def deleteCert()

in scripts/vpn-endpoint-security-resource-handler.py [0:0]

• 19 lines of code
• 3 McCabe index (conditional complexity)

def deleteCert(event, context, isUpdate=False):
  
  try: 
    responseData['Complete'] = 'True'
    certificateID = event['PhysicalResourceId']
    vpnConfigBucket = event['ResourceProperties']['VpnConfigBucket']

    deleteClientCmd = ['aws s3 rm {0}ca.crt'.format(vpnConfigBucket),
                    'aws s3 rm {0}server.crt'.format(vpnConfigBucket),
                    'aws s3 rm {0}server.key'.format(vpnConfigBucket),
                    'aws s3 rm {0}client1.domain.tld.crt'.format(vpnConfigBucket),
                    'aws s3 rm {0}client1.domain.tld.key'.format(vpnConfigBucket)]

    result = runCommandSet(deleteClientCmd)  

    acm.delete_certificate(CertificateArn=certificateID)

    if(isUpdate == False):
      return { 'PhysicalResourceId': certificateID, 'responseData': responseData  }

  except Exception as e:
      logger.error(e)
      errorMessage = e.args[0]
      response_data = {'ErrorMessage': errorMessage}
      return False