iSharkFly-Docs/amazon-bedrock-agentcore-samples
1
0
Fork 0
mirror of https://github.com/awslabs/amazon-bedrock-agentcore-samples.git synced 2025-09-08 20:50:46 +00:00
Code Issues Packages Projects Releases Wiki Activity
amazon-bedrock-agentcore-sa.../02-use-cases/device-management-agent/agent-runtime/utils.py
Godwin Vincent cd0a29d2ae
Device management agent - AgentCore runtime, observability, frontend added (#241) 
* updated README.md file with bearer token generation

* updated README.md file with bearer token generation-removed client id and secret credentials

* removed hardcoded domain

* added agent runtime, frontend, observability and agentcore identity

* update README.md file to reflect frontend testing
2025-08-13 09:31:29 -07:00

136 lines
4.8 KiB
Python
Raw Permalink Blame History

"""
Utility functions for Device Remote Management AI Agent
"""
import os
import requests
import logging
from datetime import datetime, timedelta
from typing import Optional
from dotenv import load_dotenv
# Load environment variables from .env file
load_dotenv()
logger = logging.getLogger(__name__)
def get_aws_region() -> str:
"""Get AWS region from environment variables"""
return os.getenv("AWS_REGION", "us-west-2")
def get_aws_region() -> str:
"""Get AWS region from environment variables"""
return os.getenv("AWS_REGION", "us-west-2")
class CognitoTokenManager:
"""Manages Cognito OAuth tokens with automatic refresh"""
def __init__(self):
self.token = None
self.token_expires_at = None
self.cognito_domain = os.getenv("COGNITO_DOMAIN")
self.client_id = os.getenv("COGNITO_CLIENT_ID")
self.client_secret = os.getenv("COGNITO_CLIENT_SECRET")
if not all([self.cognito_domain, self.client_id, self.client_secret]):
raise ValueError("Missing required Cognito environment variables: COGNITO_DOMAIN, COGNITO_CLIENT_ID, COGNITO_CLIENT_SECRET")
def _fetch_new_token(self) -> Optional[str]:
"""Fetch a new OAuth token from Cognito"""
try:
url = f"https://{self.cognito_domain}/oauth2/token"
headers = {
"Content-Type": "application/x-www-form-urlencoded"
}
data = {
"grant_type": "client_credentials",
"client_id": self.client_id,
"client_secret": self.client_secret
}
logger.info(f"Requesting new token from {url}")
response = requests.post(url, headers=headers, data=data, timeout=10)
if response.status_code == 200:
token_data = response.json()
access_token = token_data.get("access_token")
expires_in = token_data.get("expires_in", 3600) # Default to 1 hour
# Set expiration time with a 5-minute buffer
self.token_expires_at = datetime.now() + timedelta(seconds=expires_in - 300)
logger.info("Successfully obtained new OAuth token")
return access_token
else:
logger.error(f"Failed to get token: {response.status_code} - {response.text}")
return None
except Exception as e:
logger.error(f"Error fetching OAuth token: {str(e)}")
return None
def _is_token_expired(self) -> bool:
"""Check if the current token is expired or about to expire"""
if not self.token or not self.token_expires_at:
return True
return datetime.now() >= self.token_expires_at
def get_token(self) -> Optional[str]:
"""Get a valid OAuth token, refreshing if necessary"""
if self._is_token_expired():
logger.info("Token expired or missing, fetching new token")
self.token = self._fetch_new_token()
return self.token
# Global token manager instance
_token_manager = None
def get_oauth_token() -> Optional[str]:
"""Get a valid OAuth token for Cognito authentication"""
global _token_manager
try:
if _token_manager is None:
_token_manager = CognitoTokenManager()
return _token_manager.get_token()
except Exception as e:
logger.error(f"Error getting OAuth token: {str(e)}")
return None
def get_auth_headers() -> dict:
"""Get authorization headers with Bearer token"""
token = get_oauth_token()
if token:
return {"Authorization": f"Bearer {token}"}
else:
logger.warning("No valid token available for authorization")
return {}
def create_agentcore_client():
"""Create AgentCore client and boto session"""
import boto3
# Create boto session
boto_session = boto3.Session(region_name=os.getenv("AWS_REGION", "us-west-2"))
# Create bedrock-agentcore client directly using boto3
agentcore_client = boto_session.client(
'bedrock-agentcore',
region_name=os.getenv("AWS_REGION", "us-west-2")
#endpoint_url=os.getenv("ENDPOINT_URL")
)
return boto_session, agentcore_client
def get_gateway_endpoint(agentcore_client, gateway_id: str) -> str:
"""Get gateway endpoint URL from gateway ID"""
try:
# Use the correct boto3 method for bedrock-agentcore
response = agentcore_client.describe_gateway(gatewayId=gateway_id)
endpoint = response.get('gateway', {}).get('gatewayEndpoint', '')
return endpoint
except Exception as e:
logger.error(f"Error getting gateway endpoint: {str(e)}")
# If we can't get the endpoint, return the one from environment
return os.getenv("gateway_endpoint", "")
Reference in New Issue View Git Blame Copy Permalink