Revert "regenerate ACM snapshot tests"

bentsku · bentsku · commit 35b743691448 · 2025-10-14T11:38:02.000+02:00
This reverts commit 0a630c6.
diff --git a/tests/aws/services/acm/test_acm.py b/tests/aws/services/acm/test_acm.py
@@ -1,13 +1,12 @@
 import pytest
-from botocore.exceptions import ClientError
 from localstack_snapshot.snapshots.transformer import SortingTransformer
 from moto import settings as moto_settings
 
 from localstack.testing.aws.util import is_aws_cloud
 from localstack.testing.pytest import markers
 from localstack.utils.crypto import generate_ssl_cert
 from localstack.utils.strings import short_uid
-from localstack.utils.sync import retry, wait_until
+from localstack.utils.sync import retry
 
 
 class TestACM:
@@ -28,7 +27,7 @@ class TestACM:
         ]
     )
     def test_import_certificate(self, tmp_path, aws_client, cleanups, snapshot):
-        with pytest.raises(ClientError) as exc_info:
+        with pytest.raises(Exception) as exc_info:
             aws_client.acm.import_certificate(Certificate=b"CERT123", PrivateKey=b"KEY123")
         assert exc_info.value.response["Error"]["Code"] == "ValidationException"
 
@@ -73,15 +72,6 @@ def test_domain_validation(self, acm_request_certificate, aws_client, snapshot):
         snapshot.add_transformer(snapshot.transform.key_value("SignatureAlgorithm"))
 
         certificate_arn = acm_request_certificate()["CertificateArn"]
-
-        # we are manually waiting for some fields to be returned, as they are missing soon after creating the cert
-        def _cert_has_required_fields() -> bool:
-            _resp = aws_client.acm.describe_certificate(CertificateArn=certificate_arn)
-            return "DomainName" in _resp["Certificate"]
-
-        if is_aws_cloud():
-            wait_until(_cert_has_required_fields, wait=2, max_retries=20)
-
         result = aws_client.acm.describe_certificate(CertificateArn=certificate_arn)
         snapshot.match("describe-certificate", result)
 
@@ -94,17 +84,8 @@ def test_boto_wait_for_certificate_validation(
         waiter = aws_client.acm.get_waiter("certificate_validated")
         waiter.wait(CertificateArn=certificate_arn, WaiterConfig={"Delay": 0.5, "MaxAttempts": 3})
 
-    @markers.aws.manual_setup_required
-    # this test requires manual input to our DNS provider
-    @markers.snapshot.skip_snapshot_verify(
-        paths=[
-            "$..Certificate.SignatureAlgorithm",
-            # those should also be returned by AWS, but regenerating the snapshots needs manual input
-            # skipped for now, validated by other tests
-            "$..Certificate.Options.Export",
-            "$..Exported",
-        ]
-    )
+    @markers.aws.validated
+    @markers.snapshot.skip_snapshot_verify(paths=["$..Certificate.SignatureAlgorithm"])
     def test_certificate_for_subdomain_wildcard(
         self, acm_request_certificate, aws_client, snapshot, monkeypatch
     ):
@@ -142,7 +123,7 @@ def _get_cert_with_records():
         if is_aws_cloud():
             # Wait until DNS entry has been added (needs to be done manually!)
             # Note: When running parity tests against AWS, we need to add the CNAME record to our DNS
-            #  server (currently with Route53), to enable validation of the certificate.
+            #  server (currently with gandi.net), to enable validation of the certificate.
             prompt = (
                 f"Please add the following CNAME entry to the LocalStack DNS server, then hit [ENTER] once "
                 f"the certificate has been validated in AWS: {dns_options['Name']} = {dns_options['Value']}"
@@ -180,7 +161,6 @@ def _get_cert_issued():
             "$..ResourceRecord",
             "$..SignatureAlgorithm",
             "$..Serial",
-            "$..ExportOption",
         ]
     )
     def test_create_certificate_for_multiple_alternative_domains(
diff --git a/tests/aws/services/acm/test_acm.snapshot.json b/tests/aws/services/acm/test_acm.snapshot.json
@@ -139,21 +139,19 @@
     }
   },
   "tests/aws/services/acm/test_acm.py::TestACM::test_create_certificate_for_multiple_alternative_domains": {
-    "recorded-date": "14-10-2025, 09:18:38",
+    "recorded-date": "09-01-2024, 14:58:14",
     "recorded-content": {
       "list-cert-summary-list": {
         "CertificateArn": "arn:<partition>:acm:<region>:111111111111:certificate/<cert-id>",
         "CreatedAt": "datetime",
         "DomainName": "test.example.com",
-        "ExportOption": "DISABLED",
-        "Exported": false,
         "ExtendedKeyUsages": [],
         "HasAdditionalSubjectAlternativeNames": false,
         "InUse": false,
         "KeyAlgorithm": "RSA-2048",
         "KeyUsages": [],
         "RenewalEligibility": "INELIGIBLE",
-        "Status": "PENDING_VALIDATION",
+        "Status": "FAILED",
         "SubjectAlternativeNameSummaries": [
           "*.test.example.com",
           "another.domain.com",
@@ -203,8 +201,7 @@
         "KeyAlgorithm": "RSA-2048",
         "KeyUsages": [],
         "Options": {
-          "CertificateTransparencyLoggingPreference": "ENABLED",
-          "Export": "DISABLED"
+          "CertificateTransparencyLoggingPreference": "ENABLED"
         },
         "RenewalEligibility": "INELIGIBLE",
         "SignatureAlgorithm": "SHA256WITHRSA",
@@ -221,7 +218,7 @@
     }
   },
   "tests/aws/services/acm/test_acm.py::TestACM::test_import_certificate": {
-    "recorded-date": "14-10-2025, 09:17:56",
+    "recorded-date": "22-02-2024, 17:41:15",
     "recorded-content": {
       "import-certificate-response": {
         "CertificateArn": "arn:<partition>:acm:<region>:111111111111:certificate/<cert-id>",
@@ -273,8 +270,7 @@
           "NotAfter": "datetime",
           "NotBefore": "datetime",
           "Options": {
-            "CertificateTransparencyLoggingPreference": "DISABLED",
-            "Export": "DISABLED"
+            "CertificateTransparencyLoggingPreference": "DISABLED"
           },
           "RenewalEligibility": "INELIGIBLE",
           "Serial": "03:e9",
@@ -297,7 +293,7 @@
     }
   },
   "tests/aws/services/acm/test_acm.py::TestACM::test_domain_validation": {
-    "recorded-date": "14-10-2025, 09:31:48",
+    "recorded-date": "12-04-2024, 15:36:37",
     "recorded-content": {
       "describe-certificate": {
         "Certificate": {
@@ -319,8 +315,7 @@
           "KeyAlgorithm": "RSA-2048",
           "KeyUsages": [],
           "Options": {
-            "CertificateTransparencyLoggingPreference": "ENABLED",
-            "Export": "DISABLED"
+            "CertificateTransparencyLoggingPreference": "ENABLED"
           },
           "RenewalEligibility": "INELIGIBLE",
           "SignatureAlgorithm": "<signature-algorithm:1>",
diff --git a/tests/aws/services/acm/test_acm.validation.json b/tests/aws/services/acm/test_acm.validation.json
@@ -3,30 +3,12 @@
     "last_validated_date": "2023-04-18T17:01:27+00:00"
   },
   "tests/aws/services/acm/test_acm.py::TestACM::test_create_certificate_for_multiple_alternative_domains": {
-    "last_validated_date": "2025-10-14T09:18:39+00:00",
-    "durations_in_seconds": {
-      "setup": 0.45,
-      "call": 5.97,
-      "teardown": 0.19,
-      "total": 6.61
-    }
+    "last_validated_date": "2024-01-09T14:58:14+00:00"
   },
   "tests/aws/services/acm/test_acm.py::TestACM::test_domain_validation": {
-    "last_validated_date": "2025-10-14T09:31:48+00:00",
-    "durations_in_seconds": {
-      "setup": 0.46,
-      "call": 2.94,
-      "teardown": 0.21,
-      "total": 3.61
-    }
+    "last_validated_date": "2024-04-12T15:36:37+00:00"
   },
   "tests/aws/services/acm/test_acm.py::TestACM::test_import_certificate": {
-    "last_validated_date": "2025-10-14T09:17:56+00:00",
-    "durations_in_seconds": {
-      "setup": 0.48,
-      "call": 1.25,
-      "teardown": 0.25,
-      "total": 1.98
-    }
+    "last_validated_date": "2024-02-22T17:41:15+00:00"
   }
 }
