awspec 1.19.1 → 1.22.0

data/lib/awspec/generator/doc/type/cognito_user_pool.rb

@@ -0,0 +1,17 @@
+module Awspec::Generator
+  module Doc
+    module Type
+      class CognitoUserPool < Base
+        def initialize
+          super
+          @type_name = 'CognitoUserPool'
+          @type = Awspec::Type::CognitoUserPool.new('my-cognito-user-pool')
+          @ret = @type.resource_via_client
+          @matchers = []
+          @ignore_matchers = []
+          @describes = []
+        end
+      end
+    end
+  end
+end

data/lib/awspec/generator/doc/type/msk.rb

@@ -0,0 +1,17 @@
+module Awspec::Generator
+  module Doc
+    module Type
+      class Msk < Base
+        def initialize
+          super
+          @type_name = 'Msk'
+          @type = Awspec::Type::Msk.new('my-msk')
+          @ret = @type.resource_via_client
+          @matchers = []
+          @ignore_matchers = []
+          @describes = []
+        end
+      end
+    end
+  end
+end

data/lib/awspec/generator/doc/type/transit_gateway.rb

@@ -0,0 +1,17 @@
+module Awspec::Generator
+  module Doc
+    module Type
+      class TransitGateway < Base
+        def initialize
+          super
+          @type_name = 'TransitGateway'
+          @type = Awspec::Type::TransitGateway.new('my-transit-gateway')
+          @ret = @type.resource_via_client
+          @matchers = []
+          @ignore_matchers = []
+          @describes = []
+        end
+      end
+    end
+  end
+end

data/lib/awspec/generator/doc/type/vpc_endpoints.rb

@@ -0,0 +1,17 @@
+module Awspec::Generator
+  module Doc
+    module Type
+      class VpcEndpoints < Base
+        def initialize
+          super
+          @type_name = 'VpcEndpoints'
+          @type = Awspec::Type::VpcEndpoints.new('my-vpc-endpoint')
+          @ret = @type.resource_via_client
+          @matchers = []
+          @ignore_matchers = []
+          @describes = []
+        end
+      end
+    end
+  end
+end

data/lib/awspec/helper/finder.rb

@@ -2,6 +2,7 @@ require 'aws-sdk'
 require 'awspec/helper/finder/nlb'
 require 'awspec/helper/finder/alb'
 require 'awspec/helper/finder/vpc'
+require 'awspec/helper/finder/vpc_endpoints'
 require 'awspec/helper/finder/subnet'
 require 'awspec/helper/finder/ec2'
 require 'awspec/helper/finder/ecr'
@@ -47,6 +48,9 @@ require 'awspec/helper/finder/redshift'
 require 'awspec/helper/finder/codedeploy'
 require 'awspec/helper/finder/mq'
 require 'awspec/helper/finder/secretsmanager'
+require 'awspec/helper/finder/cognito_user_pool'
+require 'awspec/helper/finder/msk'
+require 'awspec/helper/finder/cognito_identity_pool'
 
 require 'awspec/helper/finder/account_attributes'
 
@@ -57,6 +61,7 @@ module Awspec::Helper
     include Awspec::Helper::Finder::Nlb
     include Awspec::Helper::Finder::Alb
     include Awspec::Helper::Finder::Vpc
+    include Awspec::Helper::Finder::VpcEndpoints
     include Awspec::Helper::Finder::Subnet
     include Awspec::Helper::Finder::Ec2
     include Awspec::Helper::Finder::Ecr
@@ -103,6 +108,9 @@ module Awspec::Helper
     include Awspec::Helper::Finder::Codedeploy
     include Awspec::Helper::Finder::Mq
     include Awspec::Helper::Finder::Secretsmanager
+    include Awspec::Helper::Finder::CognitoUserPool
+    include Awspec::Helper::Finder::Msk
+    include Awspec::Helper::Finder::CognitoIdentityPool
 
     CLIENTS = {
       ec2_client: Aws::EC2::Client,
@@ -147,7 +155,10 @@ module Awspec::Helper
       redshift_client: Aws::Redshift::Client,
       codedeploy_client: Aws::CodeDeploy::Client,
       mq_client: Aws::MQ::Client,
-      secretsmanager_client: Aws::SecretsManager::Client
+      secretsmanager_client: Aws::SecretsManager::Client,
+      msk_client: Aws::Kafka::Client,
+      cognito_identity_client: Aws::CognitoIdentity::Client,
+      cognito_identity_provider_client: Aws::CognitoIdentityProvider::Client
     }
 
     CLIENT_OPTIONS = {

data/lib/awspec/helper/finder/cognito_identity_pool.rb

@@ -0,0 +1,15 @@
+module Awspec::Helper
+  module Finder
+    module CognitoIdentityPool
+      def find_identitypool_by_name(pool_name)
+        cognito_identity_client.list_identity_pools(max_results: 60).each do |response|
+          pools = response.identity_pools
+          pools.each do |pool|
+            return pool if pool.identity_pool_name == pool_name
+          end
+        end
+        nil
+      end
+    end
+  end
+end

data/lib/awspec/helper/finder/cognito_user_pool.rb

@@ -0,0 +1,15 @@
+module Awspec::Helper
+  module Finder
+    module CognitoUserPool
+      def find_userpool_by_name(pool_name)
+        cognito_identity_provider_client.list_user_pools(max_results: 60).each do |response|
+          pools = response.user_pools
+          pools.each do |pool|
+            return pool if pool.name == pool_name
+          end
+        end
+        nil
+      end
+    end
+  end
+end

data/lib/awspec/helper/finder/ec2.rb

@@ -43,7 +43,7 @@ module Awspec::Helper
       end
 
       # find_internet_gateway find_vpn_gateway find_customer_gateway
-      gateway_types = %w(internet vpn customer)
+      gateway_types = %w(internet vpn customer transit)
       gateway_types.each do |type|
         define_method 'find_' + type + '_gateway' do |*args|
           gateway_id = args.first
@@ -198,6 +198,15 @@ module Awspec::Helper
                                                              launch_template_name: id
                                                            })
       end
+
+      def find_tgw_attachments_by_tgw_id(tgw_id)
+        res = ec2_client.describe_transit_gateway_attachments({
+                                                                filters: [
+                                                                  { name: 'transit-gateway-id', values: [tgw_id] }
+                                                                ]
+                                                              })
+        res.transit_gateway_attachments
+      end
     end
   end
 end

data/lib/awspec/helper/finder/ecr.rb

@@ -5,6 +5,10 @@ module Awspec::Helper
         res = ecr_client.describe_repositories(repository_names: [repository_name])
         res.repositories.first if res.repositories.count == 1
       end
+
+      def get_policy_text(repository_name)
+        res = ecr_client.get_repository_policy(repository_name: repository_name)[:policy_text]
+      end
     end
   end
 end

data/lib/awspec/helper/finder/msk.rb

@@ -0,0 +1,15 @@
+module Awspec::Helper
+  module Finder
+    module Msk
+      def find_msk_cluster_by_name(cluster_name)
+        res = msk_client.list_clusters(
+          {
+            cluster_name_filter: cluster_name,
+            max_results: 1
+          }
+        )
+        res.cluster_info_list[0]
+      end
+    end
+  end
+end

data/lib/awspec/helper/finder/vpc_endpoints.rb

@@ -0,0 +1,15 @@
+module Awspec::Helper
+  module Finder
+    module VpcEndpoints
+      def find_vpc_endpoint(id)
+        res = ec2_client.describe_vpc_endpoints({ vpc_endpoint_ids: [id] })
+
+        ret = res.vpc_endpoints.select do |vpce|
+          vpce.vpc_endpoint_id == id
+        end
+
+        ret.single_resource(id)
+      end
+    end
+  end
+end

data/lib/awspec/helper/type.rb

@@ -20,7 +20,7 @@ module Awspec
         elastictranscoder_pipeline waf_web_acl wafregional_web_acl customer_gateway vpn_gateway vpn_connection
         internet_gateway acm cloudwatch_logs dynamodb_table eip sqs ssm_parameter cloudformation_stack
         codebuild sns_topic redshift redshift_cluster_parameter_group codedeploy codedeploy_deployment_group
-        secretsmanager
+        secretsmanager msk transit_gateway cognito_identity_pool cognito_user_pool vpc_endpoints
       )
 
       ACCOUNT_ATTRIBUTES = %w(

data/lib/awspec/stub/cognito_identity_pool.rb

@@ -0,0 +1,16 @@
+Aws.config[:cognitoidentity] = {
+  stub_responses: {
+    list_identity_pools: {
+      identity_pools: [
+        {
+          identity_pool_id: 'us-east-1:adsfkjaekljnfg234',
+          identity_pool_name: 'my-cognito-identity-pool'
+        },
+        {
+          identity_pool_id: 'us-east-1:gfdksjg87sfna943knbj',
+          identity_pool_name: 'My_Identity_Pool'
+        }
+      ], next_token: 'akvjnkjndgoierhteuh7sfdnre9erglkwnroijsdfinewr=='
+    }
+  }
+}

data/lib/awspec/stub/cognito_user_pool.rb

@@ -0,0 +1,47 @@
+Aws.config[:cognitoidentityprovider] = {
+  stub_responses: {
+    list_user_pools: {
+      user_pools: [
+        {
+          id: 'us-east-1_6adfkj4ju',
+          name: 'my-cognito-user-pool',
+          lambda_config: {
+            pre_sign_up: nil,
+            custom_message: nil,
+            post_confirmation: nil,
+            pre_authentication: nil,
+            post_authentication: nil,
+            define_auth_challenge: nil,
+            create_auth_challenge: nil,
+            verify_auth_challenge_response: nil,
+            pre_token_generation: nil,
+            user_migration: nil
+          },
+          status: nil,
+          last_modified_date: Time.new(2016, 5, 5, 5, 00, 00, '+00:00'),
+          creation_date: Time.new(2015, 1, 2, 10, 00, 00, '+00:00')
+        },
+        {
+          id: 'us-east-1_12345adsf',
+          name: 'test-pool',
+          lambda_config: {
+            pre_sign_up: nil,
+            custom_message: nil,
+            post_confirmation: nil,
+            pre_authentication: nil,
+            post_authentication: nil,
+            define_auth_challenge: nil,
+            create_auth_challenge: nil,
+            verify_auth_challenge_response: nil,
+            pre_token_generation: nil,
+            user_migration: nil
+          },
+          status: nil,
+          last_modified_date: Time.new(2019, 1, 2, 10, 00, 00, '+00:00'),
+          creation_date: Time.new(2018, 1, 2, 10, 00, 00, '+00:00')
+        }
+      ],
+      next_token: 'aoeijfasdnvakldsjfgoai'
+    }
+  }
+}

data/lib/awspec/stub/msk.rb

@@ -0,0 +1,84 @@
+Aws.config[:kafka] = {
+  stub_responses: {
+    list_clusters: {
+      cluster_info_list: [
+        {
+          active_operation_arn: nil,
+          broker_node_group_info: {
+            broker_az_distribution: 'DEFAULT',
+            client_subnets: [
+              'subnet-12345678909876543',
+              'subnet-90876543212345678'
+            ],
+            instance_type: 'kafka.t3.small',
+            security_groups: [
+              'sg-65432123456789098'
+            ],
+            storage_info: {
+              ebs_storage_info: {
+                volume_size: 1
+              }
+            }
+          },
+          client_authentication: nil,
+          cluster_arn: 'arn:aws:kafka:us-east-1:123456789098:cluster/did-inventory/\
+          a12345b6-123c-1de2-1234-f1g23h45i678-9',
+          cluster_name: 'my-msk',
+          creation_time: Time.new(2019, 1, 2, 10, 10, 00, '+00:00'),
+          current_broker_software_info: {
+            configuration_arn: nil,
+            configuration_revision: nil,
+            kafka_version: '2.2.1'
+          },
+          logging_info: {
+            broker_logs: {
+              cloud_watch_logs: {
+                enabled: false,
+                log_group: nil
+              },
+              firehose: {
+                delivery_stream: nil,
+                enabled: false
+              },
+              s3: {
+                bucket: nil,
+                enabled: false,
+                prefix: nil
+              }
+            }
+          },
+          current_version: 'A1BCDEFGHI23JK',
+          encryption_info: {
+            encryption_at_rest: {
+              data_volume_kms_key_id: 'arn:aws:kms:us-east-1:123456789098:key/ab1c2345-6789-01d2-3ee4-f56gh7i890jk'
+            },
+            encryption_in_transit: {
+              client_broker: 'TLS_PLAINTEXT',
+              in_cluster: true
+            }
+          },
+          enhanced_monitoring: 'DEFAULT',
+          number_of_broker_nodes: 2,
+          open_monitoring: {
+            prometheus: {
+              jmx_exporter: {
+                enabled_in_broker: false
+              },
+              node_exporter: {
+                enabled_in_broker: false
+              }
+            }
+          },
+          state: 'ACTIVE',
+          tags: {
+            'Name' => 'my-msk'
+          },
+          zookeeper_connect_string: 'z-3.my-msk.1a23bc.d4.kafka.us-east-1.amazonaws.com:\
+          1234,z-2.my-msk.1a23bc.d4.kafka.us-east-1.amazonaws.com:1234,z-1.my-msk.\
+          1a23bc.d4.kafka.us-east-1.amazonaws.com:1234'
+        }
+      ],
+      next_token: nil
+    }
+  }
+}

data/lib/awspec/stub/transit_gateway.rb

@@ -0,0 +1,52 @@
+Aws.config[:ec2] = {
+  stub_responses: {
+    describe_transit_gateways: {
+      transit_gateways: [
+        {
+          transit_gateway_id: 'tgw-1234567890abcdefg',
+          transit_gateway_arn: 'arn:aws:ec2:us-east-2:123456789012:transit-gateway/tgw-1234567890abcdefg',
+          owner_id: '123456789012',
+          options: {
+            amazon_side_asn: 64_516,
+            auto_accept_shared_attachments: 'enable',
+            default_route_table_association: 'enable',
+            default_route_table_propagation: 'enable',
+            dns_support: 'enable',
+            vpn_ecmp_support: 'enable',
+            association_default_route_table_id: 'tgw-rtb-0123456789abcdefg',
+            propagation_default_route_table_id: 'tgw-rtb-0123456789abcdefg'
+          },
+          tags: [
+            {
+              key: 'Name',
+              value: 'my-transit-gateway'
+            }
+          ]
+        }
+      ]
+    },
+    describe_transit_gateway_attachments: {
+      transit_gateway_attachments: [
+        {
+          transit_gateway_attachment_id: 'tgw-attach-1234567890abcdefg',
+          transit_gateway_id: 'tgw-1234567890abcdefg',
+          transit_gateway_owner_id: '123456789012',
+          resource_owner_id: '123456789012',
+          resource_type: 'vpc',
+          resource_id: 'vpc-12345678',
+          state: 'available',
+          association: {
+            transit_gateway_route_table_id: 'tgw-rtb-0123456789abcdefg',
+            state: 'associated'
+          },
+          tags: [
+            {
+              key: 'Name',
+              value: 'my-transit-gateway-attachment'
+            }
+          ]
+        }
+      ]
+    }
+  }
+}

data/lib/awspec/stub/vpc_endpoints.rb

@@ -0,0 +1,64 @@
+Aws.config[:ec2] = {
+  stub_responses: {
+    describe_vpc_endpoints: {
+      vpc_endpoints: [
+        {
+          vpc_endpoint_id: 'vpce-abc123',
+          vpc_endpoint_type: 'Gateway',
+          vpc_id: 'vpc-12345678',
+          service_name: 'com.amazonaws.us-east-1.s3',
+          state: 'available',
+          policy_document: '{"Version": "2008-10-17", "Statement": [{' \
+                           '"Effect": "Allow", "Principal": "*", "Action": "*",' \
+                           '"Resource": "*"}]}',
+          route_table_ids: ['rtb-0123456789abcdefg'],
+          subnet_ids: [],
+          groups: [],
+          private_dns_enabled: false,
+          requester_managed: false,
+          network_interface_ids: [],
+          dns_entries: [],
+          creation_timestamp: Time.new(2020, 8, 13, 9, 00, 00, '+00:00'),
+          tags: [
+            {
+              key: 'Name',
+              value: 'my_vpc_endpoint'
+            }
+          ],
+          owner_id: '112233445566'
+        },
+        {
+          vpc_endpoint_id: 'vpce-abc124',
+          vpc_endpoint_type: 'Interface',
+          vpc_id: 'vpc-12345678',
+          service_name: 'com.amazonaws.eu-west-1.codebuild',
+          state: 'available',
+          policy_document: '{"Version": "2008-10-17", "Statement": [{' \
+                           '"Effect": "Allow", "Principal": "*", "Action": "*",' \
+                           '"Resource": "*"}]}',
+          route_table_ids: [],
+          subnet_ids: ['subnet-abc123'],
+          groups: [{ group_id: 'sg-abc123', group_name: 'default' }],
+          private_dns_enabled: true,
+          requester_managed: false,
+          network_interface_ids: ['eni-06f28a949cb88b84c'],
+          dns_entries: [
+            {
+              dns_name: 'vpce-05907f23265b25f20-wwafshom.codebuild.eu-west-1.vpce.amazonaws.com',
+              hosted_zone_id: 'Z38GZ743OKFT7T'
+            }
+          ],
+          creation_timestamp: Time.new(2020, 8, 13, 9, 00, 00, '+00:00'),
+          tags: [
+            {
+              key: 'Name',
+              value: 'my_vpc_endpoint'
+            }
+          ],
+          owner_id: '112233445566'
+        }
+      ],
+      next_token: nil
+    }
+  }
+}