def lambda_handler()

in src/join_organization.py [0:0]

• 45 lines of code
• 2 McCabe index (conditional complexity)

def lambda_handler(event, context):
    logger.debug(f'Lambda event:{event}')
    account = None
    try:
        account = get_account_by_id(company_name=event['CompanyName'], account_id=event['AccountId'])[0]
        # Note: We don't want to join org for account that need to be suspended or already joined.
        if account['AccountStatus'] >= Constant.AccountStatus.JOINED:
            event['Status'] = Constant.StateMachineStates.COMPLETED
            return event

        _org_client = boto3.session.Session().client('organizations')
        handshake_id = get_invitation(_org_client, account.get('AccountId'))
        account['HandshakeId'] = handshake_id

        # INFO :If no invitation being sent
        if not account['HandshakeId']:
            response = _org_client.invite_account_to_organization(
                Target={'Id': account['AccountId'], 'Type': 'ACCOUNT'},
                Notes='Invitation to join AWS Organization')
            handshake_id = response.get('Handshake').get('Id')
            account['HandshakeId'] = handshake_id
            logger.info(
                f"Invitation with handshakeId as {handshake_id} to "
                f"AccountId {account.get('AccountId')} sent successfully.")

        account_session = get_session(f"arn:aws:iam::{account['AccountId']}:role/{Constant.AWS_MASTER_ROLE}")
        linked_org_client = account_session.client('organizations')
        linked_org_client.accept_handshake(HandshakeId=handshake_id)

        logger.info(
            f"Invitation with handshakeId as {handshake_id} to "
            f"AccountId {account.get('AccountId')} got accepted successfully.")
        account['AccountStatus'] = Constant.AccountStatus.JOINED
        event['Status'] = Constant.StateMachineStates.COMPLETED

    except ClientError as ce:
        # INFO: join organization API is not thread safe we need to wait in case organization is
        # busy with adding other account.
        if ce.response['Error']['Code'] == 'ConcurrentModificationException':
            event['Status'] = Constant.StateMachineStates.CONCURRENCY_WAIT
            return event

        msg = f"{ce.response['Error']['Code']}: {ce.response['Error']['Message']}"
        account['Error'] = log_error(logger=logger, account_id=account['AccountId'], company_name=account[
            'CompanyName'], error_type=Constant.ErrorType.JOE, msg=msg, error=ce, notify=True,
                                     slack_handle=account['SlackHandle'])
        event['Status'] = Constant.StateMachineStates.WAIT
    except Exception as ex:
        log_error(logger=logger, account_id=event['AccountId'], company_name=event[
            'CompanyName'], error_type=Constant.ErrorType.JOE, notify=True, error=ex)
        raise ex
    finally:
        if account:
            update_item(Constant.DB_TABLE, account)

    return event