116 lines
3.4 KiB
Go
116 lines
3.4 KiB
Go
package pkg
|
|
|
|
import (
|
|
"fmt"
|
|
|
|
"github.com/cloudskiff/driftctl/pkg/alerter"
|
|
"github.com/cloudskiff/driftctl/pkg/analyser"
|
|
"github.com/cloudskiff/driftctl/pkg/filter"
|
|
"github.com/cloudskiff/driftctl/pkg/middlewares"
|
|
"github.com/cloudskiff/driftctl/pkg/resource"
|
|
"github.com/jmespath/go-jmespath"
|
|
"github.com/pkg/errors"
|
|
"github.com/sirupsen/logrus"
|
|
)
|
|
|
|
type DriftCTL struct {
|
|
remoteSupplier resource.Supplier
|
|
iacSupplier resource.Supplier
|
|
alerter *alerter.Alerter
|
|
analyzer analyser.Analyzer
|
|
filter *jmespath.JMESPath
|
|
}
|
|
|
|
func NewDriftCTL(remoteSupplier resource.Supplier, iacSupplier resource.Supplier, filter *jmespath.JMESPath, alerter *alerter.Alerter) *DriftCTL {
|
|
return &DriftCTL{remoteSupplier, iacSupplier, alerter, analyser.NewAnalyzer(alerter), filter}
|
|
}
|
|
|
|
func (d DriftCTL) Run() (*analyser.Analysis, error) {
|
|
remoteResources, resourcesFromState, err := d.scan()
|
|
if err != nil {
|
|
return nil, errors.WithStack(err)
|
|
}
|
|
|
|
middleware := middlewares.NewChain(
|
|
middlewares.NewRoute53DefaultZoneRecordSanitizer(),
|
|
middlewares.NewS3BucketAcl(),
|
|
middlewares.NewAwsInstanceBlockDeviceResourceMapper(),
|
|
middlewares.NewVPCDefaultSecurityGroupSanitizer(),
|
|
middlewares.NewVPCSecurityGroupRuleSanitizer(),
|
|
middlewares.NewIamPolicyAttachmentSanitizer(),
|
|
middlewares.AwsInstanceEIP{},
|
|
middlewares.NewAwsDefaultInternetGatewayRoute(),
|
|
middlewares.NewAwsDefaultInternetGateway(),
|
|
middlewares.NewAwsDefaultVPC(),
|
|
middlewares.NewAwsDefaultSubnet(),
|
|
middlewares.NewAwsRouteTableExpander(d.alerter),
|
|
middlewares.NewAwsDefaultRouteTable(),
|
|
middlewares.NewAwsDefaultRoute(),
|
|
middlewares.NewAwsNatGatewayEipAssoc(),
|
|
middlewares.NewAwsBucketPolicyExpander(),
|
|
middlewares.NewAwsSqsQueuePolicyExpander(),
|
|
middlewares.NewAwsDefaultSqsQueuePolicy(),
|
|
middlewares.NewAwsSNSTopicPolicyExpander(),
|
|
)
|
|
|
|
logrus.Debug("Ready to run middlewares")
|
|
err = middleware.Execute(&remoteResources, &resourcesFromState)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, "Unable to run middlewares")
|
|
}
|
|
|
|
if d.filter != nil {
|
|
engine := filter.NewFilterEngine(d.filter)
|
|
remoteResources, err = engine.Run(remoteResources)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, "Unable to filter remote resources")
|
|
}
|
|
resourcesFromState, err = engine.Run(resourcesFromState)
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, "Unable to filter state resources")
|
|
}
|
|
}
|
|
|
|
logrus.Debug("Checking for driftignore")
|
|
driftIgnore := filter.NewDriftIgnore()
|
|
|
|
analysis, err := d.analyzer.Analyze(remoteResources, resourcesFromState, driftIgnore)
|
|
|
|
if err != nil {
|
|
return nil, errors.Wrap(err, "Unable to perform resources analysis")
|
|
}
|
|
|
|
return &analysis, nil
|
|
}
|
|
|
|
func (d DriftCTL) Stop() {
|
|
stoppableSupplier, ok := d.remoteSupplier.(resource.StoppableSupplier)
|
|
if ok {
|
|
logrus.WithFields(logrus.Fields{
|
|
"supplier": fmt.Sprintf("%T", d.remoteSupplier),
|
|
}).Debug("Stopping remote supplier")
|
|
stoppableSupplier.Stop()
|
|
}
|
|
|
|
stoppableSupplier, ok = d.iacSupplier.(resource.StoppableSupplier)
|
|
if ok {
|
|
stoppableSupplier.Stop()
|
|
}
|
|
}
|
|
|
|
func (d DriftCTL) scan() (remoteResources []resource.Resource, resourcesFromState []resource.Resource, err error) {
|
|
logrus.Info("Start reading IaC")
|
|
resourcesFromState, err = d.iacSupplier.Resources()
|
|
if err != nil {
|
|
return nil, nil, err
|
|
}
|
|
|
|
logrus.Info("Start scanning cloud provider")
|
|
remoteResources, err = d.remoteSupplier.Resources()
|
|
if err != nil {
|
|
return nil, nil, err
|
|
}
|
|
|
|
return remoteResources, resourcesFromState, err
|
|
}
|