mapping aws_memorydb (#295)

PatMyron · web-flow · commit b0929bbf5beb · 2022-01-12T11:23:48.000-08:00
https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/memorydb_acl https://github.com/aws/aws-sdk-go/blob/main/models/apis/memorydb/2021-01-01/api-2.json
diff --git a/docs/rules/README.md b/docs/rules/README.md
@@ -919,6 +919,9 @@ These rules enforce best practices and naming conventions:
 |aws_macie_s3_bucket_association_invalid_prefix|✔|
 |aws_media_store_container_invalid_name|✔|
 |aws_media_store_container_policy_invalid_container_name|✔|
+|aws_memorydb_cluster_invalid_acl_name|✔|
+|aws_memorydb_user_invalid_access_string|✔|
+|aws_memorydb_user_invalid_user_name|✔|
 |aws_mq_broker_invalid_deployment_mode|✔|
 |aws_msk_cluster_invalid_cluster_name|✔|
 |aws_msk_cluster_invalid_enhanced_monitoring|✔|
diff --git a/rules/models/aws_memorydb_cluster_invalid_acl_name.go b/rules/models/aws_memorydb_cluster_invalid_acl_name.go
@@ -0,0 +1,78 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsMemoryDBClusterInvalidACLNameRule checks the pattern is valid
+type AwsMemoryDBClusterInvalidACLNameRule struct {
+	resourceType  string
+	attributeName string
+	min           int
+	pattern       *regexp.Regexp
+}
+
+// NewAwsMemoryDBClusterInvalidACLNameRule returns new rule with default attributes
+func NewAwsMemoryDBClusterInvalidACLNameRule() *AwsMemoryDBClusterInvalidACLNameRule {
+	return &AwsMemoryDBClusterInvalidACLNameRule{
+		resourceType:  "aws_memorydb_cluster",
+		attributeName: "acl_name",
+		min:           1,
+		pattern:       regexp.MustCompile(`^[a-zA-Z][a-zA-Z0-9\-]*$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsMemoryDBClusterInvalidACLNameRule) Name() string {
+	return "aws_memorydb_cluster_invalid_acl_name"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsMemoryDBClusterInvalidACLNameRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsMemoryDBClusterInvalidACLNameRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsMemoryDBClusterInvalidACLNameRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsMemoryDBClusterInvalidACLNameRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) < r.min {
+				runner.EmitIssueOnExpr(
+					r,
+					"acl_name must be 1 characters or higher",
+					attribute.Expr,
+				)
+			}
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^[a-zA-Z][a-zA-Z0-9\-]*$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}
diff --git a/rules/models/aws_memorydb_user_invalid_access_string.go b/rules/models/aws_memorydb_user_invalid_access_string.go
@@ -0,0 +1,69 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsMemoryDBUserInvalidAccessStringRule checks the pattern is valid
+type AwsMemoryDBUserInvalidAccessStringRule struct {
+	resourceType  string
+	attributeName string
+	pattern       *regexp.Regexp
+}
+
+// NewAwsMemoryDBUserInvalidAccessStringRule returns new rule with default attributes
+func NewAwsMemoryDBUserInvalidAccessStringRule() *AwsMemoryDBUserInvalidAccessStringRule {
+	return &AwsMemoryDBUserInvalidAccessStringRule{
+		resourceType:  "aws_memorydb_user",
+		attributeName: "access_string",
+		pattern:       regexp.MustCompile(`^.*\S.*$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsMemoryDBUserInvalidAccessStringRule) Name() string {
+	return "aws_memorydb_user_invalid_access_string"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsMemoryDBUserInvalidAccessStringRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsMemoryDBUserInvalidAccessStringRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsMemoryDBUserInvalidAccessStringRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsMemoryDBUserInvalidAccessStringRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^.*\S.*$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}
diff --git a/rules/models/aws_memorydb_user_invalid_user_name.go b/rules/models/aws_memorydb_user_invalid_user_name.go
@@ -0,0 +1,78 @@
+// This file generated by `generator/`. DO NOT EDIT
+
+package models
+
+import (
+	"fmt"
+	"log"
+	"regexp"
+
+	hcl "github.com/hashicorp/hcl/v2"
+	"github.com/terraform-linters/tflint-plugin-sdk/tflint"
+)
+
+// AwsMemoryDBUserInvalidUserNameRule checks the pattern is valid
+type AwsMemoryDBUserInvalidUserNameRule struct {
+	resourceType  string
+	attributeName string
+	min           int
+	pattern       *regexp.Regexp
+}
+
+// NewAwsMemoryDBUserInvalidUserNameRule returns new rule with default attributes
+func NewAwsMemoryDBUserInvalidUserNameRule() *AwsMemoryDBUserInvalidUserNameRule {
+	return &AwsMemoryDBUserInvalidUserNameRule{
+		resourceType:  "aws_memorydb_user",
+		attributeName: "user_name",
+		min:           1,
+		pattern:       regexp.MustCompile(`^[a-zA-Z][a-zA-Z0-9\-]*$`),
+	}
+}
+
+// Name returns the rule name
+func (r *AwsMemoryDBUserInvalidUserNameRule) Name() string {
+	return "aws_memorydb_user_invalid_user_name"
+}
+
+// Enabled returns whether the rule is enabled by default
+func (r *AwsMemoryDBUserInvalidUserNameRule) Enabled() bool {
+	return true
+}
+
+// Severity returns the rule severity
+func (r *AwsMemoryDBUserInvalidUserNameRule) Severity() string {
+	return tflint.ERROR
+}
+
+// Link returns the rule reference link
+func (r *AwsMemoryDBUserInvalidUserNameRule) Link() string {
+	return ""
+}
+
+// Check checks the pattern is valid
+func (r *AwsMemoryDBUserInvalidUserNameRule) Check(runner tflint.Runner) error {
+	log.Printf("[TRACE] Check `%s` rule", r.Name())
+
+	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
+		var val string
+		err := runner.EvaluateExpr(attribute.Expr, &val, nil)
+
+		return runner.EnsureNoError(err, func() error {
+			if len(val) < r.min {
+				runner.EmitIssueOnExpr(
+					r,
+					"user_name must be 1 characters or higher",
+					attribute.Expr,
+				)
+			}
+			if !r.pattern.MatchString(val) {
+				runner.EmitIssueOnExpr(
+					r,
+					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^[a-zA-Z][a-zA-Z0-9\-]*$`),
+					attribute.Expr,
+				)
+			}
+			return nil
+		})
+	})
+}
diff --git a/rules/models/mappings/memorydb.hcl b/rules/models/mappings/memorydb.hcl
@@ -0,0 +1,29 @@
+import = "aws-sdk-go/models/apis/memorydb/2021-01-01/api-2.json"
+
+mapping "aws_memorydb_acl" {
+  user_names = UserNameListInput
+  tags = TagList
+}
+
+mapping "aws_memorydb_cluster" {
+  acl_name = ACLName
+  security_group_ids = SecurityGroupIdsList
+  snapshot_arns = SnapshotArnsList
+  tags = TagList
+}
+
+mapping "aws_memorydb_parameter_group" {
+  tags = TagList
+}
+
+mapping "aws_memorydb_subnet_group" {
+  subnet_ids = SubnetIdentifierList
+  tags = TagList
+}
+
+mapping "aws_memorydb_user" {
+  access_string = AccessString
+  authentication_mode = AuthenticationMode
+  user_name = UserName
+  tags = TagList
+}
diff --git a/rules/models/provider.go b/rules/models/provider.go
@@ -847,6 +847,9 @@ var Rules = []tflint.Rule{
 	NewAwsMacieS3BucketAssociationInvalidPrefixRule(),
 	NewAwsMediaStoreContainerInvalidNameRule(),
 	NewAwsMediaStoreContainerPolicyInvalidContainerNameRule(),
+	NewAwsMemoryDBClusterInvalidACLNameRule(),
+	NewAwsMemoryDBUserInvalidAccessStringRule(),
+	NewAwsMemoryDBUserInvalidUserNameRule(),
 	NewAwsMqBrokerInvalidDeploymentModeRule(),
 	NewAwsMskClusterInvalidClusterNameRule(),
 	NewAwsMskClusterInvalidEnhancedMonitoringRule(),
