mapping aws_s3 (#254)

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/s3_bucket_analytics_configuration
https://github.com/aws/aws-sdk-go/blob/main/models/apis/s3/2006-03-01/api-2.json

Author: PatMyron

docs/rules/README.md

@@ -902,12 +902,22 @@ These rules enforce best practices and naming conventions:
 |aws_route53_zone_invalid_comment|✔|
 |aws_route53_zone_invalid_delegation_set_id|✔|
 |aws_route53_zone_invalid_name|✔|
+|aws_s3_bucket_intelligent_tiering_configuration_invalid_status|✔|
 |aws_s3_bucket_invalid_acceleration_status|✔|
 |aws_s3_bucket_invalid_request_payer|✔|
 |aws_s3_bucket_inventory_invalid_included_object_versions|✔|
 |aws_s3_bucket_object_invalid_acl|✔|
 |aws_s3_bucket_object_invalid_server_side_encryption|✔|
 |aws_s3_bucket_object_invalid_storage_class|✔|
+|aws_s3_object_copy_invalid_acl|✔|
+|aws_s3_object_copy_invalid_metadata_directive|✔|
+|aws_s3_object_copy_invalid_object_lock_legal_hold_status|✔|
+|aws_s3_object_copy_invalid_object_lock_mode|✔|
+|aws_s3_object_copy_invalid_request_payer|✔|
+|aws_s3_object_copy_invalid_server_side_encryption|✔|
+|aws_s3_object_copy_invalid_source|✔|
+|aws_s3_object_copy_invalid_storage_class|✔|
+|aws_s3_object_copy_invalid_tagging_directive|✔|
 |aws_s3control_access_point_policy_invalid_access_point_arn|✔|
 |aws_s3control_bucket_invalid_bucket|✔|
 |aws_s3control_bucket_invalid_outpost_id|✔|

rules/models/aws_s3_bucket_intelligent_tiering_configuration_invalid_status.go

@@ -0,0 +1,77 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsS3BucketIntelligentTieringConfigurationInvalidStatusRule checks the pattern is valid
+type AwsS3BucketIntelligentTieringConfigurationInvalidStatusRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsS3BucketIntelligentTieringConfigurationInvalidStatusRule returns new rule with default attributes
+func NewAwsS3BucketIntelligentTieringConfigurationInvalidStatusRule() *AwsS3BucketIntelligentTieringConfigurationInvalidStatusRule {
+	return &AwsS3BucketIntelligentTieringConfigurationInvalidStatusRule{
+		resourceType:  "aws_s3_bucket_intelligent_tiering_configuration",
+		attributeName: "status",
+		enum: []string{
+			"Enabled",
+			"Disabled",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsS3BucketIntelligentTieringConfigurationInvalidStatusRule) Name() string {
+	return "aws_s3_bucket_intelligent_tiering_configuration_invalid_status"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsS3BucketIntelligentTieringConfigurationInvalidStatusRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsS3BucketIntelligentTieringConfigurationInvalidStatusRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsS3BucketIntelligentTieringConfigurationInvalidStatusRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsS3BucketIntelligentTieringConfigurationInvalidStatusRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as status`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/aws_s3_object_copy_invalid_acl.go

@@ -0,0 +1,82 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsS3ObjectCopyInvalidACLRule checks the pattern is valid
+type AwsS3ObjectCopyInvalidACLRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsS3ObjectCopyInvalidACLRule returns new rule with default attributes
+func NewAwsS3ObjectCopyInvalidACLRule() *AwsS3ObjectCopyInvalidACLRule {
+	return &AwsS3ObjectCopyInvalidACLRule{
+		resourceType:  "aws_s3_object_copy",
+		attributeName: "acl",
+		enum: []string{
+			"private",
+			"public-read",
+			"public-read-write",
+			"authenticated-read",
+			"aws-exec-read",
+			"bucket-owner-read",
+			"bucket-owner-full-control",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsS3ObjectCopyInvalidACLRule) Name() string {
+	return "aws_s3_object_copy_invalid_acl"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsS3ObjectCopyInvalidACLRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsS3ObjectCopyInvalidACLRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsS3ObjectCopyInvalidACLRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsS3ObjectCopyInvalidACLRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as acl`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/aws_s3_object_copy_invalid_metadata_directive.go

@@ -0,0 +1,77 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsS3ObjectCopyInvalidMetadataDirectiveRule checks the pattern is valid
+type AwsS3ObjectCopyInvalidMetadataDirectiveRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsS3ObjectCopyInvalidMetadataDirectiveRule returns new rule with default attributes
+func NewAwsS3ObjectCopyInvalidMetadataDirectiveRule() *AwsS3ObjectCopyInvalidMetadataDirectiveRule {
+	return &AwsS3ObjectCopyInvalidMetadataDirectiveRule{
+		resourceType:  "aws_s3_object_copy",
+		attributeName: "metadata_directive",
+		enum: []string{
+			"COPY",
+			"REPLACE",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsS3ObjectCopyInvalidMetadataDirectiveRule) Name() string {
+	return "aws_s3_object_copy_invalid_metadata_directive"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsS3ObjectCopyInvalidMetadataDirectiveRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsS3ObjectCopyInvalidMetadataDirectiveRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsS3ObjectCopyInvalidMetadataDirectiveRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsS3ObjectCopyInvalidMetadataDirectiveRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as metadata_directive`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/aws_s3_object_copy_invalid_object_lock_legal_hold_status.go

@@ -0,0 +1,77 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule checks the pattern is valid
+type AwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule returns new rule with default attributes
+func NewAwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule() *AwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule {
+	return &AwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule{
+		resourceType:  "aws_s3_object_copy",
+		attributeName: "object_lock_legal_hold_status",
+		enum: []string{
+			"ON",
+			"OFF",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule) Name() string {
+	return "aws_s3_object_copy_invalid_object_lock_legal_hold_status"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsS3ObjectCopyInvalidObjectLockLegalHoldStatusRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as object_lock_legal_hold_status`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}