chore(docs): Set up integ test account with auth stack

Author: clareliguori

e2e_tests/setup/setup.md

@@ -1,5 +1,7 @@
 To set up an AWS account for running integration tests on GitHub:
 
+1. Deploy least-privilege IAM roles:
+
 ```bash
 aws cloudformation deploy \
     --template-file integ-test-authentication.yaml \
@@ -14,3 +16,33 @@ cdk bootstrap \
     aws://$AWS_ACCOUNT_ID/us-east-2 \
     --cloudformation-execution-policies "arn:aws:iam::$AWS_ACCOUNT_ID:policy/mcp-lambda-integ-test-cdk-cfn-execution"
 ```
+
+2. Delegate a sub-domain for the auth stack:
+
+https://docs.aws.amazon.com/Route53/latest/DeveloperGuide/CreatingNewSubdomain.html
+
+3. Deploy the auth stack:
+
+```bash
+cd ../examples/servers/auth/
+
+sed -i 's/liguori.people.aws.dev/mcp-lambda-integ-tests.liguori.people.aws.dev/g' lib/mcp-auth.ts
+
+npm install
+
+npm run build
+
+AWS_ACCOUNT_ID=$(aws sts get-caller-identity --query "Account" --output text)
+
+aws iam attach-role-policy \
+    --role-name cdk-hnb659fds-cfn-exec-role-$AWS_ACCOUNT_ID-us-east-2 \
+    --policy-arn arn:aws:iam::aws:policy/AdministratorAccess
+
+cdk deploy --app 'node lib/mcp-auth.js'
+
+aws iam detach-role-policy \
+    --role-name cdk-hnb659fds-cfn-exec-role-$AWS_ACCOUNT_ID-us-east-2 \
+    --policy-arn arn:aws:iam::aws:policy/AdministratorAccess
+
+./sync-cognito-user-password.sh
+```

examples/servers/auth/sync-cognito-user-password.sh

@@ -137,7 +137,7 @@ main() {
 
     print_info "Password sync completed successfully!"
     print_info "User '$USERNAME' can now sign in with the credentials from Secrets Manager."
-    print_warning "To retrieve credentials: aws secretsmanager get-secret-value --secret-id '$SECRET_ARN' --query SecretString --output text"
+    print_info "To retrieve credentials: aws secretsmanager get-secret-value --secret-id '$SECRET_ARN' --query SecretString --output text"
 }
 
 # Run main function