awspec 1.21.1 → 1.24.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: e80f68b8b745754eb273e3826b3c577fec784d55459f94bc169787768ab45a6a
-  data.tar.gz: 6fc0e5ee0ec92981dd60d8f1fc140e3354ca1b5e3f04b4367633369060509d96
+  metadata.gz: ccbb248dd9ff83f422a5d62d6463be302ee629861e3a29ebfb3b062313ccca4f
+  data.tar.gz: 14fb693105dafceb27095c0ec2af853422f5ed92ee877a69df66a4679a6acad1
 SHA512:
-  metadata.gz: 0ad3f68adf8e7bdc8664d45d9b63d7252cfcb5ac1dafb3d84acb70b537c79bec3fe86e510052890309509f06e1a5ea1dcc6d943f36f411a059785445126629eb
-  data.tar.gz: a27df4bf4b9e4dbf71377d4354e69d5be54831d18839fcbde1e7b77b78a69194eacf46fe886042e43948374b237a455578ca040a5543624d8612b6364e20d119
+  metadata.gz: 4d580f1de54fd8a7b5106d83f4b5b7320f2679d5eb58ef6d73009fb340bc7a0193b78f4f10d16601d9dacb5658a94936efd0af40699ef781229eef54c645e7f3
+  data.tar.gz: bf0f3fa1ab69f5945307284f1b3460bfadb9571c892601418dbfaee6536cd4269fdbc4b1c1631b438098dace53aeb49bdaa59773bc03d759ee3c709970c5b235

data/.travis.yml

@@ -1,6 +1,8 @@
 language: ruby
 matrix:
   include:
+    - rvm: 2.7.3
+      env: RUBYGEMS_VERSION=
     - rvm: 2.6.2
       env: RUBYGEMS_VERSION=
     - rvm: 2.5.3

data/doc/_resource_types/eks_nodegroup.md

@@ -0,0 +1,14 @@
+### exist
+
+```ruby
+describe eks_nodegroup('my-eks-nodegroup'), cluster: 'my-cluster' do
+  it { should exist }
+end
+```
+### be_active, be_creating
+
+```ruby
+describe eks('my-eks-nodegroup'), cluster: 'my-cluster' do
+  it { should be_active }
+end
+```

data/doc/_resource_types/s3_bucket.md

@@ -98,6 +98,14 @@ describe s3_bucket('my-bucket') do
 end
 ```
 
+### have_location
+
+```ruby
+describe s3_bucket('my-bucket') do
+  it { should have_location('us-east-1') }
+end
+```
+
 ### have_logging_enabled
 
 ```ruby

data/doc/_resource_types/vpc_endpoints.md

@@ -0,0 +1,70 @@
+### exist
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  it { should exist }
+end
+```
+
+describe vpc_endpoints('vpce-05907f23265b25f20'), region: $tfvars["region"]["value"] do
+  it { should exist }
+  it { should be_available }
+  it { should have_subnet('subnet-040e19eabf3226f99') }
+  it { should belong_to_vpc('vpc-00af9dcc0134b48e0') }
+  its(:private_dns_enabled) { should eq true }
+  its(:vpc_endpoint_type) { should eq 'Interface' }
+  its(:service_name) { should eq 'com.amazonaws.eu-west-1.codebuild' }
+end
+
+### be_pendingacceptance, be_pending, be_available, be_deleting, be_deleted, be_rejected, be_failed, be_expired
+
+```ruby
+describe ami('my-ami') do
+  it { should be_available }
+end
+```
+
+### belong_to_vpc
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  it { should belong_to_vpc('my-vpc') }
+end
+```
+
+### have_route_table
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  it { should have_route_table('rtb-abc123') }
+end
+```
+
+### have_subnet
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  it { should have_subnet('subnet-abc123') }
+end
+```
+
+### have_tag
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  it { should have_tag('env').value('dev') }
+end
+```
+
+### advanced
+
+`vpc_endpoints` can use `Aws::EC2::Types::VpcEndpoint` resource (see https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/EC2/Types/VpcEndpoint.html).
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  its(:private_dns_enabled) { should eq true }
+  its(:vpc_endpoint_type) { should eq 'Interface' }
+  its(:service_name) { should eq 'com.amazonaws.eu-west-1.codebuild' }
+end
+```
+

data/doc/resource_types.md

@@ -34,6 +34,7 @@
 | [efs](#efs)
 | [eip](#eip)
 | [eks](#eks)
+| [eks_nodegroup](#eks_nodegroup)
 | [elasticache](#elasticache)
 | [elasticache_cache_parameter_group](#elasticache_cache_parameter_group)
 | [elasticsearch](#elasticsearch)
@@ -76,6 +77,7 @@
 | [subnet](#subnet)
 | [transit_gateway](#transit_gateway)
 | [vpc](#vpc)
+| [vpc_endpoints](#vpc_endpoints)
 | [vpn_connection](#vpn_connection)
 | [vpn_gateway](#vpn_gateway)
 | [waf_web_acl](#waf_web_acl)
@@ -166,7 +168,7 @@ describe alb('my-alb') do
 end
 ```
 
-### its(:load_balancer_arn), its(:dns_name), its(:canonical_hosted_zone_id), its(:created_time), its(:load_balancer_name), its(:scheme), its(:vpc_id), its(:type), its(:security_groups), its(:ip_address_type)
+### its(:load_balancer_arn), its(:dns_name), its(:canonical_hosted_zone_id), its(:created_time), its(:load_balancer_name), its(:scheme), its(:vpc_id), its(:type), its(:security_groups), its(:ip_address_type), its(:customer_owned_ipv_4_pool)
 ## <a name="alb_listener">alb_listener</a>
 
 AlbListener resource type.
@@ -246,7 +248,7 @@ end
 ```
 
 
-### its(:target_group_arn), its(:target_group_name), its(:protocol), its(:port), its(:vpc_id), its(:health_check_protocol), its(:health_check_port), its(:health_check_enabled), its(:health_check_interval_seconds), its(:health_check_timeout_seconds), its(:healthy_threshold_count), its(:unhealthy_threshold_count), its(:health_check_path), its(:load_balancer_arns), its(:target_type)
+### its(:target_group_arn), its(:target_group_name), its(:protocol), its(:port), its(:vpc_id), its(:health_check_protocol), its(:health_check_port), its(:health_check_enabled), its(:health_check_interval_seconds), its(:health_check_timeout_seconds), its(:healthy_threshold_count), its(:unhealthy_threshold_count), its(:health_check_path), its(:load_balancer_arns), its(:target_type), its(:protocol_version)
 ## <a name="ami">ami</a>
 
 AMI resource type.
@@ -271,7 +273,7 @@ end
 
 ### have_tag
 
-### its(:architecture), its(:creation_date), its(:image_id), its(:image_location), its(:image_type), its(:public), its(:kernel_id), its(:owner_id), its(:platform), its(:platform_details), its(:usage_operation), its(:ramdisk_id), its(:state), its(:description), its(:ena_support), its(:hypervisor), its(:image_owner_alias), its(:name), its(:root_device_name), its(:root_device_type), its(:sriov_net_support), its(:state_reason), its(:virtualization_type)
+### its(:architecture), its(:creation_date), its(:image_id), its(:image_location), its(:image_type), its(:public), its(:kernel_id), its(:owner_id), its(:platform), its(:platform_details), its(:usage_operation), its(:ramdisk_id), its(:state), its(:description), its(:ena_support), its(:hypervisor), its(:image_owner_alias), its(:name), its(:root_device_name), its(:root_device_type), its(:sriov_net_support), its(:state_reason), its(:virtualization_type), its(:boot_mode)
 ### :unlock: Advanced use
 
 `ami` can use `Aws::EC2::Image` resource (see http://docs.aws.amazon.com/sdkforruby/api/Aws/EC2/Image.html).
@@ -296,7 +298,7 @@ end
 
 ### have_path
 
-### its(:id), its(:name), its(:description), its(:created_date), its(:version), its(:warnings), its(:binary_media_types), its(:minimum_compression_size), its(:api_key_source), its(:policy), its(:tags)
+### its(:id), its(:name), its(:description), its(:created_date), its(:version), its(:warnings), its(:binary_media_types), its(:minimum_compression_size), its(:api_key_source), its(:policy), its(:tags), its(:disable_execute_api_endpoint)
 ## <a name="autoscaling_group">autoscaling_group</a>
 
 AutoscalingGroup resource type.
@@ -358,7 +360,7 @@ describe autoscaling_group('my-auto-scaling-group') do
 end
 ```
 
-### its(:auto_scaling_group_name), its(:auto_scaling_group_arn), its(:launch_configuration_name), its(:launch_template), its(:mixed_instances_policy), its(:min_size), its(:max_size), its(:desired_capacity), its(:default_cooldown), its(:availability_zones), its(:load_balancer_names), its(:target_group_arns), its(:health_check_type), its(:health_check_grace_period), its(:created_time), its(:placement_group), its(:vpc_zone_identifier), its(:enabled_metrics), its(:status), its(:termination_policies), its(:new_instances_protected_from_scale_in), its(:service_linked_role_arn), its(:max_instance_lifetime)
+### its(:auto_scaling_group_name), its(:auto_scaling_group_arn), its(:launch_configuration_name), its(:launch_template), its(:mixed_instances_policy), its(:min_size), its(:max_size), its(:desired_capacity), its(:default_cooldown), its(:availability_zones), its(:load_balancer_names), its(:target_group_arns), its(:health_check_type), its(:health_check_grace_period), its(:created_time), its(:placement_group), its(:vpc_zone_identifier), its(:enabled_metrics), its(:status), its(:termination_policies), its(:new_instances_protected_from_scale_in), its(:service_linked_role_arn), its(:max_instance_lifetime), its(:capacity_rebalance), its(:warm_pool_configuration), its(:warm_pool_size)
 ## <a name="batch_compute_environment">batch_compute_environment</a>
 
 BatchComputeEnvironment resource type.
@@ -397,7 +399,7 @@ end
 
 ### be_unmanaged
 
-### its(:compute_environment_name), its(:compute_environment_arn), its(:ecs_cluster_arn), its(:type), its(:state), its(:status), its(:status_reason), its(:service_role)
+### its(:compute_environment_name), its(:compute_environment_arn), its(:ecs_cluster_arn), its(:tags), its(:type), its(:state), its(:status), its(:status_reason), its(:service_role)
 ## <a name="batch_job_definition">batch_job_definition</a>
 
 BatchJobDefinition resource type.
@@ -410,7 +412,7 @@ describe batch_job_definition('my-batch-job-definition') do
 end
 ```
 
-### its(:job_definition_name), its(:job_definition_arn), its(:revision), its(:status), its(:type), its(:parameters), its(:retry_strategy), its(:timeout), its(:node_properties)
+### its(:job_definition_name), its(:job_definition_arn), its(:revision), its(:status), its(:type), its(:parameters), its(:retry_strategy), its(:timeout), its(:node_properties), its(:tags), its(:propagate_tags), its(:platform_capabilities)
 ## <a name="batch_job_queue">batch_job_queue</a>
 
 BatchJobQueue resource type.
@@ -436,7 +438,7 @@ describe batch_job_queue('my-batch-job-queue') do
 end
 ```
 
-### its(:job_queue_name), its(:job_queue_arn), its(:state), its(:status), its(:status_reason), its(:priority)
+### its(:job_queue_name), its(:job_queue_arn), its(:state), its(:status), its(:status_reason), its(:priority), its(:tags)
 ## <a name="cloudformation_stack">cloudformation_stack</a>
 
 CloudformationStack resource type.
@@ -742,7 +744,7 @@ describe codedeploy_deployment_group('my-codedeploy-deployment-group'), applicat
 end
 ```
 
-### its(:application_name), its(:deployment_group_id), its(:deployment_group_name), its(:deployment_config_name), its(:on_premises_instance_tag_filters), its(:service_role_arn), its(:target_revision), its(:trigger_configurations), its(:alarm_configuration), its(:deployment_style), its(:load_balancer_info), its(:last_successful_deployment), its(:last_attempted_deployment), its(:ec2_tag_set), its(:on_premises_tag_set), its(:compute_platform), its(:ecs_services)
+### its(:application_name), its(:deployment_group_id), its(:deployment_group_name), its(:deployment_config_name), its(:on_premises_instance_tag_filters), its(:service_role_arn), its(:target_revision), its(:trigger_configurations), its(:alarm_configuration), its(:deployment_style), its(:outdated_instances_strategy), its(:load_balancer_info), its(:last_successful_deployment), its(:last_attempted_deployment), its(:ec2_tag_set), its(:on_premises_tag_set), its(:compute_platform), its(:ecs_services)
 ## <a name="cognito_identity_pool">cognito_identity_pool</a>
 
 CognitoIdentityPool resource type.
@@ -930,7 +932,7 @@ end
 ```
 
 
-### its(:availability_zone), its(:create_time), its(:encrypted), its(:kms_key_id), its(:outpost_arn), its(:size), its(:snapshot_id), its(:state), its(:volume_id), its(:iops), its(:volume_type), its(:fast_restored), its(:multi_attach_enabled)
+### its(:availability_zone), its(:create_time), its(:encrypted), its(:kms_key_id), its(:outpost_arn), its(:size), its(:snapshot_id), its(:state), its(:volume_id), its(:iops), its(:volume_type), its(:fast_restored), its(:multi_attach_enabled), its(:throughput)
 ### :unlock: Advanced use
 
 `ebs` can use `Aws::EC2::Volume` resource (see http://docs.aws.amazon.com/sdkforruby/api/Aws/EC2/Volume.html).
@@ -1116,7 +1118,7 @@ end
 ```
 
 
-### its(:ami_launch_index), its(:image_id), its(:instance_id), its(:instance_type), its(:kernel_id), its(:key_name), its(:launch_time), its(:monitoring), its(:placement), its(:platform), its(:private_dns_name), its(:private_ip_address), its(:product_codes), its(:public_dns_name), its(:public_ip_address), its(:ramdisk_id), its(:state_transition_reason), its(:subnet_id), its(:vpc_id), its(:architecture), its(:client_token), its(:ebs_optimized), its(:ena_support), its(:hypervisor), its(:instance_lifecycle), its(:elastic_gpu_associations), its(:elastic_inference_accelerator_associations), its(:outpost_arn), its(:root_device_name), its(:root_device_type), its(:source_dest_check), its(:spot_instance_request_id), its(:sriov_net_support), its(:state_reason), its(:virtualization_type), its(:cpu_options), its(:capacity_reservation_id), its(:capacity_reservation_specification), its(:hibernation_options), its(:licenses), its(:metadata_options)
+### its(:ami_launch_index), its(:image_id), its(:instance_id), its(:instance_type), its(:kernel_id), its(:key_name), its(:launch_time), its(:monitoring), its(:placement), its(:platform), its(:private_dns_name), its(:private_ip_address), its(:product_codes), its(:public_dns_name), its(:public_ip_address), its(:ramdisk_id), its(:state_transition_reason), its(:subnet_id), its(:vpc_id), its(:architecture), its(:client_token), its(:ebs_optimized), its(:ena_support), its(:hypervisor), its(:instance_lifecycle), its(:elastic_gpu_associations), its(:elastic_inference_accelerator_associations), its(:outpost_arn), its(:root_device_name), its(:root_device_type), its(:source_dest_check), its(:spot_instance_request_id), its(:sriov_net_support), its(:state_reason), its(:virtualization_type), its(:cpu_options), its(:capacity_reservation_id), its(:capacity_reservation_specification), its(:hibernation_options), its(:licenses), its(:metadata_options), its(:enclave_options), its(:boot_mode)
 ### :unlock: Advanced use
 
 `ec2` can use `Aws::EC2::Instance` resource (see http://docs.aws.amazon.com/sdkforruby/api/Aws/EC2/Instance.html).
@@ -1212,7 +1214,7 @@ describe ecs_cluster('my-ecs-cluster') do
 end
 ```
 
-### its(:cluster_arn), its(:cluster_name), its(:status), its(:registered_container_instances_count), its(:running_tasks_count), its(:pending_tasks_count), its(:active_services_count), its(:statistics), its(:tags), its(:settings), its(:capacity_providers), its(:default_capacity_provider_strategy), its(:attachments), its(:attachments_status)
+### its(:cluster_arn), its(:cluster_name), its(:configuration), its(:status), its(:registered_container_instances_count), its(:running_tasks_count), its(:pending_tasks_count), its(:active_services_count), its(:statistics), its(:tags), its(:settings), its(:capacity_providers), its(:default_capacity_provider_strategy), its(:attachments), its(:attachments_status)
 ## <a name="ecs_container_instance">ecs_container_instance</a>
 
 ECS Container Instance resource type.
@@ -1259,7 +1261,7 @@ describe ecs_service('my-ecs-service') do
 end
 ```
 
-### its(:service_arn), its(:service_name), its(:cluster_arn), its(:load_balancers), its(:service_registries), its(:status), its(:desired_count), its(:running_count), its(:pending_count), its(:launch_type), its(:capacity_provider_strategy), its(:platform_version), its(:task_definition), its(:task_sets), its(:role_arn), its(:created_at), its(:placement_constraints), its(:placement_strategy), its(:network_configuration), its(:health_check_grace_period_seconds), its(:scheduling_strategy), its(:deployment_controller), its(:tags), its(:created_by), its(:enable_ecs_managed_tags), its(:propagate_tags)
+### its(:service_arn), its(:service_name), its(:cluster_arn), its(:load_balancers), its(:service_registries), its(:status), its(:desired_count), its(:running_count), its(:pending_count), its(:launch_type), its(:capacity_provider_strategy), its(:platform_version), its(:task_definition), its(:task_sets), its(:role_arn), its(:created_at), its(:placement_constraints), its(:placement_strategy), its(:network_configuration), its(:health_check_grace_period_seconds), its(:scheduling_strategy), its(:deployment_controller), its(:tags), its(:created_by), its(:enable_ecs_managed_tags), its(:propagate_tags), its(:enable_execute_command)
 ## <a name="ecs_task_definition">ecs_task_definition</a>
 
 ECS Task Definition resource type.
@@ -1281,7 +1283,7 @@ describe ecs_task_definition('my-ecs-task-definition') do
 end
 ```
 
-### its(:task_definition_arn), its(:family), its(:task_role_arn), its(:execution_role_arn), its(:network_mode), its(:revision), its(:volumes), its(:status), its(:requires_attributes), its(:placement_constraints), its(:compatibilities), its(:requires_compatibilities), its(:cpu), its(:memory), its(:inference_accelerators), its(:pid_mode), its(:ipc_mode), its(:proxy_configuration)
+### its(:task_definition_arn), its(:family), its(:task_role_arn), its(:execution_role_arn), its(:network_mode), its(:revision), its(:volumes), its(:status), its(:requires_attributes), its(:placement_constraints), its(:compatibilities), its(:requires_compatibilities), its(:cpu), its(:memory), its(:inference_accelerators), its(:pid_mode), its(:ipc_mode), its(:proxy_configuration), its(:registered_at), its(:deregistered_at), its(:registered_by), its(:ephemeral_storage)
 ## <a name="efs">efs</a>
 
 EFS resource type.
@@ -1303,7 +1305,7 @@ describe efs('my-efs') do
 end
 ```
 
-### its(:owner_id), its(:creation_token), its(:file_system_id), its(:file_system_arn), its(:creation_time), its(:life_cycle_state), its(:name), its(:number_of_mount_targets), its(:performance_mode), its(:encrypted), its(:kms_key_id), its(:throughput_mode), its(:provisioned_throughput_in_mibps)
+### its(:owner_id), its(:creation_token), its(:file_system_id), its(:file_system_arn), its(:creation_time), its(:life_cycle_state), its(:name), its(:number_of_mount_targets), its(:performance_mode), its(:encrypted), its(:kms_key_id), its(:throughput_mode), its(:provisioned_throughput_in_mibps), its(:availability_zone_name), its(:availability_zone_id)
 ## <a name="elastic_ip">elastic_ip</a>
 
 Elastic IP resource type.
@@ -1355,7 +1357,22 @@ describe eks('my-eks') do
 end
 ```
 
-### its(:name), its(:arn), its(:created_at), its(:version), its(:endpoint), its(:role_arn), its(:logging), its(:identity), its(:status), its(:client_request_token), its(:platform_version), its(:tags), its(:encryption_config)
+### its(:name), its(:arn), its(:created_at), its(:version), its(:endpoint), its(:role_arn), its(:kubernetes_network_config), its(:logging), its(:identity), its(:status), its(:client_request_token), its(:platform_version), its(:tags), its(:encryption_config)
+## <a name="eks_nodegroup">eks_nodegroup</a>
+
+EksNodegroup resource type.
+
+### exist
+
+```ruby
+describe eks_nodegroup('my-eks-nodegroup'), cluster: 'my-cluster' do
+  it { should exist }
+end
+```
+
+### be_active, be_inactive
+
+### its(:nodegroup_name), its(:nodegroup_arn), its(:cluster_name), its(:version), its(:release_version), its(:created_at), its(:modified_at), its(:status), its(:capacity_type), its(:scaling_config), its(:instance_types), its(:subnets), its(:remote_access), its(:ami_type), its(:node_role), its(:labels), its(:resources), its(:disk_size), its(:health), its(:launch_template), its(:tags)
 ## <a name="elasticache">elasticache</a>
 
 Elasticache resource type.
@@ -1424,7 +1441,7 @@ describe elasticache('my-rep-group-001') do
 end
 ```
 
-### its(:cache_cluster_id), its(:configuration_endpoint), its(:client_download_landing_page), its(:cache_node_type), its(:engine), its(:engine_version), its(:cache_cluster_status), its(:num_cache_nodes), its(:preferred_availability_zone), its(:cache_cluster_create_time), its(:preferred_maintenance_window), its(:notification_configuration), its(:cache_security_groups), its(:cache_subnet_group_name), its(:cache_nodes), its(:auto_minor_version_upgrade), its(:replication_group_id), its(:snapshot_retention_limit), its(:snapshot_window), its(:auth_token_enabled), its(:auth_token_last_modified_date), its(:transit_encryption_enabled), its(:at_rest_encryption_enabled), its(:arn)
+### its(:cache_cluster_id), its(:configuration_endpoint), its(:client_download_landing_page), its(:cache_node_type), its(:engine), its(:engine_version), its(:cache_cluster_status), its(:num_cache_nodes), its(:preferred_availability_zone), its(:preferred_outpost_arn), its(:cache_cluster_create_time), its(:preferred_maintenance_window), its(:notification_configuration), its(:cache_security_groups), its(:cache_subnet_group_name), its(:cache_nodes), its(:auto_minor_version_upgrade), its(:replication_group_id), its(:snapshot_retention_limit), its(:snapshot_window), its(:auth_token_enabled), its(:auth_token_last_modified_date), its(:transit_encryption_enabled), its(:at_rest_encryption_enabled), its(:arn), its(:replication_group_log_delivery_enabled), its(:log_delivery_configurations)
 ## <a name="elasticache_cache_parameter_group">elasticache_cache_parameter_group</a>
 
 ElasticacheCacheParameterGroup resource type.
@@ -1503,7 +1520,7 @@ end
 ```
 
 
-### its(:domain_id), its(:domain_name), its(:arn), its(:created), its(:deleted), its(:endpoint), its(:endpoints), its(:processing), its(:upgrade_processing), its(:elasticsearch_version), its(:access_policies), its(:snapshot_options), its(:vpc_options), its(:cognito_options), its(:encryption_at_rest_options), its(:node_to_node_encryption_options), its(:advanced_options), its(:log_publishing_options), its(:service_software_options), its(:domain_endpoint_options), its(:advanced_security_options)
+### its(:domain_id), its(:domain_name), its(:arn), its(:created), its(:deleted), its(:endpoint), its(:endpoints), its(:processing), its(:upgrade_processing), its(:elasticsearch_version), its(:access_policies), its(:snapshot_options), its(:vpc_options), its(:cognito_options), its(:encryption_at_rest_options), its(:node_to_node_encryption_options), its(:advanced_options), its(:log_publishing_options), its(:service_software_options), its(:domain_endpoint_options), its(:advanced_security_options), its(:auto_tune_options)
 ## <a name="elastictranscoder_pipeline">elastictranscoder_pipeline</a>
 
 ElastictranscoderPipeline resource type.
@@ -1648,7 +1665,7 @@ describe emr('my-emr') do
 end
 ```
 
-### its(:id), its(:name), its(:instance_collection_type), its(:log_uri), its(:log_encryption_kms_key_id), its(:requested_ami_version), its(:running_ami_version), its(:release_label), its(:auto_terminate), its(:termination_protected), its(:visible_to_all_users), its(:service_role), its(:normalized_instance_hours), its(:master_public_dns_name), its(:configurations), its(:security_configuration), its(:auto_scaling_role), its(:scale_down_behavior), its(:custom_ami_id), its(:ebs_root_volume_size), its(:repo_upgrade_on_boot), its(:cluster_arn), its(:outpost_arn), its(:step_concurrency_level)
+### its(:id), its(:name), its(:instance_collection_type), its(:log_uri), its(:log_encryption_kms_key_id), its(:requested_ami_version), its(:running_ami_version), its(:release_label), its(:auto_terminate), its(:termination_protected), its(:visible_to_all_users), its(:service_role), its(:normalized_instance_hours), its(:master_public_dns_name), its(:configurations), its(:security_configuration), its(:auto_scaling_role), its(:scale_down_behavior), its(:custom_ami_id), its(:ebs_root_volume_size), its(:repo_upgrade_on_boot), its(:cluster_arn), its(:outpost_arn), its(:step_concurrency_level), its(:placement_groups)
 ## <a name="firehose">firehose</a>
 
 Firehose resource type.
@@ -1846,7 +1863,7 @@ describe iam_policy('my-iam-user') do
 end
 ```
 
-### its(:policy_name), its(:policy_id), its(:arn), its(:path), its(:default_version_id), its(:attachment_count), its(:permissions_boundary_usage_count), its(:is_attachable), its(:description), its(:create_date), its(:update_date)
+### its(:policy_name), its(:policy_id), its(:arn), its(:path), its(:default_version_id), its(:attachment_count), its(:permissions_boundary_usage_count), its(:is_attachable), its(:description), its(:create_date), its(:update_date), its(:tags)
 ## <a name="iam_role">iam_role</a>
 
 IamRole resource type.
@@ -2210,7 +2227,7 @@ end
 
 This matcher does not support Amazon S3 event sources ([see SDK doc](http://docs.aws.amazon.com/sdkforruby/api/Aws/Lambda/Client.html#list_event_source_mappings-instance_method)).
 
-### its(:function_name), its(:function_arn), its(:runtime), its(:role), its(:handler), its(:code_size), its(:description), its(:timeout), its(:memory_size), its(:last_modified), its(:code_sha_256), its(:version), its(:vpc_config), its(:dead_letter_config), its(:kms_key_arn), its(:master_arn), its(:revision_id), its(:layers), its(:state), its(:state_reason), its(:state_reason_code), its(:last_update_status), its(:last_update_status_reason), its(:last_update_status_reason_code), its(:file_system_configs)
+### its(:function_name), its(:function_arn), its(:runtime), its(:role), its(:handler), its(:code_size), its(:description), its(:timeout), its(:memory_size), its(:last_modified), its(:code_sha_256), its(:version), its(:vpc_config), its(:dead_letter_config), its(:kms_key_arn), its(:master_arn), its(:revision_id), its(:layers), its(:state), its(:state_reason), its(:state_reason_code), its(:last_update_status), its(:last_update_status_reason), its(:last_update_status_reason_code), its(:file_system_configs), its(:package_type), its(:image_config_response), its(:signing_profile_version_arn), its(:signing_job_arn)
 ## <a name="launch_configuration">launch_configuration</a>
 
 LaunchConfiguration resource type.
@@ -2356,7 +2373,7 @@ end
 
 ### be_updating
 
-### its(:active_operation_arn), its(:client_authentication), its(:cluster_arn), its(:cluster_name), its(:creation_time), its(:current_version), its(:enhanced_monitoring), its(:number_of_broker_nodes), its(:state), its(:zookeeper_connect_string)
+### its(:active_operation_arn), its(:client_authentication), its(:cluster_arn), its(:cluster_name), its(:creation_time), its(:current_version), its(:enhanced_monitoring), its(:number_of_broker_nodes), its(:state), its(:zookeeper_connect_string), its(:zookeeper_connect_string_tls)
 ## <a name="nat_gateway">nat_gateway</a>
 
 NatGateway resource type.
@@ -2607,7 +2624,7 @@ describe nlb('my-nlb') do
 end
 ```
 
-### its(:load_balancer_arn), its(:dns_name), its(:canonical_hosted_zone_id), its(:created_time), its(:load_balancer_name), its(:scheme), its(:vpc_id), its(:type), its(:security_groups), its(:ip_address_type)
+### its(:load_balancer_arn), its(:dns_name), its(:canonical_hosted_zone_id), its(:created_time), its(:load_balancer_name), its(:scheme), its(:vpc_id), its(:type), its(:security_groups), its(:ip_address_type), its(:customer_owned_ipv_4_pool)
 ## <a name="nlb_listener">nlb_listener</a>
 
 NlbListener resource type.
@@ -2687,7 +2704,7 @@ end
 ```
 
 
-### its(:target_group_arn), its(:target_group_name), its(:protocol), its(:port), its(:vpc_id), its(:health_check_protocol), its(:health_check_port), its(:health_check_enabled), its(:health_check_interval_seconds), its(:health_check_timeout_seconds), its(:healthy_threshold_count), its(:unhealthy_threshold_count), its(:health_check_path), its(:load_balancer_arns), its(:target_type)
+### its(:target_group_arn), its(:target_group_name), its(:protocol), its(:port), its(:vpc_id), its(:health_check_protocol), its(:health_check_port), its(:health_check_enabled), its(:health_check_interval_seconds), its(:health_check_timeout_seconds), its(:healthy_threshold_count), its(:unhealthy_threshold_count), its(:health_check_path), its(:load_balancer_arns), its(:target_type), its(:protocol_version)
 ## <a name="rds">rds</a>
 
 RDS resource type.
@@ -2784,7 +2801,7 @@ end
 ```
 
 
-### its(:vpc_id), its(:db_instance_identifier), its(:db_instance_class), its(:engine), its(:db_instance_status), its(:master_username), its(:db_name), its(:endpoint), its(:allocated_storage), its(:instance_create_time), its(:preferred_backup_window), its(:backup_retention_period), its(:db_security_groups), its(:availability_zone), its(:preferred_maintenance_window), its(:pending_modified_values), its(:latest_restorable_time), its(:multi_az), its(:engine_version), its(:auto_minor_version_upgrade), its(:read_replica_source_db_instance_identifier), its(:read_replica_db_instance_identifiers), its(:read_replica_db_cluster_identifiers), its(:license_model), its(:iops), its(:character_set_name), its(:secondary_availability_zone), its(:publicly_accessible), its(:status_infos), its(:storage_type), its(:tde_credential_arn), its(:db_instance_port), its(:db_cluster_identifier), its(:storage_encrypted), its(:kms_key_id), its(:dbi_resource_id), its(:ca_certificate_identifier), its(:domain_memberships), its(:copy_tags_to_snapshot), its(:monitoring_interval), its(:enhanced_monitoring_resource_arn), its(:monitoring_role_arn), its(:promotion_tier), its(:db_instance_arn), its(:timezone), its(:iam_database_authentication_enabled), its(:performance_insights_enabled), its(:performance_insights_kms_key_id), its(:performance_insights_retention_period), its(:enabled_cloudwatch_logs_exports), its(:processor_features), its(:deletion_protection), its(:associated_roles), its(:listener_endpoint), its(:max_allocated_storage)
+### its(:vpc_id), its(:db_instance_identifier), its(:db_instance_class), its(:engine), its(:db_instance_status), its(:master_username), its(:db_name), its(:endpoint), its(:allocated_storage), its(:instance_create_time), its(:preferred_backup_window), its(:backup_retention_period), its(:db_security_groups), its(:availability_zone), its(:preferred_maintenance_window), its(:pending_modified_values), its(:latest_restorable_time), its(:multi_az), its(:engine_version), its(:auto_minor_version_upgrade), its(:read_replica_source_db_instance_identifier), its(:read_replica_db_instance_identifiers), its(:read_replica_db_cluster_identifiers), its(:replica_mode), its(:license_model), its(:iops), its(:character_set_name), its(:nchar_character_set_name), its(:secondary_availability_zone), its(:publicly_accessible), its(:status_infos), its(:storage_type), its(:tde_credential_arn), its(:db_instance_port), its(:db_cluster_identifier), its(:storage_encrypted), its(:kms_key_id), its(:dbi_resource_id), its(:ca_certificate_identifier), its(:domain_memberships), its(:copy_tags_to_snapshot), its(:monitoring_interval), its(:enhanced_monitoring_resource_arn), its(:monitoring_role_arn), its(:promotion_tier), its(:db_instance_arn), its(:timezone), its(:iam_database_authentication_enabled), its(:performance_insights_enabled), its(:performance_insights_kms_key_id), its(:performance_insights_retention_period), its(:enabled_cloudwatch_logs_exports), its(:processor_features), its(:deletion_protection), its(:associated_roles), its(:listener_endpoint), its(:max_allocated_storage), its(:tag_list), its(:db_instance_automated_backups_replications), its(:customer_owned_ip_enabled), its(:aws_backup_recovery_point_arn)
 ### :unlock: Advanced use
 
 `rds` can use `Aws::RDS::DBInstance` resource (see http://docs.aws.amazon.com/sdkforruby/api/Aws/RDS/DBInstance.html).
@@ -2916,7 +2933,7 @@ describe redshift('my-redshift') do
 end
 ```
 
-### its(:vpc_id), its(:cluster_identifier), its(:node_type), its(:cluster_status), its(:cluster_availability_status), its(:modify_status), its(:master_username), its(:db_name), its(:endpoint), its(:cluster_create_time), its(:automated_snapshot_retention_period), its(:manual_snapshot_retention_period), its(:cluster_security_groups), its(:cluster_subnet_group_name), its(:vpc_id), its(:availability_zone), its(:preferred_maintenance_window), its(:pending_modified_values), its(:cluster_version), its(:allow_version_upgrade), its(:number_of_nodes), its(:publicly_accessible), its(:encrypted), its(:restore_status), its(:data_transfer_progress), its(:hsm_status), its(:cluster_snapshot_copy_status), its(:cluster_public_key), its(:cluster_nodes), its(:elastic_ip_status), its(:cluster_revision_number), its(:kms_key_id), its(:enhanced_vpc_routing), its(:iam_roles), its(:pending_actions), its(:maintenance_track_name), its(:elastic_resize_number_of_node_options), its(:deferred_maintenance_windows), its(:snapshot_schedule_identifier), its(:snapshot_schedule_state), its(:expected_next_snapshot_schedule_time), its(:expected_next_snapshot_schedule_time_status), its(:next_maintenance_window_start_time), its(:resize_info)
+### its(:vpc_id), its(:cluster_identifier), its(:node_type), its(:cluster_status), its(:cluster_availability_status), its(:modify_status), its(:master_username), its(:db_name), its(:endpoint), its(:cluster_create_time), its(:automated_snapshot_retention_period), its(:manual_snapshot_retention_period), its(:cluster_security_groups), its(:cluster_subnet_group_name), its(:vpc_id), its(:availability_zone), its(:preferred_maintenance_window), its(:pending_modified_values), its(:cluster_version), its(:allow_version_upgrade), its(:number_of_nodes), its(:publicly_accessible), its(:encrypted), its(:restore_status), its(:data_transfer_progress), its(:hsm_status), its(:cluster_snapshot_copy_status), its(:cluster_public_key), its(:cluster_nodes), its(:elastic_ip_status), its(:cluster_revision_number), its(:kms_key_id), its(:enhanced_vpc_routing), its(:iam_roles), its(:pending_actions), its(:maintenance_track_name), its(:elastic_resize_number_of_node_options), its(:deferred_maintenance_windows), its(:snapshot_schedule_identifier), its(:snapshot_schedule_state), its(:expected_next_snapshot_schedule_time), its(:expected_next_snapshot_schedule_time_status), its(:next_maintenance_window_start_time), its(:resize_info), its(:availability_zone_relocation_status), its(:cluster_namespace_arn), its(:total_storage_capacity_in_mega_bytes), its(:aqua_configuration)
 ## <a name="redshift_cluster_parameter_group">redshift_cluster_parameter_group</a>
 
 RedshiftClusterParameterGroup resource type.
@@ -3113,6 +3130,15 @@ end
 ```
 
 
+### have_location
+
+```ruby
+describe s3_bucket('my-bucket') do
+  it { should have_location('us-east-1') }
+end
+```
+
+
 ### have_logging_enabled
 
 ```ruby
@@ -3232,7 +3258,7 @@ describe secretsmanager('my-secret') do
 end
 ```
 
-### its(:arn), its(:name), its(:description), its(:kms_key_id), its(:rotation_enabled), its(:rotation_lambda_arn), its(:last_rotated_date), its(:last_changed_date), its(:last_accessed_date), its(:deleted_date), its(:owning_service), its(:created_date)
+### its(:arn), its(:name), its(:description), its(:kms_key_id), its(:rotation_enabled), its(:rotation_lambda_arn), its(:last_rotated_date), its(:last_changed_date), its(:last_accessed_date), its(:deleted_date), its(:owning_service), its(:created_date), its(:primary_region), its(:replication_status)
 ## <a name="security_group">security_group</a>
 
 SecurityGroup resource type.
@@ -3644,6 +3670,86 @@ describe vpc('my-vpc') do
 end
 ```
 
+## <a name="vpc_endpoints">vpc_endpoints</a>
+
+VpcEndpoints resource type.
+
+### exist
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  it { should exist }
+end
+```
+
+describe vpc_endpoints('vpce-05907f23265b25f20'), region: $tfvars["region"]["value"] do
+  it { should exist }
+  it { should be_available }
+  it { should have_subnet('subnet-040e19eabf3226f99') }
+  it { should belong_to_vpc('vpc-00af9dcc0134b48e0') }
+  its(:private_dns_enabled) { should eq true }
+  its(:vpc_endpoint_type) { should eq 'Interface' }
+  its(:service_name) { should eq 'com.amazonaws.eu-west-1.codebuild' }
+end
+
+
+### be_available
+
+### be_deleted
+
+### be_deleting
+
+### be_expired
+
+### be_failed
+
+### be_pending
+
+### be_pendingacceptance
+
+### be_rejected
+
+### have_route_table
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  it { should have_route_table('rtb-abc123') }
+end
+```
+
+
+### have_subnet
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  it { should have_subnet('subnet-abc123') }
+end
+```
+
+
+### have_tag
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  it { should have_tag('env').value('dev') }
+end
+```
+
+
+
+### :unlock: Advanced use
+
+`vpc_endpoints` can use `Aws::EC2::Types::VpcEndpoint` resource (see https://docs.aws.amazon.com/sdk-for-ruby/v3/api/Aws/EC2/Types/VpcEndpoint.html).
+
+```ruby
+describe vpc_endpoints('my-vpc-endpoint') do
+  its(:private_dns_enabled) { should eq true }
+  its(:vpc_endpoint_type) { should eq 'Interface' }
+  its(:service_name) { should eq 'com.amazonaws.eu-west-1.codebuild' }
+end
+```
+
+
 ## <a name="vpn_connection">vpn_connection</a>
 
 VpnConnection resource type.

data/lib/awspec/generator/doc/type/eks_nodegroup.rb

@@ -0,0 +1,19 @@
+module Awspec::Generator
+  module Doc
+    module Type
+      class EksNodegroup < Base
+        def initialize
+          super
+          @type_name = 'EksNodegroup'
+          @type = Awspec::Type::EksNodegroup.new('my-eks-nodegroup')
+          @ret = @type.resource_via_client
+          @matchers = [
+            Awspec::Type::EksNodegroup::STATES.map { |state| 'be_' + state.downcase }.join(', ')
+          ]
+          @ignore_matchers = Awspec::Type::EksNodegroup::STATES.map { |state| 'be_' + state.downcase }
+          @describes = []
+        end
+      end
+    end
+  end
+end

data/lib/awspec/generator/doc/type/vpc_endpoints.rb

@@ -0,0 +1,17 @@
+module Awspec::Generator
+  module Doc
+    module Type
+      class VpcEndpoints < Base
+        def initialize
+          super
+          @type_name = 'VpcEndpoints'
+          @type = Awspec::Type::VpcEndpoints.new('my-vpc-endpoint')
+          @ret = @type.resource_via_client
+          @matchers = []
+          @ignore_matchers = []
+          @describes = []
+        end
+      end
+    end
+  end
+end

data/lib/awspec/generator/spec/iam_group.rb

@@ -11,7 +11,7 @@ module Awspec::Generator
                                                 group_name: group.group_name,
                                                 policy_name: policy_name
                                               })
-            document = JSON.generate(JSON.parse(URI.decode(res.policy_document)))
+            document = JSON.generate(JSON.parse(URI.decode_www_form_component(res.policy_document)))
             "it { should have_inline_policy('#{policy_name}').policy_document('#{document}') }"
           end
           content = ERB.new(iam_group_spec_template, nil, '-').result(binding).gsub(/^\n/, '')

data/lib/awspec/generator/spec/iam_role.rb

@@ -11,7 +11,7 @@ module Awspec::Generator
                                                role_name: role.role_name,
                                                policy_name: policy_name
                                              })
-            document = JSON.generate(JSON.parse(URI.decode(res.policy_document)))
+            document = JSON.generate(JSON.parse(URI.decode_www_form_component(res.policy_document)))
             "it { should have_inline_policy('#{policy_name}').policy_document('#{document}') }"
           end
           content = ERB.new(iam_role_spec_template, nil, '-').result(binding).gsub(/^\n/, '')

data/lib/awspec/generator/spec/iam_user.rb

@@ -11,7 +11,7 @@ module Awspec::Generator
                                                user_name: user.user_name,
                                                policy_name: policy_name
                                              })
-            document = JSON.generate(JSON.parse(URI.decode(res.policy_document)))
+            document = JSON.generate(JSON.parse(URI.decode_www_form_component(res.policy_document)))
             "it { should have_inline_policy('#{policy_name}').policy_document('#{document}') }"
           end
           content = ERB.new(iam_user_spec_template, nil, '-').result(binding).gsub(/^\n/, '')

data/lib/awspec/generator/spec/s3_bucket.rb

@@ -102,6 +102,9 @@ describe s3_bucket('<%= bucket.name %>') do
   <%= line %>
 <% end %>
 <%- end -%>
+<%- if location -%>
+  it { should have_location('<%= location %>') }
+<%- end -%>
 end
 EOF
         template
@@ -117,6 +120,7 @@ EOF
         bucket_policy = policy.policy.read if policy
         lifecycle_rule = find_bucket_lifecycle_configuration(bucket.name)
         lifecycle_specs = generate_lifecycle_rule_specs(lifecycle_rule) if lifecycle_rule
+        location = find_bucket_location(bucket.name)
         ERB.new(bucket_spec_template, nil, '-').result(binding).gsub(/^\n/, '')
       end
     end

data/lib/awspec/helper/finder.rb

@@ -2,6 +2,7 @@ require 'aws-sdk'
 require 'awspec/helper/finder/nlb'
 require 'awspec/helper/finder/alb'
 require 'awspec/helper/finder/vpc'
+require 'awspec/helper/finder/vpc_endpoints'
 require 'awspec/helper/finder/subnet'
 require 'awspec/helper/finder/ec2'
 require 'awspec/helper/finder/ecr'
@@ -60,6 +61,7 @@ module Awspec::Helper
     include Awspec::Helper::Finder::Nlb
     include Awspec::Helper::Finder::Alb
     include Awspec::Helper::Finder::Vpc
+    include Awspec::Helper::Finder::VpcEndpoints
     include Awspec::Helper::Finder::Subnet
     include Awspec::Helper::Finder::Ec2
     include Awspec::Helper::Finder::Ecr
@@ -160,7 +162,8 @@ module Awspec::Helper
     }
 
     CLIENT_OPTIONS = {
-      http_proxy: ENV['http_proxy'] || ENV['https_proxy'] || nil
+      http_proxy: ENV['http_proxy'] || ENV['https_proxy'] || nil,
+      http_wire_trace: ENV['http_wire_trace'] || false
     }
 
     CLIENTS.each do |method_name, client|

data/lib/awspec/helper/finder/eks.rb

@@ -5,6 +5,11 @@ module Awspec::Helper
         res = eks_client.describe_cluster({ name: name })
         res.cluster
       end
+
+      def find_eks_nodegroup(cluster_name, group_name)
+        res = eks_client.describe_nodegroup({ cluster_name: cluster_name, nodegroup_name: group_name })
+        res.nodegroup
+      end
     end
   end
 end

data/lib/awspec/helper/finder/s3.rb

@@ -35,6 +35,17 @@ module Awspec::Helper
         nil
       end
 
+      def find_bucket_location(id)
+        bucket_location = s3_client.get_bucket_location(bucket: id)
+        if bucket_location.location_constraint.nil? || bucket_location.location_constraint.empty?
+          'us-east-1'
+        else
+          bucket_location.location_constraint
+        end
+      rescue Aws::S3::Errors::ServiceError
+        nil
+      end
+
       def find_bucket_logging(id)
         s3_client.get_bucket_logging(bucket: id)
       rescue Aws::S3::Errors::ServiceError

data/lib/awspec/helper/finder/vpc_endpoints.rb

@@ -0,0 +1,15 @@
+module Awspec::Helper
+  module Finder
+    module VpcEndpoints
+      def find_vpc_endpoint(id)
+        res = ec2_client.describe_vpc_endpoints({ vpc_endpoint_ids: [id] })
+
+        ret = res.vpc_endpoints.select do |vpce|
+          vpce.vpc_endpoint_id == id
+        end
+
+        ret.single_resource(id)
+      end
+    end
+  end
+end

data/lib/awspec/helper/type.rb

@@ -12,7 +12,7 @@ module Awspec
         batch_compute_environment batch_job_definition batch_job_queue cloudtrail
         cloudwatch_alarm cloudwatch_event directconnect_virtual_interface
         ebs ec2 ecr_repository ecs_cluster ecs_container_instance ecs_service ecs_task_definition
-        efs eks elasticache elasticache_cache_parameter_group elasticsearch elb emr firehose iam_group
+        efs eks eks_nodegroup elasticache elasticache_cache_parameter_group elasticsearch elb emr firehose iam_group
         iam_policy iam_role iam_user kinesis kms lambda launch_configuration launch_template mq nat_gateway
         network_acl network_interface nlb nlb_listener nlb_target_group
         rds rds_db_cluster_parameter_group rds_db_parameter_group route53_hosted_zone
@@ -20,7 +20,7 @@ module Awspec
         elastictranscoder_pipeline waf_web_acl wafregional_web_acl customer_gateway vpn_gateway vpn_connection
         internet_gateway acm cloudwatch_logs dynamodb_table eip sqs ssm_parameter cloudformation_stack
         codebuild sns_topic redshift redshift_cluster_parameter_group codedeploy codedeploy_deployment_group
-        secretsmanager msk transit_gateway cognito_identity_pool cognito_user_pool
+        secretsmanager msk transit_gateway cognito_identity_pool cognito_user_pool vpc_endpoints
       )
 
       ACCOUNT_ATTRIBUTES = %w(

data/lib/awspec/stub/eks_nodegroup.rb

@@ -0,0 +1,16 @@
+Aws.config[:eks] = {
+  stub_responses: {
+    describe_nodegroup: {
+      nodegroup: {
+        version: '1.17',
+        release_version: '1.17.12-20210322',
+        cluster_name: 'my-cluster',
+        nodegroup_name: 'my-nodegroup',
+        nodegroup_arn: 'arn:aws:eks:us-west-2:012345678910:nodegroup/my-cluster/my-nodegroup/08bd000a',
+        created_at: Time.parse('2018-10-28 00:23:32 -0400'),
+        node_role: 'arn:aws:iam::012345678910:role/eks-nodegroup-role',
+        status: 'ACTIVE'
+      }
+    }
+  }
+}

data/lib/awspec/stub/s3_bucket.rb

@@ -119,6 +119,9 @@ Aws.config[:s3] = {
         }
       ]
     },
+    get_bucket_location: {
+      location_constraint: 'ap-northeast-1'
+    },
     get_bucket_encryption: {
       server_side_encryption_configuration: {
         rules: [

data/lib/awspec/stub/vpc_endpoints.rb

@@ -0,0 +1,64 @@
+Aws.config[:ec2] = {
+  stub_responses: {
+    describe_vpc_endpoints: {
+      vpc_endpoints: [
+        {
+          vpc_endpoint_id: 'vpce-abc123',
+          vpc_endpoint_type: 'Gateway',
+          vpc_id: 'vpc-12345678',
+          service_name: 'com.amazonaws.us-east-1.s3',
+          state: 'available',
+          policy_document: '{"Version": "2008-10-17", "Statement": [{' \
+                           '"Effect": "Allow", "Principal": "*", "Action": "*",' \
+                           '"Resource": "*"}]}',
+          route_table_ids: ['rtb-0123456789abcdefg'],
+          subnet_ids: [],
+          groups: [],
+          private_dns_enabled: false,
+          requester_managed: false,
+          network_interface_ids: [],
+          dns_entries: [],
+          creation_timestamp: Time.new(2020, 8, 13, 9, 00, 00, '+00:00'),
+          tags: [
+            {
+              key: 'Name',
+              value: 'my_vpc_endpoint'
+            }
+          ],
+          owner_id: '112233445566'
+        },
+        {
+          vpc_endpoint_id: 'vpce-abc124',
+          vpc_endpoint_type: 'Interface',
+          vpc_id: 'vpc-12345678',
+          service_name: 'com.amazonaws.eu-west-1.codebuild',
+          state: 'available',
+          policy_document: '{"Version": "2008-10-17", "Statement": [{' \
+                           '"Effect": "Allow", "Principal": "*", "Action": "*",' \
+                           '"Resource": "*"}]}',
+          route_table_ids: [],
+          subnet_ids: ['subnet-abc123'],
+          groups: [{ group_id: 'sg-abc123', group_name: 'default' }],
+          private_dns_enabled: true,
+          requester_managed: false,
+          network_interface_ids: ['eni-06f28a949cb88b84c'],
+          dns_entries: [
+            {
+              dns_name: 'vpce-05907f23265b25f20-wwafshom.codebuild.eu-west-1.vpce.amazonaws.com',
+              hosted_zone_id: 'Z38GZ743OKFT7T'
+            }
+          ],
+          creation_timestamp: Time.new(2020, 8, 13, 9, 00, 00, '+00:00'),
+          tags: [
+            {
+              key: 'Name',
+              value: 'my_vpc_endpoint'
+            }
+          ],
+          owner_id: '112233445566'
+        }
+      ],
+      next_token: nil
+    }
+  }
+}

data/lib/awspec/type/eks_nodegroup.rb

@@ -0,0 +1,30 @@
+module Awspec::Type
+  class EksNodegroup < ResourceBase
+    attr_accessor :cluster
+
+    def initialize(group_name)
+      super
+      @group_name = group_name
+    end
+
+    def resource_via_client
+      @resource_via_client ||= find_eks_nodegroup(cluster, @group_name)
+    end
+
+    def id
+      @id ||= resource_via_client.nodegroup_arn if resource_via_client
+    end
+
+    def cluster
+      @cluster || 'default'
+    end
+
+    STATES = %w(ACTIVE INACTIVE)
+
+    STATES.each do |state|
+      define_method state.downcase + '?' do
+        resource_via_client.status == state
+      end
+    end
+  end
+end

data/lib/awspec/type/iam_group.rb

@@ -34,7 +34,7 @@ module Awspec::Type
                                           group_name: id,
                                           policy_name: policy_name
                                         })
-      return JSON.parse(URI.decode(res.policy_document)) == JSON.parse(document) if document
+      return JSON.parse(URI.decode_www_form_component(res.policy_document)) == JSON.parse(document) if document
       res
     end
 

data/lib/awspec/type/iam_role.rb

@@ -24,7 +24,7 @@ module Awspec::Type
                                          role_name: resource_via_client.role_name,
                                          policy_name: policy_name
                                        })
-      return JSON.parse(URI.decode(res.policy_document)) == JSON.parse(document) if document
+      return JSON.parse(URI.decode_www_form_component(res.policy_document)) == JSON.parse(document) if document
       res
     end
 

data/lib/awspec/type/iam_user.rb

@@ -24,7 +24,7 @@ module Awspec::Type
                                          user_name: resource_via_client.user_name,
                                          policy_name: policy_name
                                        })
-      return JSON.parse(URI.decode(res.policy_document)) == JSON.parse(document) if document
+      return JSON.parse(URI.decode_www_form_component(res.policy_document)) == JSON.parse(document) if document
       res
     end
 

data/lib/awspec/type/kms.rb

@@ -14,7 +14,7 @@ module Awspec::Type
 
     def has_key_policy?(policy_name, document = nil)
       res = kms_client.get_key_policy(key_id: id, policy_name: policy_name)
-      return JSON.parse(URI.decode(res.policy)) == JSON.parse(document) if document
+      return JSON.parse(URI.decode_www_form_component(res.policy)) == JSON.parse(document) if document
       res
     end
   end

data/lib/awspec/type/s3_bucket.rb

@@ -24,6 +24,11 @@ module Awspec::Type
       end
     end
 
+    def has_location?(location)
+      check_existence
+      find_bucket_location(id) == location
+    end
+
     def acl_owner
       check_existence
       @acl = find_bucket_acl(id)

data/lib/awspec/type/vpc_endpoints.rb

@@ -0,0 +1,43 @@
+module Awspec::Type
+  class VpcEndpoints < ResourceBase
+    aws_resource Aws::EC2::Types::VpcEndpoint
+    tags_allowed
+
+    def resource_via_client
+      @resource_via_client ||= find_vpc_endpoint(@display_name)
+    end
+
+    def id
+      @id ||= resource_via_client.vpc_endpoint_id if resource_via_client
+    end
+
+    STATES = %w(
+      pendingacceptance pending available deleting
+      deleted rejected failed expired
+    )
+
+    STATES.each do |state|
+      define_method state + '?' do
+        resource_via_client.state == state
+      end
+    end
+
+    def has_route_table?(route_table_id)
+      rts = resource_via_client.route_table_ids
+
+      ret = rts.find do |rt|
+        rt == route_table_id
+      end
+      return true if ret
+    end
+
+    def has_subnet?(subnet_id)
+      subnets = resource_via_client.subnet_ids
+
+      ret = subnets.find do |subnet|
+        subnet == subnet_id
+      end
+      return true if ret
+    end
+  end
+end

data/lib/awspec/version.rb

@@ -1,3 +1,3 @@
 module Awspec
-  VERSION = '1.21.1'
+  VERSION = '1.24.1'
 end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: awspec
 version: !ruby/object:Gem::Version
-  version: 1.21.1
+  version: 1.24.1
 platform: ruby
 authors:
 - k1LoW
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2020-08-01 00:00:00.000000000 Z
+date: 2021-05-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: aws-sdk
@@ -266,6 +266,7 @@ files:
 - doc/_resource_types/efs.md
 - doc/_resource_types/eip.md
 - doc/_resource_types/eks.md
+- doc/_resource_types/eks_nodegroup.md
 - doc/_resource_types/elasticache.md
 - doc/_resource_types/elasticache_cache_parameter_group.md
 - doc/_resource_types/elasticsearch.md
@@ -311,6 +312,7 @@ files:
 - doc/_resource_types/subnet.md
 - doc/_resource_types/transit_gateway.md
 - doc/_resource_types/vpc.md
+- doc/_resource_types/vpc_endpoints.md
 - doc/_resource_types/vpn_connection.md
 - doc/_resource_types/vpn_gateway.md
 - doc/_resource_types/waf_web_acl.md
@@ -369,6 +371,7 @@ files:
 - lib/awspec/generator/doc/type/efs.rb
 - lib/awspec/generator/doc/type/eip.rb
 - lib/awspec/generator/doc/type/eks.rb
+- lib/awspec/generator/doc/type/eks_nodegroup.rb
 - lib/awspec/generator/doc/type/elasticache.rb
 - lib/awspec/generator/doc/type/elasticache_cache_parameter_group.rb
 - lib/awspec/generator/doc/type/elasticsearch.rb
@@ -414,6 +417,7 @@ files:
 - lib/awspec/generator/doc/type/subnet.rb
 - lib/awspec/generator/doc/type/transit_gateway.rb
 - lib/awspec/generator/doc/type/vpc.rb
+- lib/awspec/generator/doc/type/vpc_endpoints.rb
 - lib/awspec/generator/doc/type/vpn_connection.rb
 - lib/awspec/generator/doc/type/vpn_gateway.rb
 - lib/awspec/generator/doc/type/waf_web_acl.rb
@@ -511,6 +515,7 @@ files:
 - lib/awspec/helper/finder/ssm_parameter.rb
 - lib/awspec/helper/finder/subnet.rb
 - lib/awspec/helper/finder/vpc.rb
+- lib/awspec/helper/finder/vpc_endpoints.rb
 - lib/awspec/helper/finder/waf.rb
 - lib/awspec/helper/finder/wafregional.rb
 - lib/awspec/helper/type.rb
@@ -597,6 +602,7 @@ files:
 - lib/awspec/stub/efs.rb
 - lib/awspec/stub/eip.rb
 - lib/awspec/stub/eks.rb
+- lib/awspec/stub/eks_nodegroup.rb
 - lib/awspec/stub/elasticache.rb
 - lib/awspec/stub/elasticache_cache_parameter_group.rb
 - lib/awspec/stub/elasticsearch.rb
@@ -639,6 +645,7 @@ files:
 - lib/awspec/stub/subnet.rb
 - lib/awspec/stub/transit_gateway.rb
 - lib/awspec/stub/vpc.rb
+- lib/awspec/stub/vpc_endpoints.rb
 - lib/awspec/stub/vpn_connection.rb
 - lib/awspec/stub/vpn_gateway.rb
 - lib/awspec/stub/waf_web_acl.rb
@@ -683,6 +690,7 @@ files:
 - lib/awspec/type/efs.rb
 - lib/awspec/type/eip.rb
 - lib/awspec/type/eks.rb
+- lib/awspec/type/eks_nodegroup.rb
 - lib/awspec/type/elasticache.rb
 - lib/awspec/type/elasticache_cache_parameter_group.rb
 - lib/awspec/type/elasticsearch.rb
@@ -729,6 +737,7 @@ files:
 - lib/awspec/type/subnet.rb
 - lib/awspec/type/transit_gateway.rb
 - lib/awspec/type/vpc.rb
+- lib/awspec/type/vpc_endpoints.rb
 - lib/awspec/type/vpn_connection.rb
 - lib/awspec/type/vpn_gateway.rb
 - lib/awspec/type/waf_web_acl.rb