aws_elasticache_replication_group_api - add aws_elasticache_replication_group api rules (#152)

Author: Rihoj

rules/api/aws_elasticache_replication_group_invalid_parameter_group.go

@@ -0,0 +1,88 @@
+// This file generated by `generator/main.go`. DO NOT EDIT
+
+package api
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+    "github.com/terraform-linters/tflint-ruleset-aws/aws"
+)
+
+// AwsElastiCacheReplicationGroupInvalidParameterGroupRule checks whether attribute value actually exists
+type AwsElastiCacheReplicationGroupInvalidParameterGroupRule struct {
+	resourceType  string
+	attributeName string
+	data          map[string]bool
+	dataPrepared  bool
+}
+
+// NewAwsElastiCacheReplicationGroupInvalidParameterGroupRule returns new rule with default attributes
+func NewAwsElastiCacheReplicationGroupInvalidParameterGroupRule() *AwsElastiCacheReplicationGroupInvalidParameterGroupRule {
+	return &AwsElastiCacheReplicationGroupInvalidParameterGroupRule{
+		resourceType:  "aws_elasticache_replication_group",
+		attributeName: "parameter_group_name",
+		data:          map[string]bool{},
+		dataPrepared:  false,
+	}
+}
+
+// Name returns the rule name
+func (r *AwsElastiCacheReplicationGroupInvalidParameterGroupRule) Name() string {
+	return "aws_elasticache_replication_group_invalid_parameter_group"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsElastiCacheReplicationGroupInvalidParameterGroupRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsElastiCacheReplicationGroupInvalidParameterGroupRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsElastiCacheReplicationGroupInvalidParameterGroupRule) Link() string {
+	return ""
+}
+
+// Check checks whether the attributes are included in the list retrieved by DescribeCacheParameterGroups
+func (r *AwsElastiCacheReplicationGroupInvalidParameterGroupRule) Check(rr tflint.Runner) error {
+    runner := rr.(*aws.Runner)
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		if !r.dataPrepared {
+			log.Print("[DEBUG] invoking DescribeCacheParameterGroups")
+			var err error
+			r.data, err = runner.AwsClient.DescribeCacheParameterGroups()
+			if err != nil {
+				err := &tflint.Error{
+					Code:    tflint.ExternalAPIError,
+					Level:   tflint.ErrorLevel,
+					Message: "An error occurred while invoking DescribeCacheParameterGroups",
+					Cause:   err,
+				}
+				log.Printf("[ERROR] %s", err)
+				return err
+			}
+			r.dataPrepared = true
+		}
+
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if !r.data[val] {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is invalid parameter group name.`, val),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/api/aws_elasticache_replication_group_invalid_security_group.go

@@ -0,0 +1,84 @@
+// This file generated by `generator/main.go`. DO NOT EDIT
+
+package api
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+    "github.com/terraform-linters/tflint-ruleset-aws/aws"
+)
+
+// AwsElastiCacheReplicationGroupInvalidSecurityGroupRule checks whether attribute value actually exists
+type AwsElastiCacheReplicationGroupInvalidSecurityGroupRule struct {
+	resourceType  string
+	attributeName string
+	data          map[string]bool
+	dataPrepared  bool
+}
+
+// NewAwsElastiCacheReplicationGroupInvalidSecurityGroupRule returns new rule with default attributes
+func NewAwsElastiCacheReplicationGroupInvalidSecurityGroupRule() *AwsElastiCacheReplicationGroupInvalidSecurityGroupRule {
+	return &AwsElastiCacheReplicationGroupInvalidSecurityGroupRule{
+		resourceType:  "aws_elasticache_replication_group",
+		attributeName: "security_group_ids",
+		data:          map[string]bool{},
+		dataPrepared:  false,
+	}
+}
+
+// Name returns the rule name
+func (r *AwsElastiCacheReplicationGroupInvalidSecurityGroupRule) Name() string {
+	return "aws_elasticache_replication_group_invalid_security_group"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsElastiCacheReplicationGroupInvalidSecurityGroupRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsElastiCacheReplicationGroupInvalidSecurityGroupRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsElastiCacheReplicationGroupInvalidSecurityGroupRule) Link() string {
+	return ""
+}
+
+// Check checks whether the attributes are included in the list retrieved by DescribeSecurityGroups
+func (r *AwsElastiCacheReplicationGroupInvalidSecurityGroupRule) Check(rr tflint.Runner) error {
+    runner := rr.(*aws.Runner)
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		if !r.dataPrepared {
+			log.Print("[DEBUG] invoking DescribeSecurityGroups")
+			var err error
+			r.data, err = runner.AwsClient.DescribeSecurityGroups()
+			if err != nil {
+				err := &tflint.Error{
+					Code:    tflint.ExternalAPIError,
+					Level:   tflint.ErrorLevel,
+					Message: "An error occurred while invoking DescribeSecurityGroups",
+					Cause:   err,
+				}
+				log.Printf("[ERROR] %s", err)
+				return err
+			}
+			r.dataPrepared = true
+		}
+
+		return runner.EachStringSliceExprs(attribute.Expr, func(val string, expr hcl.Expression) {
+			if !r.data[val] {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is invalid security group.`, val),
+					expr,
+				)
+			}
+		})
+	})
+}

rules/api/aws_elasticache_replication_group_invalid_subnet_group.go

@@ -0,0 +1,88 @@
+// This file generated by `generator/main.go`. DO NOT EDIT
+
+package api
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+    "github.com/terraform-linters/tflint-ruleset-aws/aws"
+)
+
+// AwsElastiCacheReplicationGroupInvalidSubnetGroupRule checks whether attribute value actually exists
+type AwsElastiCacheReplicationGroupInvalidSubnetGroupRule struct {
+	resourceType  string
+	attributeName string
+	data          map[string]bool
+	dataPrepared  bool
+}
+
+// NewAwsElastiCacheReplicationGroupInvalidSubnetGroupRule returns new rule with default attributes
+func NewAwsElastiCacheReplicationGroupInvalidSubnetGroupRule() *AwsElastiCacheReplicationGroupInvalidSubnetGroupRule {
+	return &AwsElastiCacheReplicationGroupInvalidSubnetGroupRule{
+		resourceType:  "aws_elasticache_replication_group",
+		attributeName: "subnet_group_name",
+		data:          map[string]bool{},
+		dataPrepared:  false,
+	}
+}
+
+// Name returns the rule name
+func (r *AwsElastiCacheReplicationGroupInvalidSubnetGroupRule) Name() string {
+	return "aws_elasticache_replication_group_invalid_subnet_group"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsElastiCacheReplicationGroupInvalidSubnetGroupRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsElastiCacheReplicationGroupInvalidSubnetGroupRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsElastiCacheReplicationGroupInvalidSubnetGroupRule) Link() string {
+	return ""
+}
+
+// Check checks whether the attributes are included in the list retrieved by DescribeCacheSubnetGroups
+func (r *AwsElastiCacheReplicationGroupInvalidSubnetGroupRule) Check(rr tflint.Runner) error {
+    runner := rr.(*aws.Runner)
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		if !r.dataPrepared {
+			log.Print("[DEBUG] invoking DescribeCacheSubnetGroups")
+			var err error
+			r.data, err = runner.AwsClient.DescribeCacheSubnetGroups()
+			if err != nil {
+				err := &tflint.Error{
+					Code:    tflint.ExternalAPIError,
+					Level:   tflint.ErrorLevel,
+					Message: "An error occurred while invoking DescribeCacheSubnetGroups",
+					Cause:   err,
+				}
+				log.Printf("[ERROR] %s", err)
+				return err
+			}
+			r.dataPrepared = true
+		}
+
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if !r.data[val] {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is invalid subnet group name.`, val),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/api/definitions/aws_elasticache_replication_group.hcl

@@ -0,0 +1,20 @@
+rule "aws_elasticache_replication_group_invalid_parameter_group" {
+    resource      = "aws_elasticache_replication_group"
+    attribute     = "parameter_group_name"
+    source_action = "DescribeCacheParameterGroups"
+    template      = "\"%s\" is invalid parameter group name."
+}
+
+rule "aws_elasticache_replication_group_invalid_security_group" {
+    resource      = "aws_elasticache_replication_group"
+    attribute     = "security_group_ids"
+    source_action = "DescribeSecurityGroups"
+    template      = "\"%s\" is invalid security group."
+}
+
+rule "aws_elasticache_replication_group_invalid_subnet_group" {
+    resource      = "aws_elasticache_replication_group"
+    attribute     = "subnet_group_name"
+    source_action = "DescribeCacheSubnetGroups"
+    template      = "\"%s\" is invalid subnet group name."
+}

rules/api/provider.go

@@ -20,6 +20,9 @@ var Rules = []tflint.Rule{
 	NewAwsElastiCacheClusterInvalidParameterGroupRule(),
 	NewAwsElastiCacheClusterInvalidSecurityGroupRule(),
 	NewAwsElastiCacheClusterInvalidSubnetGroupRule(),
+	NewAwsElastiCacheReplicationGroupInvalidParameterGroupRule(),
+	NewAwsElastiCacheReplicationGroupInvalidSecurityGroupRule(),
+	NewAwsElastiCacheReplicationGroupInvalidSubnetGroupRule(),
 	NewAwsInstanceInvalidIAMProfileRule(),
 	NewAwsInstanceInvalidKeyNameRule(),
 	NewAwsInstanceInvalidSubnetRule(),