driftctl/pkg/remote/aws/iam_policy_supplier.go

package aws

import (
	"github.com/aws/aws-sdk-go/aws"
	"github.com/aws/aws-sdk-go/service/iam"
	"github.com/aws/aws-sdk-go/service/iam/iamiface"
	"github.com/cloudskiff/driftctl/pkg"
	"github.com/cloudskiff/driftctl/pkg/remote/deserializer"
	"github.com/cloudskiff/driftctl/pkg/resource"
	resourceaws "github.com/cloudskiff/driftctl/pkg/resource/aws"
	awsdeserializer "github.com/cloudskiff/driftctl/pkg/resource/aws/deserializer"
	"github.com/cloudskiff/driftctl/pkg/terraform"

	"github.com/sirupsen/logrus"
	"github.com/zclconf/go-cty/cty"
)

type IamPolicySupplier struct {
	reader       terraform.ResourceReader
	deserializer deserializer.CTYDeserializer
	client       iamiface.IAMAPI
	runner       *terraform.ParallelResourceReader
}

func NewIamPolicySupplier(runner *pkg.ParallelRunner, client iamiface.IAMAPI) *IamPolicySupplier {
	return &IamPolicySupplier{terraform.Provider(terraform.AWS), awsdeserializer.NewIamPolicyDeserializer(), client, terraform.NewParallelResourceReader(runner)}
}

func (s IamPolicySupplier) Resources() ([]resource.Resource, error) {
	policies, err := listIamPolicies(s.client)
	if err != nil {
		return nil, err
	}
	results := make([]cty.Value, 0)
	if len(policies) > 0 {
		for _, policy := range policies {
			u := *policy
			s.runner.Run(func() (cty.Value, error) {
				return s.readRes(&u)
			})
		}
		results, err = s.runner.Wait()
		if err != nil {
			return nil, err
		}
	}
	return s.deserializer.Deserialize(results)
}

func (s IamPolicySupplier) readRes(resource *iam.Policy) (cty.Value, error) {
	res, err := s.reader.ReadResource(
		terraform.ReadResourceArgs{
			Ty: resourceaws.AwsIamPolicyResourceType,
			ID: *resource.Arn,
		},
	)
	if err != nil {
		logrus.Warnf("Error reading iam policy %s[%s]: %+v", *resource.Arn, resourceaws.AwsIamPolicyResourceType, err)
		return cty.NilVal, err
	}

	return *res, nil
}

func listIamPolicies(client iamiface.IAMAPI) ([]*iam.Policy, error) {
	var resources []*iam.Policy
	input := &iam.ListPoliciesInput{
		Scope: aws.String(iam.PolicyScopeTypeLocal),
	}
	err := client.ListPoliciesPages(input, func(res *iam.ListPoliciesOutput, lastPage bool) bool {
		resources = append(resources, res.Policies...)
		return !lastPage
	})
	if err != nil {
		return nil, err
	}
	return resources, nil
}
🍾 Initial release Co-authored-by: William BEUIL <william.beuil@cloudskiff.com> Co-authored-by: Martin GUIBERT <martin@cloudskiff.com> 2020-12-09 15:31:34 +00:00			`package aws`

			`import (`
			`"github.com/aws/aws-sdk-go/aws"`
			`"github.com/aws/aws-sdk-go/service/iam"`
			`"github.com/aws/aws-sdk-go/service/iam/iamiface"`
			`"github.com/cloudskiff/driftctl/pkg"`
			`"github.com/cloudskiff/driftctl/pkg/remote/deserializer"`
			`"github.com/cloudskiff/driftctl/pkg/resource"`
			`resourceaws "github.com/cloudskiff/driftctl/pkg/resource/aws"`
			`awsdeserializer "github.com/cloudskiff/driftctl/pkg/resource/aws/deserializer"`
			`"github.com/cloudskiff/driftctl/pkg/terraform"`

			`"github.com/sirupsen/logrus"`
			`"github.com/zclconf/go-cty/cty"`
			`)`

			`type IamPolicySupplier struct {`
			`reader terraform.ResourceReader`
			`deserializer deserializer.CTYDeserializer`
			`client iamiface.IAMAPI`
			`runner *terraform.ParallelResourceReader`
			`}`

			`func NewIamPolicySupplier(runner pkg.ParallelRunner, client iamiface.IAMAPI) IamPolicySupplier {`
			`return &IamPolicySupplier{terraform.Provider(terraform.AWS), awsdeserializer.NewIamPolicyDeserializer(), client, terraform.NewParallelResourceReader(runner)}`
			`}`

			`func (s IamPolicySupplier) Resources() ([]resource.Resource, error) {`
			`policies, err := listIamPolicies(s.client)`
			`if err != nil {`
			`return nil, err`
			`}`
			`results := make([]cty.Value, 0)`
			`if len(policies) > 0 {`
			`for _, policy := range policies {`
			`u := *policy`
			`s.runner.Run(func() (cty.Value, error) {`
			`return s.readRes(&u)`
			`})`
			`}`
			`results, err = s.runner.Wait()`
			`if err != nil {`
			`return nil, err`
			`}`
			`}`
			`return s.deserializer.Deserialize(results)`
			`}`

			`func (s IamPolicySupplier) readRes(resource *iam.Policy) (cty.Value, error) {`
			`res, err := s.reader.ReadResource(`
			`terraform.ReadResourceArgs{`
			`Ty: resourceaws.AwsIamPolicyResourceType,`
			`ID: *resource.Arn,`
			`},`
			`)`
			`if err != nil {`
			`logrus.Warnf("Error reading iam policy %s[%s]: %+v", *resource.Arn, resourceaws.AwsIamPolicyResourceType, err)`
			`return cty.NilVal, err`
			`}`

			`return *res, nil`
			`}`

			`func listIamPolicies(client iamiface.IAMAPI) ([]*iam.Policy, error) {`
			`var resources []*iam.Policy`
			`input := &iam.ListPoliciesInput{`
			`Scope: aws.String(iam.PolicyScopeTypeLocal),`
			`}`
			`err := client.ListPoliciesPages(input, func(res *iam.ListPoliciesOutput, lastPage bool) bool {`
			`resources = append(resources, res.Policies...)`
			`return !lastPage`
			`})`
			`if err != nil {`
			`return nil, err`
			`}`
			`return resources, nil`
			`}`