        AUTH_URL=$AUTH_URL, \
+                                        PUBLIC_KEY_URL=$PUBLIC_KEY_URL, \
+                                        API_KEY=$JWKS_SECRET, \
+                                        TOKEN_TABLE_NAME=$TOKEN_TABLE_NAME, \
+                                        }" \
               --publish
             wait_for_lambda_ready
           fi
@@ -454,7 +462,7 @@ jobs:
               '**Deployment Complete**',
               `- Preview URL: [${url}](${url}) — [Status](${url}/_status)`,
               `  - Smoke Test: ${smokeReadable} (HTTP ${smokeStatus})`,
-              `- Mock URL: [${mock_url}](${mock_url})`,
+              `- Mock URL: [${mock_url}](${mock_url}) — [Status](${mock_url}/_status)`,
               `  - Smoke Mock Test: ${smokeMockReadable} (HTTP ${smokeMockStatus})`,
               `- Proxy URL: [${proxy_url}](${proxy_url})`,
               `- Lambda Function: ${fn}`,

.gitleaksignore

@@ -6,6 +6,5 @@ cd9c0efec38c5d63053dd865e5d4e207c0760d91:docs/guides/Perform_static_analysis.md:
 
 pathology-api/pyproject.toml:ipv4:51
 pathology-api/pyproject.toml:ipv4:50
-
 mocks/pyproject.toml:ipv4:54
 mocks/pyproject.toml:ipv4:55

Makefile

@@ -18,11 +18,13 @@ dockerNetwork := pathology-local
 
 .PHONY: dependencies
 dependencies: # Install dependencies needed to build and test the project @Pipeline
-	cd pathology-api && poetry sync
+	@cd pathology-api && poetry sync
+	@cd ../mocks && poetry sync
 
-.PHONY: build
-build: clean-artifacts dependencies
+.PHONY: build-pathology
+build-pathology:
 	@cd pathology-api
+	@echo "Starting build for pathology API..."
 	@echo "Running type checks..."
 	@rm -rf target && rm -rf dist
 	@poetry run mypy --no-namespace-packages .
@@ -35,13 +37,39 @@ build: clean-artifacts dependencies
 	@cd ./target/pathology-api
 	@zip -r "../artifact.zip" .
 
+.PHONY: build-mocks
+build-mocks:
+	@cd mocks
+	@echo "Starting build for mocks..."
+	@echo "Running type checks..."
+	@rm -rf target && rm -rf dist
+	@poetry run mypy --no-namespace-packages .
+	@echo "Packaging dependencies..."
+	@poetry build --format=wheel
+	VERSION=$$(poetry version -s)
+	@pip install "dist/pathology_api_mocks-$$VERSION-py3-none-any.whl" --target "./target/mocks" --platform manylinux2014_x86_64 --only-binary=:all:
+	# Copy lambda_handler file separately as it is not included within the package.
+	@cp lambda_handler.py ./target/mocks/
+	@cd ./target/mocks
+	@zip -r "../artifact.zip" .
+
+.PHONY: build
+build: clean-artifacts dependencies build-pathology build-mocks
+	@echo "Built artifacts for both pathology and mocks"
+
+
 .PHONY: build-images
 build-images: build # Build the project artefact @Pipeline
 	@mkdir infrastructure/images/pathology-api/resources/build/
 	@cp pathology-api/target/artifact.zip infrastructure/images/pathology-api/resources/build/
 	@mkdir infrastructure/images/pathology-api/resources/build/pathology-api
 	@unzip infrastructure/images/pathology-api/resources/build/artifact.zip -d infrastructure/images/pathology-api/resources/build/pathology-api
 
+	@mkdir infrastructure/images/mocks/resources/build/
+	@cp mocks/target/artifact.zip infrastructure/images/mocks/resources/build/
+	@mkdir infrastructure/images/mocks/resources/build/mocks
+	@unzip infrastructure/images/mocks/resources/build/artifact.zip -d infrastructure/images/mocks/resources/build/mocks
+
 	@echo "Building Docker image using Docker. Utilising python version: ${PYTHON_VERSION} ..."
 	@$(docker) buildx build --load --platform=linux/amd64 --provenance=false --build-arg PYTHON_VERSION=${PYTHON_VERSION} -t localhost/pathology-api-image infrastructure/images/pathology-api
 	@echo "Docker image 'pathology-api-image' built successfully!"
@@ -50,18 +78,37 @@ build-images: build # Build the project artefact @Pipeline
 	@$(docker) buildx build --load --build-arg PYTHON_VERSION=${PYTHON_VERSION} -t localhost/api-gateway-mock-image infrastructure/images/api-gateway-mock
 	@echo "Docker image 'api-gateway-mock-image' built successfully!"
 
+	@echo "Building mocks Docker image using Docker. Utilising python version: ${PYTHON_VERSION} ..."
+	@$(docker) buildx build --load --platform=linux/amd64 --provenance=false --build-arg PYTHON_VERSION=${PYTHON_VERSION} -t localhost/mocks-image infrastructure/images/mocks
+	@echo "Docker image 'mocks-image' built successfully!"
+
 publish: # Publish the project artefact @Pipeline
 	# TODO: Implement the artefact publishing step
 
 deploy: clean-docker build-images # Deploy the project artefact to the target environment @Pipeline
 	$(docker) network create $(dockerNetwork) || echo "Docker network '$(dockerNetwork)' already exists."
-	$(docker) run  --platform linux/amd64 --name pathology-api -p 5001:8080 --network $(dockerNetwork) -d localhost/pathology-api-image
+	$(docker) run --platform linux/amd64 --name pathology-api -p 5001:8080 --network $(dockerNetwork) -d localhost/pathology-api-image
+	$(docker) run --platform linux/amd64 --name mocks -p 5003:8080 --network $(dockerNetwork) -d localhost/mocks-image
 	$(docker) run --name api-gateway-mock -p 5002:5000 --network $(dockerNetwork) -d localhost/api-gateway-mock-image
+	$(docker) run --name api-gateway-mock-2 -p 5005:5000 -e TARGET_CONTAINER='MOCKS' --network $(dockerNetwork) -d localhost/api-gateway-mock-image
+
+# .PHONY: quick-deploy-mock
+# quick-deploy-mock: build-mocks
+# 	@echo "Stopping mocks container..."
+# 	@$(docker) stop mocks || echo "No mocks container currently running."
+
+# 	@echo "Removing mocks container..."
+# 	@$(docker) rm mocks || echo "No mocks container currently exists."
+
+# 	@$(docker) run --platform linux/amd64 --name mocks -p 5003:8080 --network $(dockerNetwork) -d localhost/mocks-image
+
 
 clean-artifacts:
 	@echo "Removing build artefacts..."
 	@rm -rf infrastructure/images/pathology-api/resources/build/
 	@rm -rf pathology-api/target && rm -rf pathology-api/dist
+	@rm -rf infrastructure/images/mocks/resources/build/
+	@rm -rf mocks/target && rm -rf mocks/dist
 
 clean-docker: stop
 	@echo "Removing pathology API container..."
@@ -70,6 +117,12 @@ clean-docker: stop
 	@echo "Removing api-gateway-mock container..."
 	@$(docker) rm api-gateway-mock || echo "No api-gateway-mock container currently exists."
 
+	@echo "Removing mocks container..."
+	@$(docker) rm mocks || echo "No mocks container currently exists."
+
+	@echo "Removing api-gateway-mock-2 container..."
+	@$(docker) rm api-gateway-mock-2 || echo "No api-gateway-mock-2 container currently exists."
+
 clean:: clean-artifacts clean-docker  # Clean-up project resources (main) @Operations
 
 .PHONY: stop
@@ -80,6 +133,12 @@ stop:
 	@echo "Stopping api-gateway-mock container..."
 	@$(docker) stop api-gateway-mock || echo "No api-gateway-mock container currently running."
 
+	@echo "Stopping mocks container..."
+	@$(docker) stop mocks || echo "No mocks container currently running."
+
+	@echo "Stopping api-gateway-mock-2 container..."
+	@$(docker) stop api-gateway-mock-2 || echo "No api-gateway-mock-2 container currently running."
+
 config:: # Configure development environment (main) @Configuration
 	# Configure poetry to trust dev certificate if specified
 	@if [[ -n "$${DEV_CERTS_INCLUDED}" ]]; then \

infrastructure/environments/preview/handler.py

@@ -1,8 +1,5 @@
-"""
-Simple lambda handler function for an debugging environment.
-This is used to verify that the environment is working and to inspect incoming requests.
-"""
-
+# Simple lambda handler function for an debugging environment.
+# used to verify that the environment is working and to inspect incoming requests.
 import json
 import logging
 from typing import Any

infrastructure/images/api-gateway-mock/resources/server.py

@@ -1,3 +1,4 @@
+import os
 from logging.config import dictConfig
 
 import requests
@@ -25,7 +26,12 @@
 )
 
 app = Flask(__name__)  # NOSONAR python:S4502
-cors = CORS(app, resources={r"/*": {"origins": "http://localhost:5002"}})
+TARGET_CONTAINER = os.environ.get("TARGET_CONTAINER")
+
+if TARGET_CONTAINER == "MOCKS":
+    cors = CORS(app, resources={r"/*": {"origins": "http://localhost:5004"}})
+else:
+    cors = CORS(app, resources={r"/*": {"origins": "http://localhost:5002"}})
 
 
 @app.route(  # NOSONAR python:S3752
@@ -37,9 +43,15 @@
 def forward_request(path_params):
     app.logger.info("received request with data: %s", request.get_data(as_text=True))
 
+    if TARGET_CONTAINER == "MOCKS":
+        base_url = "http://mocks:8080"  # NOSONAR python:S5332
+        content_type = "application/x-www-form-urlencoded"
+    else:
+        base_url = "http://pathology-api:8080"  # NOSONAR python:S5332
+        content_type = "application/json"
+
     response = requests.post(
-        "http://pathology-api:8080/2015-03-31"  # NOSONAR python:S5332
-        "/functions/function/invocations",
+        f"{base_url}/2015-03-31/functions/function/invocations",
         json={
             "body": request.get_data(as_text=True).replace("\n", "").replace(" ", ""),
             "requestContext": {
@@ -55,7 +67,7 @@ def forward_request(path_params):
             "rawQueryString": "",
             "pathParameters": {"proxy": path_params},
         },
-        headers={"Content-Type": "application/json"},
+        headers={"Content-Type": content_type},
         timeout=120,
     )
 

infrastructure/images/mocks/Dockerfile

@@ -0,0 +1,11 @@
+# Retrieve the python version from build arguments, deliberately set to "invalid" by default to highlight when no version is provided when building the container.
+ARG PYTHON_VERSION=invalid
+# Use the specified python version to retrieve the required base lambda image.
+ARG url=public.ecr.aws/lambda/python:${PYTHON_VERSION}
+FROM $url
+
+COPY resources/ /resources
+
+COPY /resources/build/mocks ${LAMBDA_TASK_ROOT}
+
+CMD [ "lambda_handler.handler" ]

infrastructure/images/mocks/resources/.gitignore

@@ -0,0 +1 @@
+/build

mocks/.gitignore

@@ -0,0 +1,3 @@
+/target
+/dist
+/.coverage

mocks/README.md

@@ -0,0 +1,11 @@
+# Mocks Lambda
+
+## Testing
+
+### Continuous
+
+### Quick Test Commands
+
+## Project Structure
+
+### Implementing new mock