codeperl
diff --git a/‎localstack/services/cloudformation/deployment_utils.py
Lines changed: 2 additions & 13 deletions b/‎localstack/services/cloudformation/deployment_utils.py
Lines changed: 2 additions & 13 deletions
diff --git a/‎localstack/services/cloudformation/engine/quirks.py
Lines changed: 44 additions & 0 deletions b/‎localstack/services/cloudformation/engine/quirks.py
Lines changed: 44 additions & 0 deletions
diff --git a/‎localstack/services/cloudformation/engine/schema.py
Lines changed: 15 additions & 0 deletions b/‎localstack/services/cloudformation/engine/schema.py
Lines changed: 15 additions & 0 deletions
diff --git a/‎localstack/services/cloudformation/provider_utils.py
Lines changed: 92 additions & 0 deletions b/‎localstack/services/cloudformation/provider_utils.py
Lines changed: 92 additions & 0 deletions
diff --git a/‎localstack/services/cloudformation/resource_provider.py
Lines changed: 68 additions & 34 deletions b/‎localstack/services/cloudformation/resource_provider.py
Lines changed: 68 additions & 34 deletions
@@ -33,6 +33,7 @@ def replace(params, logical_resource_id, *args, **kwargs):
     return replace
 
 
+# TODO: remove
 def param_defaults(param_func, defaults):
     def replace(properties: dict, logical_resource_id: str, *args, **kwargs):
         result = param_func(properties, logical_resource_id, *args, **kwargs)
@@ -102,6 +103,7 @@ def do_replace(params, logical_resource_id, *args, **kwargs):
     return do_replace
 
 
+# TODO: remove
 def params_select_attributes(*attrs):
     def do_select(params, logical_resource_id, *args, **kwargs):
         result = {}
@@ -151,18 +153,6 @@ def generate_default_name_without_stack(logical_resource_id: str):
     return f"{resource_id_part}-{random_id_part}"
 
 
-def pre_create_default_name(key: str) -> Callable[[str, dict, str, dict, str], None]:
-    def _pre_create_default_name(
-        resource_id: str, resources: dict, resource_type: str, func: dict, stack_name: str
-    ):
-        resource = resources[resource_id]
-        props = resource["Properties"]
-        if not props.get(key):
-            props[key] = generate_default_name(stack_name, resource_id)
-
-    return _pre_create_default_name
-
-
 # Utils for parameter conversion
 
 # TODO: handling of multiple valid types
@@ -201,7 +191,6 @@ def fix_boto_parameters_based_on_report(original_params: dict, report: str) -> d
         cast_class = getattr(builtins, valid_class)
         old_value = get_nested(params, param_name)
 
-        new_value = None
         if cast_class == bool and str(old_value).lower() in ["true", "false"]:
             new_value = str(old_value).lower() == "true"
         else:
 
@@ -0,0 +1,44 @@
+"""
+We can't always automatically determine which value serves as the physical resource ID.
+=> This needs to be determined manually by testing against AWS (!)
+
+There's also a reason that the mapping is located here instead of closer to the resource providers themselves.
+If the resources were compliant with the generic AWS resource provider framework that AWS provides for your own resource types, we wouldn't need this.
+For legacy resources (and even some of the ones where they are open-sourced), AWS still has a layer of "secret sauce" that defines what the actual physical resource ID is.
+An extension schema only defines the primary identifiers but not directly the physical resource ID that is generated based on those.
+Since this is therefore rather part of the cloudformation layer and *not* the resource providers responsibility, we've put the mapping closer to the cloudformation engine.
+"""
+
+# note: format here is subject to change (e.g. it might not be a pure str -> str mapping, it could also involve more sophisticated handlers
+PHYSICAL_RESOURCE_ID_SPECIAL_CASES = {
+    # Example
+    # "AWS::ApiGateway::Resource": "/properties/ResourceId",
+}
+
+# You can usually find the available GetAtt targets in the official resource documentation:
+#   https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-template-resource-type-ref.html
+# Use the scaffolded exploration test to verify against AWS which attributes you can access.
+# This mapping is not in use yet (!)
+VALID_GETATT_PROPERTIES = {
+    # Other Examples
+    # "AWS::ApiGateway::Resource": ["ResourceId"],
+    "AWS::IAM::User": ["Arn"],  # TODO: not validated yet
+    "AWS::SSM::Parameter": ["Type", "Value"],  # TODO: not validated yet
+    "AWS::OpenSearchService::Domain": [
+        "AdvancedSecurityOptions.AnonymousAuthDisableDate",
+        "Arn",
+        "DomainArn",
+        "DomainEndpoint",
+        "DomainEndpoints",
+        "Id",
+        "ServiceSoftwareOptions",
+        "ServiceSoftwareOptions.AutomatedUpdateDate",
+        "ServiceSoftwareOptions.Cancellable",
+        "ServiceSoftwareOptions.CurrentVersion",
+        "ServiceSoftwareOptions.Description",
+        "ServiceSoftwareOptions.NewVersion",
+        "ServiceSoftwareOptions.OptionalDeployment",
+        "ServiceSoftwareOptions.UpdateAvailable",
+        "ServiceSoftwareOptions.UpdateStatus",
+    ],  # TODO: not validated yet
+}
@@ -0,0 +1,15 @@
+import json
+import os
+import zipfile
+
+
+# TODO: unify with scaffolding
+class SchemaProvider:
+    def __init__(self, zipfile_path: str | os.PathLike[str]):
+        self.schemas = {}
+        with zipfile.ZipFile(zipfile_path) as infile:
+            for filename in infile.namelist():
+                with infile.open(filename) as schema_file:
+                    schema = json.load(schema_file)
+                    typename = schema["typeName"]
+                    self.schemas[typename] = schema
@@ -0,0 +1,92 @@
+"""
+A set of utils for use in resource providers.
+
+Avoid any imports to localstack here and keep external imports to a minimum!
+This is because we want to be able to package a resource provider without including localstack code.
+"""
+import builtins
+import json
+import re
+import uuid
+from copy import deepcopy
+from pathlib import Path
+
+
+def generate_default_name(stack_name: str, logical_resource_id: str):
+    random_id_part = str(uuid.uuid4())[0:8]
+    resource_id_part = logical_resource_id[:24]
+    stack_name_part = stack_name[: 63 - 2 - (len(random_id_part) + len(resource_id_part))]
+    return f"{stack_name_part}-{resource_id_part}-{random_id_part}"
+
+
+def generate_default_name_without_stack(logical_resource_id: str):
+    random_id_part = str(uuid.uuid4())[0:8]
+    resource_id_part = logical_resource_id[: 63 - 1 - len(random_id_part)]
+    return f"{resource_id_part}-{random_id_part}"
+
+
+# ========= Helpers for boto calls ==========
+# (equivalent to the old ones in deployment_utils.py)
+
+
+def deselect_attributes(model: dict, params: list[str]) -> dict:
+    return {k: v for k, v in model.items() if k not in params}
+
+
+def select_attributes(model: dict, params: list[str]) -> dict:
+    return {k: v for k, v in model.items() if k in params}
+
+
+def keys_lower(model: dict) -> dict:
+    return {k.lower(): v for k, v in model.items()}
+
+
+# FIXME: this shouldn't be necessary in the future
+param_validation = re.compile(
+    r"Invalid type for parameter (?P<param>\w+), value: (?P<value>\w+), type: <class '(?P<wrong_class>\w+)'>, valid types: <class '(?P<valid_class>\w+)'>"
+)
+
+
+def get_nested(obj: dict, path: str):
+    parts = path.split(".")
+    result = obj
+    for p in parts[:-1]:
+        result = result.get(p, {})
+    return result.get(parts[-1])
+
+
+def set_nested(obj: dict, path: str, value):
+    parts = path.split(".")
+    result = obj
+    for p in parts[:-1]:
+        result = result.get(p, {})
+    result[parts[-1]] = value
+
+
+def fix_boto_parameters_based_on_report(original_params: dict, report: str) -> dict:
+    """
+    Fix invalid type parameter validation errors in boto request parameters
+
+    :param original_params: original boto request parameters that lead to the parameter validation error
+    :param report: error report from botocore ParamValidator
+    :return: a copy of original_params with all values replaced by their correctly cast ones
+    """
+    params = deepcopy(original_params)
+    for found in param_validation.findall(report):
+        param_name, value, wrong_class, valid_class = found
+        cast_class = getattr(builtins, valid_class)
+        old_value = get_nested(params, param_name)
+
+        if cast_class == bool and str(old_value).lower() in ["true", "false"]:
+            new_value = str(old_value).lower() == "true"
+        else:
+            new_value = cast_class(old_value)
+        set_nested(params, param_name, new_value)
+    return params
+
+
+#  LocalStack specific utilities
+def get_schema_path(file_path: Path) -> Path:
+    file_name_base = file_path.name.removesuffix(".py")
+    with Path(file_path).parent.joinpath(f"{file_name_base}.schema.json").open() as fd:
+        return json.load(fd)
@@ -23,6 +23,7 @@
     fix_boto_parameters_based_on_report,
     remove_none_values,
 )
+from localstack.services.cloudformation.engine.quirks import PHYSICAL_RESOURCE_ID_SPECIAL_CASES
 from localstack.services.cloudformation.service_models import KEY_RESOURCE_STATE, GenericBaseModel
 from localstack.utils.aws import aws_stack
 
@@ -537,6 +538,21 @@ class NoResourceProvider(Exception):
     pass
 
 
+def resolve_json_pointer(resource_props: Properties, primary_id_path: str) -> str:
+    primary_id_path = primary_id_path.replace("/properties", "")
+    parts = [p for p in primary_id_path.split("/") if p]
+
+    resolved_part = resource_props.copy()
+    for i in range(len(parts)):
+        part = parts[i]
+        resolved_part = resolved_part.get(part)
+        if i == len(parts) - 1:
+            # last part
+            return resolved_part
+
+    raise Exception(f"Resource properties is missing field: {part}")
+
+
 class ResourceProviderExecutor:
     """
     Point of abstraction between our integration with generic base models, and the new providers.
@@ -561,19 +577,32 @@ def deploy_loop(
     ) -> ProgressEvent[Properties]:
         payload = copy.deepcopy(raw_payload)
 
-        for _ in range(max_iterations):
-            event = self.execute_action(payload)
+        for current_iteration in range(max_iterations):
+            resource_type = get_resource_type(
+                {"Type": raw_payload["resourceType"]}
+            )  # TODO: simplify signature of get_resource_type to just take the type
+            resource_provider = self.load_resource_provider(resource_type)
+            event = self.execute_action(resource_provider, payload)
 
             if event.status == OperationStatus.SUCCESS:
-                # TODO: validate physical_resource_id is not None
                 logical_resource_id = raw_payload["requestData"]["logicalResourceId"]
                 resource = self.resources[logical_resource_id]
                 if "PhysicalResourceId" not in resource:
                     # branch for non-legacy providers
                     # TODO: move out of if? (physical res id can be set earlier possibly)
-                    resource_type_schema = self.load_resource_schema(raw_payload["resourceType"])
+                    if isinstance(resource_provider, LegacyResourceProvider):
+                        raise Exception(
+                            "A GenericBaseModel should always have a PhysicalResourceId set after deployment"
+                        )
+
+                    if not hasattr(resource_provider, "SCHEMA"):
+                        raise Exception(
+                            "A ResourceProvider should always have a SCHEMA property defined."
+                        )
+
+                    resource_type_schema = resource_provider.SCHEMA
                     physical_resource_id = self.extract_physical_resource_id_from_model_with_schema(
-                        event.resource_model, resource_type_schema
+                        event.resource_model, raw_payload["resourceType"], resource_type_schema
                     )
 
                     resource["PhysicalResourceId"] = physical_resource_id
@@ -585,34 +614,30 @@ def deploy_loop(
             payload["callbackContext"] = context
             payload["requestData"]["resourceProperties"] = event.resource_model
 
-            time.sleep(sleep_time)
+            if current_iteration == 0:
+                time.sleep(0)
+            else:
+                time.sleep(sleep_time)
         else:
             raise TimeoutError("Could not perform deploy loop action")
 
-    def execute_action(self, raw_payload: ResourceProviderPayload) -> ProgressEvent[Properties]:
-        resource_type = get_resource_type(
-            {"Type": raw_payload["resourceType"]}
-        )  # TODO: simplify signature of get_resource_type to just take the type
-        resource_provider = self.load_resource_provider(resource_type)
-        if resource_provider:
-            change_type = raw_payload["action"]
-            request = convert_payload(
-                stack_name=self.stack_name, stack_id=self.stack_id, payload=raw_payload
-            )
-
-            match change_type:
-                case "Add":
-                    return resource_provider.create(request)
-                case "Dynamic" | "Modify":
-                    return resource_provider.update(request)
-                case "Remove":
-                    return resource_provider.delete(request)
-                case _:
-                    raise NotImplementedError(change_type)
+    def execute_action(
+        self, resource_provider: ResourceProvider, raw_payload: ResourceProviderPayload
+    ) -> ProgressEvent[Properties]:
+        change_type = raw_payload["action"]
+        request = convert_payload(
+            stack_name=self.stack_name, stack_id=self.stack_id, payload=raw_payload
+        )
 
-        else:
-            # custom provider
-            raise NoResourceProvider
+        match change_type:
+            case "Add":
+                return resource_provider.create(request)
+            case "Dynamic" | "Modify":
+                return resource_provider.update(request)
+            case "Remove":
+                return resource_provider.delete(request)
+            case _:
+                raise NotImplementedError(change_type)
 
     def load_resource_provider(self, resource_type: str) -> Optional[ResourceProvider]:
         # TODO: unify behavior here in regards to raising NoResourceProvider
@@ -643,13 +668,22 @@ def _load_legacy_resource_provider(self, resource_type: str) -> LegacyResourcePr
             raise NoResourceProvider
 
     def extract_physical_resource_id_from_model_with_schema(
-        self, resource_model: Properties, resource_type_schema: dict
+        self, resource_model: Properties, resource_type: str, resource_type_schema: dict
     ) -> str:
-        # id_path = resource_type_schema['primaryIdentifier'][0]
-        return resource_model["Id"]
+        if resource_type in PHYSICAL_RESOURCE_ID_SPECIAL_CASES:
+            primary_id_path = PHYSICAL_RESOURCE_ID_SPECIAL_CASES[resource_type]
+            physical_resource_id = resolve_json_pointer(resource_model, primary_id_path)
+        else:
+            primary_id_paths = resource_type_schema["primaryIdentifier"]
+            if len(primary_id_paths) > 1:
+                # TODO: auto-merge. Verify logic here with AWS
+                physical_resource_id = "-".join(
+                    [resolve_json_pointer(resource_model, pip) for pip in primary_id_paths]
+                )
+            else:
+                physical_resource_id = resolve_json_pointer(resource_model, primary_id_paths[0])
 
-    def load_resource_schema(self, resource_type: str) -> dict:
-        return {}
+        return physical_resource_id
 
 
 plugin_manager = PluginManager(CloudFormationResourceProviderPlugin.namespace)