From 6305c7ee45e615aabb6c4e187fb75c6a7d28ec44 Mon Sep 17 00:00:00 2001 From: Kazuma Watanabe Date: Mon, 14 Oct 2024 12:52:21 +0000 Subject: [PATCH] Remove worklink rules --- docs/rules/README.md | 7 -- ...worklink_fleet_invalid_audit_stream_arn.go | 87 --------------- ...ink_fleet_invalid_device_ca_certificate.go | 105 ------------------ ...aws_worklink_fleet_invalid_display_name.go | 84 -------------- .../models/aws_worklink_fleet_invalid_name.go | 105 ------------------ ...thority_association_invalid_certificate.go | 105 ------------------ ...hority_association_invalid_display_name.go | 84 -------------- ...authority_association_invalid_fleet_arn.go | 93 ---------------- rules/models/mappings/worklink.hcl | 17 --- rules/models/provider.go | 7 -- 10 files changed, 694 deletions(-) delete mode 100644 rules/models/aws_worklink_fleet_invalid_audit_stream_arn.go delete mode 100644 rules/models/aws_worklink_fleet_invalid_device_ca_certificate.go delete mode 100644 rules/models/aws_worklink_fleet_invalid_display_name.go delete mode 100644 rules/models/aws_worklink_fleet_invalid_name.go delete mode 100644 rules/models/aws_worklink_website_certificate_authority_association_invalid_certificate.go delete mode 100644 rules/models/aws_worklink_website_certificate_authority_association_invalid_display_name.go delete mode 100644 rules/models/aws_worklink_website_certificate_authority_association_invalid_fleet_arn.go delete mode 100644 rules/models/mappings/worklink.hcl diff --git a/docs/rules/README.md b/docs/rules/README.md index e3e0d7fb..c19da4ca 100644 --- a/docs/rules/README.md +++ b/docs/rules/README.md @@ -1446,13 +1446,6 @@ These rules enforce best practices and naming conventions: |aws_wafv2_web_acl_invalid_name|✔| |aws_wafv2_web_acl_invalid_scope|✔| |aws_wafv2_web_acl_logging_configuration_invalid_resource_arn|✔| -|aws_worklink_fleet_invalid_audit_stream_arn|✔| -|aws_worklink_fleet_invalid_device_ca_certificate|✔| -|aws_worklink_fleet_invalid_display_name|✔| -|aws_worklink_fleet_invalid_name|✔| -|aws_worklink_website_certificate_authority_association_invalid_certificate|✔| -|aws_worklink_website_certificate_authority_association_invalid_display_name|✔| -|aws_worklink_website_certificate_authority_association_invalid_fleet_arn|✔| |aws_workspaces_directory_invalid_directory_id|✔| |aws_workspaces_workspace_invalid_bundle_id|✔| |aws_workspaces_workspace_invalid_directory_id|✔| diff --git a/rules/models/aws_worklink_fleet_invalid_audit_stream_arn.go b/rules/models/aws_worklink_fleet_invalid_audit_stream_arn.go deleted file mode 100644 index df6669cb..00000000 --- a/rules/models/aws_worklink_fleet_invalid_audit_stream_arn.go +++ /dev/null @@ -1,87 +0,0 @@ -// This file generated by `generator/`. DO NOT EDIT - -package models - -import ( - "fmt" - "regexp" - - "github.com/terraform-linters/tflint-plugin-sdk/hclext" - "github.com/terraform-linters/tflint-plugin-sdk/logger" - "github.com/terraform-linters/tflint-plugin-sdk/tflint" -) - -// AwsWorklinkFleetInvalidAuditStreamArnRule checks the pattern is valid -type AwsWorklinkFleetInvalidAuditStreamArnRule struct { - tflint.DefaultRule - - resourceType string - attributeName string - pattern *regexp.Regexp -} - -// NewAwsWorklinkFleetInvalidAuditStreamArnRule returns new rule with default attributes -func NewAwsWorklinkFleetInvalidAuditStreamArnRule() *AwsWorklinkFleetInvalidAuditStreamArnRule { - return &AwsWorklinkFleetInvalidAuditStreamArnRule{ - resourceType: "aws_worklink_fleet", - attributeName: "audit_stream_arn", - pattern: regexp.MustCompile(`^arn:aws:kinesis:.+:[0-9]{12}:stream/AmazonWorkLink-.*$`), - } -} - -// Name returns the rule name -func (r *AwsWorklinkFleetInvalidAuditStreamArnRule) Name() string { - return "aws_worklink_fleet_invalid_audit_stream_arn" -} - -// Enabled returns whether the rule is enabled by default -func (r *AwsWorklinkFleetInvalidAuditStreamArnRule) Enabled() bool { - return true -} - -// Severity returns the rule severity -func (r *AwsWorklinkFleetInvalidAuditStreamArnRule) Severity() tflint.Severity { - return tflint.ERROR -} - -// Link returns the rule reference link -func (r *AwsWorklinkFleetInvalidAuditStreamArnRule) Link() string { - return "" -} - -// Check checks the pattern is valid -func (r *AwsWorklinkFleetInvalidAuditStreamArnRule) Check(runner tflint.Runner) error { - logger.Trace("Check `%s` rule", r.Name()) - - resources, err := runner.GetResourceContent(r.resourceType, &hclext.BodySchema{ - Attributes: []hclext.AttributeSchema{ - {Name: r.attributeName}, - }, - }, nil) - if err != nil { - return err - } - - for _, resource := range resources.Blocks { - attribute, exists := resource.Body.Attributes[r.attributeName] - if !exists { - continue - } - - err := runner.EvaluateExpr(attribute.Expr, func (val string) error { - if !r.pattern.MatchString(val) { - runner.EmitIssue( - r, - fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^arn:aws:kinesis:.+:[0-9]{12}:stream/AmazonWorkLink-.*$`), - attribute.Expr.Range(), - ) - } - return nil - }, nil) - if err != nil { - return err - } - } - - return nil -} diff --git a/rules/models/aws_worklink_fleet_invalid_device_ca_certificate.go b/rules/models/aws_worklink_fleet_invalid_device_ca_certificate.go deleted file mode 100644 index 175b6dc5..00000000 --- a/rules/models/aws_worklink_fleet_invalid_device_ca_certificate.go +++ /dev/null @@ -1,105 +0,0 @@ -// This file generated by `generator/`. DO NOT EDIT - -package models - -import ( - "fmt" - "regexp" - - "github.com/terraform-linters/tflint-plugin-sdk/hclext" - "github.com/terraform-linters/tflint-plugin-sdk/logger" - "github.com/terraform-linters/tflint-plugin-sdk/tflint" -) - -// AwsWorklinkFleetInvalidDeviceCaCertificateRule checks the pattern is valid -type AwsWorklinkFleetInvalidDeviceCaCertificateRule struct { - tflint.DefaultRule - - resourceType string - attributeName string - max int - min int - pattern *regexp.Regexp -} - -// NewAwsWorklinkFleetInvalidDeviceCaCertificateRule returns new rule with default attributes -func NewAwsWorklinkFleetInvalidDeviceCaCertificateRule() *AwsWorklinkFleetInvalidDeviceCaCertificateRule { - return &AwsWorklinkFleetInvalidDeviceCaCertificateRule{ - resourceType: "aws_worklink_fleet", - attributeName: "device_ca_certificate", - max: 8192, - min: 1, - pattern: regexp.MustCompile(`^-{5}BEGIN CERTIFICATE-{5}\x{000D}?\x{000A}([A-Za-z0-9/+]{64}\x{000D}?\x{000A})*[A-Za-z0-9/+]{1,64}={0,2}\x{000D}?\x{000A}-{5}END CERTIFICATE-{5}(\x{000D}?\x{000A})?$`), - } -} - -// Name returns the rule name -func (r *AwsWorklinkFleetInvalidDeviceCaCertificateRule) Name() string { - return "aws_worklink_fleet_invalid_device_ca_certificate" -} - -// Enabled returns whether the rule is enabled by default -func (r *AwsWorklinkFleetInvalidDeviceCaCertificateRule) Enabled() bool { - return true -} - -// Severity returns the rule severity -func (r *AwsWorklinkFleetInvalidDeviceCaCertificateRule) Severity() tflint.Severity { - return tflint.ERROR -} - -// Link returns the rule reference link -func (r *AwsWorklinkFleetInvalidDeviceCaCertificateRule) Link() string { - return "" -} - -// Check checks the pattern is valid -func (r *AwsWorklinkFleetInvalidDeviceCaCertificateRule) Check(runner tflint.Runner) error { - logger.Trace("Check `%s` rule", r.Name()) - - resources, err := runner.GetResourceContent(r.resourceType, &hclext.BodySchema{ - Attributes: []hclext.AttributeSchema{ - {Name: r.attributeName}, - }, - }, nil) - if err != nil { - return err - } - - for _, resource := range resources.Blocks { - attribute, exists := resource.Body.Attributes[r.attributeName] - if !exists { - continue - } - - err := runner.EvaluateExpr(attribute.Expr, func (val string) error { - if len(val) > r.max { - runner.EmitIssue( - r, - "device_ca_certificate must be 8192 characters or less", - attribute.Expr.Range(), - ) - } - if len(val) < r.min { - runner.EmitIssue( - r, - "device_ca_certificate must be 1 characters or higher", - attribute.Expr.Range(), - ) - } - if !r.pattern.MatchString(val) { - runner.EmitIssue( - r, - fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^-{5}BEGIN CERTIFICATE-{5}\x{000D}?\x{000A}([A-Za-z0-9/+]{64}\x{000D}?\x{000A})*[A-Za-z0-9/+]{1,64}={0,2}\x{000D}?\x{000A}-{5}END CERTIFICATE-{5}(\x{000D}?\x{000A})?$`), - attribute.Expr.Range(), - ) - } - return nil - }, nil) - if err != nil { - return err - } - } - - return nil -} diff --git a/rules/models/aws_worklink_fleet_invalid_display_name.go b/rules/models/aws_worklink_fleet_invalid_display_name.go deleted file mode 100644 index 3f051b2b..00000000 --- a/rules/models/aws_worklink_fleet_invalid_display_name.go +++ /dev/null @@ -1,84 +0,0 @@ -// This file generated by `generator/`. DO NOT EDIT - -package models - -import ( - "github.com/terraform-linters/tflint-plugin-sdk/hclext" - "github.com/terraform-linters/tflint-plugin-sdk/logger" - "github.com/terraform-linters/tflint-plugin-sdk/tflint" -) - -// AwsWorklinkFleetInvalidDisplayNameRule checks the pattern is valid -type AwsWorklinkFleetInvalidDisplayNameRule struct { - tflint.DefaultRule - - resourceType string - attributeName string - max int -} - -// NewAwsWorklinkFleetInvalidDisplayNameRule returns new rule with default attributes -func NewAwsWorklinkFleetInvalidDisplayNameRule() *AwsWorklinkFleetInvalidDisplayNameRule { - return &AwsWorklinkFleetInvalidDisplayNameRule{ - resourceType: "aws_worklink_fleet", - attributeName: "display_name", - max: 100, - } -} - -// Name returns the rule name -func (r *AwsWorklinkFleetInvalidDisplayNameRule) Name() string { - return "aws_worklink_fleet_invalid_display_name" -} - -// Enabled returns whether the rule is enabled by default -func (r *AwsWorklinkFleetInvalidDisplayNameRule) Enabled() bool { - return true -} - -// Severity returns the rule severity -func (r *AwsWorklinkFleetInvalidDisplayNameRule) Severity() tflint.Severity { - return tflint.ERROR -} - -// Link returns the rule reference link -func (r *AwsWorklinkFleetInvalidDisplayNameRule) Link() string { - return "" -} - -// Check checks the pattern is valid -func (r *AwsWorklinkFleetInvalidDisplayNameRule) Check(runner tflint.Runner) error { - logger.Trace("Check `%s` rule", r.Name()) - - resources, err := runner.GetResourceContent(r.resourceType, &hclext.BodySchema{ - Attributes: []hclext.AttributeSchema{ - {Name: r.attributeName}, - }, - }, nil) - if err != nil { - return err - } - - for _, resource := range resources.Blocks { - attribute, exists := resource.Body.Attributes[r.attributeName] - if !exists { - continue - } - - err := runner.EvaluateExpr(attribute.Expr, func (val string) error { - if len(val) > r.max { - runner.EmitIssue( - r, - "display_name must be 100 characters or less", - attribute.Expr.Range(), - ) - } - return nil - }, nil) - if err != nil { - return err - } - } - - return nil -} diff --git a/rules/models/aws_worklink_fleet_invalid_name.go b/rules/models/aws_worklink_fleet_invalid_name.go deleted file mode 100644 index d53a0d18..00000000 --- a/rules/models/aws_worklink_fleet_invalid_name.go +++ /dev/null @@ -1,105 +0,0 @@ -// This file generated by `generator/`. DO NOT EDIT - -package models - -import ( - "fmt" - "regexp" - - "github.com/terraform-linters/tflint-plugin-sdk/hclext" - "github.com/terraform-linters/tflint-plugin-sdk/logger" - "github.com/terraform-linters/tflint-plugin-sdk/tflint" -) - -// AwsWorklinkFleetInvalidNameRule checks the pattern is valid -type AwsWorklinkFleetInvalidNameRule struct { - tflint.DefaultRule - - resourceType string - attributeName string - max int - min int - pattern *regexp.Regexp -} - -// NewAwsWorklinkFleetInvalidNameRule returns new rule with default attributes -func NewAwsWorklinkFleetInvalidNameRule() *AwsWorklinkFleetInvalidNameRule { - return &AwsWorklinkFleetInvalidNameRule{ - resourceType: "aws_worklink_fleet", - attributeName: "name", - max: 48, - min: 1, - pattern: regexp.MustCompile(`^[a-z0-9](?:[a-z0-9\-]{0,46}[a-z0-9])?$`), - } -} - -// Name returns the rule name -func (r *AwsWorklinkFleetInvalidNameRule) Name() string { - return "aws_worklink_fleet_invalid_name" -} - -// Enabled returns whether the rule is enabled by default -func (r *AwsWorklinkFleetInvalidNameRule) Enabled() bool { - return true -} - -// Severity returns the rule severity -func (r *AwsWorklinkFleetInvalidNameRule) Severity() tflint.Severity { - return tflint.ERROR -} - -// Link returns the rule reference link -func (r *AwsWorklinkFleetInvalidNameRule) Link() string { - return "" -} - -// Check checks the pattern is valid -func (r *AwsWorklinkFleetInvalidNameRule) Check(runner tflint.Runner) error { - logger.Trace("Check `%s` rule", r.Name()) - - resources, err := runner.GetResourceContent(r.resourceType, &hclext.BodySchema{ - Attributes: []hclext.AttributeSchema{ - {Name: r.attributeName}, - }, - }, nil) - if err != nil { - return err - } - - for _, resource := range resources.Blocks { - attribute, exists := resource.Body.Attributes[r.attributeName] - if !exists { - continue - } - - err := runner.EvaluateExpr(attribute.Expr, func (val string) error { - if len(val) > r.max { - runner.EmitIssue( - r, - "name must be 48 characters or less", - attribute.Expr.Range(), - ) - } - if len(val) < r.min { - runner.EmitIssue( - r, - "name must be 1 characters or higher", - attribute.Expr.Range(), - ) - } - if !r.pattern.MatchString(val) { - runner.EmitIssue( - r, - fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^[a-z0-9](?:[a-z0-9\-]{0,46}[a-z0-9])?$`), - attribute.Expr.Range(), - ) - } - return nil - }, nil) - if err != nil { - return err - } - } - - return nil -} diff --git a/rules/models/aws_worklink_website_certificate_authority_association_invalid_certificate.go b/rules/models/aws_worklink_website_certificate_authority_association_invalid_certificate.go deleted file mode 100644 index 059ae7a0..00000000 --- a/rules/models/aws_worklink_website_certificate_authority_association_invalid_certificate.go +++ /dev/null @@ -1,105 +0,0 @@ -// This file generated by `generator/`. DO NOT EDIT - -package models - -import ( - "fmt" - "regexp" - - "github.com/terraform-linters/tflint-plugin-sdk/hclext" - "github.com/terraform-linters/tflint-plugin-sdk/logger" - "github.com/terraform-linters/tflint-plugin-sdk/tflint" -) - -// AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule checks the pattern is valid -type AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule struct { - tflint.DefaultRule - - resourceType string - attributeName string - max int - min int - pattern *regexp.Regexp -} - -// NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule returns new rule with default attributes -func NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule() *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule { - return &AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule{ - resourceType: "aws_worklink_website_certificate_authority_association", - attributeName: "certificate", - max: 8192, - min: 1, - pattern: regexp.MustCompile(`^-{5}BEGIN CERTIFICATE-{5}\x{000D}?\x{000A}([A-Za-z0-9/+]{64}\x{000D}?\x{000A})*[A-Za-z0-9/+]{1,64}={0,2}\x{000D}?\x{000A}-{5}END CERTIFICATE-{5}(\x{000D}?\x{000A})?$`), - } -} - -// Name returns the rule name -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule) Name() string { - return "aws_worklink_website_certificate_authority_association_invalid_certificate" -} - -// Enabled returns whether the rule is enabled by default -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule) Enabled() bool { - return true -} - -// Severity returns the rule severity -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule) Severity() tflint.Severity { - return tflint.ERROR -} - -// Link returns the rule reference link -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule) Link() string { - return "" -} - -// Check checks the pattern is valid -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule) Check(runner tflint.Runner) error { - logger.Trace("Check `%s` rule", r.Name()) - - resources, err := runner.GetResourceContent(r.resourceType, &hclext.BodySchema{ - Attributes: []hclext.AttributeSchema{ - {Name: r.attributeName}, - }, - }, nil) - if err != nil { - return err - } - - for _, resource := range resources.Blocks { - attribute, exists := resource.Body.Attributes[r.attributeName] - if !exists { - continue - } - - err := runner.EvaluateExpr(attribute.Expr, func (val string) error { - if len(val) > r.max { - runner.EmitIssue( - r, - "certificate must be 8192 characters or less", - attribute.Expr.Range(), - ) - } - if len(val) < r.min { - runner.EmitIssue( - r, - "certificate must be 1 characters or higher", - attribute.Expr.Range(), - ) - } - if !r.pattern.MatchString(val) { - runner.EmitIssue( - r, - fmt.Sprintf(`"%s" does not match valid pattern %s`, truncateLongMessage(val), `^-{5}BEGIN CERTIFICATE-{5}\x{000D}?\x{000A}([A-Za-z0-9/+]{64}\x{000D}?\x{000A})*[A-Za-z0-9/+]{1,64}={0,2}\x{000D}?\x{000A}-{5}END CERTIFICATE-{5}(\x{000D}?\x{000A})?$`), - attribute.Expr.Range(), - ) - } - return nil - }, nil) - if err != nil { - return err - } - } - - return nil -} diff --git a/rules/models/aws_worklink_website_certificate_authority_association_invalid_display_name.go b/rules/models/aws_worklink_website_certificate_authority_association_invalid_display_name.go deleted file mode 100644 index 81006883..00000000 --- a/rules/models/aws_worklink_website_certificate_authority_association_invalid_display_name.go +++ /dev/null @@ -1,84 +0,0 @@ -// This file generated by `generator/`. DO NOT EDIT - -package models - -import ( - "github.com/terraform-linters/tflint-plugin-sdk/hclext" - "github.com/terraform-linters/tflint-plugin-sdk/logger" - "github.com/terraform-linters/tflint-plugin-sdk/tflint" -) - -// AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule checks the pattern is valid -type AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule struct { - tflint.DefaultRule - - resourceType string - attributeName string - max int -} - -// NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule returns new rule with default attributes -func NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule() *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule { - return &AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule{ - resourceType: "aws_worklink_website_certificate_authority_association", - attributeName: "display_name", - max: 100, - } -} - -// Name returns the rule name -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule) Name() string { - return "aws_worklink_website_certificate_authority_association_invalid_display_name" -} - -// Enabled returns whether the rule is enabled by default -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule) Enabled() bool { - return true -} - -// Severity returns the rule severity -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule) Severity() tflint.Severity { - return tflint.ERROR -} - -// Link returns the rule reference link -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule) Link() string { - return "" -} - -// Check checks the pattern is valid -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule) Check(runner tflint.Runner) error { - logger.Trace("Check `%s` rule", r.Name()) - - resources, err := runner.GetResourceContent(r.resourceType, &hclext.BodySchema{ - Attributes: []hclext.AttributeSchema{ - {Name: r.attributeName}, - }, - }, nil) - if err != nil { - return err - } - - for _, resource := range resources.Blocks { - attribute, exists := resource.Body.Attributes[r.attributeName] - if !exists { - continue - } - - err := runner.EvaluateExpr(attribute.Expr, func (val string) error { - if len(val) > r.max { - runner.EmitIssue( - r, - "display_name must be 100 characters or less", - attribute.Expr.Range(), - ) - } - return nil - }, nil) - if err != nil { - return err - } - } - - return nil -} diff --git a/rules/models/aws_worklink_website_certificate_authority_association_invalid_fleet_arn.go b/rules/models/aws_worklink_website_certificate_authority_association_invalid_fleet_arn.go deleted file mode 100644 index 79e5d7b4..00000000 --- a/rules/models/aws_worklink_website_certificate_authority_association_invalid_fleet_arn.go +++ /dev/null @@ -1,93 +0,0 @@ -// This file generated by `generator/`. DO NOT EDIT - -package models - -import ( - "github.com/terraform-linters/tflint-plugin-sdk/hclext" - "github.com/terraform-linters/tflint-plugin-sdk/logger" - "github.com/terraform-linters/tflint-plugin-sdk/tflint" -) - -// AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule checks the pattern is valid -type AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule struct { - tflint.DefaultRule - - resourceType string - attributeName string - max int - min int -} - -// NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule returns new rule with default attributes -func NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule() *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule { - return &AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule{ - resourceType: "aws_worklink_website_certificate_authority_association", - attributeName: "fleet_arn", - max: 2048, - min: 20, - } -} - -// Name returns the rule name -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule) Name() string { - return "aws_worklink_website_certificate_authority_association_invalid_fleet_arn" -} - -// Enabled returns whether the rule is enabled by default -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule) Enabled() bool { - return true -} - -// Severity returns the rule severity -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule) Severity() tflint.Severity { - return tflint.ERROR -} - -// Link returns the rule reference link -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule) Link() string { - return "" -} - -// Check checks the pattern is valid -func (r *AwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule) Check(runner tflint.Runner) error { - logger.Trace("Check `%s` rule", r.Name()) - - resources, err := runner.GetResourceContent(r.resourceType, &hclext.BodySchema{ - Attributes: []hclext.AttributeSchema{ - {Name: r.attributeName}, - }, - }, nil) - if err != nil { - return err - } - - for _, resource := range resources.Blocks { - attribute, exists := resource.Body.Attributes[r.attributeName] - if !exists { - continue - } - - err := runner.EvaluateExpr(attribute.Expr, func (val string) error { - if len(val) > r.max { - runner.EmitIssue( - r, - "fleet_arn must be 2048 characters or less", - attribute.Expr.Range(), - ) - } - if len(val) < r.min { - runner.EmitIssue( - r, - "fleet_arn must be 20 characters or higher", - attribute.Expr.Range(), - ) - } - return nil - }, nil) - if err != nil { - return err - } - } - - return nil -} diff --git a/rules/models/mappings/worklink.hcl b/rules/models/mappings/worklink.hcl deleted file mode 100644 index 892d8123..00000000 --- a/rules/models/mappings/worklink.hcl +++ /dev/null @@ -1,17 +0,0 @@ -import = "aws-sdk-ruby/apis/worklink/2018-09-25/api-2.json" - -mapping "aws_worklink_fleet" { - name = FleetName - audit_stream_arn = AuditStreamArn - device_ca_certificate = Certificate - identity_provider = any - display_name = DisplayName - network = any - optimize_for_end_user_location = Boolean -} - -mapping "aws_worklink_website_certificate_authority_association" { - fleet_arn = FleetArn - certificate = Certificate - display_name = DisplayName -} diff --git a/rules/models/provider.go b/rules/models/provider.go index 49773163..60d78f5e 100644 --- a/rules/models/provider.go +++ b/rules/models/provider.go @@ -1370,13 +1370,6 @@ var Rules = []tflint.Rule{ NewAwsWafv2WebACLInvalidNameRule(), NewAwsWafv2WebACLInvalidScopeRule(), NewAwsWafv2WebACLLoggingConfigurationInvalidResourceArnRule(), - NewAwsWorklinkFleetInvalidAuditStreamArnRule(), - NewAwsWorklinkFleetInvalidDeviceCaCertificateRule(), - NewAwsWorklinkFleetInvalidDisplayNameRule(), - NewAwsWorklinkFleetInvalidNameRule(), - NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidCertificateRule(), - NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidDisplayNameRule(), - NewAwsWorklinkWebsiteCertificateAuthorityAssociationInvalidFleetArnRule(), NewAwsWorkspacesDirectoryInvalidDirectoryIDRule(), NewAwsWorkspacesWorkspaceInvalidBundleIDRule(), NewAwsWorkspacesWorkspaceInvalidDirectoryIDRule(),