awspec 1.18.5 → 1.20.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: 57797dd9f900c79068bf2839262679a2c86c62630463b8c365c1a6eb55a76ecf
-  data.tar.gz: ae19755daba79f58d3d77ff3fb8c4eee0b0906516cd5bf4a033f9928656b6b63
+  metadata.gz: 50e4f2db388c2466cf1cc06da613acd875dd5e6cc586087f07372f0a1e7145b1
+  data.tar.gz: 336ec6c6a6700edfbb1c66c0b164343a519eaf73d4fb2a6f8ff6a095e19b8640
 SHA512:
-  metadata.gz: d8fec4698ec26a49d81f7ecb7a37323ed69e53ac96cedff1a33e98e75f10c824681ed6a248cd2a6e79de27924fc46dc097e8eb0f91106b526d9a1d71fa0a1c2b
-  data.tar.gz: 6ef0fa1247a1956b82f7a53be2478013269ab7e0e35005fa40f2d537d4763ee1caffbdb35848f9dd1c80b61e86f4f8e168dd865bbe1de98d4f4bdd2f677d9526
+  metadata.gz: c357e4f6650a48b03bd1eb3a454526a93dd2a885852de2fb5ee589a2eb468c87a2351512f802718f627587d85948b659b5894adaa12056d97ed1b8ca6419b99c
+  data.tar.gz: c091e6ece098aa98600e43e4ae4cd6413516d4a59f20a17d2d5b6d596695037b202b6246dfc5321504c318e3623b5bd3babc3d1dd0c8ef4d9db26f68a528410b

data/awspec.gemspec

@@ -29,6 +29,7 @@ Gem::Specification.new do |spec|
   spec.add_runtime_dependency 'rspec-its'
   spec.add_runtime_dependency 'term-ansicolor'
   spec.add_runtime_dependency 'thor'
+  spec.add_runtime_dependency 'addressable'
   spec.add_development_dependency 'bundler', '>= 1.9', '< 3.0'
   spec.add_development_dependency 'octorelease'
   spec.add_development_dependency 'pry'

data/doc/_resource_types/msk.md

@@ -0,0 +1,15 @@
+### exist
+
+```ruby
+describe msk('my-msk') do
+  it { should exist }
+end
+```
+
+### should be_active, be_creating, be_updating, be_deleting, be_failed
+
+```ruby
+describe msk('my-msk') do
+  it { should be_active }
+end
+```

data/doc/_resource_types/transit_gateway.md

@@ -0,0 +1,24 @@
+### exist
+
+```ruby
+describe tgw('tgw-1234567890abcdefg') do
+  it { should exist }
+  it { should have_tag('Name').value('my-tgw') }
+  it { should have_attachment('tgw-attach-1234567890abcdefg') }
+  its('options.amazon_side_asn') { should eq 64_516 }
+  its('options.auto_accept_shared_attachments') { should eq 'enable' }
+  its('options.default_route_table_association') { should eq 'enable' }
+  its('options.default_route_table_propagation') { should eq 'enable' }
+  its('options.dns_support') { should eq 'enable' }
+  its('options.vpn_ecmp_support') { should eq 'enable' }
+  its('options.association_default_route_table_id') { should eq 'tgw-rtb-0123456789abcdefg' }
+  its('options.propagation_default_route_table_id') { should eq 'tgw-rtb-0123456789abcdefg' }
+end
+```
+
+```ruby
+describe tgw('my-tgw') do
+  it { should exist }
+  its(:transit_gateway_id) { should eq 'tgw-1234567890abcdefg' }
+end
+```

data/doc/resource_types.md

@@ -50,6 +50,7 @@
 | [launch_configuration](#launch_configuration)
 | [launch_template](#launch_template)
 | [mq](#mq)
+| [msk](#msk)
 | [nat_gateway](#nat_gateway)
 | [network_acl](#network_acl)
 | [network_interface](#network_interface)
@@ -71,6 +72,7 @@
 | [sqs](#sqs)
 | [ssm_parameter](#ssm_parameter)
 | [subnet](#subnet)
+| [transit_gateway](#transit_gateway)
 | [vpc](#vpc)
 | [vpn_connection](#vpn_connection)
 | [vpn_gateway](#vpn_gateway)
@@ -198,7 +200,7 @@ describe alb_listener('arn:aws:elasticloadbalancing:ap-northeast-1:1234567890:li
 end
 ```
 
-### its(:listener_arn), its(:load_balancer_arn), its(:port), its(:protocol), its(:certificates), its(:ssl_policy)
+### its(:listener_arn), its(:load_balancer_arn), its(:port), its(:protocol), its(:certificates), its(:ssl_policy), its(:alpn_policy)
 ## <a name="alb_target_group">alb_target_group</a>
 
 AlbTargetGroup resource type.
@@ -284,6 +286,14 @@ describe apigateway('my-apigateway') do
 end
 ```
 
+### have_integration_method
+
+### have_integration_path
+
+### have_method
+
+### have_path
+
 ### its(:id), its(:name), its(:description), its(:created_date), its(:version), its(:warnings), its(:binary_media_types), its(:minimum_compression_size), its(:api_key_source), its(:policy), its(:tags)
 ## <a name="autoscaling_group">autoscaling_group</a>
 
@@ -1319,7 +1329,7 @@ describe eks('my-eks') do
 end
 ```
 
-### its(:name), its(:arn), its(:created_at), its(:version), its(:endpoint), its(:role_arn), its(:logging), its(:identity), its(:status), its(:client_request_token), its(:platform_version), its(:tags)
+### its(:name), its(:arn), its(:created_at), its(:version), its(:endpoint), its(:role_arn), its(:logging), its(:identity), its(:status), its(:client_request_token), its(:platform_version), its(:tags), its(:encryption_config)
 ## <a name="elasticache">elasticache</a>
 
 Elasticache resource type.
@@ -1388,7 +1398,7 @@ describe elasticache('my-rep-group-001') do
 end
 ```
 
-### its(:cache_cluster_id), its(:configuration_endpoint), its(:client_download_landing_page), its(:cache_node_type), its(:engine), its(:engine_version), its(:cache_cluster_status), its(:num_cache_nodes), its(:preferred_availability_zone), its(:cache_cluster_create_time), its(:preferred_maintenance_window), its(:notification_configuration), its(:cache_security_groups), its(:cache_subnet_group_name), its(:cache_nodes), its(:auto_minor_version_upgrade), its(:replication_group_id), its(:snapshot_retention_limit), its(:snapshot_window), its(:auth_token_enabled), its(:auth_token_last_modified_date), its(:transit_encryption_enabled), its(:at_rest_encryption_enabled)
+### its(:cache_cluster_id), its(:configuration_endpoint), its(:client_download_landing_page), its(:cache_node_type), its(:engine), its(:engine_version), its(:cache_cluster_status), its(:num_cache_nodes), its(:preferred_availability_zone), its(:cache_cluster_create_time), its(:preferred_maintenance_window), its(:notification_configuration), its(:cache_security_groups), its(:cache_subnet_group_name), its(:cache_nodes), its(:auto_minor_version_upgrade), its(:replication_group_id), its(:snapshot_retention_limit), its(:snapshot_window), its(:auth_token_enabled), its(:auth_token_last_modified_date), its(:transit_encryption_enabled), its(:at_rest_encryption_enabled), its(:arn)
 ## <a name="elasticache_cache_parameter_group">elasticache_cache_parameter_group</a>
 
 ElasticacheCacheParameterGroup resource type.
@@ -1612,7 +1622,7 @@ describe emr('my-emr') do
 end
 ```
 
-### its(:id), its(:name), its(:instance_collection_type), its(:log_uri), its(:requested_ami_version), its(:running_ami_version), its(:release_label), its(:auto_terminate), its(:termination_protected), its(:visible_to_all_users), its(:service_role), its(:normalized_instance_hours), its(:master_public_dns_name), its(:configurations), its(:security_configuration), its(:auto_scaling_role), its(:scale_down_behavior), its(:custom_ami_id), its(:ebs_root_volume_size), its(:repo_upgrade_on_boot), its(:cluster_arn), its(:step_concurrency_level), its(:outpost_arn)
+### its(:id), its(:name), its(:instance_collection_type), its(:log_uri), its(:log_encryption_kms_key_id), its(:requested_ami_version), its(:running_ami_version), its(:release_label), its(:auto_terminate), its(:termination_protected), its(:visible_to_all_users), its(:service_role), its(:normalized_instance_hours), its(:master_public_dns_name), its(:configurations), its(:security_configuration), its(:auto_scaling_role), its(:scale_down_behavior), its(:custom_ami_id), its(:ebs_root_volume_size), its(:repo_upgrade_on_boot), its(:cluster_arn), its(:outpost_arn), its(:step_concurrency_level)
 ## <a name="firehose">firehose</a>
 
 Firehose resource type.
@@ -2174,7 +2184,7 @@ end
 
 This matcher does not support Amazon S3 event sources ([see SDK doc](http://docs.aws.amazon.com/sdkforruby/api/Aws/Lambda/Client.html#list_event_source_mappings-instance_method)).
 
-### its(:function_name), its(:function_arn), its(:runtime), its(:role), its(:handler), its(:code_size), its(:description), its(:timeout), its(:memory_size), its(:last_modified), its(:code_sha_256), its(:version), its(:vpc_config), its(:dead_letter_config), its(:kms_key_arn), its(:master_arn), its(:revision_id), its(:layers), its(:state), its(:state_reason), its(:state_reason_code), its(:last_update_status), its(:last_update_status_reason), its(:last_update_status_reason_code)
+### its(:function_name), its(:function_arn), its(:runtime), its(:role), its(:handler), its(:code_size), its(:description), its(:timeout), its(:memory_size), its(:last_modified), its(:code_sha_256), its(:version), its(:vpc_config), its(:dead_letter_config), its(:kms_key_arn), its(:master_arn), its(:revision_id), its(:layers), its(:state), its(:state_reason), its(:state_reason_code), its(:last_update_status), its(:last_update_status_reason), its(:last_update_status_reason_code), its(:file_system_configs)
 ## <a name="launch_configuration">launch_configuration</a>
 
 LaunchConfiguration resource type.
@@ -2297,6 +2307,30 @@ end
 ```
 
 ### its(:vpc_id), its(:auto_minor_version_upgrade), its(:broker_arn), its(:broker_id), its(:broker_name), its(:broker_state), its(:created), its(:deployment_mode), its(:encryption_options), its(:engine_type), its(:engine_version), its(:host_instance_type), its(:pending_engine_version), its(:pending_host_instance_type), its(:pending_security_groups), its(:publicly_accessible), its(:security_groups), its(:storage_type), its(:subnet_ids)
+## <a name="msk">msk</a>
+
+Msk resource type.
+
+### exist
+
+```ruby
+describe msk('my-msk') do
+  it { should exist }
+end
+```
+
+
+### be_active
+
+### be_creating
+
+### be_deleting
+
+### be_failed
+
+### be_updating
+
+### its(:active_operation_arn), its(:client_authentication), its(:cluster_arn), its(:cluster_name), its(:creation_time), its(:current_version), its(:enhanced_monitoring), its(:number_of_broker_nodes), its(:state), its(:zookeeper_connect_string)
 ## <a name="nat_gateway">nat_gateway</a>
 
 NatGateway resource type.
@@ -2583,7 +2617,7 @@ describe nlb_listener('arn:aws:elasticloadbalancing:ap-northeast-1:1234567890:li
 end
 ```
 
-### its(:listener_arn), its(:load_balancer_arn), its(:port), its(:protocol), its(:certificates), its(:ssl_policy)
+### its(:listener_arn), its(:load_balancer_arn), its(:port), its(:protocol), its(:certificates), its(:ssl_policy), its(:alpn_policy)
 ## <a name="nlb_target_group">nlb_target_group</a>
 
 NlbTargetGroup resource type.
@@ -3192,6 +3226,10 @@ end
 
 ### be_outbound_opened_only
 
+### have_inbound_rule
+
+### have_outbound_rule
+
 ### have_tag
 
 ```ruby
@@ -3381,7 +3419,7 @@ end
 ```
 
 
-### its(:name), its(:type), its(:key_id), its(:last_modified_date), its(:last_modified_user), its(:description), its(:allowed_pattern), its(:version), its(:tier), its(:policies)
+### its(:name), its(:type), its(:key_id), its(:last_modified_date), its(:last_modified_user), its(:description), its(:allowed_pattern), its(:version), its(:tier), its(:policies), its(:data_type)
 ### :unlock: Advanced use
 
 ```ruby
@@ -3425,7 +3463,7 @@ end
 ```
 
 
-### its(:availability_zone), its(:availability_zone_id), its(:available_ip_address_count), its(:cidr_block), its(:default_for_az), its(:map_public_ip_on_launch), its(:state), its(:subnet_id), its(:vpc_id), its(:owner_id), its(:assign_ipv_6_address_on_creation), its(:ipv_6_cidr_block_association_set), its(:subnet_arn), its(:outpost_arn)
+### its(:availability_zone), its(:availability_zone_id), its(:available_ip_address_count), its(:cidr_block), its(:default_for_az), its(:map_public_ip_on_launch), its(:map_customer_owned_ip_on_launch), its(:customer_owned_ipv_4_pool), its(:state), its(:subnet_id), its(:vpc_id), its(:owner_id), its(:assign_ipv_6_address_on_creation), its(:ipv_6_cidr_block_association_set), its(:subnet_arn), its(:outpost_arn)
 ### :unlock: Advanced use
 
 `subnet` can use `Aws::EC2::Subnet` resource (see http://docs.aws.amazon.com/sdkforruby/api/Aws/EC2/Subnet.html).
@@ -3444,6 +3482,40 @@ describe subnet('my-subnet') do
 end
 ```
 
+## <a name="transit_gateway">transit_gateway</a>
+
+TransitGateway resource type.
+
+### exist
+
+```ruby
+describe tgw('tgw-1234567890abcdefg') do
+  it { should exist }
+  it { should have_tag('Name').value('my-tgw') }
+  it { should have_attachment('tgw-attach-1234567890abcdefg') }
+  its('options.amazon_side_asn') { should eq 64_516 }
+  its('options.auto_accept_shared_attachments') { should eq 'enable' }
+  its('options.default_route_table_association') { should eq 'enable' }
+  its('options.default_route_table_propagation') { should eq 'enable' }
+  its('options.dns_support') { should eq 'enable' }
+  its('options.vpn_ecmp_support') { should eq 'enable' }
+  its('options.association_default_route_table_id') { should eq 'tgw-rtb-0123456789abcdefg' }
+  its('options.propagation_default_route_table_id') { should eq 'tgw-rtb-0123456789abcdefg' }
+end
+```
+
+```ruby
+describe tgw('my-tgw') do
+  it { should exist }
+  its(:transit_gateway_id) { should eq 'tgw-1234567890abcdefg' }
+end
+```
+
+### have_attachment
+
+### have_tag
+
+### its(:transit_gateway_id), its(:transit_gateway_arn), its(:state), its(:owner_id), its(:description), its(:creation_time)
 ## <a name="vpc">vpc</a>
 
 VPC resource type.

data/lib/awspec/generator/doc/type/msk.rb

@@ -0,0 +1,17 @@
+module Awspec::Generator
+  module Doc
+    module Type
+      class Msk < Base
+        def initialize
+          super
+          @type_name = 'Msk'
+          @type = Awspec::Type::Msk.new('my-msk')
+          @ret = @type.resource_via_client
+          @matchers = []
+          @ignore_matchers = []
+          @describes = []
+        end
+      end
+    end
+  end
+end

data/lib/awspec/generator/doc/type/transit_gateway.rb

@@ -0,0 +1,17 @@
+module Awspec::Generator
+  module Doc
+    module Type
+      class TransitGateway < Base
+        def initialize
+          super
+          @type_name = 'TransitGateway'
+          @type = Awspec::Type::TransitGateway.new('my-transit-gateway')
+          @ret = @type.resource_via_client
+          @matchers = []
+          @ignore_matchers = []
+          @describes = []
+        end
+      end
+    end
+  end
+end

data/lib/awspec/helper/client_wrap.rb

@@ -2,7 +2,7 @@ require 'awspec/config'
 
 module Awspec::Helper
   class ClientWrap
-    attr_reader :client, :backoff, :iteration, :backoff_limit, :symbol
+    attr_reader :client, :backoff, :iteration, :backoff_limit, :symbol1, :symbol2
     def initialize(real_client = nil)
       raise ArgumentError, 'Client can not be nil' if real_client.nil?
       config = Awspec::Config.instance
@@ -14,7 +14,8 @@ module Awspec::Helper
       @backoff_limit = config[:client_backoff_limit]
       # build the symbol we'll use to compare to any errors caught in method_missing
       # below.
-      @symbol = real_client.class.to_s.split('::').shift(2).push('Errors', 'RequestLimitExceeded').join('::').to_sym
+      @symbol1 = real_client.class.to_s.split('::').shift(2).push('Errors', 'RequestLimitExceeded').join('::').to_sym
+      @symbol2 = real_client.class.to_s.split('::').shift(2).push('Errors', 'Throttling').join('::').to_sym
     end
 
     protected
@@ -28,7 +29,7 @@ module Awspec::Helper
       begin
         results = client.send(m, *args, &block)
       rescue Exception => e # rubocop:disable Lint/RescueException
-        raise unless e.class.to_s == symbol.to_s && backoff < backoff_limit
+        raise unless (e.class.to_s == symbol1.to_s || e.class.to_s == symbol2.to_s) && backoff < backoff_limit
 
         @backoff = backoff + (iteration * iteration * 0.5)
         @iteration += 1

data/lib/awspec/helper/finder.rb

@@ -47,6 +47,7 @@ require 'awspec/helper/finder/redshift'
 require 'awspec/helper/finder/codedeploy'
 require 'awspec/helper/finder/mq'
 require 'awspec/helper/finder/secretsmanager'
+require 'awspec/helper/finder/msk'
 
 require 'awspec/helper/finder/account_attributes'
 
@@ -103,6 +104,7 @@ module Awspec::Helper
     include Awspec::Helper::Finder::Codedeploy
     include Awspec::Helper::Finder::Mq
     include Awspec::Helper::Finder::Secretsmanager
+    include Awspec::Helper::Finder::Msk
 
     CLIENTS = {
       ec2_client: Aws::EC2::Client,
@@ -147,7 +149,8 @@ module Awspec::Helper
       redshift_client: Aws::Redshift::Client,
       codedeploy_client: Aws::CodeDeploy::Client,
       mq_client: Aws::MQ::Client,
-      secretsmanager_client: Aws::SecretsManager::Client
+      secretsmanager_client: Aws::SecretsManager::Client,
+      msk_client: Aws::Kafka::Client
     }
 
     CLIENT_OPTIONS = {

data/lib/awspec/helper/finder/acm.rb

@@ -3,8 +3,8 @@ module Awspec::Helper
     module Acm
       def find_certificate(id)
         selected = []
+        req = {}
         loop do
-          req = {}
           res = acm_client.list_certificates(req)
           selected += res.certificate_summary_list.select do |c|
             c.certificate_arn == id || c.domain_name == id
@@ -19,8 +19,8 @@ module Awspec::Helper
 
       def select_all_certificates
         certs = []
+        req = {}
         loop do
-          req = {}
           res = acm_client.list_certificates(req)
           res.certificate_summary_list.each do |c|
             certs << c.certificate_arn

data/lib/awspec/helper/finder/apigateway.rb

@@ -22,6 +22,14 @@ module Awspec::Helper
         end
         nil
       end
+
+      def find_api_resources_by_id(api_id)
+        all_resources = []
+        apigateway_client.get_resources(rest_api_id: api_id, limit: 500, embed: ['methods']).each do |response|
+          all_resources += response.items
+        end
+        all_resources != [] ? all_resources : nil
+      end
     end
   end
 end

data/lib/awspec/helper/finder/ec2.rb

@@ -43,7 +43,7 @@ module Awspec::Helper
       end
 
       # find_internet_gateway find_vpn_gateway find_customer_gateway
-      gateway_types = %w(internet vpn customer)
+      gateway_types = %w(internet vpn customer transit)
       gateway_types.each do |type|
         define_method 'find_' + type + '_gateway' do |*args|
           gateway_id = args.first
@@ -198,6 +198,15 @@ module Awspec::Helper
                                                              launch_template_name: id
                                                            })
       end
+
+      def find_tgw_attachments_by_tgw_id(tgw_id)
+        res = ec2_client.describe_transit_gateway_attachments({
+                                                                filters: [
+                                                                  { name: 'transit-gateway-id', values: [tgw_id] }
+                                                                ]
+                                                              })
+        res.transit_gateway_attachments
+      end
     end
   end
 end

data/lib/awspec/helper/finder/msk.rb

@@ -0,0 +1,15 @@
+module Awspec::Helper
+  module Finder
+    module Msk
+      def find_msk_cluster_by_name(cluster_name)
+        res = msk_client.list_clusters(
+          {
+            cluster_name_filter: cluster_name,
+            max_results: 1
+          }
+        )
+        res.cluster_info_list[0]
+      end
+    end
+  end
+end

data/lib/awspec/helper/type.rb

@@ -20,7 +20,7 @@ module Awspec
         elastictranscoder_pipeline waf_web_acl wafregional_web_acl customer_gateway vpn_gateway vpn_connection
         internet_gateway acm cloudwatch_logs dynamodb_table eip sqs ssm_parameter cloudformation_stack
         codebuild sns_topic redshift redshift_cluster_parameter_group codedeploy codedeploy_deployment_group
-        secretsmanager
+        secretsmanager msk transit_gateway
       )
 
       ACCOUNT_ATTRIBUTES = %w(

data/lib/awspec/stub/apigateway.rb

@@ -70,6 +70,45 @@ Aws.config[:apigateway] = {
           }
         }
       ]
+    },
+    get_resources: {
+      position: '1',
+      items: [
+        {
+          path: '/proxy',
+          resource_methods: {
+            'GET' => {
+              http_method: 'GET',
+              method_integration: { http_method: 'POST', uri: 'http://127.0.0.1:8080/hockey' }
+            }
+          }
+        },
+        {
+          path: '/zambonis',
+          resource_methods: {
+            'POST' => {
+              http_method: 'POST',
+              method_integration: { http_method: 'POST',
+                                    uri: 'http://127.0.0.1:8080/zambonis/{arena}?arena=Saddledome' }
+            }
+          }
+        },
+        {
+          path: '/zambonis/123',
+          resource_methods: {
+            'POST' => {
+              http_method: 'POST',
+              method_integration: { http_method: 'AWS',
+                                    uri: 'arn:aws:apigateway:us-east-1:cognito-idp:action/ListUsers' }
+            },
+            'GET' => {
+              http_method: 'GET',
+              method_integration: { http_method: 'AWS',
+                                    uri: 'arn:aws:apigateway:us-east-1:cognito-idp:action/SignUp?username=test' }
+            }
+          }
+        }
+      ]
     }
   }
 }

data/lib/awspec/stub/msk.rb

@@ -0,0 +1,84 @@
+Aws.config[:kafka] = {
+  stub_responses: {
+    list_clusters: {
+      cluster_info_list: [
+        {
+          active_operation_arn: nil,
+          broker_node_group_info: {
+            broker_az_distribution: 'DEFAULT',
+            client_subnets: [
+              'subnet-12345678909876543',
+              'subnet-90876543212345678'
+            ],
+            instance_type: 'kafka.t3.small',
+            security_groups: [
+              'sg-65432123456789098'
+            ],
+            storage_info: {
+              ebs_storage_info: {
+                volume_size: 1
+              }
+            }
+          },
+          client_authentication: nil,
+          cluster_arn: 'arn:aws:kafka:us-east-1:123456789098:cluster/did-inventory/\
+          a12345b6-123c-1de2-1234-f1g23h45i678-9',
+          cluster_name: 'my-msk',
+          creation_time: Time.new(2019, 1, 2, 10, 10, 00, '+00:00'),
+          current_broker_software_info: {
+            configuration_arn: nil,
+            configuration_revision: nil,
+            kafka_version: '2.2.1'
+          },
+          logging_info: {
+            broker_logs: {
+              cloud_watch_logs: {
+                enabled: false,
+                log_group: nil
+              },
+              firehose: {
+                delivery_stream: nil,
+                enabled: false
+              },
+              s3: {
+                bucket: nil,
+                enabled: false,
+                prefix: nil
+              }
+            }
+          },
+          current_version: 'A1BCDEFGHI23JK',
+          encryption_info: {
+            encryption_at_rest: {
+              data_volume_kms_key_id: 'arn:aws:kms:us-east-1:123456789098:key/ab1c2345-6789-01d2-3ee4-f56gh7i890jk'
+            },
+            encryption_in_transit: {
+              client_broker: 'TLS_PLAINTEXT',
+              in_cluster: true
+            }
+          },
+          enhanced_monitoring: 'DEFAULT',
+          number_of_broker_nodes: 2,
+          open_monitoring: {
+            prometheus: {
+              jmx_exporter: {
+                enabled_in_broker: false
+              },
+              node_exporter: {
+                enabled_in_broker: false
+              }
+            }
+          },
+          state: 'ACTIVE',
+          tags: {
+            'Name' => 'my-msk'
+          },
+          zookeeper_connect_string: 'z-3.my-msk.1a23bc.d4.kafka.us-east-1.amazonaws.com:\
+          1234,z-2.my-msk.1a23bc.d4.kafka.us-east-1.amazonaws.com:1234,z-1.my-msk.\
+          1a23bc.d4.kafka.us-east-1.amazonaws.com:1234'
+        }
+      ],
+      next_token: nil
+    }
+  }
+}

data/lib/awspec/stub/transit_gateway.rb

@@ -0,0 +1,52 @@
+Aws.config[:ec2] = {
+  stub_responses: {
+    describe_transit_gateways: {
+      transit_gateways: [
+        {
+          transit_gateway_id: 'tgw-1234567890abcdefg',
+          transit_gateway_arn: 'arn:aws:ec2:us-east-2:123456789012:transit-gateway/tgw-1234567890abcdefg',
+          owner_id: '123456789012',
+          options: {
+            amazon_side_asn: 64_516,
+            auto_accept_shared_attachments: 'enable',
+            default_route_table_association: 'enable',
+            default_route_table_propagation: 'enable',
+            dns_support: 'enable',
+            vpn_ecmp_support: 'enable',
+            association_default_route_table_id: 'tgw-rtb-0123456789abcdefg',
+            propagation_default_route_table_id: 'tgw-rtb-0123456789abcdefg'
+          },
+          tags: [
+            {
+              key: 'Name',
+              value: 'my-transit-gateway'
+            }
+          ]
+        }
+      ]
+    },
+    describe_transit_gateway_attachments: {
+      transit_gateway_attachments: [
+        {
+          transit_gateway_attachment_id: 'tgw-attach-1234567890abcdefg',
+          transit_gateway_id: 'tgw-1234567890abcdefg',
+          transit_gateway_owner_id: '123456789012',
+          resource_owner_id: '123456789012',
+          resource_type: 'vpc',
+          resource_id: 'vpc-12345678',
+          state: 'available',
+          association: {
+            transit_gateway_route_table_id: 'tgw-rtb-0123456789abcdefg',
+            state: 'associated'
+          },
+          tags: [
+            {
+              key: 'Name',
+              value: 'my-transit-gateway-attachment'
+            }
+          ]
+        }
+      ]
+    }
+  }
+}

data/lib/awspec/type/apigateway.rb

@@ -1,3 +1,5 @@
+require 'addressable/uri'
+
 module Awspec::Type
   class Apigateway < ResourceBase
     aws_resource Aws::APIGateway::Client
@@ -11,5 +13,53 @@ module Awspec::Type
     def id
       @id ||= resource_via_client.id if resource_via_client
     end
+
+    def api_resources
+      @api_resources.nil? ? @api_resources = find_api_resources_by_id(@id) : @api_resources
+    end
+
+    def has_path?(path)
+      check_existence
+      self.api_resources.each do |resource|
+        return resource if resource.path == path
+      end
+      nil
+    end
+
+    def has_integration_path?(path)
+      check_existence
+      self.api_resources.each do |resource|
+        next if resource.resource_methods.nil?
+        resource.resource_methods.each do |_, method|
+          if method.method_integration.http_method == 'AWS'
+            aws_path = method.method_integration.uri.match(%r{(\/[^\?]+)\??.*$}).captures[0] # Matches for ARN type path
+            return resource if aws_path == path
+          end
+          uri = Addressable::URI.parse(method.method_integration.uri)
+          return resource if uri.path == path
+        end
+      end
+      nil
+    end
+
+    def has_method?(path, http_method)
+      check_existence
+      resource_to_check = has_path?(path)
+      return nil if resource_to_check.nil?
+      resource_to_check.resource_methods.each do |_, method|
+        return resource_to_check if method.http_method == http_method
+      end
+      nil
+    end
+
+    def has_integration_method?(integration_path, http_method)
+      check_existence
+      integration_resource_to_check = has_integration_path?(integration_path)
+      return nil if integration_resource_to_check.nil?
+      integration_resource_to_check.resource_methods.each do |_, method|
+        return integration_resource_to_check if method.method_integration.http_method == http_method
+      end
+      nil
+    end
   end
 end

data/lib/awspec/type/msk.rb

@@ -0,0 +1,27 @@
+module Awspec::Type
+  class Msk < ResourceBase
+    def initialize(name)
+      super
+      @desplay_name = name
+    end
+
+    def resource_via_client
+      @resource_via_client ||= find_msk_cluster_by_name(@display_name)
+    end
+
+    def id
+      @id ||= resource_via_client.cluster_arn if resource_via_client
+    end
+
+    STATES = %w(
+      active creating updating
+      deleting failed
+    )
+
+    STATES.each do |state|
+      define_method state + '?' do
+        resource_via_client.state == state.upcase
+      end
+    end
+  end
+end

data/lib/awspec/type/security_group.rb

@@ -1,4 +1,5 @@
 module Awspec::Type
+  # rubocop:disable Metrics/ClassLength
   class SecurityGroup < ResourceBase
     aws_resource Aws::EC2::SecurityGroup
     tags_allowed
@@ -75,12 +76,24 @@ module Awspec::Type
     end
     alias_method :outbound_permissions_count, :ip_permissions_egress_count
 
+    def has_inbound_rule?(rule)
+      resource_via_client.ip_permissions.find do |permission|
+        sg_rule_match?(permission, rule)
+      end
+    end
+
     def inbound_rule_count
       resource_via_client.ip_permissions.reduce(0) do |sum, permission|
         sum += permission.ip_ranges.count + permission.user_id_group_pairs.count
       end
     end
 
+    def has_outbound_rule?(rule)
+      resource_via_client.ip_permissions_egress.find do |permission|
+        sg_rule_match?(permission, rule)
+      end
+    end
+
     def outbound_rule_count
       resource_via_client.ip_permissions_egress.reduce(0) do |sum, permission|
         sum += permission.ip_ranges.count + permission.user_id_group_pairs.count
@@ -144,5 +157,36 @@ module Awspec::Type
         port.between?(from_port, to_port)
       end
     end
+
+    def sg_rule_match?(permission, rule)
+      rule[:ip_protocol] = '-1' if rule[:ip_protocol] == 'all'
+      return false unless permission.ip_protocol == rule[:ip_protocol]
+      return false unless permission.ip_protocol == '-1' || permission.from_port == rule[:from_port]
+      return false unless permission.ip_protocol == '-1' || permission.to_port == rule[:to_port]
+
+      if rule[:ip_range]
+        return false unless permission.ip_ranges.find do |ip_range|
+          ip_range.cidr_ip == rule[:ip_range]
+        end
+      elsif rule[:group_pair]
+        return false unless permission.user_id_group_pairs.find do |pair|
+          group_pair_match?(pair, rule[:group_pair])
+        end
+      end
+      true
+    end
+
+    def group_pair_match?(actual_pair, rule_pair)
+      return false unless actual_pair.group_id == rule_pair[:group_id] || rule_pair[:group_id].nil?
+      return false unless actual_pair.group_name == rule_pair[:group_name] || rule_pair[:group_name].nil?
+      return false unless actual_pair.user_id == rule_pair[:user_id] || rule_pair[:user_id].nil?
+      return false unless actual_pair.vpc_id == rule_pair[:vpc_id] || rule_pair[:vpc_id].nil?
+      return false unless
+        actual_pair.vpc_peering_connection_id == rule_pair[:vpc_peering_connection_id] ||
+        rule_pair[:vpc_peering_connection_id].nil?
+      return false unless actual_pair.peering_status == rule_pair[:peering_status] || rule_pair[:peering_status].nil?
+      true
+    end
   end
+  # rubocop:enable Metrics/ClassLength
 end

data/lib/awspec/type/transit_gateway.rb

@@ -0,0 +1,24 @@
+module Awspec::Type
+  class TransitGateway < ResourceBase
+    aws_resource Aws::EC2::Types::TransitGateway
+    tags_allowed
+
+    def resource_via_client
+      @resource_via_client ||= find_transit_gateway(@display_name)
+    end
+
+    def id
+      @id ||= resource_via_client.transit_gateway_id if resource_via_client
+    end
+
+    def options
+      resource_via_client.options
+    end
+
+    def has_attachment?(att_id)
+      atts = find_tgw_attachments_by_tgw_id(@id)
+      ret = atts.find_all { |att| att.transit_gateway_attachment_id == att_id }
+      ret.any?
+    end
+  end
+end

data/lib/awspec/version.rb

@@ -1,3 +1,3 @@
 module Awspec
-  VERSION = '1.18.5'
+  VERSION = '1.20.0'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: awspec
 version: !ruby/object:Gem::Version
-  version: 1.18.5
+  version: 1.20.0
 platform: ruby
 authors:
 - k1LoW
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2020-03-06 00:00:00.000000000 Z
+date: 2020-06-28 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk
@@ -122,6 +122,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: addressable
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 - !ruby/object:Gem::Dependency
   name: bundler
   requirement: !ruby/object:Gem::Requirement
@@ -269,6 +283,7 @@ files:
 - doc/_resource_types/launch_configuration.md
 - doc/_resource_types/launch_template.md
 - doc/_resource_types/mq.md
+- doc/_resource_types/msk.md
 - doc/_resource_types/nat_gateway.md
 - doc/_resource_types/network_acl.md
 - doc/_resource_types/network_interface.md
@@ -292,6 +307,7 @@ files:
 - doc/_resource_types/sqs.md
 - doc/_resource_types/ssm_parameter.md
 - doc/_resource_types/subnet.md
+- doc/_resource_types/transit_gateway.md
 - doc/_resource_types/vpc.md
 - doc/_resource_types/vpn_connection.md
 - doc/_resource_types/vpn_gateway.md
@@ -368,6 +384,7 @@ files:
 - lib/awspec/generator/doc/type/launch_configuration.rb
 - lib/awspec/generator/doc/type/launch_template.rb
 - lib/awspec/generator/doc/type/mq.rb
+- lib/awspec/generator/doc/type/msk.rb
 - lib/awspec/generator/doc/type/nat_gateway.rb
 - lib/awspec/generator/doc/type/network_acl.rb
 - lib/awspec/generator/doc/type/network_interface.rb
@@ -391,6 +408,7 @@ files:
 - lib/awspec/generator/doc/type/sqs.rb
 - lib/awspec/generator/doc/type/ssm_parameter.rb
 - lib/awspec/generator/doc/type/subnet.rb
+- lib/awspec/generator/doc/type/transit_gateway.rb
 - lib/awspec/generator/doc/type/vpc.rb
 - lib/awspec/generator/doc/type/vpn_connection.rb
 - lib/awspec/generator/doc/type/vpn_gateway.rb
@@ -473,6 +491,7 @@ files:
 - lib/awspec/helper/finder/kms.rb
 - lib/awspec/helper/finder/lambda.rb
 - lib/awspec/helper/finder/mq.rb
+- lib/awspec/helper/finder/msk.rb
 - lib/awspec/helper/finder/nlb.rb
 - lib/awspec/helper/finder/rds.rb
 - lib/awspec/helper/finder/redshift.rb
@@ -588,6 +607,7 @@ files:
 - lib/awspec/stub/launch_configuration.rb
 - lib/awspec/stub/launch_template.rb
 - lib/awspec/stub/mq.rb
+- lib/awspec/stub/msk.rb
 - lib/awspec/stub/nat_gateway.rb
 - lib/awspec/stub/network_acl.rb
 - lib/awspec/stub/network_interface.rb
@@ -609,6 +629,7 @@ files:
 - lib/awspec/stub/sqs.rb
 - lib/awspec/stub/ssm_parameter.rb
 - lib/awspec/stub/subnet.rb
+- lib/awspec/stub/transit_gateway.rb
 - lib/awspec/stub/vpc.rb
 - lib/awspec/stub/vpn_connection.rb
 - lib/awspec/stub/vpn_gateway.rb
@@ -671,6 +692,7 @@ files:
 - lib/awspec/type/launch_configuration.rb
 - lib/awspec/type/launch_template.rb
 - lib/awspec/type/mq.rb
+- lib/awspec/type/msk.rb
 - lib/awspec/type/nat_gateway.rb
 - lib/awspec/type/network_acl.rb
 - lib/awspec/type/network_interface.rb
@@ -695,6 +717,7 @@ files:
 - lib/awspec/type/sqs.rb
 - lib/awspec/type/ssm_parameter.rb
 - lib/awspec/type/subnet.rb
+- lib/awspec/type/transit_gateway.rb
 - lib/awspec/type/vpc.rb
 - lib/awspec/type/vpn_connection.rb
 - lib/awspec/type/vpn_gateway.rb