Use lists in config

hermanschaaf · hermanschaaf · commit 600879cf9fe9 · 2023-05-12T10:38:57.000+01:00
diff --git a/plugins/source/aws/client/tableoptions/accessanalyzer.go b/plugins/source/aws/client/tableoptions/accessanalyzer.go
@@ -7,11 +7,10 @@ import (
 	"github.com/aws/aws-sdk-go-v2/aws"
 	"github.com/aws/aws-sdk-go-v2/service/accessanalyzer"
 	"github.com/cloudquery/plugin-sdk/v3/caser"
-	"github.com/jinzhu/copier"
 )
 
 type AccessanalyzerFindings struct {
-	ListFindingOpts CustomAccessAnalyzerListFindingsInput `json:"list_findings,omitempty"`
+	ListFindingOpts []CustomAccessAnalyzerListFindingsInput `json:"list_findings,omitempty"`
 }
 
 type CustomAccessAnalyzerListFindingsInput struct {
@@ -34,27 +33,17 @@ func (c *CustomAccessAnalyzerListFindingsInput) UnmarshalJSON(data []byte) error
 }
 
 func (c *AccessanalyzerFindings) validateListFindings() error {
-	if aws.ToString(c.ListFindingOpts.NextToken) != "" {
-		return errors.New("invalid input: cannot set NextToken in ListFindings")
-	}
-	if aws.ToString(c.ListFindingOpts.AnalyzerArn) != "" {
-		return errors.New("invalid input: cannot set AnalyzerARN in ListFindings")
+	for _, opt := range c.ListFindingOpts {
+		if aws.ToString(opt.NextToken) != "" {
+			return errors.New("invalid input: cannot set NextToken in ListFindings")
+		}
+		if aws.ToString(opt.AnalyzerArn) != "" {
+			return errors.New("invalid input: cannot set AnalyzerARN in ListFindings")
+		}
 	}
 	return nil
 }
 
 func (c *AccessanalyzerFindings) Validate() error {
 	return c.validateListFindings()
 }
-
-func (c *AccessanalyzerFindings) ListFindings() (*accessanalyzer.ListFindingsInput, error) {
-	var aaLFI accessanalyzer.ListFindingsInput
-	if c == nil {
-		return &aaLFI, nil
-	}
-	if err := c.validateListFindings(); err != nil {
-		return &aaLFI, err
-	}
-
-	return &aaLFI, copier.Copy(&aaLFI, &c.ListFindingOpts)
-}
diff --git a/plugins/source/aws/client/tableoptions/accessanalyzer_test.go b/plugins/source/aws/client/tableoptions/accessanalyzer_test.go
@@ -15,16 +15,16 @@ func TestAAListFindings(t *testing.T) {
 	}
 
 	api := AccessanalyzerFindings{
-		ListFindingOpts: u,
+		ListFindingOpts: []CustomAccessAnalyzerListFindingsInput{u},
 	}
 	// Ensure that the validation works as expected
 	err := api.Validate()
 	assert.EqualError(t, err, "invalid input: cannot set NextToken in ListFindings")
-	api.ListFindingOpts.NextToken = nil
+	api.ListFindingOpts[0].NextToken = nil
 
 	err = api.Validate()
 	assert.EqualError(t, err, "invalid input: cannot set AnalyzerARN in ListFindings")
-	api.ListFindingOpts.AnalyzerArn = nil
+	api.ListFindingOpts[0].AnalyzerArn = nil
 
 	// Ensure that as soon as the validation passes that there are no unexpected empty or nil fields
 	err = api.Validate()
diff --git a/plugins/source/aws/client/tableoptions/cloudtrail.go b/plugins/source/aws/client/tableoptions/cloudtrail.go
@@ -10,7 +10,7 @@ import (
 )
 
 type CloudtrailAPIs struct {
-	LookupEventsOpts CustomLookupEventsOpts `json:"lookup_events,omitempty"`
+	LookupEventsOpts []CustomLookupEventsOpts `json:"lookup_events,omitempty"`
 }
 
 type CustomLookupEventsOpts struct {
@@ -32,8 +32,10 @@ func (c *CustomLookupEventsOpts) UnmarshalJSON(data []byte) error {
 }
 
 func (c *CloudtrailAPIs) validateLookupEvents() error {
-	if aws.ToString(c.LookupEventsOpts.NextToken) != "" {
-		return errors.New("invalid input: cannot set NextToken in LookupEvents")
+	for _, opt := range c.LookupEventsOpts {
+		if aws.ToString(opt.NextToken) != "" {
+			return errors.New("invalid input: cannot set NextToken in LookupEvents")
+		}
 	}
 	return nil
 }
diff --git a/plugins/source/aws/client/tableoptions/cloudtrail_test.go b/plugins/source/aws/client/tableoptions/cloudtrail_test.go
@@ -13,14 +13,14 @@ func TestLookupEvents(t *testing.T) {
 		t.Fatal(err)
 	}
 	api := CloudtrailAPIs{
-		LookupEventsOpts: u,
+		LookupEventsOpts: []CustomLookupEventsOpts{u},
 	}
 	// Ensure that the validation works as expected
 	err := api.Validate()
 	assert.EqualError(t, err, "invalid input: cannot set NextToken in LookupEvents")
 
 	// Ensure that as soon as the validation passes that there are no unexpected empty or nil fields
-	api.LookupEventsOpts.NextToken = nil
+	api.LookupEventsOpts[0].NextToken = nil
 	err = api.Validate()
 	assert.Nil(t, err)
 }
diff --git a/plugins/source/aws/client/tableoptions/inspector2.go b/plugins/source/aws/client/tableoptions/inspector2.go
@@ -10,7 +10,7 @@ import (
 )
 
 type Inspector2APIs struct {
-	ListFindingsOpts CustomInspector2ListFindingsInput `json:"list_findings,omitempty"`
+	ListFindingsOpts []CustomInspector2ListFindingsInput `json:"list_findings,omitempty"`
 }
 
 type CustomInspector2ListFindingsInput struct {
@@ -32,8 +32,10 @@ func (c *CustomInspector2ListFindingsInput) UnmarshalJSON(data []byte) error {
 }
 
 func (c *Inspector2APIs) validateListFindings() error {
-	if aws.ToString(c.ListFindingsOpts.NextToken) != "" {
-		return errors.New("invalid input: cannot set NextToken in ListFindings")
+	for _, opt := range c.ListFindingsOpts {
+		if aws.ToString(opt.NextToken) != "" {
+			return errors.New("invalid input: cannot set NextToken in ListFindings")
+		}
 	}
 	return nil
 }
diff --git a/plugins/source/aws/client/tableoptions/inspector2_test.go b/plugins/source/aws/client/tableoptions/inspector2_test.go
@@ -15,14 +15,14 @@ func TestInspector2ListFindings(t *testing.T) {
 	}
 
 	api := Inspector2APIs{
-		ListFindingsOpts: u,
+		ListFindingsOpts: []CustomInspector2ListFindingsInput{u},
 	}
 	// Ensure that the validation works as expected
 	err := api.Validate()
 	assert.EqualError(t, err, "invalid input: cannot set NextToken in ListFindings")
 
 	// Ensure that as soon as the validation passes that there are no unexpected empty or nil fields
-	api.ListFindingsOpts.NextToken = nil
+	api.ListFindingsOpts[0].NextToken = nil
 	err = api.Validate()
 
 	assert.Nil(t, err)
diff --git a/plugins/source/aws/client/tableoptions/table_options_test.go b/plugins/source/aws/client/tableoptions/table_options_test.go
@@ -4,6 +4,7 @@ import (
 	"encoding/json"
 	"testing"
 
+	"github.com/aws/aws-sdk-go-v2/aws"
 	"github.com/aws/aws-sdk-go-v2/service/accessanalyzer"
 	accessanalyzertypes "github.com/aws/aws-sdk-go-v2/service/accessanalyzer/types"
 	"github.com/aws/aws-sdk-go-v2/service/cloudtrail"
@@ -17,6 +18,33 @@ import (
 	"github.com/google/go-cmp/cmp/cmpopts"
 )
 
+func TestTableOptionsValidate(t *testing.T) {
+	tOpts := TableOptions{}
+	err := tOpts.Validate()
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+
+	tOpts.CloudTrailEvents = &CloudtrailAPIs{
+		LookupEventsOpts: []CustomLookupEventsOpts{
+			{
+				LookupEventsInput: cloudtrail.LookupEventsInput{
+					EndTime:          nil,
+					EventCategory:    "",
+					LookupAttributes: nil,
+					MaxResults:       nil,
+					NextToken:        aws.String("123"),
+					StartTime:        nil,
+				},
+			},
+		},
+	}
+	err = tOpts.Validate()
+	if err == nil {
+		t.Fatal("expected error validating cloud_trail_events, got nil")
+	}
+}
+
 // TestTableOptionsUnmarshal tests that the TableOptions struct can be unmarshaled from JSON using
 // snake_case keys.
 func TestTableOptionsUnmarshal(t *testing.T) {
diff --git a/plugins/source/aws/resources/services/accessanalyzer/analyzer_findings.go b/plugins/source/aws/resources/services/accessanalyzer/analyzer_findings.go
@@ -8,6 +8,7 @@ import (
 	"github.com/aws/aws-sdk-go-v2/service/accessanalyzer"
 	"github.com/aws/aws-sdk-go-v2/service/accessanalyzer/types"
 	"github.com/cloudquery/cloudquery/plugins/source/aws/client"
+	"github.com/cloudquery/cloudquery/plugins/source/aws/client/tableoptions"
 	"github.com/cloudquery/plugin-sdk/v2/schema"
 	"github.com/cloudquery/plugin-sdk/v2/transformers"
 )
@@ -42,24 +43,22 @@ func fetchAccessanalyzerAnalyzerFindings(ctx context.Context, meta schema.Client
 	analyzer := parent.Item.(types.AnalyzerSummary)
 	cl := meta.(*client.Client)
 	svc := cl.Services().Accessanalyzer
-	var err error
-	lfi := &accessanalyzer.ListFindingsInput{}
+	allConfigs := []tableoptions.CustomAccessAnalyzerListFindingsInput{{}}
 	if cl.Spec.TableOptions.AccessAnalyzerFindings != nil {
-		lfi, err = cl.Spec.TableOptions.AccessAnalyzerFindings.ListFindings()
-		if err != nil {
-			return err
-		}
+		allConfigs = cl.Spec.TableOptions.AccessAnalyzerFindings.ListFindingOpts
 	}
-	lfi.AnalyzerArn = analyzer.Arn
-	paginator := accessanalyzer.NewListFindingsPaginator(svc, lfi)
-	for paginator.HasMorePages() {
-		page, err := paginator.NextPage(ctx, func(options *accessanalyzer.Options) {
-			options.Region = cl.Region
-		})
-		if err != nil {
-			return err
+	for _, cfg := range allConfigs {
+		cfg.AnalyzerArn = analyzer.Arn
+		paginator := accessanalyzer.NewListFindingsPaginator(svc, &cfg.ListFindingsInput)
+		for paginator.HasMorePages() {
+			page, err := paginator.NextPage(ctx, func(options *accessanalyzer.Options) {
+				options.Region = cl.Region
+			})
+			if err != nil {
+				return err
+			}
+			res <- page.Findings
 		}
-		res <- page.Findings
 	}
 	return nil
 }
diff --git a/plugins/source/aws/resources/services/cloudtrail/events.go b/plugins/source/aws/resources/services/cloudtrail/events.go
@@ -8,8 +8,10 @@ import (
 	"github.com/aws/aws-sdk-go-v2/service/cloudtrail"
 	"github.com/aws/aws-sdk-go-v2/service/cloudtrail/types"
 	"github.com/cloudquery/cloudquery/plugins/source/aws/client"
+	"github.com/cloudquery/cloudquery/plugins/source/aws/client/tableoptions"
 	"github.com/cloudquery/plugin-sdk/v2/schema"
 	"github.com/cloudquery/plugin-sdk/v2/transformers"
+	"github.com/mitchellh/hashstructure/v2"
 )
 
 const tableName = "aws_cloudtrail_events"
@@ -45,51 +47,71 @@ func Events() *schema.Table {
 func fetchCloudtrailEvents(ctx context.Context, meta schema.ClientMeta, parent *schema.Resource, res chan<- any) error {
 	cl := meta.(*client.Client)
 	svc := cl.Services().Cloudtrail
-	le := &cloudtrail.LookupEventsInput{}
+
+	allConfigs := []tableoptions.CustomLookupEventsOpts{{}}
+	noTableConfig := true
 	if cl.Spec.TableOptions.CloudTrailEvents != nil {
-		le = &cl.Spec.TableOptions.CloudTrailEvents.LookupEventsOpts.LookupEventsInput
+		allConfigs = cl.Spec.TableOptions.CloudTrailEvents.LookupEventsOpts
+		noTableConfig = false
 	}
+	for _, w := range allConfigs {
+		le := w.LookupEventsInput
 
-	if cl.Backend != nil {
-		value, err := cl.Backend.Get(ctx, tableName, cl.ID())
-		if err != nil {
-			return fmt.Errorf("failed to retrieve state from backend: %w", err)
-		}
-
-		if value != "" {
-			date, err := time.Parse(time.RFC3339Nano, value)
+		var backendKey string
+		if cl.Backend != nil {
+			// Retrieve the last event time from the backend for this table option config.
+			// We use a hash of the config as the key, so changing the config will cause a full refresh.
+			hash, err := hashstructure.Hash(le, hashstructure.FormatV2, nil)
 			if err != nil {
-				return fmt.Errorf("retrieved invalid state value: %q %w", value, err)
+				return err
+			}
+			backendKey = fmt.Sprintf("%s-%d", cl.ID(), hash)
+			if noTableConfig {
+				// for backwards-compatibility, default to client id if there is no table config
+				backendKey = cl.ID()
+			}
+			value, err := cl.Backend.Get(ctx, tableName, backendKey)
+			if err != nil {
+				return fmt.Errorf("failed to retrieve state from backend: %w", err)
+			}
+
+			if value != "" {
+				date, err := time.Parse(time.RFC3339Nano, value)
+				if err != nil {
+					return fmt.Errorf("retrieved invalid state value: %q %w", value, err)
+				}
+				le.StartTime = &date
 			}
-			le.StartTime = &date
-		}
-	}
-	var lastEventTime *time.Time
-	// var err error
-	paginator := cloudtrail.NewLookupEventsPaginator(svc, le)
-	for paginator.HasMorePages() {
-		page, err := paginator.NextPage(ctx, func(options *cloudtrail.Options) {
-			options.Region = cl.Region
-		})
-		if err != nil {
-			return err
 		}
-		res <- page.Events
 
-		// Retrieve the timestamp from the latest event
-		for _, event := range page.Events {
-			if lastEventTime == nil {
-				lastEventTime = event.EventTime
-				continue
+		var lastEventTime *time.Time
+		// var err error
+		paginator := cloudtrail.NewLookupEventsPaginator(svc, &le)
+		for paginator.HasMorePages() {
+			page, err := paginator.NextPage(ctx, func(options *cloudtrail.Options) {
+				options.Region = cl.Region
+			})
+			if err != nil {
+				return err
 			}
-			if event.EventTime.After(*lastEventTime) {
-				lastEventTime = event.EventTime
+			res <- page.Events
+
+			// Retrieve the timestamp from the latest event
+			for _, event := range page.Events {
+				if lastEventTime == nil {
+					lastEventTime = event.EventTime
+					continue
+				}
+				if event.EventTime.After(*lastEventTime) {
+					lastEventTime = event.EventTime
+				}
 			}
 		}
-	}
 
-	if cl.Backend != nil && lastEventTime != nil {
-		return cl.Backend.Set(ctx, tableName, cl.ID(), lastEventTime.Format(time.RFC3339Nano))
+		if cl.Backend != nil && lastEventTime != nil {
+			return cl.Backend.Set(ctx, tableName, backendKey, lastEventTime.Format(time.RFC3339Nano))
+		}
 	}
+
 	return nil
 }
diff --git a/plugins/source/aws/resources/services/inspector2/findings.go b/plugins/source/aws/resources/services/inspector2/findings.go
@@ -7,6 +7,7 @@ import (
 	"github.com/aws/aws-sdk-go-v2/service/inspector2"
 	"github.com/aws/aws-sdk-go-v2/service/inspector2/types"
 	"github.com/cloudquery/cloudquery/plugins/source/aws/client"
+	"github.com/cloudquery/cloudquery/plugins/source/aws/client/tableoptions"
 	"github.com/cloudquery/plugin-sdk/v2/schema"
 	"github.com/cloudquery/plugin-sdk/v2/transformers"
 )
@@ -49,24 +50,25 @@ func fetchInspector2Findings(ctx context.Context, meta schema.ClientMeta, parent
 	c := meta.(*client.Client)
 	svc := c.Services().Inspector2
 
-	input := &inspector2.ListFindingsInput{}
+	allConfigs := []tableoptions.CustomInspector2ListFindingsInput{{}}
 	if c.Spec.TableOptions.Inspector2Findings != nil {
-		input = &c.Spec.TableOptions.Inspector2Findings.ListFindingsOpts.ListFindingsInput
-	}
-
-	if input.MaxResults == nil {
-		input.MaxResults = aws.Int32(100)
+		allConfigs = c.Spec.TableOptions.Inspector2Findings.ListFindingsOpts
 	}
+	for _, input := range allConfigs {
+		if input.MaxResults == nil {
+			input.MaxResults = aws.Int32(100)
+		}
 
-	paginator := inspector2.NewListFindingsPaginator(svc, input)
-	for paginator.HasMorePages() {
-		page, err := paginator.NextPage(ctx, func(options *inspector2.Options) {
-			options.Region = c.Region
-		})
-		if err != nil {
-			return err
+		paginator := inspector2.NewListFindingsPaginator(svc, &input.ListFindingsInput)
+		for paginator.HasMorePages() {
+			page, err := paginator.NextPage(ctx, func(options *inspector2.Options) {
+				options.Region = c.Region
+			})
+			if err != nil {
+				return err
+			}
+			res <- page.Findings
 		}
-		res <- page.Findings
 	}
 	return nil
 }

Original file line number	Diff line number	Diff line change
`@@ -10,7 +10,7 @@ import (`
`10`	`10`	`)`
`11`	`11`
`12`	`12`	`type CloudtrailAPIs struct {`
`13`		- LookupEventsOpts CustomLookupEventsOpts `json:"lookup_events,omitempty"`
	`13`	+ LookupEventsOpts []CustomLookupEventsOpts `json:"lookup_events,omitempty"`
`14`	`14`	`}`
`15`	`15`
`16`	`16`	`type CustomLookupEventsOpts struct {`
`@@ -32,8 +32,10 @@ func (c *CustomLookupEventsOpts) UnmarshalJSON(data []byte) error {`
`32`	`32`	`}`
`33`	`33`
`34`	`34`	`func (c *CloudtrailAPIs) validateLookupEvents() error {`
`35`		`- if aws.ToString(c.LookupEventsOpts.NextToken) != "" {`
`36`		`- return errors.New("invalid input: cannot set NextToken in LookupEvents")`
	`35`	`+ for _, opt := range c.LookupEventsOpts {`
	`36`	`+ if aws.ToString(opt.NextToken) != "" {`
	`37`	`+ return errors.New("invalid input: cannot set NextToken in LookupEvents")`
	`38`	`+ }`
`37`	`39`	`}`
`38`	`40`	`return nil`
`39`	`41`	`}`
Original file line number	Diff line number	Diff line change
`@@ -13,14 +13,14 @@ func TestLookupEvents(t *testing.T) {`
`13`	`13`	`t.Fatal(err)`
`14`	`14`	`}`
`15`	`15`	`api := CloudtrailAPIs{`
`16`		`- LookupEventsOpts: u,`
	`16`	`+ LookupEventsOpts: []CustomLookupEventsOpts{u},`
`17`	`17`	`}`
`18`	`18`	`// Ensure that the validation works as expected`
`19`	`19`	`err := api.Validate()`
`20`	`20`	`assert.EqualError(t, err, "invalid input: cannot set NextToken in LookupEvents")`
`21`	`21`
`22`	`22`	`// Ensure that as soon as the validation passes that there are no unexpected empty or nil fields`
`23`		`- api.LookupEventsOpts.NextToken = nil`
	`23`	`+ api.LookupEventsOpts[0].NextToken = nil`
`24`	`24`	`err = api.Validate()`
`25`	`25`	`assert.Nil(t, err)`
`26`	`26`	`}`
Original file line number	Diff line number	Diff line change
`@@ -15,14 +15,14 @@ func TestInspector2ListFindings(t *testing.T) {`
`15`	`15`	`}`
`16`	`16`
`17`	`17`	`api := Inspector2APIs{`
`18`		`- ListFindingsOpts: u,`
	`18`	`+ ListFindingsOpts: []CustomInspector2ListFindingsInput{u},`
`19`	`19`	`}`
`20`	`20`	`// Ensure that the validation works as expected`
`21`	`21`	`err := api.Validate()`
`22`	`22`	`assert.EqualError(t, err, "invalid input: cannot set NextToken in ListFindings")`
`23`	`23`
`24`	`24`	`// Ensure that as soon as the validation passes that there are no unexpected empty or nil fields`
`25`		`- api.ListFindingsOpts.NextToken = nil`
	`25`	`+ api.ListFindingsOpts[0].NextToken = nil`
`26`	`26`	`err = api.Validate()`
`27`	`27`
`28`	`28`	`assert.Nil(t, err)`