feat(securityGroupRule): add securityGroupRule service

Author: Christopher Brandt

README.md

@@ -57,5 +57,6 @@ CloudGraph Tencent Provider will ask you what regions you would like to crawl an
 | Service | Relations |
 | ------------------- | ------------------- |
 | securityGroup | | 
+| securityGroupRule | |
 | subnet | vpc |
 | vpc | subnet |

src/enums/schemasMap.ts

@@ -5,6 +5,7 @@ import services from './services'
  */
 export default {
   [services.securityGroup]: 'tencentSecurityGroup',
+  [services.securityGroupRule]: 'tencentSecurityGroupRule',
   [services.subnet]: 'tencentSubnet',
   [services.vpc]: 'tencentVpc',
   tag: 'tencentTag',

src/enums/serviceMap.ts

@@ -1,5 +1,6 @@
 import services from './services'
 import TencentSecurityGroup from '../services/securityGroup'
+import TencentSecurityGroupRule from '../services/securityGroupRule'
 import TencentSubnet from '../services/subnet'
 import TencentVpc from '../services/vpc'
 import TencentTag from '../services/tag'
@@ -10,6 +11,7 @@ import TencentTag from '../services/tag'
  */
 export default {
   [services.securityGroup]: TencentSecurityGroup,
+  [services.securityGroupRule]: TencentSecurityGroupRule,
   [services.subnet]: TencentSubnet,
   [services.vpc]: TencentVpc,
   tag: TencentTag,

src/enums/services.ts

@@ -1,5 +1,6 @@
 export default {
   securityGroup: 'securityGroup',
+  securityGroupRule: 'securityGroupRule',
   subnet: 'subnet',
   vpc: 'vpc',
 }

src/services/securityGroupRule/data.ts

@@ -0,0 +1,63 @@
+import * as tencentcloud from 'tencentcloud-sdk-nodejs'
+import { SecurityGroupRule } from 'tencentcloud-sdk-nodejs/tencentcloud/services/cfw/v20190904/cfw_models'
+import { ClientConfig } from 'tencentcloud-sdk-nodejs/tencentcloud/common/interface'
+import CloudGraph from '@cloudgraph/sdk'
+import groupBy from 'lodash/groupBy'
+import isEmpty from 'lodash/isEmpty'
+import loggerText from '../../properties/logger'
+import { TencentServiceInput } from '../../types'
+import { initTestEndpoint, generateTencentErrorLog } from '../../utils'
+
+const lt = { ...loggerText }
+const { logger } = CloudGraph
+export const serviceName = 'SecurityGroupRule'
+const apiEndpoint = initTestEndpoint(serviceName)
+const MAX_ITEMS = '50'
+
+export interface RawTencentSecurityGroupRule extends SecurityGroupRule {
+  id: string
+  region: string
+}
+
+export default async ({
+  regions,
+  config,
+}: TencentServiceInput): Promise<{
+  [region: string]: RawTencentSecurityGroupRule[]
+}> =>
+  new Promise(async resolve => {
+    const ruleList: RawTencentSecurityGroupRule[] = []
+
+    for (const region of regions.split(',')) {
+      /**
+       * Get all security group rules
+       */
+      try {
+        const CfwClient = tencentcloud.cfw.v20190904.Client
+        const clientConfig: ClientConfig  = { credential: config, region, profile: { httpProfile: { endpoint: apiEndpoint } } }
+        const cfw = new CfwClient(clientConfig)
+        let marker = 0
+        let rules = []
+
+        do {
+          marker++
+          let response = await cfw.DescribeEnterpriseSecurityGroupRule({ PageNo: marker.toString(), PageSize: MAX_ITEMS })
+          if (response && !isEmpty(response.Rules)) {
+            rules = response.Rules
+            for (const instance of rules) {
+              ruleList.push({
+                id: instance.Id,
+                ...instance,
+                region,
+              })
+            }
+          }
+        } while (!isEmpty(rules))
+      } catch (error) {
+        generateTencentErrorLog(serviceName, 'cfw:DescribeEnterpriseSecurityGroupRule', error)
+      }
+    }
+
+    logger.debug(lt.foundResources(serviceName, ruleList.length))
+    resolve(groupBy(ruleList, 'region'))
+  })

src/services/securityGroupRule/format.ts

@@ -0,0 +1,43 @@
+import { TencentSecurityGroupRule } from '../../types/generated'
+import { RawTencentSecurityGroupRule } from './data'
+
+export default ({
+  service,
+  account,
+  region,
+}: {
+  service: RawTencentSecurityGroupRule
+  account: string
+  region: string
+}): TencentSecurityGroupRule => {
+  const {
+    id,
+    SourceContent: sourceContent,
+    SourceType: sourceType,
+    DestContent: destContent,
+    DestType: destType,
+    RuleAction: ruleAction,
+    Description: description,
+    OrderIndex: orderIndex,
+    Protocol: protocol,
+    Port: port,
+    ServiceTemplateId: serviceTemplateId,
+    Enable: enable,
+  } = service
+
+  return {
+    id,
+    region,
+    sourceContent,
+    sourceType,
+    destContent,
+    destType,
+    ruleAction,
+    description,
+    orderIndex,
+    protocol,
+    port,
+    serviceTemplateId,
+    enable,
+  }
+}

src/services/securityGroupRule/index.ts

@@ -0,0 +1,13 @@
+import {Service} from '@cloudgraph/sdk'
+import BaseService from '../base'
+import format from './format'
+import getData, { serviceName } from './data'
+import { getMutation } from '../../utils'
+
+export default class TencentSecurityGroupRule extends BaseService implements Service {
+  format = format.bind(this)
+
+  getData = getData.bind(this)
+
+  mutation = getMutation(serviceName)
+}

src/services/securityGroupRule/schema.graphql

@@ -0,0 +1,13 @@
+type tencentSecurityGroupRule implements tencentBaseService @key(fields: "id") { 
+  sourceContent: String @search(by: [hash, regexp])
+  sourceType: String @search(by: [hash, regexp])
+  destContent: String @search(by: [hash, regexp])
+  destType: String @search(by: [hash, regexp])
+  ruleAction: String @search(by: [hash, regexp])
+  description: String @search(by: [hash, regexp])
+  orderIndex: String @search(by: [hash, regexp])
+  protocol: String @search(by: [hash, regexp])
+  port: String @search(by: [hash, regexp])
+  serviceTemplateId: String @search(by: [hash, regexp])
+  enable: String @search(by: [hash, regexp])
+}

src/types/generated.ts

@@ -39,6 +39,20 @@ export type TencentSecurityGroup = TencentBaseService & {
   updateTime?: Maybe<Scalars['String']>;
 };
 
+export type TencentSecurityGroupRule = TencentBaseService & {
+  description?: Maybe<Scalars['String']>;
+  destContent?: Maybe<Scalars['String']>;
+  destType?: Maybe<Scalars['String']>;
+  enable?: Maybe<Scalars['String']>;
+  orderIndex?: Maybe<Scalars['String']>;
+  port?: Maybe<Scalars['String']>;
+  protocol?: Maybe<Scalars['String']>;
+  ruleAction?: Maybe<Scalars['String']>;
+  serviceTemplateId?: Maybe<Scalars['String']>;
+  sourceContent?: Maybe<Scalars['String']>;
+  sourceType?: Maybe<Scalars['String']>;
+};
+
 export type TencentSubnet = TencentBaseService & {
   availableIpAddressCount?: Maybe<Scalars['Int']>;
   cdcId?: Maybe<Scalars['String']>;