RubyGems - cumulus-aws - Versions diffs - 0.11.1 - Mend

cumulus-aws 0.11.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (173) hide show

checksums.yaml +15 -0
data/.gitignore +3 -0
data/.travis.yml +12 -0
data/Gemfile +4 -0
data/Gemfile.lock +29 -0
data/LICENSE +202 -0
data/README.md +41 -0
data/autocomplete +137 -0
data/bin/cumulus +658 -0
data/cumulus +2 -0
data/cumulus-aws.gemspec +20 -0
data/lib/autoscaling/AutoScaling.rb +40 -0
data/lib/autoscaling/loader/Loader.rb +56 -0
data/lib/autoscaling/manager/Manager.rb +360 -0
data/lib/autoscaling/models/AlarmConfig.rb +165 -0
data/lib/autoscaling/models/AlarmDiff.rb +172 -0
data/lib/autoscaling/models/AutoScalingDiff.rb +178 -0
data/lib/autoscaling/models/GroupConfig.rb +330 -0
data/lib/autoscaling/models/PolicyConfig.rb +135 -0
data/lib/autoscaling/models/PolicyDiff.rb +73 -0
data/lib/autoscaling/models/ScheduledActionDiff.rb +53 -0
data/lib/autoscaling/models/ScheduledConfig.rb +96 -0
data/lib/aws_extensions/ec2/DhcpOptions.rb +41 -0
data/lib/aws_extensions/ec2/Instance.rb +29 -0
data/lib/aws_extensions/ec2/NetworkAcl.rb +25 -0
data/lib/aws_extensions/ec2/NetworkInterface.rb +14 -0
data/lib/aws_extensions/ec2/RouteTable.rb +26 -0
data/lib/aws_extensions/ec2/SecurityGroup.rb +16 -0
data/lib/aws_extensions/ec2/Subnet.rb +28 -0
data/lib/aws_extensions/ec2/Volume.rb +24 -0
data/lib/aws_extensions/ec2/Vpc.rb +14 -0
data/lib/aws_extensions/ec2/VpcEndpoint.rb +11 -0
data/lib/aws_extensions/elb/BackendServerDescription.rb +12 -0
data/lib/aws_extensions/elb/PolicyDescription.rb +14 -0
data/lib/aws_extensions/kinesis/StreamDescription.rb +12 -0
data/lib/aws_extensions/route53/AliasTarget.rb +21 -0
data/lib/aws_extensions/s3/Bucket.rb +33 -0
data/lib/aws_extensions/s3/BucketAcl.rb +28 -0
data/lib/aws_extensions/s3/BucketCors.rb +17 -0
data/lib/aws_extensions/s3/BucketLifecycle.rb +21 -0
data/lib/aws_extensions/s3/BucketLogging.rb +18 -0
data/lib/aws_extensions/s3/BucketNotification.rb +23 -0
data/lib/aws_extensions/s3/BucketPolicy.rb +18 -0
data/lib/aws_extensions/s3/BucketTagging.rb +15 -0
data/lib/aws_extensions/s3/BucketVersioning.rb +14 -0
data/lib/aws_extensions/s3/BucketWebsite.rb +49 -0
data/lib/aws_extensions/s3/CORSRule.rb +27 -0
data/lib/aws_extensions/s3/ReplicationConfiguration.rb +22 -0
data/lib/cloudfront/CloudFront.rb +83 -0
data/lib/cloudfront/loader/Loader.rb +31 -0
data/lib/cloudfront/manager/Manager.rb +183 -0
data/lib/cloudfront/models/CacheBehaviorConfig.rb +237 -0
data/lib/cloudfront/models/CacheBehaviorDiff.rb +211 -0
data/lib/cloudfront/models/CustomOriginConfig.rb +51 -0
data/lib/cloudfront/models/CustomOriginDiff.rb +74 -0
data/lib/cloudfront/models/DistributionConfig.rb +183 -0
data/lib/cloudfront/models/DistributionDiff.rb +131 -0
data/lib/cloudfront/models/InvalidationConfig.rb +37 -0
data/lib/cloudfront/models/OriginConfig.rb +144 -0
data/lib/cloudfront/models/OriginDiff.rb +86 -0
data/lib/cloudfront/models/OriginSslProtocols.rb +28 -0
data/lib/cloudfront/models/OriginSslProtocolsDiff.rb +39 -0
data/lib/common/BaseLoader.rb +80 -0
data/lib/common/manager/Manager.rb +148 -0
data/lib/common/models/Diff.rb +114 -0
data/lib/common/models/ListChange.rb +21 -0
data/lib/common/models/TagsDiff.rb +55 -0
data/lib/common/models/UTCTimeSource.rb +17 -0
data/lib/conf/Configuration.rb +365 -0
data/lib/ec2/EC2.rb +503 -0
data/lib/ec2/IPProtocolMapping.rb +165 -0
data/lib/ec2/loaders/EbsLoader.rb +19 -0
data/lib/ec2/loaders/InstanceLoader.rb +32 -0
data/lib/ec2/managers/EbsManager.rb +176 -0
data/lib/ec2/managers/InstanceManager.rb +509 -0
data/lib/ec2/models/EbsGroupConfig.rb +133 -0
data/lib/ec2/models/EbsGroupDiff.rb +48 -0
data/lib/ec2/models/InstanceConfig.rb +202 -0
data/lib/ec2/models/InstanceDiff.rb +95 -0
data/lib/elb/ELB.rb +148 -0
data/lib/elb/loader/Loader.rb +65 -0
data/lib/elb/manager/Manager.rb +581 -0
data/lib/elb/models/AccessLogConfig.rb +82 -0
data/lib/elb/models/AccessLogDiff.rb +47 -0
data/lib/elb/models/HealthCheckConfig.rb +91 -0
data/lib/elb/models/HealthCheckDiff.rb +50 -0
data/lib/elb/models/ListenerConfig.rb +99 -0
data/lib/elb/models/ListenerDiff.rb +91 -0
data/lib/elb/models/LoadBalancerConfig.rb +239 -0
data/lib/elb/models/LoadBalancerDiff.rb +265 -0
data/lib/iam/IAM.rb +36 -0
data/lib/iam/loader/Loader.rb +117 -0
data/lib/iam/manager/IamGroups.rb +98 -0
data/lib/iam/manager/IamResource.rb +288 -0
data/lib/iam/manager/IamRoles.rb +112 -0
data/lib/iam/manager/IamUsers.rb +54 -0
data/lib/iam/manager/Manager.rb +29 -0
data/lib/iam/migration/AssumeRoleUnifier.rb +34 -0
data/lib/iam/migration/PolicyUnifier.rb +90 -0
data/lib/iam/models/GroupConfig.rb +40 -0
data/lib/iam/models/IamDiff.rb +132 -0
data/lib/iam/models/PolicyConfig.rb +67 -0
data/lib/iam/models/ResourceWithPolicy.rb +208 -0
data/lib/iam/models/RoleConfig.rb +53 -0
data/lib/iam/models/StatementConfig.rb +35 -0
data/lib/iam/models/UserConfig.rb +21 -0
data/lib/kinesis/Kinesis.rb +94 -0
data/lib/kinesis/loader/Loader.rb +19 -0
data/lib/kinesis/manager/Manager.rb +206 -0
data/lib/kinesis/models/StreamConfig.rb +75 -0
data/lib/kinesis/models/StreamDiff.rb +58 -0
data/lib/lambda/Lambda.rb +41 -0
data/lib/route53/loader/Loader.rb +32 -0
data/lib/route53/manager/Manager.rb +241 -0
data/lib/route53/models/AliasTarget.rb +86 -0
data/lib/route53/models/RecordConfig.rb +178 -0
data/lib/route53/models/RecordDiff.rb +140 -0
data/lib/route53/models/Vpc.rb +24 -0
data/lib/route53/models/ZoneConfig.rb +156 -0
data/lib/route53/models/ZoneDiff.rb +118 -0
data/lib/s3/S3.rb +89 -0
data/lib/s3/loader/Loader.rb +66 -0
data/lib/s3/manager/Manager.rb +296 -0
data/lib/s3/models/BucketConfig.rb +321 -0
data/lib/s3/models/BucketDiff.rb +167 -0
data/lib/s3/models/GrantConfig.rb +189 -0
data/lib/s3/models/GrantDiff.rb +50 -0
data/lib/s3/models/LifecycleConfig.rb +142 -0
data/lib/s3/models/LifecycleDiff.rb +46 -0
data/lib/s3/models/LoggingConfig.rb +81 -0
data/lib/s3/models/NotificationConfig.rb +157 -0
data/lib/s3/models/NotificationDiff.rb +62 -0
data/lib/s3/models/ReplicationConfig.rb +133 -0
data/lib/s3/models/ReplicationDiff.rb +60 -0
data/lib/s3/models/WebsiteConfig.rb +107 -0
data/lib/security/SecurityGroups.rb +39 -0
data/lib/security/loader/Loader.rb +94 -0
data/lib/security/manager/Manager.rb +246 -0
data/lib/security/models/RuleConfig.rb +161 -0
data/lib/security/models/RuleDiff.rb +72 -0
data/lib/security/models/RuleMigration.rb +127 -0
data/lib/security/models/SecurityGroupConfig.rb +172 -0
data/lib/security/models/SecurityGroupDiff.rb +112 -0
data/lib/sns/SNS.rb +40 -0
data/lib/sqs/SQS.rb +62 -0
data/lib/sqs/loader/Loader.rb +34 -0
data/lib/sqs/manager/Manager.rb +128 -0
data/lib/sqs/models/DeadLetterConfig.rb +70 -0
data/lib/sqs/models/DeadLetterDiff.rb +35 -0
data/lib/sqs/models/QueueConfig.rb +115 -0
data/lib/sqs/models/QueueDiff.rb +89 -0
data/lib/util/Colors.rb +111 -0
data/lib/util/StatusCodes.rb +51 -0
data/lib/vpc/loader/Loader.rb +73 -0
data/lib/vpc/manager/Manager.rb +954 -0
data/lib/vpc/models/AclEntryConfig.rb +150 -0
data/lib/vpc/models/AclEntryDiff.rb +54 -0
data/lib/vpc/models/DhcpConfig.rb +100 -0
data/lib/vpc/models/DhcpDiff.rb +90 -0
data/lib/vpc/models/EndpointConfig.rb +76 -0
data/lib/vpc/models/EndpointDiff.rb +69 -0
data/lib/vpc/models/NetworkAclConfig.rb +87 -0
data/lib/vpc/models/NetworkAclDiff.rb +116 -0
data/lib/vpc/models/RouteConfig.rb +82 -0
data/lib/vpc/models/RouteDiff.rb +50 -0
data/lib/vpc/models/RouteTableConfig.rb +92 -0
data/lib/vpc/models/RouteTableDiff.rb +101 -0
data/lib/vpc/models/SubnetConfig.rb +113 -0
data/lib/vpc/models/SubnetDiff.rb +78 -0
data/lib/vpc/models/VpcConfig.rb +173 -0
data/lib/vpc/models/VpcDiff.rb +315 -0
data/rakefile.rb +8 -0
metadata +245 -0

data/lib/vpc/models/EndpointDiff.rb ADDED

@@ -0,0 +1,69 @@
+require "common/models/Diff"
+require "common/models/ListChange"
+require "util/Colors"
+require "json"
+module Cumulus
+  module VPC
+    # Public: The types of changes that can be made to the endpoint
+    module EndpointChange
+      include Common::DiffChange
+      POLICY = Common::DiffChange.next_change_id
+      ROUTE_TABLES = Common::DiffChange.next_change_id
+    end
+    # Public: Represents a single difference between local configuration and AWS configuration
+    class EndpointDiff < Common::Diff
+      include EndpointChange
+      def self.route_tables(aws, local)
+        changes = Common::ListChange.simple_list_diff(aws, local)
+        if changes
+          diff = EndpointDiff.new(ROUTE_TABLES, aws, local)
+          diff.changes = changes
+          diff
+        end
+      end
+      def self.policy(aws, local)
+        if aws != local
+          diff = EndpointDiff.new(POLICY, aws, local)
+          diff
+        end
+      end
+      def asset_type
+        "Endpoint"
+      end
+      def aws_name
+        @aws.service_name
+      end
+      def diff_string
+        case @type
+        when POLICY
+          [
+            "Policy Statement:",
+            Colors.unmanaged([
+              "\tRemoving:",
+              JSON.pretty_generate(aws).lines.map { |l| "\t\t#{l}".chomp("\n") }
+            ].join("\n")),
+            Colors.added([
+              "\tAdding:",
+              JSON.pretty_generate(local).lines.map { |l| "\t\t#{l}".chomp("\n") }
+            ].join("\n"))
+          ].join("\n")
+        when ROUTE_TABLES
+          [
+            "Route Tables:",
+            @changes.removed.map { |d| Colors.unmanaged("\t#{d}") },
+            @changes.added.map { |d| Colors.added("\t#{d}") },
+          ].flatten.join("\n")
+        end
+      end
+    end
+  end
+end

data/lib/vpc/models/NetworkAclConfig.rb ADDED

@@ -0,0 +1,87 @@
+require "conf/Configuration"
+require "vpc/models/AclEntryConfig"
+require "ec2/EC2"
+require "json"
+module Cumulus
+  module VPC
+    # Public: An object representing configuration for a VPC Network ACL
+    class NetworkAclConfig
+      attr_reader :inbound
+      attr_reader :outbound
+      attr_reader :tags
+      attr_reader :name
+      # Public: Constructor
+      #
+      # name - the name of the network acl config
+      # json - a hash containing the JSON configuration for the Network ACL
+      def initialize(name, json = nil)
+        @name = name
+        if !json.nil?
+          @inbound = (json["inbound"] || []).map { |entry| AclEntryConfig.new(entry) }
+          @outbound = (json["outbound"] || []).map { |entry| AclEntryConfig.new(entry) }
+          @tags = json["tags"] || {}
+        end
+      end
+      def to_hash
+        {
+          "inbound" => @inbound.map(&:to_hash),
+          "outbound" => @outbound.map(&:to_hash),
+          "tags" => @tags
+        }.reject { |k, v| v.nil? }
+      end
+      def populate!(aws)
+        @inbound = aws.diffable_entries.select { |entry| !entry.egress }
+                      .map { |entry| AclEntryConfig.new().populate!(entry) }
+                      .sort_by!(&:rule)
+        @outbound = aws.diffable_entries.select { |entry| entry.egress }
+                      .map { |entry| AclEntryConfig.new().populate!(entry) }
+                      .sort_by!(&:rule)
+        @tags = Hash[aws.tags.map { |tag| [tag.key, tag.value] }]
+        # If there is not a name then add a name tag using the given name
+        if !@tags["Name"]
+          puts "Network ACL #{aws.network_acl_id} does not have a Name defined. Cumulus will use #{name} as the name when migrated."
+          @tags["Name"] = @name
+        end
+        self
+      end
+      # Public: Produce an array of differences between this local configuration and the
+      # configuration in AWS
+      #
+      # aws - the AWS resource
+      #
+      # Returns an array of the NetworkAclDiffs that were found
+      def diff(aws)
+        diffs = []
+        aws_inbound = aws.diffable_entries.select { |entry| !entry.egress }
+        inbound_diff = NetworkAclDiff.entries(NetworkAclChange::INBOUND, aws_inbound, @inbound)
+        if inbound_diff
+          diffs << inbound_diff
+        end
+        aws_outbound = aws.diffable_entries.select { |entry| entry.egress }
+        outbound_diff = NetworkAclDiff.entries(NetworkAclChange::OUTBOUND, aws_outbound, @outbound)
+        if outbound_diff
+          diffs << outbound_diff
+        end
+        aws_tags = Hash[aws.tags.map { |tag| [tag.key, tag.value] }]
+        if @tags != aws_tags
+          diffs << NetworkAclDiff.new(NetworkAclChange::TAGS, aws_tags, @tags)
+        end
+        diffs
+      end
+    end
+  end
+end

data/lib/vpc/models/NetworkAclDiff.rb ADDED

@@ -0,0 +1,116 @@
+require "common/models/Diff"
+require "common/models/ListChange"
+require "common/models/TagsDiff"
+require "vpc/models/AclEntryDiff"
+require "util/Colors"
+require "json"
+module Cumulus
+  module VPC
+    # Public: The types of changes that can be made to the network acl
+    module NetworkAclChange
+      include Common::DiffChange
+      INBOUND = Common::DiffChange.next_change_id
+      OUTBOUND = Common::DiffChange.next_change_id
+      TAGS = Common::DiffChange.next_change_id
+    end
+    # Public: Represents a single difference between local configuration and AWS configuration
+    class NetworkAclDiff < Common::Diff
+      include NetworkAclChange
+      include Common::TagsDiff
+      def self.entries(type, aws, local)
+        aws_rule_entries = Hash[aws.map do |entry|
+          aws_entry = AclEntryConfig.new
+          aws_entry.populate!(entry)
+          [entry.rule_number, aws_entry]
+        end]
+        local_rule_entries = Hash[local.map { |entry| [entry.rule, entry] }]
+        added_diffs = Hash[local_rule_entries.reject { |rule, entry| aws_rule_entries.has_key? rule }.map do |rule, local_entry|
+          [rule, AclEntryDiff.added(local_entry)]
+        end]
+        removed_diffs = Hash[aws_rule_entries.reject { |rule, entry| local_rule_entries.has_key? rule }.map do |rule, aws_entry|
+          [rule, AclEntryDiff.unmanaged(aws_entry)]
+        end]
+        modified_diffs = Hash[local_rule_entries.select { |rule, entry| aws_rule_entries.has_key? rule }.map do |rule, local_entry|
+          aws_entry = aws_rule_entries[rule]
+          entry_diffs = local_entry.diff(aws_entry)
+          if !entry_diffs.empty?
+            [rule, AclEntryDiff.modified(aws_entry, local_entry, entry_diffs)]
+          end
+        end.reject { |v| v.nil? }]
+        if !added_diffs.empty? or !removed_diffs.empty? or !modified_diffs.empty?
+          diff = NetworkAclDiff.new(type, aws, local)
+          diff.changes = Common::ListChange.new(added_diffs, removed_diffs, modified_diffs)
+          diff
+        end
+      end
+      def local_tags
+        @local
+      end
+      def aws_tags
+        @aws
+      end
+      def asset_type
+        "Network Acl"
+      end
+      def aws_name
+        @aws.name || @aws.network_acl_id
+      end
+      def diff_string
+        case @type
+        when INBOUND
+          [
+            "Inbound Rules:",
+            entries_diff_string
+          ].flatten.join("\n")
+        when OUTBOUND
+          [
+            "Outbound Rules:",
+            entries_diff_string
+          ].flatten.join("\n")
+        when TAGS
+          tags_diff_string
+        end
+      end
+      private
+      def entries_diff_string
+        [
+          [
+            "\tThese rules will be deleted:",
+            @changes.removed.map do |rule, removed_diff|
+              Colors.unmanaged(removed_diff.aws.pretty_string.lines.map { |l| "\t\t#{l}".chomp("\n") }.join("\n"))
+            end.flatten.join("\n\t\t\t---\n")
+          ].reject { @changes.removed.empty? },
+          [
+            "\tThese rules will be created:",
+            @changes.added.map do |rule, added_diff|
+              Colors.added(added_diff.local.pretty_string.lines.map { |l| "\t\t#{l}".chomp("\n") }.join("\n"))
+            end.flatten.join("\n\t\t\t---\n")
+          ].reject { @changes.added.empty? },
+          @changes.modified.map do |rule, modified_diff|
+            [
+              "\tRule #{rule} was modified:",
+              modified_diff.changes.map do |diff|
+                diff.to_s.lines.map { |l| "\t\t#{l}".chomp("\n") }
+              end
+            ]
+          end
+        ].flatten.join("\n")
+      end
+    end
+  end
+end

data/lib/vpc/models/RouteConfig.rb ADDED

@@ -0,0 +1,82 @@
+require "conf/Configuration"
+require "vpc/loader/Loader"
+require "ec2/EC2"
+require "json"
+module Cumulus
+  module VPC
+    # Public: An object representing configuration for a VPC route table route
+    class RouteConfig
+      attr_reader :dest_cidr
+      attr_reader :gateway_id
+      attr_reader :instance_id
+      attr_reader :network_interface_id
+      attr_reader :vpc_peering_connection_id
+      attr_reader :nat_gateway_id
+      # Public: Constructor
+      #
+      # json - a hash containing the JSON configuration for the route table route
+      def initialize(json = nil)
+        if !json.nil?
+          @dest_cidr = json["dest-cidr"]
+          @gateway_id = json["gateway-id"]
+          @network_interface_id = json["network-interface-id"]
+          @vpc_peering_connection_id = json["vpc-peering-connection-id"]
+          @nat_gateway_id = json["nat-gateway-id"]
+        end
+      end
+      def to_hash
+        {
+          "dest-cidr" => @dest_cidr,
+          "gateway-id" => @gateway_id,
+          "network-interface-id" => @network_interface_id,
+          "vpc-peering-connection-id" => @vpc_peering_connection_id,
+          "nat-gateway-id" => @nat_gateway_id,
+        }.reject { |k, v| v.nil? }
+      end
+      def populate!(aws)
+        @dest_cidr = aws.destination_cidr_block
+        @gateway_id = aws.gateway_id
+        @network_interface_id = aws.network_interface_id
+        @vpc_peering_connection_id = aws.vpc_peering_connection_id
+        @nat_gateway_id = aws.nat_gateway_id
+        self
+      end
+      # Public: Produce an array of differences between this local configuration and the
+      # configuration in AWS
+      #
+      # aws - the AWS resource
+      #
+      # Returns an array of the RouteDiffs that were found
+      def diff(aws)
+        diffs = []
+        if @gateway_id != aws.gateway_id
+          diffs << RouteDiff.new(RouteChange::GATEWAY, aws.gateway_id, @gateway_id)
+        end
+        if @network_interface_id != aws.network_interface_id
+          diffs << RouteDiff.new(RouteChange::NETWORK, aws.network_interface_id, @network_interface_id)
+        end
+        if @vpc_peering_connection_id != aws.vpc_peering_connection_id
+          diffs << RouteDiff.new(RouteChange::VPC_PEERING, aws.vpc_peering_connection_id, @vpc_peering_connection_id)
+        end
+        if @nat_gateway_id != aws.nat_gateway_id
+          diffs << RouteDiff.new(RouteChange::NAT_GATEWAY, aws.nat_gateway_id, @nat_gateway_id)
+        end
+        diffs
+      end
+    end
+  end
+end

data/lib/vpc/models/RouteDiff.rb ADDED

@@ -0,0 +1,50 @@
+require "common/models/Diff"
+require "vpc/models/RouteDiff"
+require "util/Colors"
+module Cumulus
+  module VPC
+    # Public: The types of changes that can be made to a route
+    module RouteChange
+      include Common::DiffChange
+      GATEWAY = Common::DiffChange.next_change_id
+      NETWORK = Common::DiffChange.next_change_id
+      VPC_PEERING = Common::DiffChange.next_change_id
+      NAT_GATEWAY = Common::DiffChange.next_change_id
+    end
+    # Public: Represents a single difference between local configuration AWS configuration
+    class RouteDiff < Common::Diff
+      include RouteChange
+      def asset_type
+        "Route"
+      end
+      def aws_name
+        @aws.destination_cidr_block
+      end
+      def diff_string
+        resource = case @type
+        when GATEWAY
+          "Gateway"
+        when NETWORK
+          "Network Interface"
+        when VPC_PEERING
+          "VPC Peering Connection"
+        when NAT_GATEWAY
+          "NAT Gateway"
+        end
+        [
+          "#{resource}:",
+          Colors.aws_changes("\tAWS - #{aws}"),
+          Colors.local_changes("\tLocal - #{local}"),
+        ].join("\n")
+      end
+    end
+  end
+end

data/lib/vpc/models/RouteTableConfig.rb ADDED

@@ -0,0 +1,92 @@
+require "conf/Configuration"
+require "vpc/loader/Loader"
+require "vpc/models/RouteConfig"
+require "ec2/EC2"
+require "json"
+module Cumulus
+  module VPC
+    # Public: An object representing configuration for a VPC route table
+    class RouteTableConfig
+      attr_reader :name
+      attr_reader :routes
+      attr_reader :propagate_vgws
+      attr_reader :tags
+      # Public: Constructor
+      #
+      # json - a hash containing the JSON configuration for the route table
+      def initialize(name, json = nil)
+        @name = name
+        @excludes = []
+        if !json.nil?
+          @routes = (json["routes"] || []).map { |route| RouteConfig.new(route) }
+          @propagate_vgws = json["propagate-vgws"] || []
+          @tags = json["tags"]
+          @excludes = json["exclude-cidr-blocks"] || []
+        end
+      end
+      def to_hash
+        {
+          "routes" => @routes.map(&:to_hash),
+          "propagate-vgws" => @propagate_vgws,
+          "tags" => @tags,
+        }.reject { |k, v| v.nil? }
+      end
+      def populate!(aws)
+        @routes = aws.diffable_routes.reject { |route| @excludes.include? route.destination_cidr_block }.map do |aws_route|
+          cumulus_route = RouteConfig.new
+          cumulus_route.populate!(aws_route)
+          cumulus_route
+        end
+        @propagate_vgws = aws.propagating_vgws.map(&:gateway_id)
+        @tags = Hash[aws.tags.map { |tag| [tag.key, tag.value] }]
+        self
+      end
+      # Public: Produce an array of differences between this local configuration and the
+      # configuration in AWS
+      #
+      # aws - the AWS resource
+      #
+      # Returns an array of the RouteTableDiffs that were found
+      def diff(aws)
+        diffs = []
+        aws_routes = aws.diffable_routes.reject { |route| @excludes.include? route.destination_cidr_block }
+        local_routes = @routes.reject { |route| @excludes.include? route.dest_cidr }
+        ignored_aws_routes = aws.diffable_routes.select { |route| @excludes.include? route.destination_cidr_block }.map(&:destination_cidr_block).join(", ")
+        ignored_local_routes = @routes.select { |route| @excludes.include? route.dest_cidr }.map(&:dest_cidr).join(", ")
+        puts "Ignoring local routes: #{ignored_local_routes}" if !ignored_local_routes.empty?
+        puts "Ignoring AWS routes: #{ignored_aws_routes}" if !ignored_aws_routes.empty?
+        routes_diff = RouteTableDiff.routes(aws_routes, local_routes)
+        if routes_diff
+          diffs << routes_diff
+        end
+        aws_vgw_ids = aws.propagating_vgws.map(&:gateway_id)
+        if @propagate_vgws.sort != aws_vgw_ids.sort
+          diffs << RouteTableDiff.propagate_vgws(aws_vgw_ids, @propagate_vgws)
+        end
+        aws_tags = Hash[aws.tags.map { |tag| [tag.key, tag.value] }]
+        if @tags != aws_tags
+          diffs << RouteTableDiff.new(RouteTableChange::TAGS, aws_tags, @tags)
+        end
+        diffs
+      end
+    end
+  end
+end