mapping aws_cloudwatch_event (#253)

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/cloudwatch_event_api_destination
https://github.com/aws/aws-sdk-go/blob/main/models/apis/events/2015-10-07/api-2.json

Author: PatMyron

docs/rules/README.md

@@ -287,6 +287,20 @@ These rules enforce best practices and naming conventions:
 |aws_cloudhsm_v2_hsm_invalid_cluster_id|✔|
 |aws_cloudhsm_v2_hsm_invalid_ip_address|✔|
 |aws_cloudhsm_v2_hsm_invalid_subnet_id|✔|
+|aws_cloudwatch_event_api_destination_invalid_connection_arn|✔|
+|aws_cloudwatch_event_api_destination_invalid_description|✔|
+|aws_cloudwatch_event_api_destination_invalid_http_method|✔|
+|aws_cloudwatch_event_api_destination_invalid_invocation_endpoint|✔|
+|aws_cloudwatch_event_api_destination_invalid_name|✔|
+|aws_cloudwatch_event_archive_invalid_description|✔|
+|aws_cloudwatch_event_archive_invalid_event_source_arn|✔|
+|aws_cloudwatch_event_archive_invalid_name|✔|
+|aws_cloudwatch_event_bus_invalid_event_source_name|✔|
+|aws_cloudwatch_event_bus_invalid_name|✔|
+|aws_cloudwatch_event_bus_policy_invalid_event_bus_name|✔|
+|aws_cloudwatch_event_connection_invalid_authorization_type|✔|
+|aws_cloudwatch_event_connection_invalid_description|✔|
+|aws_cloudwatch_event_connection_invalid_name|✔|
 |aws_cloudwatch_event_permission_invalid_action|✔|
 |aws_cloudwatch_event_permission_invalid_principal|✔|
 |aws_cloudwatch_event_permission_invalid_statement_id|✔|

rules/models/aws_cloudwatch_event_api_destination_invalid_connection_arn.go

@@ -0,0 +1,87 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsCloudwatchEventAPIDestinationInvalidConnectionArnRule checks the pattern is valid
+type AwsCloudwatchEventAPIDestinationInvalidConnectionArnRule struct {
+	resourceType  string
+	attributeName string
+	max           int
+	min           int
+	pattern       *regexp.Regexp
+}
+
+// NewAwsCloudwatchEventAPIDestinationInvalidConnectionArnRule returns new rule with default attributes
+func NewAwsCloudwatchEventAPIDestinationInvalidConnectionArnRule() *AwsCloudwatchEventAPIDestinationInvalidConnectionArnRule {
+	return &AwsCloudwatchEventAPIDestinationInvalidConnectionArnRule{
+		resourceType:  "aws_cloudwatch_event_api_destination",
+		attributeName: "connection_arn",
+		max:           1600,
+		min:           1,
+		pattern:       regexp.MustCompile(`^arn:aws([a-z]|\-)*:events:([a-z]|\d|\-)*:([0-9]{12})?:connection\/[\.\-_A-Za-z0-9]+\/[\-A-Za-z0-9]+$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsCloudwatchEventAPIDestinationInvalidConnectionArnRule) Name() string {
+	return "aws_cloudwatch_event_api_destination_invalid_connection_arn"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsCloudwatchEventAPIDestinationInvalidConnectionArnRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsCloudwatchEventAPIDestinationInvalidConnectionArnRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsCloudwatchEventAPIDestinationInvalidConnectionArnRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsCloudwatchEventAPIDestinationInvalidConnectionArnRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) > r.max {
+				runner.EmitIssueOnExpr(
+					r,
+					"connection_arn must be 1600 characters or less",
+					attribute.Expr,
+				)
+			}
+			if len(val) < r.min {
+				runner.EmitIssueOnExpr(
+					r,
+					"connection_arn must be 1 characters or higher",
+					attribute.Expr,
+				)
+			}
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^arn:aws([a-z]|\-)*:events:([a-z]|\d|\-)*:([0-9]{12})?:connection\/[\.\-_A-Za-z0-9]+\/[\-A-Za-z0-9]+$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/aws_cloudwatch_event_api_destination_invalid_description.go

@@ -0,0 +1,78 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsCloudwatchEventAPIDestinationInvalidDescriptionRule checks the pattern is valid
+type AwsCloudwatchEventAPIDestinationInvalidDescriptionRule struct {
+	resourceType  string
+	attributeName string
+	max           int
+	pattern       *regexp.Regexp
+}
+
+// NewAwsCloudwatchEventAPIDestinationInvalidDescriptionRule returns new rule with default attributes
+func NewAwsCloudwatchEventAPIDestinationInvalidDescriptionRule() *AwsCloudwatchEventAPIDestinationInvalidDescriptionRule {
+	return &AwsCloudwatchEventAPIDestinationInvalidDescriptionRule{
+		resourceType:  "aws_cloudwatch_event_api_destination",
+		attributeName: "description",
+		max:           512,
+		pattern:       regexp.MustCompile(`^.*$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsCloudwatchEventAPIDestinationInvalidDescriptionRule) Name() string {
+	return "aws_cloudwatch_event_api_destination_invalid_description"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsCloudwatchEventAPIDestinationInvalidDescriptionRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsCloudwatchEventAPIDestinationInvalidDescriptionRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsCloudwatchEventAPIDestinationInvalidDescriptionRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsCloudwatchEventAPIDestinationInvalidDescriptionRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) > r.max {
+				runner.EmitIssueOnExpr(
+					r,
+					"description must be 512 characters or less",
+					attribute.Expr,
+				)
+			}
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^.*$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/aws_cloudwatch_event_api_destination_invalid_http_method.go

@@ -0,0 +1,82 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule checks the pattern is valid
+type AwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule returns new rule with default attributes
+func NewAwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule() *AwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule {
+	return &AwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule{
+		resourceType:  "aws_cloudwatch_event_api_destination",
+		attributeName: "http_method",
+		enum: []string{
+			"POST",
+			"GET",
+			"HEAD",
+			"OPTIONS",
+			"PUT",
+			"PATCH",
+			"DELETE",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule) Name() string {
+	return "aws_cloudwatch_event_api_destination_invalid_http_method"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsCloudwatchEventAPIDestinationInvalidHTTPMethodRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as http_method`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/aws_cloudwatch_event_api_destination_invalid_invocation_endpoint.go

@@ -0,0 +1,87 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule checks the pattern is valid
+type AwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule struct {
+	resourceType  string
+	attributeName string
+	max           int
+	min           int
+	pattern       *regexp.Regexp
+}
+
+// NewAwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule returns new rule with default attributes
+func NewAwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule() *AwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule {
+	return &AwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule{
+		resourceType:  "aws_cloudwatch_event_api_destination",
+		attributeName: "invocation_endpoint",
+		max:           2048,
+		min:           1,
+		pattern:       regexp.MustCompile(`^((%[0-9A-Fa-f]{2}|[-()_.!~*';/?:@\x26=+$,A-Za-z0-9])+)([).!';/?:,])?$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule) Name() string {
+	return "aws_cloudwatch_event_api_destination_invalid_invocation_endpoint"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsCloudwatchEventAPIDestinationInvalidInvocationEndpointRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) > r.max {
+				runner.EmitIssueOnExpr(
+					r,
+					"invocation_endpoint must be 2048 characters or less",
+					attribute.Expr,
+				)
+			}
+			if len(val) < r.min {
+				runner.EmitIssueOnExpr(
+					r,
+					"invocation_endpoint must be 1 characters or higher",
+					attribute.Expr,
+				)
+			}
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^((%[0-9A-Fa-f]{2}|[-()_.!~*';/?:@\x26=+$,A-Za-z0-9])+)([).!';/?:,])?$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}