mapping aws_workspaces (#285)

PatMyron · web-flow · commit fb94d3631538 · 2021-12-31T14:44:19.000-08:00
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/workspaces_directory https://github.com/aws/aws-sdk-go/blob/main/models/apis/workspaces/2015-04-08/api-2.json
diff --git a/docs/rules/README.md b/docs/rules/README.md
@@ -1413,6 +1413,10 @@ These rules enforce best practices and naming conventions:
 |aws_worklink_website_certificate_authority_association_invalid_certificate|✔|
 |aws_worklink_website_certificate_authority_association_invalid_display_name|✔|
 |aws_worklink_website_certificate_authority_association_invalid_fleet_arn|✔|
+|aws_workspaces_directory_invalid_directory_id|✔|
+|aws_workspaces_workspace_invalid_bundle_id|✔|
+|aws_workspaces_workspace_invalid_directory_id|✔|
+|aws_workspaces_workspace_invalid_user_name|✔|
 |aws_xray_encryption_config_invalid_key_id|✔|
 |aws_xray_encryption_config_invalid_type|✔|
 |aws_xray_group_invalid_group_name|✔|
diff --git a/rules/models/aws_workspaces_directory_invalid_directory_id.go b/rules/models/aws_workspaces_directory_invalid_directory_id.go
@@ -0,0 +1,87 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsWorkspacesDirectoryInvalidDirectoryIDRule checks the pattern is valid
+type AwsWorkspacesDirectoryInvalidDirectoryIDRule struct {
+	resourceType  string
+	attributeName string
+	max           int
+	min           int
+	pattern       *regexp.Regexp
+}
+
+// NewAwsWorkspacesDirectoryInvalidDirectoryIDRule returns new rule with default attributes
+func NewAwsWorkspacesDirectoryInvalidDirectoryIDRule() *AwsWorkspacesDirectoryInvalidDirectoryIDRule {
+	return &AwsWorkspacesDirectoryInvalidDirectoryIDRule{
+		resourceType:  "aws_workspaces_directory",
+		attributeName: "directory_id",
+		max:           65,
+		min:           10,
+		pattern:       regexp.MustCompile(`^d-[0-9a-f]{8,63}$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsWorkspacesDirectoryInvalidDirectoryIDRule) Name() string {
+	return "aws_workspaces_directory_invalid_directory_id"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsWorkspacesDirectoryInvalidDirectoryIDRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsWorkspacesDirectoryInvalidDirectoryIDRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsWorkspacesDirectoryInvalidDirectoryIDRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsWorkspacesDirectoryInvalidDirectoryIDRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) > r.max {
+				runner.EmitIssueOnExpr(
+					r,
+					"directory_id must be 65 characters or less",
+					attribute.Expr,
+				)
+			}
+			if len(val) < r.min {
+				runner.EmitIssueOnExpr(
+					r,
+					"directory_id must be 10 characters or higher",
+					attribute.Expr,
+				)
+			}
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^d-[0-9a-f]{8,63}$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}
diff --git a/rules/models/aws_workspaces_workspace_invalid_bundle_id.go b/rules/models/aws_workspaces_workspace_invalid_bundle_id.go
@@ -0,0 +1,69 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsWorkspacesWorkspaceInvalidBundleIDRule checks the pattern is valid
+type AwsWorkspacesWorkspaceInvalidBundleIDRule struct {
+	resourceType  string
+	attributeName string
+	pattern       *regexp.Regexp
+}
+
+// NewAwsWorkspacesWorkspaceInvalidBundleIDRule returns new rule with default attributes
+func NewAwsWorkspacesWorkspaceInvalidBundleIDRule() *AwsWorkspacesWorkspaceInvalidBundleIDRule {
+	return &AwsWorkspacesWorkspaceInvalidBundleIDRule{
+		resourceType:  "aws_workspaces_workspace",
+		attributeName: "bundle_id",
+		pattern:       regexp.MustCompile(`^wsb-[0-9a-z]{8,63}$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsWorkspacesWorkspaceInvalidBundleIDRule) Name() string {
+	return "aws_workspaces_workspace_invalid_bundle_id"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsWorkspacesWorkspaceInvalidBundleIDRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsWorkspacesWorkspaceInvalidBundleIDRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsWorkspacesWorkspaceInvalidBundleIDRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsWorkspacesWorkspaceInvalidBundleIDRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^wsb-[0-9a-z]{8,63}$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}
diff --git a/rules/models/aws_workspaces_workspace_invalid_directory_id.go b/rules/models/aws_workspaces_workspace_invalid_directory_id.go
@@ -0,0 +1,87 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsWorkspacesWorkspaceInvalidDirectoryIDRule checks the pattern is valid
+type AwsWorkspacesWorkspaceInvalidDirectoryIDRule struct {
+	resourceType  string
+	attributeName string
+	max           int
+	min           int
+	pattern       *regexp.Regexp
+}
+
+// NewAwsWorkspacesWorkspaceInvalidDirectoryIDRule returns new rule with default attributes
+func NewAwsWorkspacesWorkspaceInvalidDirectoryIDRule() *AwsWorkspacesWorkspaceInvalidDirectoryIDRule {
+	return &AwsWorkspacesWorkspaceInvalidDirectoryIDRule{
+		resourceType:  "aws_workspaces_workspace",
+		attributeName: "directory_id",
+		max:           65,
+		min:           10,
+		pattern:       regexp.MustCompile(`^d-[0-9a-f]{8,63}$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsWorkspacesWorkspaceInvalidDirectoryIDRule) Name() string {
+	return "aws_workspaces_workspace_invalid_directory_id"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsWorkspacesWorkspaceInvalidDirectoryIDRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsWorkspacesWorkspaceInvalidDirectoryIDRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsWorkspacesWorkspaceInvalidDirectoryIDRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsWorkspacesWorkspaceInvalidDirectoryIDRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) > r.max {
+				runner.EmitIssueOnExpr(
+					r,
+					"directory_id must be 65 characters or less",
+					attribute.Expr,
+				)
+			}
+			if len(val) < r.min {
+				runner.EmitIssueOnExpr(
+					r,
+					"directory_id must be 10 characters or higher",
+					attribute.Expr,
+				)
+			}
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^d-[0-9a-f]{8,63}$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}
diff --git a/rules/models/aws_workspaces_workspace_invalid_user_name.go b/rules/models/aws_workspaces_workspace_invalid_user_name.go
@@ -0,0 +1,76 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"log"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsWorkspacesWorkspaceInvalidUserNameRule checks the pattern is valid
+type AwsWorkspacesWorkspaceInvalidUserNameRule struct {
+	resourceType  string
+	attributeName string
+	max           int
+	min           int
+}
+
+// NewAwsWorkspacesWorkspaceInvalidUserNameRule returns new rule with default attributes
+func NewAwsWorkspacesWorkspaceInvalidUserNameRule() *AwsWorkspacesWorkspaceInvalidUserNameRule {
+	return &AwsWorkspacesWorkspaceInvalidUserNameRule{
+		resourceType:  "aws_workspaces_workspace",
+		attributeName: "user_name",
+		max:           63,
+		min:           1,
+	}
+}
+
+// Name returns the rule name
+func (r *AwsWorkspacesWorkspaceInvalidUserNameRule) Name() string {
+	return "aws_workspaces_workspace_invalid_user_name"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsWorkspacesWorkspaceInvalidUserNameRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsWorkspacesWorkspaceInvalidUserNameRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsWorkspacesWorkspaceInvalidUserNameRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsWorkspacesWorkspaceInvalidUserNameRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) > r.max {
+				runner.EmitIssueOnExpr(
+					r,
+					"user_name must be 63 characters or less",
+					attribute.Expr,
+				)
+			}
+			if len(val) < r.min {
+				runner.EmitIssueOnExpr(
+					r,
+					"user_name must be 1 characters or higher",
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}
diff --git a/rules/models/mappings/workspaces.hcl b/rules/models/mappings/workspaces.hcl
@@ -0,0 +1,24 @@
+import = "aws-sdk-go/models/apis/workspaces/2015-04-08/api-2.json"
+
+mapping "aws_workspaces_directory" {
+  directory_id = DirectoryId
+  subnet_ids = SubnetIds
+  ip_group_ids = IpGroupIdList
+  tags = TagList
+}
+
+mapping "aws_workspaces_ip_group" {
+  name = IpGroupName
+  description = IpGroupDesc
+  rules = IpRuleList
+  tags = TagList
+}
+
+mapping "aws_workspaces_workspace" {
+  directory_id = DirectoryId
+  bundle_id = BundleId
+  user_name = UserName
+  volume_encryption_key = VolumeEncryptionKey
+  tags = TagList
+  workspace_properties = WorkspaceProperties
+}
diff --git a/rules/models/provider.go b/rules/models/provider.go
@@ -1341,6 +1341,10 @@ var Rules = []tflint.Rule{
 	NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule(),
 	NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule(),
 	NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule(),
+	NewAwsWorkspacesDirectoryInvalidDirectoryIDRule(),
+	NewAwsWorkspacesWorkspaceInvalidBundleIDRule(),
+	NewAwsWorkspacesWorkspaceInvalidDirectoryIDRule(),
+	NewAwsWorkspacesWorkspaceInvalidUserNameRule(),
 	NewAwsXrayEncryptionConfigInvalidKeyIDRule(),
 	NewAwsXrayEncryptionConfigInvalidTypeRule(),
 	NewAwsXrayGroupInvalidGroupNameRule(),
