github.com/jpreese/tflint@v0.19.2-0.20200908152133-b01686250fb6/rules/awsrules/models/aws_datasync_task_invalid_cloudwatch_log_group_arn.go (about)

     1  // This file generated by `generator/`. DO NOT EDIT
     2  
     3  package models
     4  
     5  import (
     6  	"fmt"
     7  	"log"
     8  	"regexp"
     9  
    10  	hcl "github.com/hashicorp/hcl/v2"
    11  	"github.com/terraform-linters/tflint/tflint"
    12  )
    13  
    14  // AwsDatasyncTaskInvalidCloudwatchLogGroupArnRule checks the pattern is valid
    15  type AwsDatasyncTaskInvalidCloudwatchLogGroupArnRule struct {
    16  	resourceType  string
    17  	attributeName string
    18  	max           int
    19  	pattern       *regexp.Regexp
    20  }
    21  
    22  // NewAwsDatasyncTaskInvalidCloudwatchLogGroupArnRule returns new rule with default attributes
    23  func NewAwsDatasyncTaskInvalidCloudwatchLogGroupArnRule() *AwsDatasyncTaskInvalidCloudwatchLogGroupArnRule {
    24  	return &AwsDatasyncTaskInvalidCloudwatchLogGroupArnRule{
    25  		resourceType:  "aws_datasync_task",
    26  		attributeName: "cloudwatch_log_group_arn",
    27  		max:           562,
    28  		pattern:       regexp.MustCompile(`^arn:(aws|aws-cn|aws-us-gov|aws-iso|aws-iso-b):logs:[a-z\-0-9]*:[0-9]{12}:log-group:([^:\*]*)(:\*)?$`),
    29  	}
    30  }
    31  
    32  // Name returns the rule name
    33  func (r *AwsDatasyncTaskInvalidCloudwatchLogGroupArnRule) Name() string {
    34  	return "aws_datasync_task_invalid_cloudwatch_log_group_arn"
    35  }
    36  
    37  // Enabled returns whether the rule is enabled by default
    38  func (r *AwsDatasyncTaskInvalidCloudwatchLogGroupArnRule) Enabled() bool {
    39  	return true
    40  }
    41  
    42  // Severity returns the rule severity
    43  func (r *AwsDatasyncTaskInvalidCloudwatchLogGroupArnRule) Severity() string {
    44  	return tflint.ERROR
    45  }
    46  
    47  // Link returns the rule reference link
    48  func (r *AwsDatasyncTaskInvalidCloudwatchLogGroupArnRule) Link() string {
    49  	return ""
    50  }
    51  
    52  // Check checks the pattern is valid
    53  func (r *AwsDatasyncTaskInvalidCloudwatchLogGroupArnRule) Check(runner *tflint.Runner) error {
    54  	log.Printf("[TRACE] Check `%s` rule for `%s` runner", r.Name(), runner.TFConfigPath())
    55  
    56  	return runner.WalkResourceAttributes(r.resourceType, r.attributeName, func(attribute *hcl.Attribute) error {
    57  		var val string
    58  		err := runner.EvaluateExpr(attribute.Expr, &val)
    59  
    60  		return runner.EnsureNoError(err, func() error {
    61  			if len(val) > r.max {
    62  				runner.EmitIssue(
    63  					r,
    64  					"cloudwatch_log_group_arn must be 562 characters or less",
    65  					attribute.Expr.Range(),
    66  				)
    67  			}
    68  			if !r.pattern.MatchString(val) {
    69  				runner.EmitIssue(
    70  					r,
    71  					fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^arn:(aws|aws-cn|aws-us-gov|aws-iso|aws-iso-b):logs:[a-z\-0-9]*:[0-9]{12}:log-group:([^:\*]*)(:\*)?$`),
    72  					attribute.Expr.Range(),
    73  				)
    74  			}
    75  			return nil
    76  		})
    77  	})
    78  }