From ee7818f02a0eac919877bfcc24aaf8052c35c2c1 Mon Sep 17 00:00:00 2001
From: Mark Chappell <mchappel@redhat.com>
Date: Fri, 5 Feb 2021 09:43:09 +0100
Subject: [PATCH] Cleanup - use is_boto3_error_(message|code) (#268)

* Reorder imports
* Make use of is_boto3_error_message
* Mass-migration over to is_boto3_error_code
* Remove unused imports
* unused vars in exception
* Improve consistency around catching BotoCoreError and ClientError
* Remove unused imports
* Remove unused 'PolicyError' from iam_policy_info
* Avoid catching botocore.exceptions.ClientError when we only want some error codes
* Import camel_dict_to_snake_dict/snake_dict_to_camel_dict from ansible.module_utils.common.dict_transformations

This commit was initially merged in https://github.com/ansible-collections/community.aws
See: https://github.com/ansible-collections/community.aws/commit/4cf52ef67682fd4f9ed2a707adfbafffe7b88f15
---
 plugins/modules/iam_managed_policy.py | 19 +++++++++----------
 1 file changed, 9 insertions(+), 10 deletions(-)

diff --git a/plugins/modules/iam_managed_policy.py b/plugins/modules/iam_managed_policy.py
index aa668498ad1..f0fa588c44e 100644
--- a/plugins/modules/iam_managed_policy.py
+++ b/plugins/modules/iam_managed_policy.py
@@ -140,6 +140,7 @@
 from ansible.module_utils.common.dict_transformations import camel_dict_to_snake_dict
 
 from ansible_collections.amazon.aws.plugins.module_utils.core import AnsibleAWSModule
+from ansible_collections.amazon.aws.plugins.module_utils.core import is_boto3_error_code
 from ansible_collections.amazon.aws.plugins.module_utils.ec2 import AWSRetry
 from ansible_collections.amazon.aws.plugins.module_utils.ec2 import compare_policies
 
@@ -200,16 +201,14 @@ def get_or_create_policy_version(module, iam, policy, policy_document):
     try:
         version = iam.create_policy_version(PolicyArn=policy['Arn'], PolicyDocument=policy_document)['PolicyVersion']
         return version, True
-    except botocore.exceptions.ClientError as e:
-        if e.response['Error']['Code'] == 'LimitExceeded':
-            delete_oldest_non_default_version(module, iam, policy)
-            try:
-                version = iam.create_policy_version(PolicyArn=policy['Arn'], PolicyDocument=policy_document)['PolicyVersion']
-                return version, True
-            except (botocore.exceptions.ClientError, botocore.exceptions.BotoCoreError) as second_e:
-                e = second_e
-        # Handle both when the exception isn't LimitExceeded or
-        # the second attempt still failed
+    except is_boto3_error_code('LimitExceeded'):
+        delete_oldest_non_default_version(module, iam, policy)
+        try:
+            version = iam.create_policy_version(PolicyArn=policy['Arn'], PolicyDocument=policy_document)['PolicyVersion']
+            return version, True
+        except (botocore.exceptions.ClientError, botocore.exceptions.BotoCoreError) as second_e:
+            module.fail_json_aws(second_e, msg="Couldn't create policy version")
+    except (botocore.exceptions.ClientError, botocore.exceptions.BotoCoreError) as e:  # pylint: disable=duplicate-except
         module.fail_json_aws(e, msg="Couldn't create policy version")