sundowndev
/
driftctl
mirror of https://github.com/sundowndev/driftctl.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

refactor: do not alter resources from state in middlewares

main
sundowndev 2021-03-30 20:07:08 +02:00
parent cfdb6801a9
commit f01227d35a
5 changed files with 61 additions and 21 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
pkg/middlewares/aws_iam_policy_attachment_defaults.go
View File

@ -19,9 +19,12 @@ func NewAwsIamPolicyAttachmentDefaults() AwsIamPolicyAttachmentDefaults {
} }
func (m AwsIamPolicyAttachmentDefaults) Execute(remoteResources, resourcesFromState *[]resource.Resource) error { func (m AwsIamPolicyAttachmentDefaults) Execute(remoteResources, resourcesFromState *[]resource.Resource) error {
newRemoteResources := make([]resource.Resource, 0)
for _, remoteResource := range *remoteResources { for _, remoteResource := range *remoteResources {
// Ignore all resources other than iam policy attachment // Ignore all resources other than iam policy attachment
if remoteResource.TerraformType() != aws.AwsIamPolicyAttachmentResourceType { if remoteResource.TerraformType() != aws.AwsIamPolicyAttachmentResourceType {
newRemoteResources = append(newRemoteResources, remoteResource)
continue continue
} }
@ -34,20 +37,29 @@ func (m AwsIamPolicyAttachmentDefaults) Execute(remoteResources, resourcesFromSt
} }
if existInState { if existInState {
newRemoteResources = append(newRemoteResources, remoteResource)
continue continue
} }
isIgnored := false
for _, id := range ignoredIamPolicyAttachmentIds { for _, id := range ignoredIamPolicyAttachmentIds {
if remoteResource.TerraformId() == id { if remoteResource.TerraformId() == id {
*resourcesFromState = append(*resourcesFromState, remoteResource) isIgnored = true
}
}
if !isIgnored {
newRemoteResources = append(newRemoteResources, remoteResource)
continue
}
logrus.WithFields(logrus.Fields{ logrus.WithFields(logrus.Fields{
"id": remoteResource.TerraformId(), "id": remoteResource.TerraformId(),
"type": remoteResource.TerraformType(), "type": remoteResource.TerraformType(),
}).Debug("Ignoring default iam policy attachment as it is not managed by IaC") }).Debug("Ignoring default iam policy attachment as it is not managed by IaC")
} }
}
} *remoteResources = newRemoteResources
return nil return nil
} }

20
pkg/middlewares/aws_iam_role_defaults.go
View File

@ -21,9 +21,12 @@ func NewAwsIamRoleDefaults() AwsIamRoleDefaults {
} }
func (m AwsIamRoleDefaults) Execute(remoteResources, resourcesFromState *[]resource.Resource) error { func (m AwsIamRoleDefaults) Execute(remoteResources, resourcesFromState *[]resource.Resource) error {
newRemoteResources := make([]resource.Resource, 0)
for _, remoteResource := range *remoteResources { for _, remoteResource := range *remoteResources {
// Ignore all resources other than iam role // Ignore all resources other than iam role
if remoteResource.TerraformType() != aws.AwsIamRoleResourceType { if remoteResource.TerraformType() != aws.AwsIamRoleResourceType {
newRemoteResources = append(newRemoteResources, remoteResource)
continue continue
} }
@ -36,20 +39,29 @@ func (m AwsIamRoleDefaults) Execute(remoteResources, resourcesFromState *[]resou
} }
if existInState { if existInState {
newRemoteResources = append(newRemoteResources, remoteResource)
continue continue
} }
isIgnored := false
for _, id := range ignoredIamRoleIds { for _, id := range ignoredIamRoleIds {
if remoteResource.TerraformId() == id { if remoteResource.TerraformId() == id {
*resourcesFromState = append(*resourcesFromState, remoteResource) isIgnored = true
}
}
if !isIgnored {
newRemoteResources = append(newRemoteResources, remoteResource)
continue
}
logrus.WithFields(logrus.Fields{ logrus.WithFields(logrus.Fields{
"id": remoteResource.TerraformId(), "id": remoteResource.TerraformId(),
"type": remoteResource.TerraformType(), "type": remoteResource.TerraformType(),
}).Debug("Ignoring default iam role as it is not managed by IaC") }).Debug("Ignoring default iam policy attachment as it is not managed by IaC")
}
}
} }
*remoteResources = newRemoteResources
return nil return nil
} }

18
pkg/middlewares/aws_iam_role_policy_defaults.go
View File

@ -20,9 +20,12 @@ func NewAwsIamRolePolicyDefaults() AwsIamRolePolicyDefaults {
} }
func (m AwsIamRolePolicyDefaults) Execute(remoteResources, resourcesFromState *[]resource.Resource) error { func (m AwsIamRolePolicyDefaults) Execute(remoteResources, resourcesFromState *[]resource.Resource) error {
newRemoteResources := make([]resource.Resource, 0)
for _, remoteResource := range *remoteResources { for _, remoteResource := range *remoteResources {
// Ignore all resources other than role policy // Ignore all resources other than role policy
if remoteResource.TerraformType() != aws.AwsIamRolePolicyResourceType { if remoteResource.TerraformType() != aws.AwsIamRolePolicyResourceType {
newRemoteResources = append(newRemoteResources, remoteResource)
continue continue
} }
@ -35,20 +38,29 @@ func (m AwsIamRolePolicyDefaults) Execute(remoteResources, resourcesFromState *[
} }
if existInState { if existInState {
newRemoteResources = append(newRemoteResources, remoteResource)
continue continue
} }
isIgnored := false
for _, id := range ignoredIamRolePolicyIds { for _, id := range ignoredIamRolePolicyIds {
if remoteResource.TerraformId() == id { if remoteResource.TerraformId() == id {
*resourcesFromState = append(*resourcesFromState, remoteResource) isIgnored = true
}
}
if !isIgnored {
newRemoteResources = append(newRemoteResources, remoteResource)
continue
}
logrus.WithFields(logrus.Fields{ logrus.WithFields(logrus.Fields{
"id": remoteResource.TerraformId(), "id": remoteResource.TerraformId(),
"type": remoteResource.TerraformType(), "type": remoteResource.TerraformType(),
}).Debug("Ignoring default iam role policy as it is not managed by IaC") }).Debug("Ignoring default iam role policy as it is not managed by IaC")
} }
}
} *remoteResources = newRemoteResources
return nil return nil
} }

8
pkg/middlewares/aws_security_group_defaults.go
View File

@ -16,9 +16,12 @@ func NewAwsSecurityGroupDefaults() AwsSecurityGroupDefaults {
} }
func (m AwsSecurityGroupDefaults) Execute(remoteResources, resourcesFromState *[]resource.Resource) error { func (m AwsSecurityGroupDefaults) Execute(remoteResources, resourcesFromState *[]resource.Resource) error {
newRemoteResources := make([]resource.Resource, 0)
for _, remoteResource := range *remoteResources { for _, remoteResource := range *remoteResources {
// Ignore all resources other than iam role // Ignore all resources other than iam role
if remoteResource.TerraformType() != aws.AwsSecurityGroupResourceType { if remoteResource.TerraformType() != aws.AwsSecurityGroupResourceType {
newRemoteResources = append(newRemoteResources, remoteResource)
continue continue
} }
@ -31,16 +34,17 @@ func (m AwsSecurityGroupDefaults) Execute(remoteResources, resourcesFromState *[
} }
if existInState || *remoteResource.(*aws.AwsSecurityGroup).Name != "default" { if existInState || *remoteResource.(*aws.AwsSecurityGroup).Name != "default" {
newRemoteResources = append(newRemoteResources, remoteResource)
continue continue
} }
*resourcesFromState = append(*resourcesFromState, remoteResource)
logrus.WithFields(logrus.Fields{ logrus.WithFields(logrus.Fields{
"id": remoteResource.TerraformId(), "id": remoteResource.TerraformId(),
"type": remoteResource.TerraformType(), "type": remoteResource.TerraformType(),
}).Debug("Ignoring default aws security group as it is not managed by IaC") }).Debug("Ignoring default aws security group as it is not managed by IaC")
} }
*remoteResources = newRemoteResources
return nil return nil
} }

2
pkg/middlewares/aws_security_group_defaults_test.go
View File

@ -50,7 +50,7 @@ func TestAwsSecurityGroupDefaults_Execute(t *testing.T) {
diff.Changelog{ diff.Changelog{
{ {
Type: "delete", Type: "delete",
Path: []string{"1"}, Path: []string{"0"},
From: &aws.AwsSecurityGroup{ From: &aws.AwsSecurityGroup{
Id: "test", Id: "test",
Name: &dummySecurityGroupName, Name: &dummySecurityGroupName,