Implement integration test framework (#40)

- Added integration test framework classes and workflows so that
  integration tests can be run against an Aurora Postgres cluster or a
  standard Postgres container

Author: Aaron Congo

.gitattributes

@@ -0,0 +1,2 @@
+* text=auto
+gradlew text eol=lf

.github/workflows/main.yml

@@ -17,10 +17,10 @@ concurrency:
 
 jobs:
   build-driver:
-    name: 'Run Tests'
+    name: 'Run non-container integration tests'
     runs-on: ubuntu-latest
     steps:
-      - name: 'Clone Repository'
+      - name: 'Clone repository'
         uses: actions/checkout@v2
 
       - name: 'Set up JDK 8'
@@ -34,7 +34,7 @@ jobs:
       - name: 'Generate code coverage report'
         run: ./gradlew jacocoTestReport
 
-      - name: 'Archive Test Results'
+      - name: 'Archive test results'
         if: always()
         uses: actions/upload-artifact@v3
         with:
@@ -49,3 +49,80 @@ jobs:
           name: 'coverage-report'
           path: ./driver-proxy/build/reports/jacoco/test/
           retention-days: 3
+
+  aurora-postgres-integration-tests:
+    concurrency: IntegrationTests
+    name: 'Run Aurora Postgres container integration tests'
+    runs-on: ubuntu-latest
+    steps:
+      - name: 'Clone repository'
+        uses: actions/checkout@v2
+        with:
+          fetch-depth: 50
+      - name: 'Set up JDK 8'
+        uses: actions/setup-java@v1
+        with:
+          java-version: 8
+      - name: 'Configure AWS credentials'
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: ${{ secrets.AWS_DEFAULT_REGION }}
+      - name: 'Set up temp AWS credentials'
+        run: |
+          creds=($(aws sts get-session-token \
+            --duration-seconds 3600 \
+            --query 'Credentials.[AccessKeyId, SecretAccessKey, SessionToken]' \
+            --output text \
+          | xargs));
+          echo "::add-mask::${creds[0]}"
+          echo "::add-mask::${creds[1]}"
+          echo "::add-mask::${creds[2]}"
+          echo "TEMP_AWS_ACCESS_KEY_ID=${creds[0]}" >> $GITHUB_ENV
+          echo "TEMP_AWS_SECRET_ACCESS_KEY=${creds[1]}" >> $GITHUB_ENV
+          echo "TEMP_AWS_SESSION_TOKEN=${creds[2]}" >> $GITHUB_ENV
+      - name: 'Run integration tests'
+        run: |
+          ./gradlew --no-parallel --no-daemon test-integration-aurora-postgres
+        env:
+          AURORA_POSTGRES_CLUSTER_IDENTIFIER: ${{ secrets.AURORA_POSTGRES_CLUSTER_IDENTIFIER }}-${{ github.run_id }}
+          AURORA_POSTGRES_USERNAME: ${{ secrets.AURORA_POSTGRES_USERNAME }}
+          AURORA_POSTGRES_PASSWORD: ${{ secrets.AURORA_POSTGRES_PASSWORD }}
+          AWS_ACCESS_KEY_ID: ${{ env.TEMP_AWS_ACCESS_KEY_ID }}
+          AWS_SECRET_ACCESS_KEY: ${{ env.TEMP_AWS_SECRET_ACCESS_KEY }}
+          AWS_SESSION_TOKEN: ${{ env.TEMP_AWS_SESSION_TOKEN }}
+      - name: 'Archive junit results'
+        if: always()
+        uses: actions/upload-artifact@v2
+        with:
+          name: 'junit-report'
+          path: ./driver-proxy/build/reports/tests/
+          retention-days: 5
+
+  standard-postgres-integration-tests:
+    concurrency: IntegrationTests
+    name: 'Run Standard Postgres container integration tests'
+    runs-on: ubuntu-latest
+    steps:
+      - name: 'Clone repository'
+        uses: actions/checkout@v2
+        with:
+          fetch-depth: 50
+      - name: 'Set up JDK 8'
+        uses: actions/setup-java@v1
+        with:
+          java-version: 8
+      - name: 'Run integration tests'
+        run: |
+          ./gradlew --no-parallel --no-daemon test-integration-standard-postgres
+        env:
+          TEST_USERNAME: ${{ secrets.STANDARD_POSTGRES_USERNAME }}
+          TEST_PASSWORD: ${{ secrets.STANDARD_POSTGRES_PASSWORD }}
+      - name: 'Archive junit results'
+        if: always()
+        uses: actions/upload-artifact@v2
+        with:
+          name: 'junit-report'
+          path: ./driver-proxy/build/reports/tests/
+          retention-days: 5

driver-proxy/build.gradle.kts

@@ -19,21 +19,38 @@ plugins {
 dependencies {
     implementation("org.checkerframework:checker-qual:3.22.+")
 
+    testImplementation("org.junit.platform:junit-platform-commons:1.8.+")
+    testImplementation("org.junit.platform:junit-platform-engine:1.8.+")
+    testImplementation("org.junit.platform:junit-platform-launcher:1.8.+")
+    testImplementation("org.junit.platform:junit-platform-suite-engine:1.8.+")
     testImplementation("org.junit.jupiter:junit-jupiter-api:5.8.+")
     testImplementation("org.junit.jupiter:junit-jupiter-params:5.8.+")
     testRuntimeOnly("org.junit.jupiter:junit-jupiter-engine")
 
+    testImplementation("org.apache.commons:commons-dbcp2:2.8.0")
     testImplementation("org.postgresql:postgresql:42.+")
     testImplementation("mysql:mysql-connector-java:8.0.+")
     testImplementation("com.zaxxer:HikariCP:4.+") // version 4.+ is compatible with Java 8
     testImplementation("org.springframework.boot:spring-boot-starter-jdbc:2.7.+")
     testImplementation("org.mockito:mockito-inline:4.+")
+    testImplementation("software.amazon.awssdk:rds:2.17.+")
+    testImplementation("software.amazon.awssdk:ec2:2.17.+")
+    testImplementation("org.testcontainers:testcontainers:1.17.+")
+    testImplementation("org.testcontainers:mysql:1.17.+")
+    testImplementation("org.testcontainers:postgresql:1.17.+")
+    testImplementation("org.testcontainers:junit-jupiter:1.17.+")
+    testImplementation("org.testcontainers:toxiproxy:1.17.+")
 }
 
 tasks.check {
     dependsOn("jacocoTestCoverageVerification")
 }
 
+tasks.test {
+    filter.excludeTestsMatching("integration.host.*")
+    filter.excludeTestsMatching("integration.container.*")
+}
+
 checkstyle {
     // Checkstyle versions 7.x, 8.x, and 9.x are supported by JRE version 8 and above.
     toolVersion = "9.3"
@@ -122,3 +139,44 @@ tasks.getByName<Test>("test") {
 
     systemProperty("java.util.logging.config.file", "${project.buildDir}/resources/test/logging-test.properties")
 }
+
+// Run Aurora Postgres integrations tests in container
+tasks.register<Test>("test-integration-aurora-postgres") {
+    group = "verification"
+    filter.includeTestsMatching("integration.host.AuroraPostgresContainerTest.runTestInContainer")
+}
+
+tasks.register<Test>("test-performance-aurora-postgres") {
+    group = "verification"
+    filter.includeTestsMatching("integration.host.AuroraPostgresContainerTest.runPerformanceTestInContainer")
+}
+
+// Run standard Postgres tests in container
+tasks.register<Test>("test-integration-standard-postgres") {
+    group = "verification"
+    filter.includeTestsMatching("integration.host.StandardPostgresContainerTest.runTestInContainer")
+}
+
+// Run Aurora Postgres integration tests in container with debugger
+tasks.register<Test>("debug-integration-aurora-postgres") {
+    group = "verification"
+    filter.includeTestsMatching("integration.host.AuroraPostgresContainerTest.debugTestInContainer")
+}
+
+tasks.register<Test>("debug-performance-aurora-postgres") {
+    group = "verification"
+    filter.includeTestsMatching("testsuite.integration.host.AuroraPostgresContainerTest.debugPerformanceTestInContainer")
+}
+
+// Run standard Postgres integration tests in container with debugger
+tasks.register<Test>("debug-integration-standard-postgres") {
+    group = "verification"
+    filter.includeTestsMatching("integration.host.StandardPostgresContainerTest.debugTestInContainer")
+}
+
+tasks.withType<Test> {
+    this.testLogging {
+        this.showStandardStreams = true
+    }
+    useJUnitPlatform()
+}

driver-proxy/src/main/java/software/aws/rds/jdbc/proxydriver/ConnectionPluginManager.java

@@ -98,7 +98,7 @@ public void unlock() {
 
   /**
    * Initialize a chain of {@link ConnectionPlugin} using their corresponding {@link ConnectionPluginFactory}. If
-   * {@code PropertyKey.connectionPluginFactories} is provided by the user, initialize the chain with the given
+   * {@code PropertyDefinition.PLUGINS} is provided by the user, initialize the chain with the given
    * connection plugins in the order they are specified.
    *
    * <p>The {@link DefaultConnectionPlugin} will always be initialized and attached as the last

driver-proxy/src/main/java/software/aws/rds/jdbc/proxydriver/PropertyDefinition.java

@@ -16,28 +16,47 @@
 
 public class PropertyDefinition {
 
-  public static final ProxyDriverProperty PLUGINS =
+  public static final ProxyDriverProperty CLUSTER_INSTANCE_HOST_PATTERN =
       new ProxyDriverProperty(
-          "proxyDriverPlugins", null, "Coma separated list of connection plugin codes");
+          "clusterInstanceHostPattern",
+          null,
+          "The cluster instance DNS pattern that will be used to build a complete instance endpoint. "
+              + "A \"?\" character in this pattern should be used as a placeholder for cluster instance names. "
+              + "This pattern is required to be specified for IP address or custom domain connections to AWS RDS "
+              + "clusters. Otherwise, if unspecified, the pattern will be automatically created for AWS RDS clusters.");
 
-  public static final ProxyDriverProperty PROFILE_NAME =
+  public static final ProxyDriverProperty ENABLE_CLUSTER_AWARE_FAILOVER =
       new ProxyDriverProperty(
-          "proxyDriverProfileName", null, "Driver configuration profile name");
+          "enableClusterAwareFailover", "true",
+          "Enable/disable cluster-aware failover logic");
+
+  public static final ProxyDriverProperty LOG_UNCLOSED_CONNECTIONS =
+      new ProxyDriverProperty(
+          "proxyDriverLogUnclosedConnections", "false",
+          "Allows the driver to track a point in the code where connection has been opened and never closed after");
 
   public static final ProxyDriverProperty LOGGER_LEVEL =
       new ProxyDriverProperty(
           "proxyDriverLoggerLevel",
           null,
           "Logger level of the driver",
           false,
-          new String[]{
+          new String[] {
               "OFF", "SEVERE", "WARNING", "INFO", "CONFIG", "FINE", "FINER", "FINEST", "ALL"
           });
 
-  public static final ProxyDriverProperty LOG_UNCLOSED_CONNECTIONS =
+  public static final ProxyDriverProperty PLUGINS =
       new ProxyDriverProperty(
-          "proxyDriverLogUnclosedConnections", "false",
-          "Allows the driver to track a point in the code where connection has been opened and never closed after");
+          "proxyDriverPlugins", null, "Comma separated list of connection plugin codes");
+
+  public static final ProxyDriverProperty PROFILE_NAME =
+      new ProxyDriverProperty(
+          "proxyDriverProfileName", null, "Driver configuration profile name");
+
+  public static final ProxyDriverProperty USE_AWS_IAM =
+      new ProxyDriverProperty(
+          "useAwsIam", "false", "Set to true to use AWS IAM database authentication");
+
 
   private static final Map<String, ProxyDriverProperty> PROPS_BY_NAME =
       new HashMap<String, ProxyDriverProperty>();

driver-proxy/src/test/build.gradle.kts

@@ -0,0 +1,61 @@
+/*
+ * AWS JDBC Proxy Driver
+ * Copyright Amazon.com Inc. or affiliates.
+ * See the LICENSE file in the project root for more information.
+ */
+
+plugins {
+    java
+}
+
+repositories {
+    mavenCentral()
+}
+
+dependencies {
+    testImplementation("org.junit.platform:junit-platform-commons:1.8.2")
+    testImplementation("org.junit.platform:junit-platform-engine:1.8.2")
+    testImplementation("org.junit.platform:junit-platform-launcher:1.8.2")
+    testImplementation("org.junit.platform:junit-platform-suite-engine:1.8.2")
+    testImplementation("org.junit.jupiter:junit-jupiter-api:5.8.2")
+    testImplementation("org.junit.jupiter:junit-jupiter-params:5.8.2")
+    testRuntimeOnly("org.junit.jupiter:junit-jupiter-engine")
+
+    testImplementation("org.apache.commons:commons-dbcp2:2.8.0")
+    testImplementation("org.postgresql:postgresql:42.+")
+    testImplementation("mysql:mysql-connector-java:8.0.+")
+    testImplementation("com.zaxxer:HikariCP:4.+") // version 4.+ is compatible with Java 8
+    testImplementation("org.springframework.boot:spring-boot-starter-jdbc:2.7.+")
+    testImplementation("org.mockito:mockito-inline:4.+")
+    testImplementation("software.amazon.awssdk:rds:2.17.165")
+    testImplementation("software.amazon.awssdk:ec2:2.17.165")
+    testImplementation("org.testcontainers:testcontainers:1.17.+")
+    testImplementation("org.testcontainers:mysql:1.17.+")
+    testImplementation("org.testcontainers:postgresql:1.17.+")
+    testImplementation("org.testcontainers:junit-jupiter:1.17.+")
+    testImplementation("org.testcontainers:toxiproxy:1.17.+")
+
+    testImplementation(fileTree("./libs") { include("*.jar") })
+    testImplementation(files("./test"))
+}
+
+// Integration tests are run in a specific order.
+// To add more tests, see integration.container.aurora.postgres.AuroraPostgresTestSuite.java
+tasks.register<Test>("in-container-aurora-postgres") {
+    filter.includeTestsMatching("integration.container.aurora.postgres.AuroraPostgresTestSuite")
+}
+
+tasks.register<Test>("in-container-aurora-postgres-performance") {
+    filter.includeTestsMatching("integration.container.aurora.postgres.AuroraPostgresPerformanceTest")
+}
+
+// Integration tests are run in a specific order.
+// To add more tests, see integration.container.standard.postgres.StandardPostgresTestSuite.java
+tasks.register<Test>("in-container-standard-postgres") {
+    filter.includeTestsMatching("integration.container.standard.postgres.StandardPostgresTestSuite")
+}
+
+tasks.withType<Test> {
+    outputs.upToDateWhen { false }
+    useJUnitPlatform()
+}

driver-proxy/src/test/java/integration/container/aurora/postgres/AuroraPostgresBaseTest.java

@@ -0,0 +1,35 @@
+/*
+ * AWS JDBC Proxy Driver
+ * Copyright Amazon.com Inc. or affiliates.
+ * See the LICENSE file in the project root for more information.
+ */
+
+package integration.container.aurora.postgres;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertFalse;
+
+import java.io.IOException;
+import java.sql.Connection;
+import java.sql.ResultSet;
+import java.sql.SQLException;
+import java.sql.Statement;
+import org.junit.jupiter.api.Test;
+
+public class AuroraPostgresIntegrationTest extends AuroraPostgresBaseTest {
+
+  @Test
+  public void test_connect() throws SQLException, IOException {
+    try (final Connection conn = connectToInstance(POSTGRES_INSTANCE_1_URL + PROXIED_DOMAIN_NAME_SUFFIX,
+        POSTGRES_PROXY_PORT)) {
+      Statement stmt = conn.createStatement();
+      ResultSet rs = stmt.executeQuery("SELECT 1");
+      rs.next();
+      assertEquals(1, rs.getInt(1));
+
+      containerHelper.disableConnectivity(proxyInstance_1);
+      assertFalse(conn.isValid(5));
+      containerHelper.enableConnectivity(proxyInstance_1);
+    }
+  }
+}

driver-proxy/src/test/java/integration/container/aurora/postgres/AuroraPostgresIntegrationTest.java

@@ -0,0 +1,18 @@
+/*
+ * AWS JDBC Proxy Driver
+ * Copyright Amazon.com Inc. or affiliates.
+ * See the LICENSE file in the project root for more information.
+ */
+
+package integration.container.aurora.postgres;
+
+import org.junit.platform.suite.api.SelectClasses;
+import org.junit.platform.suite.api.Suite;
+
+// Tests will run in order of top to bottom.
+// To add additional tests, append it inside SelectClasses, comma-separated
+@Suite
+@SelectClasses({
+  AuroraPostgresIntegrationTest.class
+})
+public class AuroraPostgresTestSuite {}

driver-proxy/src/test/java/integration/container/aurora/postgres/AuroraPostgresTestSuite.java

@@ -0,0 +1,93 @@
+/*
+ * AWS JDBC Proxy Driver
+ * Copyright Amazon.com Inc. or affiliates.
+ * See the LICENSE file in the project root for more information.
+ */
+
+package integration.container.standard.postgres;
+
+import eu.rekawek.toxiproxy.Proxy;
+import eu.rekawek.toxiproxy.ToxiproxyClient;
+import integration.util.ContainerHelper;
+import java.io.IOException;
+import java.sql.Connection;
+import java.sql.DriverManager;
+import java.sql.SQLException;
+import java.util.HashMap;
+import java.util.Map;
+import java.util.Properties;
+import org.junit.jupiter.api.BeforeAll;
+import org.junit.jupiter.api.BeforeEach;
+import org.postgresql.PGProperty;
+
+public class StandardPostgresBaseTest {
+  protected static final String DB_CONN_STR_PREFIX = "aws-proxy-jdbc:postgresql://";
+  protected static final String TEST_HOST = System.getenv("TEST_HOST");
+  protected static final String TEST_PORT = System.getenv("TEST_PORT");
+  protected static final String TEST_DB = System.getenv("TEST_DB");
+  protected static final String TEST_USERNAME = System.getenv("TEST_USERNAME");
+  protected static final String TEST_PASSWORD = System.getenv("TEST_PASSWORD");
+
+  protected static final String TOXIPROXY_HOST = System.getenv("TOXIPROXY_HOST");
+  protected static ToxiproxyClient toxiproxyClient;
+  protected static final int TOXIPROXY_CONTROL_PORT = 8474;
+
+  protected static final String PROXIED_DOMAIN_NAME_SUFFIX = System.getenv("PROXIED_DOMAIN_NAME_SUFFIX");
+  protected static final String PROXY_PORT = System.getenv("PROXY_PORT");
+  protected static Proxy proxy;
+  protected static final Map<String, Proxy> proxyMap = new HashMap<>();
+
+  protected final ContainerHelper containerHelper = new ContainerHelper();
+
+  @BeforeAll
+  public static void setUp() throws SQLException, IOException {
+    toxiproxyClient = new ToxiproxyClient(TOXIPROXY_HOST, TOXIPROXY_CONTROL_PORT);
+    proxy = getProxy(toxiproxyClient, TEST_HOST, Integer.parseInt(TEST_PORT));
+    proxyMap.put(TEST_HOST, proxy);
+
+    if (!org.postgresql.Driver.isRegistered()) {
+      org.postgresql.Driver.register();
+    }
+
+    if (!software.aws.rds.jdbc.proxydriver.Driver.isRegistered()) {
+      software.aws.rds.jdbc.proxydriver.Driver.register();
+    }
+  }
+
+  @BeforeEach
+  public void setUpEach() {
+    proxyMap.forEach((instance, proxy) -> containerHelper.enableConnectivity(proxy));
+  }
+
+  protected static Proxy getProxy(ToxiproxyClient proxyClient, String host, int port) throws IOException {
+    final String upstream = host + ":" + port;
+    return proxyClient.getProxy(upstream);
+  }
+
+  protected Connection connect() throws SQLException {
+    String url = DB_CONN_STR_PREFIX + TEST_HOST + ":" + TEST_PORT + "/" + TEST_DB;
+    return DriverManager.getConnection(url, initDefaultProps());
+  }
+
+  protected Connection connectToProxy() throws SQLException {
+    String url = DB_CONN_STR_PREFIX + TEST_HOST + PROXIED_DOMAIN_NAME_SUFFIX + ":" + PROXY_PORT + "/" + TEST_DB;
+    return DriverManager.getConnection(url, initDefaultProps());
+  }
+
+  protected Properties initDefaultProps() {
+    final Properties props = initDefaultPropsNoTimeouts();
+    props.setProperty(PGProperty.CONNECT_TIMEOUT.getName(), "3");
+    props.setProperty(PGProperty.SOCKET_TIMEOUT.getName(), "3");
+
+    return props;
+  }
+
+  protected Properties initDefaultPropsNoTimeouts() {
+    final Properties props = new Properties();
+    props.setProperty(PGProperty.USER.getName(), TEST_USERNAME);
+    props.setProperty(PGProperty.PASSWORD.getName(), TEST_PASSWORD);
+    props.setProperty(PGProperty.TCP_KEEP_ALIVE.getName(), Boolean.FALSE.toString());
+
+    return props;
+  }
+}

driver-proxy/src/test/java/integration/container/standard/postgres/StandardPostgresBaseTest.java

@@ -0,0 +1,39 @@
+/*
+ * AWS JDBC Proxy Driver
+ * Copyright Amazon.com Inc. or affiliates.
+ * See the LICENSE file in the project root for more information.
+ */
+
+package integration.container.standard.postgres;
+
+import static org.junit.jupiter.api.Assertions.assertEquals;
+import static org.junit.jupiter.api.Assertions.assertFalse;
+import static org.junit.jupiter.api.Assertions.assertTrue;
+
+import java.io.IOException;
+import java.sql.Connection;
+import java.sql.ResultSet;
+import java.sql.SQLException;
+import java.sql.Statement;
+import org.junit.jupiter.api.Test;
+
+public class StandardPostgresIntegrationTest extends StandardPostgresBaseTest {
+
+  @Test
+  public void test_connect() throws SQLException, IOException {
+    try (Connection conn = connect()) {
+      Statement stmt = conn.createStatement();
+      stmt.executeQuery("SELECT 1");
+      ResultSet rs = stmt.getResultSet();
+      rs.next();
+      assertEquals(1, rs.getInt(1));
+    }
+
+    try (Connection conn = connectToProxy()) {
+      assertTrue(conn.isValid(5));
+      containerHelper.disableConnectivity(proxy);
+      assertFalse(conn.isValid(5));
+      containerHelper.enableConnectivity(proxy);
+    }
+  }
+}

driver-proxy/src/test/java/integration/container/standard/postgres/StandardPostgresIntegrationTest.java

@@ -0,0 +1,18 @@
+/*
+ * AWS JDBC Proxy Driver
+ * Copyright Amazon.com Inc. or affiliates.
+ * See the LICENSE file in the project root for more information.
+ */
+
+package integration.container.standard.postgres;
+
+import org.junit.platform.suite.api.SelectClasses;
+import org.junit.platform.suite.api.Suite;
+
+// Tests will run in order of top to bottom.
+// To add additional tests, append it inside SelectClasses, comma-separated
+@Suite
+@SelectClasses({
+    StandardPostgresIntegrationTest.class
+})
+public class StandardPostgresTestSuite {}

driver-proxy/src/test/java/integration/container/standard/postgres/StandardPostgresTestSuite.java

@@ -0,0 +1,242 @@
+/*
+ * AWS JDBC Proxy Driver
+ * Copyright Amazon.com Inc. or affiliates.
+ * See the LICENSE file in the project root for more information.
+ */
+
+package integration.host;
+
+import integration.util.AuroraTestUtility;
+import integration.util.ContainerHelper;
+import java.io.IOException;
+import java.net.UnknownHostException;
+import java.sql.SQLException;
+import java.util.ArrayList;
+import java.util.List;
+import org.junit.jupiter.api.AfterAll;
+import org.junit.jupiter.api.Assertions;
+import org.junit.jupiter.api.BeforeAll;
+import org.junit.jupiter.api.Test;
+import org.testcontainers.containers.GenericContainer;
+import org.testcontainers.containers.Network;
+import org.testcontainers.containers.ToxiproxyContainer;
+import software.aws.rds.jdbc.proxydriver.util.StringUtils;
+
+/**
+ * Integration tests against RDS Aurora cluster. Uses {@link AuroraTestUtility} which requires AWS
+ * Credentials to create/destroy clusters & set EC2 Whitelist.
+ *
+ * <p>The following environment variables are REQUIRED for AWS IAM tests - AWS_ACCESS_KEY_ID, AWS
+ * access key - AWS_SECRET_ACCESS_KEY, AWS secret access key - AWS_SESSION_TOKEN, AWS Session token
+ *
+ * <p>The following environment variables are optional but suggested differentiating between runners
+ * Provided values are just examples. Assuming cluster endpoint is
+ * "database-cluster-name.XYZ.us-east-2.rds.amazonaws.com"
+ *
+ * <p>TEST_DB_CLUSTER_IDENTIFIER=database-cluster-name TEST_USERNAME=user-name
+ * TEST_PASSWORD=user-secret-password
+ */
+public class AuroraPostgresContainerTest {
+
+  private static final int AURORA_POSTGRES_PORT = 5432;
+  private static final String AURORA_POSTGRES_TEST_HOST_NAME = "test-container";
+
+  private static final String AURORA_POSTGRES_USERNAME =
+      !StringUtils.isNullOrEmpty(System.getenv("AURORA_POSTGRES_USERNAME"))
+          ? System.getenv("AURORA_POSTGRES_USERNAME")
+          : "my_test_username";
+  private static final String AURORA_POSTGRES_PASSWORD =
+      !StringUtils.isNullOrEmpty(System.getenv("AURORA_POSTGRES_PASSWORD"))
+          ? System.getenv("AURORA_POSTGRES_PASSWORD")
+          : "my_test_password";
+  protected static final String AURORA_POSTGRES_DB =
+      !StringUtils.isNullOrEmpty(System.getenv("AURORA_POSTGRES_DB"))
+          ? System.getenv("AURORA_POSTGRES_DB")
+          : "test";
+
+  private static final String AWS_ACCESS_KEY_ID = System.getenv("AWS_ACCESS_KEY_ID");
+  private static final String AWS_SECRET_ACCESS_KEY = System.getenv("AWS_SECRET_ACCESS_KEY");
+  private static final String AWS_SESSION_TOKEN = System.getenv("AWS_SESSION_TOKEN");
+
+  private static final String DB_CONN_STR_PREFIX = "aws-proxy-jdbc:postgresql://";
+  private static String dbConnStrSuffix = "";
+  private static final String DB_CONN_PROP = "?enabledTLSProtocols=TLSv1.2";
+
+  private static final String AURORA_POSTGRES_DB_REGION =
+      !StringUtils.isNullOrEmpty(System.getenv("AURORA_POSTGRES_DB_REGION"))
+          ? System.getenv("AURORA_POSTGRES_DB_REGION")
+          : "us-east-1";
+  private static final String AURORA_POSTGRES_CLUSTER_IDENTIFIER =
+      !StringUtils.isNullOrEmpty(System.getenv("AURORA_POSTGRES_CLUSTER_IDENTIFIER"))
+          ? System.getenv("AURORA_POSTGRES_CLUSTER_IDENTIFIER")
+          : "test-identifier";
+  private static final String PROXIED_DOMAIN_NAME_SUFFIX = ".proxied";
+  private static List<ToxiproxyContainer> proxyContainers = new ArrayList<>();
+  private static List<String> postgresInstances = new ArrayList<>();
+
+  private static int postgresProxyPort;
+  private static GenericContainer<?> integrationTestContainer;
+  private static String dbHostCluster = "";
+  private static String dbHostClusterRo = "";
+  private static String runnerIP = null;
+
+  private static Network network;
+
+  private static final ContainerHelper containerHelper = new ContainerHelper();
+  private static final AuroraTestUtility auroraUtil = new AuroraTestUtility(AURORA_POSTGRES_DB_REGION);
+
+  @BeforeAll
+  static void setUp() throws SQLException, InterruptedException, UnknownHostException {
+    Assertions.assertNotNull(AWS_ACCESS_KEY_ID);
+    Assertions.assertNotNull(AWS_SECRET_ACCESS_KEY);
+    Assertions.assertNotNull(AWS_SESSION_TOKEN);
+
+    // Comment out below to not create a new cluster & instances
+    // Note: You will need to set it to the proper DB Conn Suffix
+    // i.e. For "database-cluster-name.XYZ.us-east-2.rds.amazonaws.com"
+    // dbConnStrSuffix = "XYZ.us-east-2.rds.amazonaws.com"
+    dbConnStrSuffix =
+        auroraUtil.createCluster(AURORA_POSTGRES_USERNAME, AURORA_POSTGRES_PASSWORD, AURORA_POSTGRES_DB,
+            AURORA_POSTGRES_CLUSTER_IDENTIFIER);
+
+    // Comment out getting public IP to not add & remove from EC2 whitelist
+    runnerIP = auroraUtil.getPublicIPAddress();
+    auroraUtil.ec2AuthorizeIP(runnerIP);
+
+    dbHostCluster = AURORA_POSTGRES_CLUSTER_IDENTIFIER + ".cluster-" + dbConnStrSuffix;
+    dbHostClusterRo = AURORA_POSTGRES_CLUSTER_IDENTIFIER + ".cluster-ro-" + dbConnStrSuffix;
+
+    if (!org.postgresql.Driver.isRegistered()) {
+      org.postgresql.Driver.register();
+    }
+
+    if (!software.aws.rds.jdbc.proxydriver.Driver.isRegistered()) {
+      software.aws.rds.jdbc.proxydriver.Driver.register();
+    }
+
+    network = Network.newNetwork();
+    postgresInstances =
+        containerHelper.getAuroraInstanceEndpoints(
+            DB_CONN_STR_PREFIX + dbHostCluster + "/" + AURORA_POSTGRES_DB + DB_CONN_PROP,
+            AURORA_POSTGRES_USERNAME,
+            AURORA_POSTGRES_PASSWORD,
+            dbConnStrSuffix);
+    proxyContainers =
+        containerHelper.createProxyContainers(
+            network, postgresInstances, PROXIED_DOMAIN_NAME_SUFFIX);
+    for (ToxiproxyContainer container : proxyContainers) {
+      container.start();
+    }
+    postgresProxyPort =
+        containerHelper.createInstanceProxies(
+            postgresInstances, proxyContainers, AURORA_POSTGRES_PORT);
+
+    proxyContainers.add(
+        containerHelper.createAndStartProxyContainer(
+            network,
+            "toxiproxy-instance-cluster",
+            dbHostCluster + PROXIED_DOMAIN_NAME_SUFFIX,
+            dbHostCluster,
+            AURORA_POSTGRES_PORT,
+            postgresProxyPort));
+
+    proxyContainers.add(
+        containerHelper.createAndStartProxyContainer(
+            network,
+            "toxiproxy-ro-instance-cluster",
+            dbHostClusterRo + PROXIED_DOMAIN_NAME_SUFFIX,
+            dbHostClusterRo,
+            AURORA_POSTGRES_PORT,
+            postgresProxyPort));
+
+    integrationTestContainer = initializeTestContainer(network, postgresInstances);
+  }
+
+  @AfterAll
+  static void tearDown() {
+    // Comment below out if you don't want to delete cluster after tests finishes
+    if (StringUtils.isNullOrEmpty(AURORA_POSTGRES_CLUSTER_IDENTIFIER)) {
+      auroraUtil.deleteCluster();
+    } else {
+      auroraUtil.deleteCluster(AURORA_POSTGRES_CLUSTER_IDENTIFIER);
+    }
+
+    auroraUtil.ec2DeauthorizesIP(runnerIP);
+    for (ToxiproxyContainer proxy : proxyContainers) {
+      proxy.stop();
+    }
+    integrationTestContainer.stop();
+  }
+
+  @Test
+  public void runTestInContainer()
+      throws UnsupportedOperationException, IOException, InterruptedException {
+
+    containerHelper.runTest(integrationTestContainer, "in-container-aurora-postgres");
+  }
+
+  @Test
+  public void runPerformanceTestInContainer()
+      throws UnsupportedOperationException, IOException, InterruptedException {
+
+    containerHelper.runTest(integrationTestContainer, "in-container-aurora-postgres-performance");
+  }
+
+  @Test
+  public void debugTestInContainer()
+      throws UnsupportedOperationException, IOException, InterruptedException {
+
+    containerHelper.debugTest(integrationTestContainer, "in-container-aurora-postgres");
+  }
+
+  @Test
+  public void debugPerformanceTestInContainer()
+      throws UnsupportedOperationException, IOException, InterruptedException {
+
+    containerHelper.debugTest(integrationTestContainer, "in-container-aurora-postgres-performance");
+  }
+
+  protected static GenericContainer<?> initializeTestContainer(
+      final Network network, List<String> postgresInstances) {
+
+    final GenericContainer<?> container =
+        containerHelper
+            .createTestContainer("aws/rds-test-container")
+            .withNetworkAliases(AURORA_POSTGRES_TEST_HOST_NAME)
+            .withNetwork(network)
+            .withEnv("TEST_USERNAME", AURORA_POSTGRES_USERNAME)
+            .withEnv("TEST_PASSWORD", AURORA_POSTGRES_PASSWORD)
+            .withEnv("TEST_DB", AURORA_POSTGRES_DB)
+            .withEnv("DB_REGION", AURORA_POSTGRES_DB_REGION)
+            .withEnv("DB_CLUSTER_CONN", dbHostCluster)
+            .withEnv("DB_RO_CLUSTER_CONN", dbHostClusterRo)
+            .withEnv("TOXIPROXY_CLUSTER_NETWORK_ALIAS", "toxiproxy-instance-cluster")
+            .withEnv("TOXIPROXY_RO_CLUSTER_NETWORK_ALIAS", "toxiproxy-ro-instance-cluster")
+            .withEnv(
+                "PROXIED_CLUSTER_TEMPLATE", "?." + dbConnStrSuffix + PROXIED_DOMAIN_NAME_SUFFIX)
+            .withEnv("DB_CONN_STR_SUFFIX", "." + dbConnStrSuffix)
+            .withEnv("AWS_ACCESS_KEY_ID", AWS_ACCESS_KEY_ID)
+            .withEnv("AWS_SECRET_ACCESS_KEY", AWS_SECRET_ACCESS_KEY)
+            .withEnv("AWS_SESSION_TOKEN", AWS_SESSION_TOKEN);
+
+    // Add postgres instances & proxies to container env
+    for (int i = 0; i < postgresInstances.size(); i++) {
+      // Add instance
+      container.addEnv("POSTGRES_INSTANCE_" + (i + 1) + "_URL", postgresInstances.get(i));
+
+      // Add proxies
+      container.addEnv(
+          "TOXIPROXY_INSTANCE_" + (i + 1) + "_NETWORK_ALIAS", "toxiproxy-instance-" + (i + 1));
+    }
+    container.addEnv("POSTGRES_PORT", Integer.toString(AURORA_POSTGRES_PORT));
+    container.addEnv("PROXIED_DOMAIN_NAME_SUFFIX", PROXIED_DOMAIN_NAME_SUFFIX);
+    container.addEnv("POSTGRES_PROXY_PORT", Integer.toString(postgresProxyPort));
+
+    System.out.println("Toxiproxy Instances port: " + postgresProxyPort);
+    System.out.println("Instances Proxied: " + postgresInstances.size());
+
+    container.start();
+
+    return container;
+  }
+}

driver-proxy/src/test/java/integration/host/AuroraPostgresContainerTest.java

@@ -0,0 +1,105 @@
+/*
+ * AWS JDBC Proxy Driver
+ * Copyright Amazon.com Inc. or affiliates.
+ * See the LICENSE file in the project root for more information.
+ */
+
+package integration.host;
+
+import com.mysql.cj.util.StringUtils;
+import integration.util.ContainerHelper;
+import java.io.IOException;
+import java.sql.SQLException;
+import org.junit.jupiter.api.AfterAll;
+import org.junit.jupiter.api.BeforeAll;
+import org.junit.jupiter.api.Test;
+import org.testcontainers.containers.GenericContainer;
+import org.testcontainers.containers.Network;
+import org.testcontainers.containers.PostgreSQLContainer;
+import org.testcontainers.containers.ToxiproxyContainer;
+
+public class StandardPostgresContainerTest {
+
+  private static final String STANDARD_POSTGRES_TEST_HOST_NAME = "test-container";
+  private static final String STANDARD_POSTGRES_CONTAINER_NAME = "standard-postgres-container";
+  private static final String PROXIED_DOMAIN_NAME_SUFFIX = ".proxied";
+  private static final int STANDARD_POSTGRES_PORT = 5432;
+
+  private static final String STANDARD_POSTGRES_DB =
+      !StringUtils.isNullOrEmpty(System.getenv("STANDARD_POSTGRES_DB"))
+          ? System.getenv("STANDARD_POSTGRES_DB") : "test";
+  private static final String STANDARD_POSTGRES_USERNAME =
+      !StringUtils.isNullOrEmpty(System.getenv("STANDARD_POSTGRES_USERNAME"))
+          ? System.getenv("STANDARD_POSTGRES_USERNAME") : "test";
+  private static final String STANDARD_POSTGRES_PASSWORD =
+      !StringUtils.isNullOrEmpty(System.getenv("STANDARD_POSTGRES_PASSWORD"))
+          ? System.getenv("STANDARD_POSTGRES_PASSWORD") : "test";
+
+  private static PostgreSQLContainer<?> postgresContainer;
+  private static GenericContainer<?> integrationTestContainer;
+  private static ToxiproxyContainer proxyContainer;
+  private static int postgresProxyPort;
+  private static Network network;
+  private static final ContainerHelper containerHelper = new ContainerHelper();
+
+  @BeforeAll
+  static void setUp() throws SQLException {
+    if (!org.postgresql.Driver.isRegistered()) {
+      org.postgresql.Driver.register();
+    }
+
+    if (!software.aws.rds.jdbc.proxydriver.Driver.isRegistered()) {
+      software.aws.rds.jdbc.proxydriver.Driver.register();
+    }
+
+    network = Network.newNetwork();
+
+    postgresContainer = containerHelper.createPostgresContainer(network, STANDARD_POSTGRES_CONTAINER_NAME,
+        STANDARD_POSTGRES_DB, STANDARD_POSTGRES_USERNAME, STANDARD_POSTGRES_PASSWORD);
+    postgresContainer.start();
+
+    proxyContainer =
+        containerHelper.createProxyContainer(network, STANDARD_POSTGRES_CONTAINER_NAME, PROXIED_DOMAIN_NAME_SUFFIX);
+    proxyContainer.start();
+    postgresProxyPort = containerHelper.createInstanceProxy(STANDARD_POSTGRES_CONTAINER_NAME, proxyContainer,
+        STANDARD_POSTGRES_PORT);
+
+    integrationTestContainer = createTestContainer();
+    integrationTestContainer.start();
+  }
+
+  @AfterAll
+  static void tearDown() {
+    proxyContainer.stop();
+    postgresContainer.stop();
+    integrationTestContainer.stop();
+  }
+
+  @Test
+  public void runTestInContainer()
+      throws UnsupportedOperationException, IOException, InterruptedException {
+
+    containerHelper.runTest(integrationTestContainer, "in-container-standard-postgres");
+  }
+
+  @Test
+  public void debugTestInContainer()
+      throws UnsupportedOperationException, IOException, InterruptedException {
+
+    containerHelper.debugTest(integrationTestContainer, "in-container-standard-postgres");
+  }
+
+  protected static GenericContainer<?> createTestContainer() {
+    return containerHelper.createTestContainer("aws/rds-test-container")
+        .withNetworkAliases(STANDARD_POSTGRES_TEST_HOST_NAME)
+        .withNetwork(network)
+        .withEnv("TEST_HOST", STANDARD_POSTGRES_CONTAINER_NAME)
+        .withEnv("TEST_PORT", String.valueOf(STANDARD_POSTGRES_PORT))
+        .withEnv("TEST_DB", STANDARD_POSTGRES_DB)
+        .withEnv("TEST_USERNAME", STANDARD_POSTGRES_USERNAME)
+        .withEnv("TEST_PASSWORD", STANDARD_POSTGRES_PASSWORD)
+        .withEnv("PROXY_PORT", Integer.toString(postgresProxyPort))
+        .withEnv("PROXIED_DOMAIN_NAME_SUFFIX", PROXIED_DOMAIN_NAME_SUFFIX)
+        .withEnv("TOXIPROXY_HOST", "toxiproxy-instance");
+  }
+}

driver-proxy/src/test/java/integration/host/StandardPostgresContainerTest.java

@@ -0,0 +1,312 @@
+/*
+ * AWS JDBC Proxy Driver
+ * Copyright Amazon.com Inc. or affiliates.
+ * See the LICENSE file in the project root for more information.
+ */
+
+package integration.util;
+
+import java.io.BufferedReader;
+import java.io.InputStreamReader;
+import java.net.URL;
+import java.net.UnknownHostException;
+import java.time.Duration;
+import java.util.Optional;
+import software.amazon.awssdk.auth.credentials.DefaultCredentialsProvider;
+import software.amazon.awssdk.core.waiters.WaiterResponse;
+import software.amazon.awssdk.regions.Region;
+import software.amazon.awssdk.services.ec2.Ec2Client;
+import software.amazon.awssdk.services.ec2.model.Ec2Exception;
+import software.amazon.awssdk.services.rds.RdsClient;
+import software.amazon.awssdk.services.rds.model.CreateDbClusterRequest;
+import software.amazon.awssdk.services.rds.model.CreateDbInstanceRequest;
+import software.amazon.awssdk.services.rds.model.DeleteDbInstanceRequest;
+import software.amazon.awssdk.services.rds.model.DescribeDbInstancesResponse;
+import software.amazon.awssdk.services.rds.model.Filter;
+import software.amazon.awssdk.services.rds.model.Tag;
+import software.amazon.awssdk.services.rds.waiters.RdsWaiter;
+import software.aws.rds.jdbc.proxydriver.util.StringUtils;
+
+/**
+ * Creates and destroys AWS RDS Clusters and Instances.
+ * To use this functionality the following environment variables must be defined:
+ *  - AWS_ACCESS_KEY_ID
+ *  - AWS_SECRET_ACCESS_KEY
+ */
+public class AuroraTestUtility {
+  // Default values
+  private String dbUsername = "my_test_username";
+  private String dbPassword = "my_test_password";
+  private String dbName = "test";
+  private String dbIdentifier = "test-identifier";
+  private String dbEngine = "aurora-postgresql";
+  private String dbInstanceClass = "db.r5.large";
+  private final Region dbRegion;
+  private final String dbSecGroup = "default";
+  private int numOfInstances = 5;
+
+  private final RdsClient rdsClient;
+  private final Ec2Client ec2Client;
+
+  private static final String DUPLICATE_IP_ERROR_CODE = "InvalidPermission.Duplicate";
+
+  /**
+   * Initializes an AmazonRDS & AmazonEC2 client. RDS client used to create/destroy clusters &
+   * instances. EC2 client used to add/remove IP from security group.
+   */
+  public AuroraTestUtility() {
+    this(Region.US_EAST_1, DefaultCredentialsProvider.create());
+  }
+
+  /**
+   * Initializes an AmazonRDS & AmazonEC2 client.
+   *
+   * @param region define AWS Regions, refer to
+   *     https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.RegionsAndAvailabilityZones.html
+   */
+  public AuroraTestUtility(Region region) {
+    this(region, DefaultCredentialsProvider.create());
+  }
+
+  /**
+   * Initializes an AmazonRDS & AmazonEC2 client.
+   *
+   * @param region define AWS Regions, refer to
+   *     https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.RegionsAndAvailabilityZones.html
+   */
+  public AuroraTestUtility(String region) {
+    this(getRegionInternal(region), DefaultCredentialsProvider.create());
+  }
+
+  /**
+   * Initializes an AmazonRDS & AmazonEC2 client.
+   *
+   * @param region define AWS Regions, refer to
+   *     https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.RegionsAndAvailabilityZones.html
+   * @param credentials Specific AWS credential provider
+   */
+  public AuroraTestUtility(Region region, DefaultCredentialsProvider credentials) {
+    dbRegion = region;
+
+    rdsClient = RdsClient.builder().region(dbRegion).credentialsProvider(credentials).build();
+
+    ec2Client = Ec2Client.builder().region(dbRegion).credentialsProvider(credentials).build();
+  }
+
+  public Region getRegion(String rdsRegion) {
+    return getRegionInternal(rdsRegion);
+  }
+
+  protected static Region getRegionInternal(String rdsRegion) {
+    Optional<Region> regionOptional =
+        Region.regions().stream().filter(r -> r.id().equalsIgnoreCase(rdsRegion)).findFirst();
+
+    if (regionOptional.isPresent()) {
+      return regionOptional.get();
+    }
+    throw new IllegalArgumentException(String.format("Unknown AWS region '%s'.", rdsRegion));
+  }
+
+  /**
+   * Creates RDS Cluster/Instances and waits until they are up, and proper IP whitelisting for
+   * databases.
+   *
+   * @param username Master username for access to database
+   * @param password Master password for access to database
+   * @param name Database name
+   * @param identifier Database cluster identifier
+   * @param engine Database engine to use, refer to
+   *     https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Welcome.html
+   * @param instanceClass instance class, refer to
+   *     https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/Concepts.DBInstanceClass.html
+   * @param instances number of instances to spin up
+   * @return An endpoint for one of the instances
+   * @throws InterruptedException when clusters have not started after 30 minutes
+   */
+  public String createCluster(
+      String username,
+      String password,
+      String name,
+      String identifier,
+      String engine,
+      String instanceClass,
+      int instances)
+      throws InterruptedException {
+    dbUsername = username;
+    dbPassword = password;
+    dbName = name;
+    dbIdentifier = identifier;
+    dbEngine = engine;
+    dbInstanceClass = instanceClass;
+    numOfInstances = instances;
+    return createCluster();
+  }
+
+  /**
+   * Creates RDS Cluster/Instances and waits until they are up, and proper IP whitelisting for
+   * databases.
+   *
+   * @param username Master username for access to database
+   * @param password Master password for access to database
+   * @param name Database name
+   * @param identifier Database identifier
+   * @return An endpoint for one of the instances
+   * @throws InterruptedException when clusters have not started after 30 minutes
+   */
+  public String createCluster(String username, String password, String name, String identifier)
+      throws InterruptedException {
+    dbUsername = username;
+    dbPassword = password;
+    dbName = name;
+    dbIdentifier = identifier;
+    return createCluster();
+  }
+
+  /**
+   * Creates RDS Cluster/Instances and waits until they are up, and proper IP whitelisting for
+   * databases.
+   *
+   * @return An endpoint for one of the instances
+   * @throws InterruptedException when clusters have not started after 30 minutes
+   */
+  public String createCluster() throws InterruptedException {
+    // Create Cluster
+    final Tag testRunnerTag = Tag.builder().key("env").value("test-runner").build();
+
+    final CreateDbClusterRequest dbClusterRequest =
+        CreateDbClusterRequest.builder()
+            .dbClusterIdentifier(dbIdentifier)
+            .databaseName(dbName)
+            .masterUsername(dbUsername)
+            .masterUserPassword(dbPassword)
+            .sourceRegion(dbRegion.id())
+            .enableIAMDatabaseAuthentication(true)
+            .engine(dbEngine)
+            .storageEncrypted(true)
+            .tags(testRunnerTag)
+            .build();
+
+    rdsClient.createDBCluster(dbClusterRequest);
+
+    // Create Instances
+    for (int i = 1; i <= numOfInstances; i++) {
+      rdsClient.createDBInstance(
+          CreateDbInstanceRequest.builder()
+              .dbClusterIdentifier(dbIdentifier)
+              .dbInstanceIdentifier(dbIdentifier + "-" + i)
+              .dbClusterIdentifier(dbIdentifier)
+              .dbInstanceClass(dbInstanceClass)
+              .engine(dbEngine)
+              .publiclyAccessible(true)
+              .tags(testRunnerTag)
+              .build());
+    }
+
+    // Wait for all instances to be up
+    final RdsWaiter waiter = rdsClient.waiter();
+    WaiterResponse<DescribeDbInstancesResponse> waiterResponse =
+        waiter.waitUntilDBInstanceAvailable(
+            (requestBuilder) ->
+                requestBuilder.filters(
+                    Filter.builder().name("db-cluster-id").values(dbIdentifier).build()),
+            (configurationBuilder) -> configurationBuilder.waitTimeout(Duration.ofMinutes(30)));
+
+    if (waiterResponse.matched().exception().isPresent()) {
+      deleteCluster();
+      throw new InterruptedException(
+          "Unable to start AWS RDS Cluster & Instances after waiting for 30 minutes");
+    }
+
+    final DescribeDbInstancesResponse dbInstancesResult =
+        rdsClient.describeDBInstances(
+            (builder) ->
+                builder.filters(
+                    Filter.builder().name("db-cluster-id").values(dbIdentifier).build()));
+    final String endpoint = dbInstancesResult.dbInstances().get(0).endpoint().address();
+    return endpoint.substring(endpoint.indexOf('.') + 1);
+  }
+
+  /**
+   * Gets public IP.
+   *
+   * @return public IP of user
+   * @throws UnknownHostException when checkip host isn't available
+   */
+  public String getPublicIPAddress() throws UnknownHostException {
+    String ip;
+    try {
+      URL ipChecker = new URL("http://checkip.amazonaws.com");
+      BufferedReader reader = new BufferedReader(new InputStreamReader(ipChecker.openStream()));
+      ip = reader.readLine();
+    } catch (Exception e) {
+      throw new UnknownHostException("Unable to get IP");
+    }
+    return ip;
+  }
+
+  /** Authorizes IP to EC2 Security groups for RDS access. */
+  public void ec2AuthorizeIP(String ipAddress) {
+    if (StringUtils.isNullOrEmpty(ipAddress)) {
+      return;
+    }
+    try {
+      ec2Client.authorizeSecurityGroupIngress(
+          (builder) ->
+              builder
+                  .groupName(dbSecGroup)
+                  .cidrIp(ipAddress + "/32")
+                  .ipProtocol("-1") // All protocols
+                  .fromPort(0) // For all ports
+                  .toPort(65535));
+    } catch (Ec2Exception exception) {
+      if (!DUPLICATE_IP_ERROR_CODE.equalsIgnoreCase(exception.awsErrorDetails().errorCode())) {
+        throw exception;
+      }
+    }
+  }
+
+  /** De-authorizes IP from EC2 Security groups. */
+  public void ec2DeauthorizesIP(String ipAddress) {
+    if (StringUtils.isNullOrEmpty(ipAddress)) {
+      return;
+    }
+    try {
+      ec2Client.revokeSecurityGroupIngress(
+          (builder) ->
+              builder
+                  .groupName(dbSecGroup)
+                  .cidrIp(ipAddress + "/32")
+                  .ipProtocol("-1") // All protocols
+                  .fromPort(0) // For all ports
+                  .toPort(65535));
+    } catch (Ec2Exception exception) {
+      // Ignore
+    }
+  }
+
+  /**
+   * Destroys all instances and clusters. Removes IP from EC2 whitelist.
+   *
+   * @param identifier database identifier to delete
+   */
+  public void deleteCluster(String identifier) {
+    dbIdentifier = identifier;
+    deleteCluster();
+  }
+
+  /** Destroys all instances and clusters. Removes IP from EC2 whitelist. */
+  public void deleteCluster() {
+    // Tear down instances
+    for (int i = 1; i <= numOfInstances; i++) {
+      rdsClient.deleteDBInstance(
+          DeleteDbInstanceRequest.builder()
+              .dbInstanceIdentifier(dbIdentifier + "-" + i)
+              .skipFinalSnapshot(true)
+              .build());
+    }
+
+    // Tear down cluster
+    rdsClient.deleteDBCluster(
+        (builder -> builder.skipFinalSnapshot(true).dbClusterIdentifier(dbIdentifier)));
+  }
+}

driver-proxy/src/test/java/integration/util/AuroraTestUtility.java

@@ -0,0 +1,53 @@
+/*
+ * AWS JDBC Proxy Driver
+ * Copyright Amazon.com Inc. or affiliates.
+ * See the LICENSE file in the project root for more information.
+ */
+
+package integration.util;
+
+import org.testcontainers.containers.output.BaseConsumer;
+import org.testcontainers.containers.output.OutputFrame;
+
+public class ConsoleConsumer
+    extends BaseConsumer<org.testcontainers.containers.output.Slf4jLogConsumer> {
+
+  private boolean separateOutputStreams;
+
+  public ConsoleConsumer() {
+    this(false);
+  }
+
+  public ConsoleConsumer(boolean separateOutputStreams) {
+    this.separateOutputStreams = separateOutputStreams;
+  }
+
+  public ConsoleConsumer withSeparateOutputStreams() {
+    this.separateOutputStreams = true;
+    return this;
+  }
+
+  @Override
+  public void accept(OutputFrame outputFrame) {
+    final OutputFrame.OutputType outputType = outputFrame.getType();
+
+    final String utf8String = outputFrame.getUtf8String();
+
+    switch (outputType) {
+      case END:
+        break;
+      case STDOUT:
+        System.out.print(utf8String);
+        break;
+      case STDERR:
+        if (separateOutputStreams) {
+          System.err.print(utf8String);
+        } else {
+          System.out.print(utf8String);
+        }
+        break;
+      default:
+        throw new IllegalArgumentException("Unexpected outputType " + outputType);
+    }
+  }
+}

driver-proxy/src/test/java/integration/util/ConsoleConsumer.java

@@ -39,10 +39,11 @@ private static Stream<Arguments> testGetHostsFromConnectionUrlArguments() {
         Arguments.of("jdbc//host:3303/db?param=1", Collections.singletonList(new HostSpec("host", 3303))),
         Arguments.of("protocol//host2:3303", Collections.singletonList(new HostSpec("host2", 3303))),
         Arguments.of("foo//host:3303/?#", Collections.singletonList(new HostSpec("host", 3303))),
-        Arguments.of("jdbc:mysql:replication://host:badInt?param=", Collections.singletonList(new HostSpec("host"))),
-        Arguments.of(
-            "jdbc:driver:test://source,replica1:3303,host/test",
-            Arrays.asList(new HostSpec("source"), new HostSpec("replica1", 3303), new HostSpec("host")))
+        Arguments.of("jdbc:mysql:replication://host:badInt?param=",
+            Collections.singletonList(new HostSpec("host"))),
+        Arguments.of("jdbc:driver:test://source,replica1:3303,host/test",
+            Arrays.asList(new HostSpec("source"), new HostSpec("replica1", 3303),
+                new HostSpec("host")))
     );
   }
 }

driver-proxy/src/test/java/integration/util/ContainerHelper.java

@@ -5,3 +5,6 @@ java.util.logging.ConsoleHandler.level=ALL
 software.aws.rds.jdbc.proxydriver.Driver.level=ALL
 software.aws.rds.jdbc.proxydriver.plugin.ExecutionTimeConnectionPlugin.level=ALL
 software.aws.rds.jdbc.proxydriver.plugin.LogQueryConnectionPlugin.level=ALL
+
+org.testcontainers.level=INFO
+com.github.dockerjava.level=WARNING