feat: add gateway import command with executionRoleArn support (#855)

* feat: add gateway import command and unhide import from TUI

Add `agentcore import gateway --arn <arn>` to import existing AWS gateways
(with all targets) into a local CLI project. Also remove import from the
HIDDEN_FROM_TUI list so it appears in the interactive TUI.

- Add AWS SDK wrappers for gateway/target list/get APIs
- Add import-gateway.ts with multi-resource CFN import support
- Add resourceName schema field to preserve actual AWS gateway name during import
- Register gateway in TUI ImportSelectScreen and ImportProgressScreen
- Extend ARN pattern, deployed state, and CFN constants for gateway type

* fix: expand ARN input to show full resource ARN and add gateway support

The ARN text input was truncating long ARNs. Use the expandable prop to
wrap text across multiple lines. Also add gateway to the ARN validation
pattern and resource type labels.

* refactor: remove --name and --yes flags from import gateway command

Remove --name (confusing local rename) and --yes (no prompts to confirm)
from the gateway import command. The gateway's AWS name is used directly.

* feat: add e2e tests for import gateway command

Add end-to-end tests that create a real AWS gateway with an MCP server
target, import it via `agentcore import gateway --arn`, and verify the
resulting agentcore.json fields and deployed-state.json entries.

New files:
- e2e-tests/fixtures/import/setup_gateway.py: creates gateway + target
- e2e-tests/fixtures/import/common.py: gateway wait helpers
- e2e-tests/fixtures/import/cleanup_resources.py: gateway cleanup

Constraint: Tests follow the existing import-resources.test.ts pattern
Confidence: high
Scope-risk: narrow

* chore: gitignore bugbash-resources.json and .omc/

* feat: preserve gateway executionRoleArn during import

Extract roleArn from the AWS GetGateway response and map it to
executionRoleArn in agentcore.json. On deploy, CDK uses
iam.Role.fromRoleArn() instead of creating a new role, keeping the
original permissions intact.

Constraint: imported roles use mutable: false so CDK cannot modify them
Rejected: always create new role | breaks permissions on re-import
Confidence: high
Scope-risk: narrow

* refactor: export internal gateway import functions for unit testing

Add @internal exports for toGatewayTargetSpec, resolveOutboundAuth,
toGatewaySpec, and buildCredentialArnMap to enable direct unit testing
of the pure mapping functions in import-gateway.ts.

Confidence: high
Scope-risk: narrow

* test: add unit tests for mcpServer target mapping and credential resolution

Bugbash coverage for toGatewayTargetSpec and resolveOutboundAuth:
- mcpServer with no auth, OAuth, and API_KEY credentials
- Credential resolution warnings when ARNs not in project
- Targets with no MCP configuration
- OAuth scopes pass-through and empty scopes omission

8 tests, all passing.

Confidence: high
Scope-risk: narrow

* test: add unit tests for apiGateway, openApiSchema, smithyModel, lambda target mapping

Bugbash coverage for toGatewayTargetSpec non-mcpServer target types:
- apiGateway: restApiId, stage, toolFilters, toolOverrides mapping
- openApiSchema: S3 URI mapping, missing URI warning
- smithyModel: S3 URI mapping, missing URI warning
- lambda: S3 tool schema to lambdaFunctionArn mapping, missing ARN,
  inline-only schema warning, progress messages
- Unrecognized target type warning

13 tests, all passing.

Confidence: high
Scope-risk: narrow

* test: add unit tests for toGatewaySpec gateway-level field mapping

Bugbash coverage for toGatewaySpec AWS-to-CLI schema mapping:
- Authorizer types: NONE, AWS_IAM, CUSTOM_JWT with all JWT fields
- CUSTOM_JWT customClaims with full claim structure
- Semantic search: SEMANTIC/KEYWORD/missing protocolConfiguration
- Exception level: DEBUG/undefined/other values
- Policy engine: ARN name extraction, mode preservation
- Optional fields: resourceName, description, tags, executionRoleArn
- Edge cases: empty tags object omitted, empty JWT arrays omitted

23 tests, all passing.

Confidence: high
Scope-risk: narrow

* test: add unit tests for handleImportGateway full flow validation

Bugbash coverage for the main gateway import flow:
- Happy path: successful import with --arn, config written, result verified
- Rollback: pipeline failure restores original config, noResources error
- Duplicate detection: name collision, resource ID already tracked
- Name validation: invalid name regex, --name override preserves resourceName
- Auto-select: single gateway auto-selected, multiple gateways error, no gateways error
- Target mapping: skipped targets warning, non-READY gateway continues

12 tests, all passing.

Confidence: high
Scope-risk: narrow

* test: add unit tests for buildCredentialArnMap and CFN template matching

Bugbash coverage for credential resolution and CFN resource matching:
- buildCredentialArnMap: reads ARN-to-name map from deployed state,
  handles multiple credentials, empty/missing state, thrown errors
- findLogicalIdByProperty: gateway by Name property, resourceName
  fallback, target by Name, Fn::Join/Fn::Sub intrinsic function
  patterns, regex boundary check prevents false substring matches
- findLogicalIdsByType: single gateway fallback, single target
  fallback, multiple targets prevent fallback

14 tests, all passing.

Confidence: high
Scope-risk: narrow

* fix: exclude already-deployed logical IDs when building import resource list

When a project already contains an imported resource (gateway + target, agent,
memory, etc.), a subsequent import of a different resource that shares a Name
with the deployed one caused buildResourcesToImport to resolve the OLD
logical ID via findLogicalIdByProperty. The resulting CFN change set then
failed with "Resources [...] passed in ResourceToImport are already in a
stack and cannot be imported."

Thread the deployed template into every buildResourcesToImport callback and
skip logical IDs already present in the stack during both the name lookup
and the single-candidate fallback.

Constraint: GatewayTarget has no structural parent ref in Properties — only the physical-ID tuple (GatewayIdentifier, TargetId), so scoping the synth search by parent gateway is not available.
Rejected: Parse Fn::Ref/Fn::GetAtt from GatewayIdentifier | brittle intrinsic traversal
Rejected: Match by physical TargetId | synth template has no physical ID for new resources
Rejected: Strip deployed resources from synth before lookup | breaks buildImportTemplate
Confidence: high
Scope-risk: narrow
Directive: new callbacks into executeCdkImportPipeline must accept and honor the deployedTemplate arg
Not-tested: multi-region / cross-stack-identifier collisions

* fix(import): translate AccessDenied on GetGateway to a friendly not-found error

When importing a gateway by a well-formed but nonexistent ARN, the
BedrockAgentCore control plane returns AccessDenied (not
ResourceNotFound) for bedrock-agentcore:GetGateway. The CLI surfaced the
raw SDK error — which is misleading when the caller has full Admin
access and the gateway simply doesn't exist.

Catch AccessDenied from getGatewayDetail and return a targeted failure
with guidance: the gateway is likely nonexistent / the ARN is malformed
/ the caller lacks GetGateway. Point the user at list-gateways so they
can confirm.

Constraint: AWS returns AccessDenied instead of ResourceNotFound for
nonexistent gateway IDs; we cannot distinguish the two server-side
Rejected: Client-side ARN existence probe via ListGateways | extra
latency on the happy path and still racy
Confidence: high
Scope-risk: narrow
Directive: Do not swallow other error classes here — only AccessDenied
is reinterpreted

* fix(import): detect AWS_REGION / ARN region mismatch before import

Previously when a user ran import with AWS_REGION=us-west-2 against a
us-east-1 ARN, and no deployment targets existed yet, the CLI silently
synthesized a default target from the ARN's region and proceeded — so
the user would unknowingly import from a different region than they
intended, leaving agentcore.json pointed at the wrong region and
causing cross-region CFN errors on later deploy.

Short-circuit resolveImportTarget when AWS_REGION (or
AWS_DEFAULT_REGION) is set and disagrees with the ARN's region, and
ask the user to reconcile explicitly.

Constraint: Must fail fast before any side effects (writing
aws-targets.json, calling GetGateway)
Rejected: Warn-and-continue | a silent cross-region import is exactly
the failure mode we're preventing
Confidence: high
Scope-risk: narrow
Directive: Only throw when both env region AND ARN region are present —
do not require AWS_REGION to be set

* fix(import): allow re-import of resource after remove without CDK pipeline

After `agentcore remove gateway`, the gateway entry remains in
deployed-state.json (correctly, since CFN still manages it) but is
removed from agentcore.json. A subsequent `agentcore import gateway`
would reject with "already imported" because the dedup check only
looked at deployed-state. Now, when a resource exists in deployed-state
but not in agentcore.json, the import skips the CDK pipeline and just
re-adds the resource to agentcore.json.

Applies to both the gateway-specific and generic import orchestrators.

* style: fix prettier formatting for import-utils and ArnInputScreen

* fix(import): address PR review blockers B4, B6, B7, H2, H5, H7, H8

- B4: Hard-fail when credential provider ARN is not found in deployed
  state instead of silently dropping outboundAuth
- B7: Preserve outboundAuth on lambda→lambdaFunctionArn mapping and
  allow OAUTH/NONE auth types for lambdaFunctionArn targets
- H2: Remove re-import fast path; run full CDK pipeline so out-of-band
  targets are properly imported. Treat noResources as success for
  re-imports since all resources are already in the CFN stack
- H5: Replace hardcoded arn:aws: with partition-agnostic arn:[^:]+: in
  ARN validation and region extraction regexes
- H7/H8: Add regex validation and max length for executionRoleArn,
  use GatewayNameSchema for resourceName, add refine ensuring both
  fields are set together or both omitted

* fix(import): remove credential ARN from error messages to resolve CodeQL alert

CodeQL flagged clear-text logging of credential provider ARNs. The
target name provides sufficient context for the user to identify
the issue.

Author: jesseturner21

.gitignore

@@ -69,6 +69,11 @@ ProtocolTesting/
 .cdk-constructs-clone/
 .omc/
 
+# E2E test artifacts
+e2e-tests/fixtures/import/bugbash-resources.json
+
+# oh-my-claudecode
+.omc/
 # Browser tests
 browser-tests/.browser-test-env
 browser-tests/test-results/

e2e-tests/fixtures/import/cleanup_resources.py

@@ -51,13 +51,19 @@ def main():
         rid = val.get("id")
         if not rid:
             continue
+        # Gateway targets are deleted automatically when the parent gateway is deleted
+        if "gateway" in key and "target" in key:
+            print(f"Skipping {key} (deleted with parent gateway)")
+            continue
         try:
             if "runtime" in key:
                 client.delete_agent_runtime(agentRuntimeId=rid)
             elif "memory" in key:
                 client.delete_memory(memoryId=rid)
             elif "evaluator" in key:
                 client.delete_evaluator(evaluatorId=rid)
+            elif "gateway" in key:
+                client.delete_gateway(gatewayIdentifier=rid)
             print(f"Deleted {key}: {rid}")
         except Exception as e:
             print(f"Could not delete {key} ({rid}): {e}")

e2e-tests/fixtures/import/common.py

@@ -256,3 +256,48 @@ def tag_resource(client, arn, tags):
     """Tag a resource via the control plane API."""
     print(f"Tagging resource with {tags}...")
     client.tag_resource(resourceArn=arn, tags=tags)
+
+
+def wait_for_gateway(client, gateway_id, timeout=120):
+    """Wait for a gateway to reach READY status."""
+    print(f"Waiting for gateway {gateway_id} to become READY...")
+    start = time.time()
+    while time.time() - start < timeout:
+        resp = client.get_gateway(gatewayIdentifier=gateway_id)
+        status = resp.get("status", "UNKNOWN")
+        if status == "READY":
+            print(f"Gateway {gateway_id} is READY")
+            return True
+        if status in ("CREATE_FAILED", "FAILED"):
+            reason = resp.get("statusReasons", [{}])
+            print(f"ERROR: Gateway {gateway_id} status: {status} — {reason}")
+            return False
+        elapsed = int(time.time() - start)
+        print(f"  Status: {status} ({elapsed}s elapsed)")
+        time.sleep(5)
+    print(f"WARNING: Gateway did not reach READY after {timeout}s")
+    return False
+
+
+def wait_for_gateway_target(client, gateway_id, target_id, timeout=120):
+    """Wait for a gateway target to reach READY status."""
+    print(f"Waiting for target {target_id} to become READY...")
+    start = time.time()
+    while time.time() - start < timeout:
+        resp = client.get_gateway_target(
+            gatewayIdentifier=gateway_id,
+            targetId=target_id,
+        )
+        status = resp.get("status", "UNKNOWN")
+        if status == "READY":
+            print(f"Target {target_id} is READY")
+            return True
+        if status in ("CREATE_FAILED", "FAILED"):
+            reason = resp.get("statusReasons", [{}])
+            print(f"ERROR: Target {target_id} status: {status} — {reason}")
+            return False
+        elapsed = int(time.time() - start)
+        print(f"  Status: {status} ({elapsed}s elapsed)")
+        time.sleep(5)
+    print(f"WARNING: Target did not reach READY after {timeout}s")
+    return False

e2e-tests/fixtures/import/setup_gateway.py

@@ -0,0 +1,88 @@
+#!/usr/bin/env python3
+"""Setup: Gateway with MCP server target + tags.
+
+Tests: gateway import, target mapping, authorizerType, enableSemanticSearch,
+       exceptionLevel, tags, deployed state nesting under mcp.gateways.
+
+Creates:
+  1. A gateway with NONE authorizer + semantic search enabled
+  2. An MCP Server target pointing to a public test endpoint
+"""
+import sys
+import os
+sys.path.insert(0, os.path.dirname(os.path.abspath(__file__)))
+
+import time
+from common import (
+    REGION, get_control_client, ensure_role, save_resource,
+    tag_resource, wait_for_gateway, wait_for_gateway_target,
+)
+
+
+def main():
+    role_arn = ensure_role()
+    client = get_control_client()
+    ts = int(time.time())
+    gateway_name = f"bugbashGw{ts}"
+
+    # ------------------------------------------------------------------
+    # 1. Create gateway
+    # ------------------------------------------------------------------
+    print(f"Creating gateway: {gateway_name}")
+    resp = client.create_gateway(
+        name=gateway_name,
+        description="Bugbash gateway for import testing",
+        roleArn=role_arn,
+        protocolType="MCP",
+        protocolConfiguration={
+            "mcp": {
+                "supportedVersions": ["2025-03-26"],
+                "searchType": "SEMANTIC",
+            },
+        },
+        authorizerType="NONE",
+        exceptionLevel="DEBUG",
+    )
+
+    gateway_id = resp["gatewayId"]
+    gateway_arn = resp["gatewayArn"]
+    print(f"Gateway ID: {gateway_id}")
+    print(f"Gateway ARN: {gateway_arn}")
+
+    tag_resource(client, gateway_arn, {
+        "env": "bugbash",
+        "team": "agentcore-cli",
+    })
+
+    save_resource("gateway", gateway_arn, gateway_id)
+
+    if not wait_for_gateway(client, gateway_id):
+        print("Gateway creation failed. Aborting target creation.")
+        sys.exit(1)
+
+    # ------------------------------------------------------------------
+    # 2. Create MCP Server target
+    # ------------------------------------------------------------------
+    target_name = "mcpTarget"
+    print(f"\nCreating MCP Server target: {target_name}")
+    target_resp = client.create_gateway_target(
+        gatewayIdentifier=gateway_id,
+        name=target_name,
+        targetConfiguration={
+            "mcp": {
+                "mcpServer": {
+                    "endpoint": "https://mcp.exa.ai/mcp",
+                },
+            },
+        },
+    )
+
+    target_id = target_resp["targetId"]
+    print(f"Target ID: {target_id}")
+
+    save_resource("gateway-target-mcp", gateway_arn, target_id)
+    wait_for_gateway_target(client, gateway_id, target_id)
+
+
+if __name__ == "__main__":
+    main()

e2e-tests/import-resources.test.ts

@@ -30,7 +30,7 @@ const hasPython =
   })();
 const canRun = prereqs.npm && prereqs.git && prereqs.uv && hasAws && hasPython;
 
-describe.sequential('e2e: import runtime/memory/evaluator', () => {
+describe.sequential('e2e: import runtime/memory/evaluator/gateway', () => {
   const region = process.env.AWS_REGION ?? 'us-east-1';
   const fixtureDir = join(__dirname, 'fixtures', 'import');
   const appDir = join(fixtureDir, 'app');
@@ -40,6 +40,7 @@ describe.sequential('e2e: import runtime/memory/evaluator', () => {
   let runtimeArn: string;
   let memoryArn: string;
   let evaluatorArn: string;
+  let gatewayArn: string;
   let projectPath: string;
   let testDir: string;
 
@@ -50,7 +51,7 @@ describe.sequential('e2e: import runtime/memory/evaluator', () => {
     //    Each script creates a resource and saves its ARN/ID to bugbash-resources.json.
     //    Scripts run sequentially because save_resource() does a read-modify-write
     //    on a shared bugbash-resources.json file — parallel runs would race.
-    for (const script of ['setup_runtime_basic.py', 'setup_memory_full.py', 'setup_evaluator.py']) {
+    for (const script of ['setup_runtime_basic.py', 'setup_memory_full.py', 'setup_evaluator.py', 'setup_gateway.py']) {
       const result = await spawnAndCollect('uv', ['run', '--with', 'boto3', 'python3', script], fixtureDir, {
         AWS_REGION: region,
         DEFAULT_EVALUATOR_MODEL,
@@ -68,6 +69,7 @@ describe.sequential('e2e: import runtime/memory/evaluator', () => {
     runtimeArn = resources['runtime-basic']!.arn;
     memoryArn = resources['memory-full']!.arn;
     evaluatorArn = resources['evaluator-llm']!.arn;
+    gatewayArn = resources.gateway!.arn;
 
     // 3. Create a destination CLI project (no agent — we'll import one)
     testDir = join(tmpdir(), `agentcore-e2e-import-${randomUUID()}`);
@@ -163,6 +165,22 @@ describe.sequential('e2e: import runtime/memory/evaluator', () => {
     600_000
   );
 
+  it.skipIf(!canRun)(
+    'imports a gateway by ARN',
+    async () => {
+      const result = await run(['import', 'gateway', '--arn', gatewayArn]);
+
+      if (result.exitCode !== 0) {
+        console.log('Import gateway stdout:', result.stdout);
+        console.log('Import gateway stderr:', result.stderr);
+      }
+
+      expect(result.exitCode, `Import gateway failed: ${result.stderr}`).toBe(0);
+      expect(stripAnsi(result.stdout).toLowerCase()).toContain('imported successfully');
+    },
+    600_000
+  );
+
   // ── Verification tests ────────────────────────────────────────────
 
   it.skipIf(!canRun)(
@@ -187,6 +205,73 @@ describe.sequential('e2e: import runtime/memory/evaluator', () => {
 
       const evaluator = json.resources.find(r => r.resourceType === 'evaluator');
       expect(evaluator, 'Imported evaluator should appear in status').toBeDefined();
+
+      const gateway = json.resources.find(r => r.resourceType === 'gateway');
+      expect(gateway, 'Imported gateway should appear in status').toBeDefined();
+    },
+    120_000
+  );
+
+  it.skipIf(!canRun)(
+    'agentcore.json has correct gateway fields',
+    async () => {
+      const configPath = join(projectPath, 'agentcore', 'agentcore.json');
+      const config = JSON.parse(await readFile(configPath, 'utf-8')) as {
+        agentCoreGateways: {
+          name: string;
+          resourceName?: string;
+          description?: string;
+          authorizerType: string;
+          enableSemanticSearch: boolean;
+          exceptionLevel: string;
+          executionRoleArn?: string;
+          tags?: Record<string, string>;
+          targets: { name: string; targetType: string; endpoint?: string }[];
+        }[];
+      };
+
+      expect(config.agentCoreGateways.length, 'Should have one gateway').toBe(1);
+      const gw = config.agentCoreGateways[0]!;
+
+      expect(gw.name, 'Gateway name should be set').toBeTruthy();
+      expect(gw.resourceName, 'resourceName should preserve AWS name').toBeTruthy();
+      expect(gw.description).toBe('Bugbash gateway for import testing');
+      expect(gw.authorizerType).toBe('NONE');
+      expect(gw.enableSemanticSearch).toBe(true);
+      expect(gw.exceptionLevel).toBe('DEBUG');
+      expect(gw.tags).toEqual({ env: 'bugbash', team: 'agentcore-cli' });
+
+      expect(gw.executionRoleArn, 'executionRoleArn should be preserved from AWS').toBeTruthy();
+      expect(gw.executionRoleArn).toContain('bugbash-agentcore-role');
+
+      expect(gw.targets.length, 'Should have one target').toBe(1);
+      expect(gw.targets[0]!.name).toBe('mcpTarget');
+      expect(gw.targets[0]!.targetType).toBe('mcpServer');
+      expect(gw.targets[0]!.endpoint).toBe('https://mcp.exa.ai/mcp');
+    },
+    120_000
+  );
+
+  it.skipIf(!canRun)(
+    'deployed-state.json has gateway entry',
+    async () => {
+      const statePath = join(projectPath, 'agentcore', '.cli', 'deployed-state.json');
+      const state = JSON.parse(await readFile(statePath, 'utf-8')) as Record<string, unknown>;
+
+      // Gateway state is stored under targets.<targetName>.resources.mcp.gateways
+      const targets = state.targets as Record<string, { resources?: { mcp?: { gateways?: Record<string, unknown> } } }>;
+      const targetEntries = Object.values(targets);
+      expect(targetEntries.length).toBeGreaterThan(0);
+
+      const firstTarget = targetEntries[0]!;
+      const gateways = firstTarget.resources?.mcp?.gateways;
+      expect(gateways, 'deployed-state should have mcp.gateways entry').toBeDefined();
+
+      const gatewayEntries = Object.values(gateways!);
+      expect(gatewayEntries.length, 'Should have one gateway in deployed state').toBe(1);
+
+      const gwState = gatewayEntries[0] as { gatewayId?: string; gatewayArn?: string };
+      expect(gwState.gatewayId, 'Gateway ID should be recorded').toBeTruthy();
     },
     120_000
   );