mapping aws_emr (#287)

https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/emr_instance_fleet
https://github.com/aws/aws-sdk-go/blob/main/models/apis/elasticmapreduce/2009-03-31/api-2.json

Author: PatMyron

docs/rules/README.md

@@ -613,6 +613,8 @@ These rules enforce best practices and naming conventions:
 |aws_elastictranscoder_preset_invalid_description|✔|
 |aws_elastictranscoder_preset_invalid_name|✔|
 |aws_emr_cluster_invalid_scale_down_behavior|✔|
+|aws_emr_studio_invalid_auth_mode|✔|
+|aws_emr_studio_session_mapping_invalid_identity_type|✔|
 |aws_flow_log_invalid_log_destination_type|✔|
 |aws_flow_log_invalid_traffic_type|✔|
 |aws_fms_admin_account_invalid_account_id|✔|

rules/models/aws_emr_studio_invalid_auth_mode.go

@@ -0,0 +1,77 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsEmrStudioInvalidAuthModeRule checks the pattern is valid
+type AwsEmrStudioInvalidAuthModeRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsEmrStudioInvalidAuthModeRule returns new rule with default attributes
+func NewAwsEmrStudioInvalidAuthModeRule() *AwsEmrStudioInvalidAuthModeRule {
+	return &AwsEmrStudioInvalidAuthModeRule{
+		resourceType:  "aws_emr_studio",
+		attributeName: "auth_mode",
+		enum: []string{
+			"SSO",
+			"IAM",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsEmrStudioInvalidAuthModeRule) Name() string {
+	return "aws_emr_studio_invalid_auth_mode"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsEmrStudioInvalidAuthModeRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsEmrStudioInvalidAuthModeRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsEmrStudioInvalidAuthModeRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsEmrStudioInvalidAuthModeRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as auth_mode`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/aws_emr_studio_session_mapping_invalid_identity_type.go

@@ -0,0 +1,77 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsEmrStudioSessionMappingInvalidIdentityTypeRule checks the pattern is valid
+type AwsEmrStudioSessionMappingInvalidIdentityTypeRule struct {
+	resourceType  string
+	attributeName string
+	enum          []string
+}
+
+// NewAwsEmrStudioSessionMappingInvalidIdentityTypeRule returns new rule with default attributes
+func NewAwsEmrStudioSessionMappingInvalidIdentityTypeRule() *AwsEmrStudioSessionMappingInvalidIdentityTypeRule {
+	return &AwsEmrStudioSessionMappingInvalidIdentityTypeRule{
+		resourceType:  "aws_emr_studio_session_mapping",
+		attributeName: "identity_type",
+		enum: []string{
+			"USER",
+			"GROUP",
+		},
+	}
+}
+
+// Name returns the rule name
+func (r *AwsEmrStudioSessionMappingInvalidIdentityTypeRule) Name() string {
+	return "aws_emr_studio_session_mapping_invalid_identity_type"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsEmrStudioSessionMappingInvalidIdentityTypeRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsEmrStudioSessionMappingInvalidIdentityTypeRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsEmrStudioSessionMappingInvalidIdentityTypeRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsEmrStudioSessionMappingInvalidIdentityTypeRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			found := false
+			for _, item := range r.enum {
+				if item == val {
+					found = true
+				}
+			}
+			if !found {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" is an invalid value as identity_type`, truncateLongMessage(val)),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}

rules/models/mappings/emr.hcl

@@ -26,6 +26,11 @@ mapping "aws_emr_cluster" {
   tags                              = TagList
 }
 
+mapping "aws_emr_instance_fleet" {
+  instance_type_configs = InstanceTypeConfigList
+  launch_specifications = InstanceFleetProvisioningSpecifications
+}
+
 mapping "aws_emr_instance_group" {
   name               = any // XmlStringMaxLen256
   cluster_id         = ClusterId
@@ -42,3 +47,13 @@ mapping "aws_emr_security_configuration" {
   name_prefix   = String
   configuration = String
 }
+
+mapping "aws_emr_studio" {
+  auth_mode = AuthMode
+  subnet_ids = SubnetIdList
+  tags = TagList
+}
+
+mapping "aws_emr_studio_session_mapping" {
+  identity_type = IdentityType
+}

rules/models/provider.go

@@ -541,6 +541,8 @@ var Rules = []tflint.Rule{
 	NewAwsElastictranscoderPresetInvalidDescriptionRule(),
 	NewAwsElastictranscoderPresetInvalidNameRule(),
 	NewAwsEmrClusterInvalidScaleDownBehaviorRule(),
+	NewAwsEmrStudioInvalidAuthModeRule(),
+	NewAwsEmrStudioSessionMappingInvalidIdentityTypeRule(),
 	NewAwsFlowLogInvalidLogDestinationTypeRule(),
 	NewAwsFlowLogInvalidTrafficTypeRule(),
 	NewAwsFmsAdminAccountInvalidAccountIDRule(),