kumogata-template 0.0.35 → 0.0.36

data/template/api-gateway-method.rb

@@ -0,0 +1,71 @@
+#
+# Api Gateway Method
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-apigateway-method.html
+#
+require 'kumogata/template/helper'
+require 'kumogata/template/api-gateway'
+
+proxy = _bool("proxy", args, false)
+args[:parameters] = [] unless args.key? :parameters
+args[:parameters] << { type: "method", location: "path", name: "proxy", value: true } if proxy
+
+cognito = _bool("cognito", args, false)
+if cognito
+  args[:integration] = {} unless args.key? :integration
+  args[:integration][:parameters] = [] unless args[:integration][:parameters]
+  _api_gateway_to_parameter_headers("aws").collect{|v| args[:integration][:parameters] << v }
+  _api_gateway_to_parameter_headers("cognito").collect{|v| args[:integration][:parameters] << v }
+end
+
+cors = _bool("cors", args, false)
+if cors
+  args[:http] = "options"
+  args[:responses] = [] unless args.key? :responses
+  responses_parameters = {}
+  _api_gateway_to_parameter_response_headers().keys().collect{|v| responses_parameters[v] = false }
+  args[:responses] << { parameters: responses_parameters, models: { "application/json": "Empty" } }
+
+  args[:integration] = {} unless args.key? :integration
+  args[:integration][:type] = "mock"
+  args[:integration][:pass] = "when_no_match"
+  args[:integration][:templates] = {} unless args[:integration].key? :templates
+  args[:integration][:templates]["application/json"] = '{"statusCode": 200}'
+  args[:integration][:responses] = [] unless args[:integration].key? :responses
+  args[:integration][:responses] << {
+    parameter: _api_gateway_to_parameter_response_headers({ allow_headers: args[:allow_headers] || [] }),
+    template: { "application/json": "" }
+  }
+end
+
+name = _resource_name(args[:name], "method")
+required = _bool("required", args, false)
+auth_type = _valid_values(args[:auth_type], %w( none custom aws_iam iam ), "none")
+auth_type = "aws_iam" if auth_type == "iam"
+auth_id = _ref_string_default("auth", args, "authorizer")
+http = _valid_values(args[:http], %w( delete get head options patch post put any ), "any")
+integration = _api_gateway_integration(args)
+responses = _api_gateway_responses(args)
+# RequestModels
+# - key: The content type
+# - value: A Model resource name
+models = args[:models] || {}
+parameters = {}
+args[:parameters].collect{|v| parameters[_api_gateway_to_parameter(v)] = v[:value] }
+resource = _ref_string("resource", args, "resource")
+rest = _ref_string("rest", args, "rest api")
+
+_(name) do
+  Type "AWS::ApiGateway::Method"
+  Properties do
+    ApiKeyRequired required
+    AuthorizationType auth_type.upcase
+    AuthorizerId auth_id if auth_type == "custom"
+    HttpMethod http.upcase
+    Integration integration unless integration.empty?
+    MethodResponses responses unless responses.empty?
+    RequestModels models unless models.empty?
+    RequestParameters parameters unless parameters.empty?
+    ResourceId resource
+    RestApiId rest
+  end
+end

data/template/api-gateway-model.rb

@@ -0,0 +1,23 @@
+#
+# Api Gateway Model
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-apigateway-model.html
+#
+require 'kumogata/template/helper'
+
+name = _resource_name(args[:name], "model")
+content = _ref_string_default("content", args, "", "application/json")
+description = _ref_string_default("description", args, '', "#{args[:name]} model description")
+model = _name("model", args)
+rest = _ref_string("rest", args, "rest api")
+schema = args[:schema]
+
+_(name) do
+  Type "AWS::ApiGateway::Model"
+  Properties do
+    ContentType content
+    Description description unless description.empty?
+    Name model
+    RestApiId rest
+    Schema schema
+  end
+end

data/template/api-gateway-resource.rb

@@ -0,0 +1,32 @@
+#
+# Api Gateway Resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-apigateway-resource.html
+#
+require 'kumogata/template/helper'
+
+name = _resource_name(args[:name], "resource")
+parent_key =
+  if _ref_key? "parent", args
+    "parent"
+  else
+    "rest"
+  end
+parent = _ref_attr_string(parent_key, "RootResourceId", args, "rest api")
+proxy = _bool("proxy", args, false)
+path =
+  if proxy
+    "{proxy+}"
+  else
+    _ref_string("path", args)
+  end
+path = path.gsub(/^\//, "") if path.is_a? String
+rest = _ref_string("rest", args, "rest api")
+
+_(name) do
+  Type "AWS::ApiGateway::Resource"
+  Properties do
+    ParentId parent
+    PathPart path
+    RestApiId rest
+  end
+end

data/template/api-gateway-rest-api.rb

@@ -0,0 +1,29 @@
+#
+# Api Gateway Rest API resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-apigateway-restapi.html
+#
+require 'kumogata/template/helper'
+
+name = _resource_name(args[:name], "rest api")
+binary_types = args[:binary_types] || [] # ex) image/png or application/octet-stream
+body = args[:body] || {}
+body_s3 = args[:body_s3] || {}
+clone = _ref_string_default("clone", args)
+description = _ref_string_default("description", args, '', "#{args[:name]} rest api description")
+fail_on = _bool("fail_on", args, true)
+api = _name("api", args)
+parameters = _ref_array("parameters", args)
+
+_(name) do
+  Type "AWS::ApiGateway::RestApi"
+  Properties do
+    BinaryMediaTypes binary_types unless binary_types.empty?
+    Body body unless body.empty?
+    BodyS3Location body_s3 unless body_s3.empty?
+    CloneFrom clone unless clone.empty?
+    Description description unless description.empty?
+    FailOnWarnings fail_on
+    Name api
+    Parameters parameters unless parameters.empty?
+  end
+end

data/template/api-gateway-stage.rb

@@ -0,0 +1,33 @@
+#
+# Api Gateway Stage resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-apigateway-stage.html
+#
+require 'kumogata/template/helper'
+require 'kumogata/template/api-gateway'
+
+name = _resource_name(args[:name], "stage")
+cache_cluster = _ref_string_default("cache_cluster", args)
+certificate = _ref_string_default("certificate", args, "certificate")
+deployment = _ref_string("deployment", args, "deployment")
+description = _ref_string_default("description", args, '', "#{args[:name]} stage description")
+settings = _api_gateway_method_settings(args)
+rest = _ref_string("rest", args, "rest api")
+stage = _name("stage", args, "_")
+variables = args[:variables] || {}
+depends = _depends([ { ref_account: "account" } ], args)
+
+_(name) do
+  Type "AWS::ApiGateway::Stage"
+  Properties do
+    CacheClusterEnabled cache_cluster.empty? ? false : true
+    CacheClusterSize cache_cluster unless cache_cluster.empty?
+    ClientCertificateId certificate unless certificate.empty?
+    DeploymentId deployment
+    Description description unless description.empty?
+    MethodSettings settings unless settings.empty?
+    RestApiId rest
+    StageName stage
+    Variables variables unless variables.empty?
+  end
+  DependsOn depends unless depends.empty?
+end

data/template/api-gateway-usage-plan-key.rb

@@ -0,0 +1,19 @@
+#
+# Api Gateway Usage Plan Key resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-apigateway-usageplankey.html
+#
+require 'kumogata/template/helper'
+require 'kumogata/template/api-gateway'
+
+name = _resource_name(args[:name], "usage plan key")
+key = _ref_string("key", args)
+usage_plan = _ref_string("usage_plan", args, "usage plan")
+
+_(name) do
+  Type "AWS::ApiGateway::UsagePlanKey"
+  Properties do
+    KeyId key
+    KeyType "API_KEY"
+    UsagePlanId usage_plan
+  end
+end

data/template/api-gateway-usage-plan.rb

@@ -0,0 +1,24 @@
+#
+# Api Gateway Usage Plan resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-apigateway-usageplan.html
+#
+require 'kumogata/template/helper'
+require 'kumogata/template/api-gateway'
+
+name = _resource_name(args[:name], "usage plan")
+stages = _api_gateway_stages(args)
+description = _ref_string_default("description", args, '', "#{args[:name]} usage plan description")
+quota = _api_gateway_quota(args)
+throttle = _api_gateway_throttle(args)
+plan = _name("plan", args)
+
+_(name) do
+  Type "AWS::ApiGateway::UsagePlan"
+  Properties do
+    ApiStages stages
+    Description description unless description.empty?
+    Quota quota unless quota.empty?
+    Throttle throttle unless throttle.empty?
+    UsagePlanName plan
+  end
+end

data/template/autoscaling-group.rb

@@ -14,9 +14,9 @@ health_check_type = _valid_values(args[:helath_check_type], %w( ec2 elb ), "ec2"
 instance = _ref_string("instance", args)
 launch = _ref_string("launch", args, "autoscaling launch configuration")
 load_balancers = _ref_array("load_balancers", args)
-max = args[:max] || 1
+max = (args[:max] || 1).to_i
 metrics = [ _autoscaling_metrics ]
-min = args[:min] || 0
+min = (args[:min] || 0).to_i
 max = min if max < min
 notifications = (args[:notifications] || []).collect{|v| _autoscaling_notification(v) }
 placement = args[:placement] || ""

data/template/autoscaling-launch-configuration.rb

@@ -5,14 +5,17 @@
 require 'kumogata/template/helper'
 require 'kumogata/template/ec2'
 
+args[:block_device] = [] unless args.key? :block_device
+args[:block_device] += _ec2_to_block_device_ecs(args) if args.key? :ecs
+
 name = _resource_name(args[:name], "autoscaling launch configuration")
-instance_type = _ref_string("instance_type", args, "instance type")
-associate = _bool("associate", args, false)
+public_ip = _bool("public_ip", args, false)
 block_device = (args[:block_device] || []).collect{|v| _ec2_block_device(v) }
 iam_instance = _ref_string("iam_instance", args, "iam instance profile")
-image = _ec2_image(instance_type, args)
+image = _ec2_image(args)
 instance = args[:instance] || ""
 instance_monitoring = _bool("instance_monitoring", args, true)
+instance_type = _ref_string("instance_type", args, "instance type")
 kernel = args[:kernel] || ""
 key_name = _ref_string("key_name", args, "key name")
 placement = _ref_string("placement", args)
@@ -24,7 +27,7 @@ user_data = _ec2_user_data(args)
 _(name) do
   Type "AWS::AutoScaling::LaunchConfiguration"
   Properties do
-    AssociatePublicIpAddress associate
+    AssociatePublicIpAddress public_ip
     BlockDeviceMappings block_device unless block_device.empty?
     #ClassicLinkVPCId
     #ClassicLinkVPCSecurityGroups

data/template/autoscaling-scheduled-action.rb

@@ -7,7 +7,6 @@ require 'kumogata/template/autoscaling'
 
 name = _resource_name(args[:name], "autoscaling scheduled action")
 autoscaling = _ref_string("autoscaling", args, "autoscaling group")
-autoscaling = _ref_resource_name(args, "autoscaling group") if autoscaling.empty?
 desired = _integer("desired", args, -1)
 end_time =
   if args.key? :end_time

data/template/certificate.rb

@@ -6,9 +6,9 @@ require 'kumogata/template/helper'
 require 'kumogata/template/certificate'
 
 name = _resource_name(args[:name], "certificate")
-domain = args[:domain]
+domain = _ref_string("domain", args, "domain")
 validation = _certificate_validations(args)
-subject = args[:subject] || ""
+subject = _ref_array("subject", args)
 
 _(name) do
   Type "AWS::CertificateManager::Certificate"

data/template/cloudfront-distribution.rb

@@ -7,10 +7,14 @@ require 'kumogata/template/cloudfront'
 
 name = _resource_name(args[:name], "distribution")
 config = _cloudfront_distribution_config(args)
+depends = _depends([ { function1: 'lambda function' } ], args)
+tags = _tags(args)
 
 _(name) do
   Type "AWS::CloudFront::Distribution"
   Properties do
     DistributionConfig config
+    Tags tags
   end
+  DependsOn depends unless depends.empty?
 end

data/template/cloudfront-origin-access-identity.rb

@@ -0,0 +1,19 @@
+#
+# CloudFront origin access identity
+# https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudfront-cloudfrontoriginaccessidentity.html
+#
+require 'kumogata/template/helper'
+
+name = _resource_name(args[:name], "origin access identity")
+comment = args[:comment] || "access-identity-#{args[:name]}"
+depends = _depends([], args)
+
+_(name) do
+  Type "AWS::CloudFront::CloudFrontOriginAccessIdentity"
+  Properties do
+    CloudFrontOriginAccessIdentityConfig _{
+      Comment comment
+    }
+  end
+  DependsOn depends unless depends.empty?
+end

data/template/cloudtrail.rb

@@ -1,11 +1,10 @@
 #
-# Cloudtrail Trail resource
+# CloudTrail Trail resource
 # http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cloudtrail-trail.html
 #
 require 'kumogata/template/helper'
 
 name = _resource_name(args[:name], "trail")
-depends = args[:depends] || []
 group = _ref_attr_string("group", "Arn", args)
 role = _ref_attr_string("role", "Arn", args)
 enable = _bool("enable", args, false)
@@ -20,10 +19,11 @@ sns =
   else
     ""
   end
-tags = _tags(args)
+tags = _tags(args, "trail")
+depends = _depends([], args)
+trail = _name("trail", args)
 
 _(name) do
-  DependsOn depends unless depends.empty?
   Type "AWS::CloudTrail::Trail"
   Properties do
     CloudWatchLogsLogGroupArn group unless group.empty?
@@ -37,5 +37,7 @@ _(name) do
     S3KeyPrefix s3_key unless s3_key.empty?
     SnsTopicName sns unless sns.empty?
     Tags tags unless tags.empty?
+    TrailName trail
   end
+  DependsOn depends unless depends.empty?
 end

data/template/cloudwatch-alarm.rb

@@ -8,11 +8,13 @@ require 'kumogata/template/cloudwatch'
 name = _resource_name(args[:name], "alarm")
 enabled = _bool("enabled", args, true)
 actions = _cloudwatch_actions(args)
-description = args[:description] || ""
-alarm_name = _ref_name("alarm_name", args)
+description = _ref_string_default("description", args, '', "#{args[:name]} alarm description")
+alarm_name = _name("alarm", args)
 operator = _cloudwatch_to_operator(args[:operator])
 dimensions = (args[:dimensions] || []).collect{|v| _cloudwatch_dimension(v) }
+evaluate_low = args[:evaluate_low] || ""
 evaluation = args[:evaluation] || 3
+ex_statistic = args[:ex_statistic] || ""
 insufficients = args[:insufficients] || []
 metric = _cloudwatch_to_metric(args[:metric])
 namespace = _cloudwatch_to_namespace(args[:namespace])
@@ -21,6 +23,7 @@ period = _cloudwatch_to_period(args[:period] || "5m")
 statistic = _valid_values(_cloudwatch_to_statistic(args[:statistic]),
                           %w(SampleCount Average Sum Minimum Maximum), "Average")
 threshold = args[:threshold] || 60
+treat = _valid_values(args[:treat], %w( breaching notBreaching ignore missing ), "missing")
 unit = _cloudwatch_to_unit(args[:unit])
 
 _(name) do
@@ -32,14 +35,17 @@ _(name) do
     AlarmName alarm_name
     ComparisonOperator operator
     Dimensions dimensions
+    EvaluateLowSampleCountPercentile evaluate_low unless evaluate_low.empty?
     EvaluationPeriods evaluation
+    ExtendedStatistic ex_statistic unless ex_statistic.empty?
     InsufficientDataActions insufficients unless insufficients.empty?
     MetricName metric
     Namespace namespace
     OKActions ok_actions unless ok_actions.empty?
     Period period
-    Statistic statistic
+    Statistic statistic if ex_statistic.empty?
     Threshold threshold
+    TreatMissingData treat
     Unit unit unless unit.empty?
   end
 end

data/template/codebuild-project.rb

@@ -7,13 +7,13 @@ require 'kumogata/template/codebuild'
 
 name = _resource_name(args[:name], "codebuild project")
 artifacts = _codebuild_artifacts(args[:artifacts])
-description = args[:description] || ""
+description = _ref_string_default("description", args, '', "#{args[:name]} codebuild project description")
 encryption = args[:encryption] || ""
 environment =_codebuild_environement(args[:environment])
-project = _ref_name_default("project", args)
+project = _name("project", args)
 service = _ref_attr_string("service", "Arn", args, "role")
 source = _codebuild_source(args[:source])
-tags = _tags(args)
+tags = _tags(args, "project")
 timeout = _valid_numbers(args[:timeout], min = 5, max = 480, 0)
 
 _(name) do

data/template/codecommit-repository.rb

@@ -6,8 +6,8 @@ require 'kumogata/template/helper'
 require 'kumogata/template/codecommit'
 
 name = _resource_name(args[:name], "codecommit repository")
-description = args[:description] || ""
-repository = _ref_name_default("repository", args)
+description = _ref_string_default("description", args, '', "#{args[:name]} codecommit repository description")
+repository = _name("repository", args)
 triggers = _codecommit_triggers(args)
 
 _(name) do

data/template/codedeploy-application.rb

@@ -5,7 +5,7 @@
 require 'kumogata/template/helper'
 
 name = _resource_name(args[:name], "codedeploy application")
-application = _ref_name("application", args)
+application = _name("application", args)
 
 _(name) do
   Type "AWS::CodeDeploy::Application"

data/template/codedeploy-deployment-config.rb

@@ -6,7 +6,7 @@ require 'kumogata/template/helper'
 require 'kumogata/template/codedeploy'
 
 name = _resource_name(args[:name], "deployment config")
-deployment = _ref_name("deployment", args, "codedeploy deployment")
+deployment = _name("deployment", args)
 minimum =
   if args.key? :minimum
     _codedeploy_minimum(args[:minimum])

data/template/codedeploy-deployment-group.rb

@@ -6,6 +6,7 @@ require 'kumogata/template/helper'
 require 'kumogata/template/codedeploy'
 
 name = _resource_name(args[:name], "deployment group")
+alarm = _codedeploy_alarm(args)
 application = _ref_string("application", args, "codedeploy application")
 autoscalings = _ref_array("autoscalings", args, "autoscaling group")
 deployment =
@@ -23,6 +24,7 @@ service = _ref_string("service", args, "service role")
 _(name) do
   Type "AWS::CodeDeploy::DeploymentGroup"
   Properties do
+    AlarmConfiguration alarm unless alarm.empty?
     ApplicationName application
     AutoScalingGroups autoscalings unless autoscalings.empty?
     Deployment deployment unless deployment.empty?

data/template/cognito-identity-pool.rb

@@ -0,0 +1,34 @@
+#
+# Cognito Identity Pool resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-identitypool.html
+#
+require 'kumogata/template/helper'
+require 'kumogata/template/cognito'
+
+name = _resource_name(args[:name], "identity pool")
+pool = _name("pool", args, "_")
+allow_unauth = _bool("unauth", args, false)
+developer = _ref_string_default("developer", args)
+supported = args[:supported] || ""
+providers = _cognito_providers(args)
+saml_providers = args[:saml_providers] || []
+open_id_providers = args[:open_id_providers] || []
+stream = args[:stream] || ""
+push_sync = _cognito_push_sync(args)
+events = args[:events] || ""
+
+_(name) do
+  Type "AWS::Cognito::IdentityPool"
+  Properties do
+    IdentityPoolName pool
+    AllowUnauthenticatedIdentities allow_unauth
+    DeveloperProviderName developer unless developer.empty?
+    SupportedLoginProviders supported unless supported.empty?
+    CognitoIdentityProviders providers unless providers.empty?
+    SamlProviderARNs saml_providers unless saml_providers.empty?
+    OpenIdConnectProviderARNs open_id_providers unless open_id_providers.empty?
+    CognitoStreams stream unless stream.empty?
+    PushSync push_sync unless push_sync.empty?
+    CognitoEvents events unless events.empty?
+  end
+end

data/template/cognito-identity-role-attachment.rb

@@ -0,0 +1,22 @@
+#
+# Cognito Identity Pool Role Attachment resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-identitypoolroleattachment.html
+#
+require 'kumogata/template/helper'
+require 'kumogata/template/cognito'
+
+name = _resource_name(args[:name], "identity pool role attachment")
+pool_id = _ref_string("pool", args, "identity pool")
+mapping = _ref_string("mapping", args)
+roles = _cognito_roles(args)
+depends = _depends([ { ref_auth_role: "role" }, { ref_unauth_role: "role" } ], args)
+
+_(name) do
+  Type "AWS::Cognito::IdentityPoolRoleAttachment"
+  Properties do
+    IdentityPoolId pool_id
+    RoleMappings mapping unless mapping.empty?
+    Roles roles
+  end
+  DependsOn depends unless depends.empty?
+end

data/template/cognito-user-pool-client.rb

@@ -0,0 +1,28 @@
+#
+# Cognito User Pool Client resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-userpoolclient.html
+#
+require 'kumogata/template/helper'
+require 'kumogata/template/cognito'
+
+name = _resource_name(args[:name], "user pool client")
+client = _name("client", args)
+auth_flows = args[:auth_flows] || [] # ADMIN_NO_SRP_AUTH or CUSTOM_AUTH_FLOW_ONLY
+secret = _bool("secret", args, false)
+read_attributes = args[:read_attributes] || []
+refresh = args[:refresh] || 30
+pool = _ref_string("pool", args, "user pool")
+write_attributes = args[:write_attributes] || []
+
+_(name) do
+  Type "AWS::Cognito::UserPoolClient"
+  Properties do
+    ClientName client
+    ExplicitAuthFlows auth_flows unless auth_flows.empty?
+    GenerateSecret secret
+    ReadAttributes read_attributes unless read_attributes.empty?
+    RefreshTokenValidity refresh
+    UserPoolId pool
+    WriteAttributes write_attributes unless write_attributes.empty?
+  end
+end

data/template/cognito-user-pool-group.rb

@@ -0,0 +1,24 @@
+#
+# Cognito User Pool Group resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-userpoolgroup.html
+#
+require 'kumogata/template/helper'
+require 'kumogata/template/cognito'
+
+name = _resource_name(args[:name], "user pool group")
+description = _ref_string_default("description", args, '', "#{args[:name]} user pool description")
+group = _name("group", args)
+precedence = args[:precedence] || ""
+role = _ref_string_default("role", args, "role")
+pool = _ref_string("pool", args, "user pool")
+
+_(name) do
+  Type "AWS::Cognito::UserPoolGroup"
+  Properties do
+    Description description unless description.empty?
+    GroupName group
+    Precedence precedence unless precedence.empty?
+    RoleArn role unless role.empty?
+    UserPoolId pool
+  end
+end

data/template/cognito-user-pool-user-to-group-attachment.rb

@@ -0,0 +1,20 @@
+#
+# Cognito User Pool User To Group Attachment resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-userpoolusertogroupattachment.html#w2ab2c19c10d216b9
+#
+require 'kumogata/template/helper'
+require 'kumogata/template/cognito'
+
+name = _resource_name(args[:name], "user pool user to group attachment")
+group = _ref_string("group", args, "user pool group")
+user_name = _ref_string("user", args, "user pool user")
+pool = _ref_string("pool", args, "user pool")
+
+_(name) do
+  Type "AWS::Cognito::UserPoolUserToGroupAttachment"
+  Properties do
+    GroupName group
+    Username user_name
+    UserPoolId pool
+  end
+end

data/template/cognito-user-pool-user.rb

@@ -0,0 +1,28 @@
+#
+# Cognito User Pool User resource
+# http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-cognito-userpooluser.html
+#
+require 'kumogata/template/helper'
+require 'kumogata/template/cognito'
+
+name = _resource_name(args[:name], "user pool user")
+mediums = args[:mediums] || [ 'sms' ]
+force = _bool("force", args, false)
+attributes = (args[:attributes] || []).collect{|v| _pair_name_value({ attribute: v }, 'attribute') }
+message = _valid_values(args, %w( resend suppress ), "")
+user = _name("user", args)
+pool = _ref_string("pool", args, "user pool")
+validations = (args[:validations] || []).collect{|v| _pair_name_value({ validation: v }, 'validation') }
+
+_(name) do
+  Type "AWS::Cognito::UserPoolUser"
+  Properties do
+    DesiredDeliveryMediums mediums.collect{|v| v.upcase }
+    ForceAliasCreation force
+    UserAttributes attributes.flatten unless attributes.empty?
+    MessageAction message.upcase unless message.empty?
+    Username user
+    UserPoolId pool
+    ValidationData validations.flatten unless validations.empty?
+  end
+end