Merge pull request #132 from cloudgraphdev/feature/EP-3149-updates-needed-for-terraform

tyler-dunkel · web-flow · commit ad05bc94939f · 2023-05-12T10:12:14.000-05:00
feat(aws): Added some adjustment needed for TF
diff --git a/src/enums/serviceAliases.ts b/src/enums/serviceAliases.ts
@@ -54,7 +54,7 @@ export default {
   [services.lambda]: 'lambdaFunctions',
   [services.managedAirflow]: 'managedAirflows',
   [services.managedPrefixList]: 'managedPrefixLists',
-  [services.mskCluster]: 'mskCluster',
+  [services.mskCluster]: 'mskClusters',
   [services.nat]: 'natGateway',
   [services.networkInterface]: 'networkInterfaces',
   [services.organization]: 'organizations',
diff --git a/src/services/account/schema.graphql b/src/services/account/schema.graphql
@@ -69,6 +69,7 @@ type awsAccount implements awsOptionalService @key(fields: "id") {
   lambdaFunctions: [awsLambda]
   managedAirflows: [awsManagedAirflow]
   managedPrefixLists: [awsManagedPrefixList]
+  mskClusters: [awsMskCluster]
   nacl: [awsNetworkAcl]
   natGateway: [awsNatGateway]
   networkInterfaces: [awsNetworkInterface]
diff --git a/src/services/apiGatewayResource/format.ts b/src/services/apiGatewayResource/format.ts
@@ -15,7 +15,7 @@ export default ({
   region: string
   account: string
 }): AwsAGResourceType => {
-  const { id, path, resourceMethods = {} } = service
+  const { id, path, restApiId, resourceMethods = {} } = service
 
   const arn = apiGatewayResourceArn({
     restApiArn: apiGatewayArn({ region: service.region }),
@@ -39,5 +39,6 @@ export default ({
     region,
     path,
     methods,
+    restApiId
   }
 }
diff --git a/src/services/apiGatewayResource/schema.graphql b/src/services/apiGatewayResource/schema.graphql
@@ -7,6 +7,7 @@ type awsApiGatewayMethod @key(fields: "arn") {
 }
 
 type awsApiGatewayResource implements awsBaseService @key(fields: "arn") {
+  restApiId: String @search(by: [hash, regexp])
   restApi: [awsApiGatewayRestApi] @hasInverse(field: resources) #change to plural
   path: String @search(by: [hash, regexp])
   methods: [awsApiGatewayMethod]
diff --git a/src/services/apiGatewayStage/format.ts b/src/services/apiGatewayStage/format.ts
@@ -22,6 +22,7 @@ export default ({
     variables: vars = {},
     tags = {},
     region,
+    restApiId
   } = service
 
   const variables = Object.entries(vars).map(([k, v]) => ({
@@ -45,5 +46,6 @@ export default ({
     xrayTracing: tracingEnabled,
     variables,
     tags: formatTagsFromMap(tags),
+    restApiId
   }
 }
diff --git a/src/services/apiGatewayStage/schema.graphql b/src/services/apiGatewayStage/schema.graphql
@@ -29,6 +29,7 @@ type awsApiGatewayStage implements awsBaseService @key(fields: "arn") {
   documentationVersion: String @search(by: [hash, regexp])
   clientCertificateId: String @search(by: [hash])
   xrayTracing: Boolean @search
+  restApiId: String @search(by: [hash, regexp])
   variables: [awsApiGatewayStageVariable]
   tags: [awsRawTag]
   restApi: [awsApiGatewayRestApi] @hasInverse(field: stages)
diff --git a/src/services/msk/connections.ts b/src/services/msk/connections.ts
@@ -1,7 +1,7 @@
 import { ServiceConnection } from '@cloudgraph/sdk'
 
-import services from '../../enums/services'
 import { Cluster } from 'aws-sdk/clients/kafka'
+import services from '../../enums/services'
 
 /**
  * Msk
@@ -22,42 +22,35 @@ export default ({
 }): { [key: string]: ServiceConnection[] } => {
   const connections: ServiceConnection[] = []
 
-  const {
-    ClusterArn: id,
-    Serverless: serverless,
-  } = mskCluster || {}
-  
+  const { ClusterArn: id, Serverless: serverless } = mskCluster || {}
+
   /**
    * Add subnets
    */
-  serverless?.VpcConfigs
-    ?.filter(vc => vc.SubnetIds)
-    ?.forEach(vc => {
-      connections.push(
-        ...vc?.SubnetIds?.map(subnetId => ({
-          id: subnetId,
-          resourceType: services.subnet,
-          relation: 'child',
-          field: 'subnet',
-        }))
-      )
-    })
+  serverless?.VpcConfigs?.filter(vc => vc.SubnetIds)?.forEach(vc => {
+    connections.push(
+      ...vc?.SubnetIds?.map(subnetId => ({
+        id: subnetId,
+        resourceType: services.subnet,
+        relation: 'child',
+        field: 'subnets',
+      }))
+    )
+  })
 
   /**
    * Add Security Groups
    */
-  serverless?.VpcConfigs
-    ?.filter(vc => vc.SecurityGroupIds)
-    ?.forEach(vc => {
-      connections.push(
-        ...vc?.SecurityGroupIds?.map(sgId => ({
-          id: sgId,
-          resourceType: services.sg,
-          relation: 'child',
-          field: 'securityGroups',
-        }))
-      )
-    })
+  serverless?.VpcConfigs?.filter(vc => vc.SecurityGroupIds)?.forEach(vc => {
+    connections.push(
+      ...vc?.SecurityGroupIds?.map(sgId => ({
+        id: sgId,
+        resourceType: services.sg,
+        relation: 'child',
+        field: 'securityGroups',
+      }))
+    )
+  })
 
   const mskResult = {
     [id]: connections,
diff --git a/src/services/msk/schema.graphql b/src/services/msk/schema.graphql
@@ -234,4 +234,6 @@ type awsMskCluster implements awsBaseService @key(fields: "arn") {
   provisioned: awsMskClusterProvisioned
   serverless: awsMskClusterServerless
   tags: [awsRawTag]
+  subnets: [awsSubnet] @hasInverse(field: mskClusters)
+  securityGroups: [awsSecurityGroup] @hasInverse(field: mskClusters)
 }
diff --git a/src/services/route53Record/format.ts b/src/services/route53Record/format.ts
@@ -1,6 +1,16 @@
+import { isEmpty } from 'lodash'
 import { AwsRoute53Record } from '../../types/generated'
-import { RawAwsRoute53Record } from './data'
 import { getHostedZoneId, getRecordId } from '../../utils/ids'
+import { RawAwsRoute53Record } from './data'
+
+// Normalize name due special chars like '*' are replaced with '\\052'
+const normalizeName = (name: string): string => {
+  if (isEmpty(name)) return ''
+  const normalizedName = name.replace(/\\052/g, '*')
+  return normalizedName.endsWith('.')
+    ? normalizedName.slice(0, -1)
+    : normalizedName
+}
 
 /**
  * Route53 Record
@@ -24,8 +34,14 @@ export default ({
     SetIdentifier: identifier = '',
   } = rawData
 
+  const normalizedName = normalizeName(name)
   const hostedZoneId = getHostedZoneId(Id)
-  const id = getRecordId({ hostedZoneId, name, type, identifier })
+  const id = getRecordId({
+    hostedZoneId,
+    name: normalizedName,
+    type,
+    identifier,
+  })
 
   // Resource records
   const resourceRecords = records.map(({ Value }) => Value)
@@ -34,7 +50,7 @@ export default ({
     id,
     accountId: account,
     zoneId: hostedZoneId,
-    name,
+    name: normalizedName,
     setIdentifier: identifier,
     type,
     ttl,
diff --git a/src/services/securityGroup/schema.graphql b/src/services/securityGroup/schema.graphql
@@ -30,6 +30,7 @@ type awsSecurityGroup implements awsBaseService @key(fields: "id") {
   sageMakerNotebookInstances: [awsSageMakerNotebookInstance]
     @hasInverse(field: securityGroups)
   vpcEndpoints: [awsVpcEndpoint] @hasInverse(field: securityGroups)
+  mskClusters: [awsMskCluster] @hasInverse(field: securityGroups)
 }
 
 type awsSgOutboundRule
diff --git a/src/services/subnet/schema.graphql b/src/services/subnet/schema.graphql
@@ -34,4 +34,5 @@ type awsSubnet implements awsBaseService @key(fields: "id") {
     @hasInverse(field: subnet)
   rdsCluster: [awsRdsCluster] @hasInverse(field: subnets)
   vpcEndpoints: [awsVpcEndpoint] @hasInverse(field: subnets)
+  mskClusters: [awsMskCluster] @hasInverse(field: subnets)
 }
diff --git a/src/services/tag/connections.ts b/src/services/tag/connections.ts
@@ -70,6 +70,7 @@ import { RawAwsAnalyzerSummary } from '../iamAccessAnalyzer/data'
 import { RawAwsManagedPrefixList } from '../managedPrefixList/data'
 import { RawAwsTransitGatewayRouteTable } from '../transitGatewayRouteTable/data'
 import { RawAwsVpcPeeringConnection } from '../vpcPeeringConnection/data'
+import { RawAwsMskCluster } from '../msk/data'
 
 const generateTagsMap = (
   data: Array<{ name: string; data: { [property: string]: any[] } }>
@@ -1196,6 +1197,20 @@ function getConnections({
     })
   }
 
+  /**
+   * Find related Msk Clusters
+   */
+   for (const instance of dataForTag[services.mskCluster] || []) {
+    const { ClusterArn: arn }: RawAwsMskCluster = instance
+
+    connections.push({
+      id: arn,
+      resourceType: services.mskCluster,
+      relation: 'child',
+      field: 'mskClusters',
+    })
+  }
+
   const tagResult = {
     [tag.id]: connections,
   }
diff --git a/src/types/generated.ts b/src/types/generated.ts
@@ -202,6 +202,7 @@ export type AwsAccount = AwsOptionalService & {
   lambdaFunctions?: Maybe<Array<Maybe<AwsLambda>>>;
   managedAirflows?: Maybe<Array<Maybe<AwsManagedAirflow>>>;
   managedPrefixLists?: Maybe<Array<Maybe<AwsManagedPrefixList>>>;
+  mskClusters?: Maybe<Array<Maybe<AwsMskCluster>>>;
   nacl?: Maybe<Array<Maybe<AwsNetworkAcl>>>;
   natGateway?: Maybe<Array<Maybe<AwsNatGateway>>>;
   networkInterfaces?: Maybe<Array<Maybe<AwsNetworkInterface>>>;
@@ -390,6 +391,7 @@ export type AwsApiGatewayResource = AwsBaseService & {
   methods?: Maybe<Array<Maybe<AwsApiGatewayMethod>>>;
   path?: Maybe<Scalars['String']>;
   restApi?: Maybe<Array<Maybe<AwsApiGatewayRestApi>>>;
+  restApiId?: Maybe<Scalars['String']>;
 };
 
 export type AwsApiGatewayRestApi = AwsBaseService & {
@@ -417,6 +419,7 @@ export type AwsApiGatewayStage = AwsBaseService & {
   documentationVersion?: Maybe<Scalars['String']>;
   name?: Maybe<Scalars['String']>;
   restApi?: Maybe<Array<Maybe<AwsApiGatewayRestApi>>>;
+  restApiId?: Maybe<Scalars['String']>;
   tags?: Maybe<Array<Maybe<AwsRawTag>>>;
   variables?: Maybe<Array<Maybe<AwsApiGatewayStageVariable>>>;
   webAcl?: Maybe<Array<Maybe<AwsWafV2WebAcl>>>;
@@ -3600,9 +3603,11 @@ export type AwsMskCluster = AwsBaseService & {
   creationTime?: Maybe<Scalars['DateTime']>;
   currentVersion?: Maybe<Scalars['String']>;
   provisioned?: Maybe<AwsMskClusterProvisioned>;
+  securityGroups?: Maybe<Array<Maybe<AwsSecurityGroup>>>;
   serverless?: Maybe<AwsMskClusterServerless>;
   state?: Maybe<Scalars['String']>;
   stateInfo?: Maybe<AwsMskClusterStateInfo>;
+  subnets?: Maybe<Array<Maybe<AwsSubnet>>>;
   tags?: Maybe<Array<Maybe<AwsRawTag>>>;
 };
 
@@ -4234,6 +4239,7 @@ export type AwsSecurityGroup = AwsBaseService & {
   inboundRules?: Maybe<Array<Maybe<AwsSgInboundRule>>>;
   lambda?: Maybe<Array<Maybe<AwsLambda>>>;
   managedAirflows?: Maybe<Array<Maybe<AwsManagedAirflow>>>;
+  mskClusters?: Maybe<Array<Maybe<AwsMskCluster>>>;
   name?: Maybe<Scalars['String']>;
   networkInterfaces?: Maybe<Array<Maybe<AwsNetworkInterface>>>;
   outboundRuleCount?: Maybe<Scalars['Int']>;
@@ -4374,6 +4380,7 @@ export type AwsSubnet = AwsBaseService & {
   ipV6Cidr?: Maybe<Scalars['String']>;
   lambda?: Maybe<Array<Maybe<AwsLambda>>>;
   managedAirflows?: Maybe<Array<Maybe<AwsManagedAirflow>>>;
+  mskClusters?: Maybe<Array<Maybe<AwsMskCluster>>>;
   nacls?: Maybe<Array<Maybe<AwsNetworkAcl>>>;
   natGateway?: Maybe<Array<Maybe<AwsNatGateway>>>;
   networkInterface?: Maybe<Array<Maybe<AwsNetworkInterface>>>;
diff --git a/src/utils/ids.ts b/src/utils/ids.ts
@@ -1,3 +1,4 @@
+import { isEmpty } from 'lodash'
 import kebabCase from 'lodash/kebabCase'
 import last from 'lodash/last'
 
@@ -18,9 +19,9 @@ export const getRecordId = ({
   type: string
   identifier: string
 }): string =>
-  `${hostedZoneId}_${name}-${type}${identifier}-${kebabCase(
-    resources.route53ZRecord
-  )}`
+  !isEmpty(identifier)
+    ? `${hostedZoneId}_${name}_${type}_${identifier}`
+    : `${hostedZoneId}_${name}_${type}`
 
 export const gets3BucketId = (id: string): string =>
   `${id}-${kebabCase(resources.s3Bucket)}`

Original file line number	Diff line number	Diff line change
`@@ -15,7 +15,7 @@ export default ({`
`15`	`15`	`region: string`
`16`	`16`	`account: string`
`17`	`17`	`}): AwsAGResourceType => {`
`18`		`- const { id, path, resourceMethods = {} } = service`
	`18`	`+ const { id, path, restApiId, resourceMethods = {} } = service`
`19`	`19`
`20`	`20`	`const arn = apiGatewayResourceArn({`
`21`	`21`	`restApiArn: apiGatewayArn({ region: service.region }),`
`@@ -39,5 +39,6 @@ export default ({`
`39`	`39`	`region,`
`40`	`40`	`path,`
`41`	`41`	`methods,`
	`42`	`+ restApiId`
`42`	`43`	`}`
`43`	`44`	`}`
Original file line number	Diff line number	Diff line change
`@@ -7,6 +7,7 @@ type awsApiGatewayMethod @key(fields: "arn") {`
`7`	`7`	`}`
`8`	`8`
`9`	`9`	`type awsApiGatewayResource implements awsBaseService @key(fields: "arn") {`
	`10`	`+ restApiId: String @search(by: [hash, regexp])`
`10`	`11`	`restApi: [awsApiGatewayRestApi] @hasInverse(field: resources) #change to plural`
`11`	`12`	`path: String @search(by: [hash, regexp])`
`12`	`13`	`methods: [awsApiGatewayMethod]`
Original file line number	Diff line number	Diff line change
`@@ -22,6 +22,7 @@ export default ({`
`22`	`22`	`variables: vars = {},`
`23`	`23`	`tags = {},`
`24`	`24`	`region,`
	`25`	`+ restApiId`
`25`	`26`	`} = service`
`26`	`27`
`27`	`28`	`const variables = Object.entries(vars).map(([k, v]) => ({`
`@@ -45,5 +46,6 @@ export default ({`
`45`	`46`	`xrayTracing: tracingEnabled,`
`46`	`47`	`variables,`
`47`	`48`	`tags: formatTagsFromMap(tags),`
	`49`	`+ restApiId`
`48`	`50`	`}`
`49`	`51`	`}`
Original file line number	Diff line number	Diff line change
`@@ -234,4 +234,6 @@ type awsMskCluster implements awsBaseService @key(fields: "arn") {`
`234`	`234`	`provisioned: awsMskClusterProvisioned`
`235`	`235`	`serverless: awsMskClusterServerless`
`236`	`236`	`tags: [awsRawTag]`
	`237`	`+ subnets: [awsSubnet] @hasInverse(field: mskClusters)`
	`238`	`+ securityGroups: [awsSecurityGroup] @hasInverse(field: mskClusters)`
`237`	`239`	`}`
Original file line number	Diff line number	Diff line change
`@@ -30,6 +30,7 @@ type awsSecurityGroup implements awsBaseService @key(fields: "id") {`
`30`	`30`	`sageMakerNotebookInstances: [awsSageMakerNotebookInstance]`
`31`	`31`	`@hasInverse(field: securityGroups)`
`32`	`32`	`vpcEndpoints: [awsVpcEndpoint] @hasInverse(field: securityGroups)`
	`33`	`+ mskClusters: [awsMskCluster] @hasInverse(field: securityGroups)`
`33`	`34`	`}`
`34`	`35`
`35`	`36`	`type awsSgOutboundRule`