awspec 1.31.0 → 1.33.0

data/lib/awspec/stub/codepipeline.rb

@@ -0,0 +1,104 @@
+# frozen_string_literal: true
+
+Aws.config[:codepipeline] = {
+  stub_responses: {
+    get_pipeline: {
+      pipeline: {
+        name: 'my-codepipeline',
+        role_arn: 'arn:aws:iam::123456789012:role/service-role/AWSCodePipelineServiceRole-my-codepipeline',
+        artifact_store: {
+          type: 'S3',
+          location: 'codepipeline-ap-northeast-1-12345678901'
+        },
+        stages: [
+          {
+            name: 'Source',
+            actions: [
+              {
+                name: 'Source',
+                action_type_id: {
+                  category: 'Source',
+                  owner: 'AWS',
+                  provider: 'S3',
+                  version: '1'
+                },
+                run_order: 1,
+                configuration: {
+                  'PollForSourceChanges' => 'false',
+                  'S3Bucket' => 'example-bucket',
+                  'S3ObjectKey' => 'test.zip'
+                },
+                output_artifacts: [
+                  {
+                    name: 'SourceArtifact'
+                  }
+                ],
+                input_artifacts: [],
+                region: 'ap-northeast-1',
+                namespace: 'SourceVariables'
+              }
+            ]
+          },
+          {
+            name: 'Build',
+            actions: [
+              {
+                name: 'Build',
+                action_type_id: {
+                  category: 'Build',
+                  owner: 'AWS',
+                  provider: 'CodeBuild',
+                  version: '1'
+                },
+                run_order: 1,
+                configuration: {
+                  'ProjectName' => 'my-codebuild1'
+                },
+                output_artifacts: [
+                  {
+                    name: 'BuildArtifact'
+                  }
+                ],
+                input_artifacts: [
+                  {
+                    name: 'SourceArtifact'
+                  }
+                ],
+                region: 'ap-northeast-1',
+                namespace: 'BuildVariables'
+              }
+            ]
+          }
+        ],
+        version: 1,
+        execution_mode: 'QUEUED',
+        pipeline_type: 'V2'
+      },
+      metadata: {
+        pipeline_arn: 'arn:aws:codepipeline:ap-northeast-1:123456789012:my-codepipeline',
+        created: Time.local(2024),
+        updated: Time.local(2024)
+      }
+    },
+    list_pipelines: {
+      pipelines: [
+        {
+          name: 'my-codepipeline1',
+          version: 1,
+          pipeline_type: 'V2',
+          execution_mode: 'QUEUED',
+          created: Time.local(2024),
+          updated: Time.local(2024)
+        },
+        {
+          name: 'my-codepipeline2',
+          version: 1,
+          pipeline_type: 'V2',
+          execution_mode: 'QUEUED',
+          created: Time.local(2024),
+          updated: Time.local(2024)
+        }
+      ]
+    }
+  }
+}

data/lib/awspec/stub/rds_db_cluster.rb

@@ -78,7 +78,12 @@ Aws.config[:rds] = {
           copy_tags_to_snapshot: false,
           cross_account_clone: false,
           domain_memberships: [],
-          tag_list: [],
+          tag_list: [
+            {
+              key: 'env',
+              value: 'dev'
+            }
+          ],
           global_write_forwarding_status: nil,
           global_write_forwarding_requested: false,
           pending_modified_values: nil,

data/lib/awspec/stub/rds_global_cluster.rb

@@ -30,7 +30,13 @@ Aws.config[:rds] = {
               global_write_forwarding_status: 'disabled'
             }
           ],
-          failover_state: nil
+          failover_state: nil,
+          tag_list: [
+            {
+              key: 'env',
+              value: 'dev'
+            }
+          ]
         }
       ],
       marker: nil

data/lib/awspec/stub/transfer_server.rb

@@ -3,10 +3,10 @@
 Aws.config[:transfer] = {
   stub_responses: {
     describe_server: {
-      server: Aws::Transfer::Types::DescribedServer.new(
+      server: {
         arn: 'arn:aws:transfer:us-east-1:1234567890:server/s-4dc0a424f0154fa89',
         domain: 'S3',
-        endpoint_details: Aws::Transfer::Types::EndpointDetails.new(
+        endpoint_details: {
           address_allocation_ids: %w[
             eipalloc-00000000000000001
             eipalloc-00000000000000002
@@ -19,7 +19,7 @@ Aws.config[:transfer] = {
           ],
           vpc_endpoint_id: 'vpce-00000000000000001',
           vpc_id: 'vpc-0123456789abcdefg'
-        ),
+        },
         endpoint_type: 'VPC',
         host_key_fingerprint: 'SHA256:0pj2UnuoFAKEfHrCZwfPwuFinG3RJEVir/m8bPRINTo=',
         identity_provider_type: 'SERVICE_MANAGED',
@@ -29,13 +29,32 @@ Aws.config[:transfer] = {
         server_id: 's-4dc0a424f0154fa89',
         state: 'ONLINE',
         tags: [
-          Aws::Transfer::Types::Tag.new(
+          {
             key: 'env',
             value: 'dev'
-          )
+          },
+          {
+            key: 'Name',
+            value: 'my-transfer-server'
+          }
         ],
         user_count: 13
-      )
+      }
+    },
+    list_servers: {
+      next_token: nil,
+      servers: [
+        {
+          arn: 'arn:aws:transfer:us-east-1:1234567890:server/s-4dc0a424f0154fa89',
+          domain: 'S3',
+          identity_provider_type: 'SERVICE_MANAGED',
+          endpoint_type: 'VPC',
+          logging_role: 'arn:aws:iam::1234567890:role/service-role/AWSTransferLoggingAccess',
+          server_id: 's-4dc0a424f0154fa89',
+          state: 'ONLINE',
+          user_count: 13
+        }
+      ]
     }
   }
 }

data/lib/awspec/stub/wafv2_ip_set.rb

@@ -0,0 +1,34 @@
+# frozen_string_literal: true
+
+Aws.config[:wafv2] = {
+  stub_responses: {
+    get_ip_set: {
+      ip_set: {
+        name: 'my-wafv2-ip-set',
+        id: '01234567-89ab-cdef-0123-456789abcdef',
+        arn: 'arn:aws:wafv2:ap-northeast-1:123456789012:regional/ipset/'\
+             'my-wafv2-ip-set/01234567-89ab-cdef-0123-456789abcdef',
+        description: 'dev ips',
+        ip_address_version: 'IPV4',
+        addresses: [
+          '10.0.0.0/32',
+          '10.0.0.1/32'
+        ]
+      },
+      lock_token: '01234567-89ab-cdef-0123456789abcdef0'
+    },
+    list_ip_sets: {
+      next_marker: 'my-wafv2-ip-set',
+      ip_sets: [
+        {
+          name: 'my-wafv2-ip-set',
+          id: '01234567-89ab-cdef-0123-456789abcdef',
+          description: 'dev ips',
+          lock_token: '01234567-89ab-cdef-0123456789abcdef0',
+          arn: 'arn:aws:wafv2:ap-northeast-1:123456789012:regional/ipset/'\
+               'my-wafv2-ip-set/01234567-89ab-cdef-0123-456789abcdef'
+        }
+      ]
+    }
+  }
+}

data/lib/awspec/stub/wafv2_web_acl.rb

@@ -0,0 +1,151 @@
+# frozen_string_literal: true
+
+Aws.config[:wafv2] = {
+  stub_responses: {
+    get_web_acl: {
+      web_acl: {
+        name: 'my-wafv2-web-acl',
+        id: 'a64cc988-40ec-4c4e-ab80-c9acbea42103',
+        arn: 'arn:aws:wafv2:ap-northeast-1:123456789012:regional/webacl/'\
+             'my-wafv2-web-acl/a64cc988-40ec-4c4e-ab80-c9acbea42103',
+        default_action: {
+          allow: {}
+        },
+        description: 'test web acl',
+        rules: [
+          {
+            name: 'AWS-AWSManagedRulesCommonRuleSet',
+            priority: 0,
+            statement: {
+              managed_rule_group_statement: {
+                vendor_name: 'AWS',
+                name: 'AWSManagedRulesCommonRuleSet'
+              }
+            },
+            override_action: {
+              none: {}
+            },
+            visibility_config: {
+              sampled_requests_enabled: true,
+              cloud_watch_metrics_enabled: true,
+              metric_name: 'AWS-AWSManagedRulesCommonRuleSet'
+            }
+          },
+          {
+            name: 'AWS-AWSManagedRulesKnownBadInputsRuleSet',
+            priority: 1,
+            statement: {
+              managed_rule_group_statement: {
+                vendor_name: 'AWS',
+                name: 'AWSManagedRulesKnownBadInputsRuleSet'
+              }
+            },
+            override_action: {
+              none: {}
+            },
+            visibility_config: {
+              sampled_requests_enabled: true,
+              cloud_watch_metrics_enabled: true,
+              metric_name: 'AWS-AWSManagedRulesKnownBadInputsRuleSet'
+            }
+          },
+          {
+            name: 'AWS-AWSManagedRulesLinuxRuleSet',
+            priority: 2,
+            statement: {
+              managed_rule_group_statement: {
+                vendor_name: 'AWS',
+                name: 'AWSManagedRulesLinuxRuleSet'
+              }
+            },
+            override_action: {
+              none: {}
+            },
+            visibility_config: {
+              sampled_requests_enabled: true,
+              cloud_watch_metrics_enabled: true,
+              metric_name: 'AWS-AWSManagedRulesLinuxRuleSet'
+            }
+          },
+          {
+            name: 'AWS-AWSManagedRulesUnixRuleSet',
+            priority: 3,
+            statement: {
+              managed_rule_group_statement: {
+                vendor_name: 'AWS',
+                name: 'AWSManagedRulesUnixRuleSet'
+              }
+            },
+            override_action: {
+              none: {}
+            },
+            visibility_config: {
+              sampled_requests_enabled: true,
+              cloud_watch_metrics_enabled: true,
+              metric_name: 'AWS-AWSManagedRulesUnixRuleSet'
+            }
+          },
+          {
+            name: 'AWS-AWSManagedRulesAnonymousIpList',
+            priority: 4,
+            statement: {
+              managed_rule_group_statement: {
+                vendor_name: 'AWS',
+                name: 'AWSManagedRulesAnonymousIpList'
+              }
+            },
+            override_action: {
+              none: {}
+            },
+            visibility_config: {
+              sampled_requests_enabled: true,
+              cloud_watch_metrics_enabled: true,
+              metric_name: 'AWS-AWSManagedRulesAnonymousIpList'
+            }
+          },
+          {
+            name: 'AWS-AWSManagedRulesAmazonIpReputationList',
+            priority: 5,
+            statement: {
+              managed_rule_group_statement: {
+                vendor_name: 'AWS',
+                name: 'AWSManagedRulesAmazonIpReputationList'
+              }
+            },
+            override_action: {
+              none: {}
+            },
+            visibility_config: {
+              sampled_requests_enabled: true,
+              cloud_watch_metrics_enabled: true,
+              metric_name: 'AWS-AWSManagedRulesAmazonIpReputationList'
+            }
+          }
+        ],
+        visibility_config: {
+          sampled_requests_enabled: true,
+          cloud_watch_metrics_enabled: true,
+          metric_name: 'my-wafv2-web-acl'
+        },
+        capacity: 1275,
+        managed_by_firewall_manager: false,
+        label_namespace: 'awswaf:123456789012:webacl:my-wafv2-web-acl:',
+        retrofitted_by_firewall_manager: false
+      },
+      'lock_token': '8060f9d3-6437-4457-934c-e20bc0440e04'
+    },
+    list_web_acls: {
+      next_marker: 'my-wafv2-web-acl',
+      web_acls: [
+        {
+          name: 'my-wafv2-web-acl',
+          id: 'a64cc988-40ec-4c4e-ab80-c9acbea42103',
+          description: '',
+          lock_token: '8060f9d3-6437-4457-934c-e20bc0440e04',
+          arn: 'arn:aws:wafv2:ap-northeast-1:123456789012:regional/webacl/'\
+               'my-wafv2-web-acl/a64cc988-40ec-4c4e-ab80-c9acbea42103'
+        }
+      ]
+    }
+  }
+}

data/lib/awspec/type/backup_plan.rb

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+module Awspec::Type
+  class BackupPlan < ResourceBase
+    def resource_via_client
+      @resource_via_client ||= find_backup_plan(@display_name)
+    end
+
+    def id
+      @id ||= resource_via_client.backup_plan_id if resource_via_client
+    end
+  end
+end

data/lib/awspec/type/backup_selection.rb

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+module Awspec::Type
+  class BackupSelection < ResourceBase
+    def resource_via_client
+      @resource_via_client ||= find_backup_selection(@display_name)
+    end
+
+    def id
+      @id ||= resource_via_client.selection_id if resource_via_client
+    end
+  end
+end

data/lib/awspec/type/backup_vault.rb

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+module Awspec::Type
+  class BackupVault < ResourceBase
+    def resource_via_client
+      @resource_via_client ||= find_backup_vault(@display_name)
+    end
+
+    def id
+      @id ||= resource_via_client.backup_vault_arn if resource_via_client
+    end
+  end
+end

data/lib/awspec/type/base.rb

@@ -33,7 +33,11 @@ module Awspec::Type
         begin
           tags = resource_via_client.tags
         rescue NoMethodError
-          tags = resource_via_client.tag_set
+          begin
+            tags = resource_via_client.tag_set
+          rescue NoMethodError
+            tags = resource_via_client.tag_list
+          end
         end
         return false unless tags
 

data/lib/awspec/type/codepipeline.rb

@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+module Awspec::Type
+  class Codepipeline < ResourceBase
+    def resource_via_client
+      @resource_via_client ||= find_codepipeline(@display_name)
+    end
+
+    def id
+      @id ||= resource_via_client.name if resource_via_client
+    end
+  end
+end

data/lib/awspec/type/rds_db_cluster.rb

@@ -3,6 +3,7 @@
 module Awspec::Type
   class RdsDBCluster < ResourceBase
     aws_resource Aws::RDS::Types::DBCluster
+    tags_allowed
 
     def resource_via_client
       @resource_via_client ||= find_db_cluster(@display_name)

data/lib/awspec/type/rds_global_cluster.rb

@@ -3,6 +3,7 @@
 module Awspec::Type
   class RdsGlobalCluster < ResourceBase
     aws_resource Aws::RDS::Types::GlobalCluster
+    tags_allowed
 
     def resource_via_client
       @resource_via_client ||= find_global_cluster(@display_name)

data/lib/awspec/type/transfer_server.rb

@@ -2,17 +2,14 @@
 
 module Awspec::Type
   class TransferServer < ResourceBase
-    attr_reader :id
-
     tags_allowed
 
-    def initialize(id)
-      super
-      @id = id
+    def resource_via_client
+      @resource_via_client ||= find_transfer_server(@display_name)
     end
 
-    def resource_via_client
-      @resource_via_client ||= find_transfer_server(@id)
+    def id
+      @id ||= resource_via_client.server_id if resource_via_client
     end
 
     STATES = %w[

data/lib/awspec/type/wafv2_ip_set.rb

@@ -0,0 +1,23 @@
+# frozen_string_literal: true
+
+module Awspec::Type
+  class Wafv2IpSet < ResourceBase
+    attr_accessor :scope
+
+    def resource_via_client
+      @resource_via_client ||= find_ip_set(scope, @display_name)
+    end
+
+    def id
+      @id ||= resource_via_client.id if resource_via_client
+    end
+
+    def scope
+      @scope || 'REGIONAL'
+    end
+
+    def has_ip_address?(ip_address)
+      resource_via_client.addresses.include?(ip_address)
+    end
+  end
+end

data/lib/awspec/type/wafv2_web_acl.rb

@@ -0,0 +1,33 @@
+# frozen_string_literal: true
+
+module Awspec::Type
+  class Wafv2WebAcl < ResourceBase
+    attr_accessor :scope
+
+    def resource_via_client
+      @resource_via_client ||= find_web_acl(scope, @display_name)
+    end
+
+    def id
+      @id ||= resource_via_client.id if resource_via_client
+    end
+
+    def scope
+      @scope || 'REGIONAL'
+    end
+
+    def default_action
+      resource_via_client.default_action.allow ? 'ALLOW' : 'BLOCK'
+    end
+
+    def has_rule?(name, priority = nil, action = nil, override_action = nil)
+      resource_via_client.rules.find do |rule|
+        next false if !priority.nil? && rule.priority != priority
+        next false if !action.nil? && !rule.action.reject { |v| v.nil? }.first.class.to_s.include?(action.capitalize)
+        next false if !override_action.nil? &&
+                      !rule.override_action.reject { |v| v.nil? }.first.class.to_s.include?(override_action.capitalize)
+        next true if rule.name == name
+      end
+    end
+  end
+end

data/lib/awspec/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Awspec
-  VERSION = '1.31.0'
+  VERSION = '1.33.0'
 end