codeperl
diff --git a/‎localstack/aws/connect.py
Lines changed: 1 addition & 1 deletion b/‎localstack/aws/connect.py
Lines changed: 1 addition & 1 deletion
diff --git a/‎localstack/services/apigateway/helpers.py
Lines changed: 5 additions & 4 deletions b/‎localstack/services/apigateway/helpers.py
Lines changed: 5 additions & 4 deletions
diff --git a/‎localstack/services/cloudformation/models/es.py
Lines changed: 1 addition & 1 deletion b/‎localstack/services/cloudformation/models/es.py
Lines changed: 1 addition & 1 deletion
diff --git a/‎localstack/services/cloudformation/models/lambda_.py
Lines changed: 3 additions & 1 deletion b/‎localstack/services/cloudformation/models/lambda_.py
Lines changed: 3 additions & 1 deletion
diff --git a/‎localstack/services/cloudformation/models/opensearch.py
Lines changed: 1 addition & 1 deletion b/‎localstack/services/cloudformation/models/opensearch.py
Lines changed: 1 addition & 1 deletion
diff --git a/‎localstack/services/events/provider.py
Lines changed: 1 addition & 2 deletions b/‎localstack/services/events/provider.py
Lines changed: 1 addition & 2 deletions
diff --git a/‎localstack/services/kinesis/provider.py
Lines changed: 1 addition & 1 deletion b/‎localstack/services/kinesis/provider.py
Lines changed: 1 addition & 1 deletion
diff --git a/‎localstack/services/s3/notifications.py
Lines changed: 28 additions & 15 deletions b/‎localstack/services/s3/notifications.py
Lines changed: 28 additions & 15 deletions
diff --git a/‎localstack/services/sns/provider.py
Lines changed: 9 additions & 9 deletions b/‎localstack/services/sns/provider.py
Lines changed: 9 additions & 9 deletions
diff --git a/‎localstack/services/sns/publisher.py
Lines changed: 15 additions & 6 deletions b/‎localstack/services/sns/publisher.py
Lines changed: 15 additions & 6 deletions
diff --git a/‎localstack/services/sqs/provider.py
Lines changed: 3 additions & 7 deletions b/‎localstack/services/sqs/provider.py
Lines changed: 3 additions & 7 deletions
@@ -132,7 +132,7 @@ def request_metadata(
         self, source_arn: str | None = None, service_principal: str | None = None
     ) -> T:
         """
-        Provides request metadata to this client.
+        Returns a new client instance preset with the given request metadata.
         Identical to providing _ServicePrincipal and _SourceArn directly as operation arguments but typing
         compatible.
 
 
@@ -746,18 +746,19 @@ def path_matches_pattern(path, api_path):
     return len(results) > 0 and all(results)
 
 
-def connect_api_gateway_to_sqs(gateway_name, stage_name, queue_arn, path, region_name=None):
+def connect_api_gateway_to_sqs(gateway_name, stage_name, queue_arn, path, account_id, region_name):
     resources = {}
     template = APIGATEWAY_SQS_DATA_INBOUND_TEMPLATE
     resource_path = path.replace("/", "")
-    region_name = region_name or aws_stack.get_region()
 
     try:
         arn = parse_arn(queue_arn)
         queue_name = arn["resource"]
+        sqs_account = arn["account"]
         sqs_region = arn["region"]
     except InvalidArnException:
         queue_name = queue_arn
+        sqs_account = account_id
         sqs_region = region_name
 
     resources[resource_path] = [
@@ -768,7 +769,7 @@ def connect_api_gateway_to_sqs(gateway_name, stage_name, queue_arn, path, region
                 {
                     "type": "AWS",
                     "uri": "arn:aws:apigateway:%s:sqs:path/%s/%s"
-                    % (sqs_region, get_aws_account_id(), queue_name),
+                    % (sqs_region, sqs_account, queue_name),
                     "requestTemplates": {"application/json": template},
                 }
             ],
@@ -778,7 +779,7 @@ def connect_api_gateway_to_sqs(gateway_name, stage_name, queue_arn, path, region
         name=gateway_name,
         resources=resources,
         stage_name=stage_name,
-        region_name=region_name,
+        client=connect_to(aws_access_key_id=sqs_account, region_name=sqs_region).apigateway,
     )
 
 
 
@@ -16,7 +16,7 @@ def es_add_tags_params(
     resource: dict,
     stack_name: str,
 ):
-    es_arn = arns.es_domain_arn(properties.get("DomainName"))
+    es_arn = arns.es_domain_arn(properties.get("DomainName"), account_id, region_name)
     tags = properties.get("Tags", [])
     return {"ARN": es_arn, "TagList": tags}
 
 
@@ -83,7 +83,9 @@ def update_resource(self, new_resource, stack_name, resources):
                 k: str(v) for k, v in environment_variables.items()
             }
         result = client.update_function_configuration(**update_config_props)
-        connect_to().lambda_.get_waiter("function_updated_v2").wait(FunctionName=function_name)
+        connect_to(
+            aws_access_key_id=self.account_id, region_name=self.region_name
+        ).lambda_.get_waiter("function_updated_v2").wait(FunctionName=function_name)
         return result
 
     @staticmethod
 
@@ -24,7 +24,7 @@ def opensearch_add_tags_params(
     resource: dict,
     stack_name: str,
 ):
-    es_arn = arns.es_domain_arn(properties.get("DomainName"))
+    es_arn = arns.es_domain_arn(properties.get("DomainName"), account_id, region_name)
     tags = properties.get("Tags", [])
     return {"ARN": es_arn, "TagList": tags}
 
 
@@ -11,7 +11,6 @@
 from moto.events.responses import EventsHandler as MotoEventsHandler
 
 from localstack import config
-from localstack.aws.accounts import get_aws_account_id
 from localstack.aws.api import RequestContext
 from localstack.aws.api.core import CommonServiceException
 from localstack.aws.api.events import (
@@ -583,7 +582,7 @@ def events_handler_put_events(self):
             "id": event_envelope["uuid"],
             "detail-type": event.get("DetailType"),
             "source": event.get("Source"),
-            "account": get_aws_account_id(),
+            "account": self.current_account,
             "time": event_time.strftime("%Y-%m-%dT%H:%M:%SZ"),
             "region": self.region,
             "resources": event.get("Resources", []),
 
@@ -46,7 +46,7 @@ def find_stream_for_consumer(consumer_arn):
     region_name = extract_region_from_arn(consumer_arn)
     kinesis = connect_to(aws_access_key_id=account_id, region_name=region_name).kinesis
     for stream_name in kinesis.list_streams()["StreamNames"]:
-        stream_arn = arns.kinesis_stream_arn(stream_name)
+        stream_arn = arns.kinesis_stream_arn(stream_name, account_id, region_name)
         for cons in kinesis.list_stream_consumers(StreamARN=stream_arn)["Consumers"]:
             if cons["ConsumerARN"] == consumer_arn:
                 return stream_name
 
@@ -33,7 +33,6 @@
     TopicConfiguration,
 )
 from localstack.aws.connect import connect_to
-from localstack.config import DEFAULT_REGION
 from localstack.services.s3.models import get_moto_s3_backend
 from localstack.services.s3.utils import (
     _create_invalid_argument_exc,
@@ -93,6 +92,7 @@ class S3EventNotificationContext:
     request_id: str
     event_type: str
     event_time: datetime.datetime
+    account_id: str
     region: str
     bucket_name: BucketName
     key_name: ObjectKey
@@ -156,6 +156,7 @@ def from_request_context(
             request_id=request_context.request_id,
             event_type=EVENT_OPERATION_MAP.get(request_context.operation.wire_name, ""),
             event_time=datetime.datetime.now(),
+            account_id=request_context.account_id,
             region=request_context.region,
             caller=request_context.account_id,  # TODO: use it for `userIdentity`
             bucket_name=bucket_name,
@@ -205,6 +206,7 @@ def from_request_context_native(
             request_id=request_context.request_id,
             event_type=EVENT_OPERATION_MAP.get(request_context.operation.wire_name, ""),
             event_time=datetime.datetime.now(),
+            account_id=request_context.account_id,
             region=request_context.region,
             caller=request_context.account_id,  # TODO: use it for `userIdentity`
             bucket_name=bucket_name,
@@ -448,7 +450,9 @@ def _get_arn_value_and_name(queue_configuration: QueueConfiguration) -> Tuple[Qu
 
     def _verify_target(self, target_arn: str, verification_ctx: BucketVerificationContext) -> None:
         arn_data = parse_arn(target_arn)
-        sqs_client = connect_to(region_name=arn_data["region"]).sqs
+        sqs_client = connect_to(
+            aws_access_key_id=arn_data["account"], region_name=arn_data["region"]
+        ).sqs
         try:
             queue_url = sqs_client.get_queue_url(
                 QueueName=arn_data["resource"], QueueOwnerAWSAccountId=arn_data["account"]
@@ -462,7 +466,7 @@ def _verify_target(self, target_arn: str, verification_ctx: BucketVerificationCo
             )
         # send test event
         # https://docs.aws.amazon.com/AmazonS3/latest/userguide/notification-how-to-event-types-and-destinations.html#supported-notification-event-types
-        sqs_client = sqs_client.request_metadata(
+        sqs_client = connect_to().sqs.request_metadata(
             source_arn=s3_bucket_arn(verification_ctx.bucket_name),
             service_principal=ServicePrincipal.s3,
         )
@@ -487,8 +491,9 @@ def notify(self, ctx: S3EventNotificationContext, config: QueueConfiguration):
         queue_arn = config["QueueArn"]
 
         parsed_arn = parse_arn(queue_arn)
-        regi
10000
on = parsed_arn["region"]
-        sqs_client = connect_to(region_name=region).sqs.request_metadata(
+        sqs_client = connect_to(
+            aws_access_key_id=parsed_arn["account"], region_name=parsed_arn["region"]
+        ).sqs.request_metadata(
             source_arn=s3_bucket_arn(ctx.bucket_name), service_principal=ServicePrincipal.s3
         )
         try:
@@ -521,7 +526,9 @@ def _get_arn_value_and_name(topic_configuration: TopicConfiguration) -> [TopicAr
 
     def _verify_target(self, target_arn: str, verification_ctx: BucketVerificationContext) -> None:
         arn_data = parse_arn(target_arn)
-        sns_client = connect_to(region_name=arn_data["region"]).sns
+        sns_client = connect_to(
+            aws_access_key_id=arn_data["account"], region_name=arn_data["region"]
+        ).sns
         try:
             sns_client.get_topic_attributes(TopicArn=target_arn)
         except ClientError:
@@ -531,7 +538,7 @@ def _verify_target(self, target_arn: str, verification_ctx: BucketVerificationCo
                 value="The destination topic does not exist",
             )
 
-        sns_client = sns_client.request_metadata(
+        sns_client = connect_to().sns.request_metadata(
             source_arn=s3_bucket_arn(verification_ctx.bucket_name),
             service_principal=ServicePrincipal.s3,
         )
@@ -566,8 +573,10 @@ def notify(self, ctx: S3EventNotificationContext, config: TopicConfiguration):
         message = json.dumps(event_payload)
         topic_arn = config["TopicArn"]
 
-        region_name = arns.extract_region_from_arn(topic_arn)
-        sns_client = connect_to(region_name=region_name).sns.request_metadata(
+        arn_data = parse_arn(topic_arn)
+        sns_client = connect_to(
+            aws_access_key_id=arn_data["account"], region_name=arn_data["region"]
+        ).sns.request_metadata(
             source_arn=s3_bucket_arn(ctx.bucket_name), service_principal=ServicePrincipal.s3
         )
         try:
@@ -595,7 +604,9 @@ def _get_arn_value_and_name(
 
     def _verify_target(self, target_arn: str, verification_ctx: BucketVerificationContext) -> None:
         arn_data = parse_arn(arn=target_arn)
-        lambda_client = connect_to(region_name=arn_data["region"]).lambda_
+        lambda_client = connect_to(
+            aws_access_key_id=arn_data["account"], region_name=arn_data["region"]
+        ).lambda_
         try:
             lambda_client.get_function(FunctionName=target_arn)
         except ClientError:
@@ -604,7 +615,7 @@ def _verify_target(self, target_arn: str, verification_ctx: BucketVerificationCo
                 name=target_arn,
                 value="The destination Lambda does not exist",
             )
-        lambda_client = lambda_client.request_metadata(
+        lambda_client = connect_to().lambda_.request_metadata(
             source_arn=s3_bucket_arn(verification_ctx.bucket_name),
             service_principal=ServicePrincipal.s3,
         )
@@ -622,8 +633,11 @@ def notify(self, ctx: S3EventNotificationContext, config: LambdaFunctionConfigur
         payload = json.dumps(event_payload)
         lambda_arn = config["LambdaFunctionArn"]
 
-        region_name = arns.extract_region_from_arn(lambda_arn)
-        lambda_client = connect_to(region_name=region_name).lambda_.request_metadata(
+        arn_data = parse_arn(lambda_arn)
+
+        lambda_client = connect_to(
+            aws_access_key_id=arn_data["account"], region_name=arn_data["region"]
+        ).lambda_.request_metadata(
             source_arn=s3_bucket_arn(ctx.bucket_name), service_principal=ServicePrincipal.s3
         )
         lambda_function_config = arns.lambda_function_name(lambda_arn)
@@ -740,10 +754,9 @@ def _verify_target(self, target_arn: str, verification_ctx: BucketVerificationCo
         return
 
     def notify(self, ctx: S3EventNotificationContext, config: EventBridgeConfiguration):
-        region = ctx.bucket_location or DEFAULT_REGION
         # does not require permissions
         # https://docs.aws.amazon.com/AmazonS3/latest/userguide/ev-permissions.html
-        events_client = connect_to(region_name=region).events
+        events_client = connect_to(aws_access_key_id=ctx.account_id, region_name=ctx.region).events
         entry = self._get_event_payload(ctx)
         try:
             events_client.put_events(Entries=[entry])
 
@@ -8,7 +8,6 @@
 from moto.sns.models import MAXIMUM_MESSAGE_LENGTH, SNSBackend, Topic
 from moto.sns.utils import is_e164
 
-from localstack.aws.accounts import get_aws_account_id
 from localstack.aws.api import CommonServiceException, RequestContext
 from localstack.aws.api.sns import (
     AmazonResourceName,
@@ -48,6 +47,7 @@
     topicARN,
     topicName,
 )
+from localstack.constants import AWS_REGION_US_EAST_1, DEFAULT_AWS_ACCOUNT_ID
 from localstack.http import Request, Response, Router, route
 from localstack.services.edge import ROUTER
 from localstack.services.moto import call_moto
@@ -937,8 +937,8 @@ class SNSServicePlatformEndpointMessagesApiResource:
 
     @route(sns_constants.PLATFORM_ENDPOINT_MSGS_ENDPOINT, methods=["GET"])
     def on_get(self, request: Request):
-        account_id = request.args.get("accountId", get_aws_account_id())
-        region = request.args.get("region", "us-east-1")
+        account_id = request.args.get("accountId", DEFAULT_AWS_ACCOUNT_ID)
+        region = request.args.get("region", AWS_REGION_US_EAST_1)
         filter_endpoint_arn = request.args.get("endpointArn")
         store: SnsStore = sns_stores[account_id][region]
         if filter_endpoint_arn:
 
     @route(sns_constants.PLATFORM_ENDPOINT_MSGS_ENDPOINT, methods=["DELETE"])
     def on_delete(self, request: Request) -> Response:
-        account_id = request.args.get("accountId", get_aws_account_id())
-        region = request.args.get("region", "us-east-1")
+        account_id = request.args.get("accountId", DEFAULT_AWS_ACCOUNT_ID)
+        region = request.args.get("region", AWS_REGION_US_EAST_1)
         filter_endpoint_arn = request.args.get("endpointArn")
         store: SnsStore = sns_stores[account_id][region]
         if filter_endpoint_arn:
@@ -996,8 +996,8 @@ class SNSServiceSMSMessagesApiResource:
 
     @route(sns_constants.SMS_MSGS_ENDPOINT, methods=["GET"])
     def on_get(self, request: Request):
-        account_id = request.args.get("accountId", get_aws_account_id())
-        region = request.args.get("region", "us-east-1")
+        account_id = request.args.get("accountId", DEFAULT_AWS_ACCOUNT_ID)
+        region = request.args.get("region", AWS_REGION_US_EAST_1)
         filter_phone_number = request.args.get("phoneNumber")
         store: SnsStore = sns_stores[account_id][region]
         if filter_phone_number:
@@ -1022,8 +1022,8 @@ def on_get(self, request: Request):
 
     @route(sns_constants.SMS_MSGS_ENDPOINT, methods=["DELETE"])
     def on_delete(self, request: Request) -> Response:
-        account_id = request.args.get("accountId", get_aws_account_id())
-        region = request.args.get("region", "us-east-1")
+        account_id = request.args.get("accountId", DEFAULT_AWS_ACCOUNT_ID)
+        region = request.args.get("region", AWS_REGION_US_EAST_1)
         filter_phone_number = request.args.get("phoneNumber")
         store: SnsStore = sns_stores[account_id][region]
         if filter_phone_number:
 
@@ -333,10 +333,13 @@ def _publish(self, context: SnsBatchPublishContext, subscriber: SnsSubscription)
 
         try:
             queue_url = sqs_queue_url_for_arn(subscriber["Endpoint"])
+
+            account_id = extract_account_id_from_arn(subscriber["Endpoint"])
             region = extract_region_from_arn(subscriber["Endpoint"])
-            sqs_client = connect_to(region_name=region).sqs.request_metadata(
-                source_arn=subscriber["TopicArn"], service_principal="sns"
-            )
+
+            sqs_client = connect_to(
+                aws_access_key_id=account_id, region_name=region
+            ).sqs.request_metadata(source_arn=subscriber["TopicArn"], service_principal="sns")
             response = sqs_client.send_message_batch(QueueUrl=queue_url, Entries=entries)
 
             for message_ctx in context.messages:
@@ -453,8 +456,9 @@ class EmailJsonTopicPublisher(TopicPublisher):
     """
 
     def _publish(self, context: SnsPublishContext, subscriber: SnsSubscription):
+        account_id = extract_account_id_from_arn(subscriber["Endpoint"])
         region = extract_region_from_arn(subscriber["Endpoint"])
-        ses_client = connect_to(region_name=region).ses
+        ses_client = connect_to(aws_access_key_id=account_id, region_name=region).ses
         if endpoint := subscriber.get("Endpoint"):
             ses_client.verify_email_address(EmailAddress=endpoint)
             ses_client.verify_email_address(EmailAddress="admin@localstack.com")
@@ -598,7 +602,8 @@ def _publish(self, context: SnsPublishContext, subscriber: SnsSubscription):
                     role_arn=role_arn, service_principal=ServicePrincipal.sns, region_name=region
                 )
             else:
-                factory = connect_to(region_name=region)
+                account_id = extract_account_id_from_arn(subscriber["Endpoint"])
+                factory = connect_to(aws_access_key_id=account_id, region_name=region)
             firehose_client = factory.firehose.request_metadata(
                 source_arn=subscriber["TopicArn"], service_principal=ServicePrincipal.sns
             )
@@ -722,7 +727,11 @@ def get_attributes_for_application_endpoint(endpoint_arn: str) -> Tuple[Dict, Di
     :param endpoint_arn:
     :return:
     """
-    sns_client = connect_to().sns
+    account_id = extract_account_id_from_arn(endpoint_arn)
+    region_name = extract_region_from_arn(endpoint_arn)
+
+    sns_client = connect_to(aws_access_key_id=account_id, region_name=region_name).sns
+
     # TODO: we should access this from the moto store directly
     endpoint_attributes = sns_client.get_endpoint_attributes(EndpointArn=endpoint_arn)
 
 
@@ -12,7 +12,6 @@
 from moto.sqs.models import Message as MotoMessage
 
 from localstack import config
-from localstack.aws.accounts import get_aws_account_id
 from localstack.aws.api import CommonServiceException, RequestContext, ServiceException
 from localstack.aws.api.sqs import (
     ActionNameList,
@@ -83,7 +82,6 @@
     is_message_deduplication_id_required,
     parse_queue_url,
 )
-from localstack.utils.aws import aws_stack
 from localstack.utils.aws.arns import parse_arn
 from localstack.utils.aws.request_context import extract_region_from_headers
 from localstack.utils.cloudwatch.cloudwatch_util import publish_sqs_metric
@@ -484,9 +482,7 @@ def _get_and_serialize_messages(
         self, request: Request, region: str, account_id: str, queue_name: str
     ) -> ReceiveMessageResult:
         try:
-            store = self.stores[account_id or get_aws_account_id()][
-                region or aws_stack.get_region()
-            ]
+            store = SqsProvider.get_store(account_id, region)
             queue = store.queues[queue_name]
         except KeyError:
             LOG.info(
@@ -560,8 +556,8 @@ def __init__(self) -> None:
         self._init_cloudwatch_metrics_reporting()
 
     @staticmethod
-    def get_store(account_id: str = None, region: str = None) -> SqsStore:
-        return sqs_stores[account_id or get_aws_account_id()][region or aws_stack.get_region()]
+    def get_store(account_id: str, region: str) -> SqsStore:
+        return sqs_stores[account_id][region]
 
     def on_before_start(self):
         self._router_rules = ROUTER.add(SqsDeveloperEndpoints())