Add compute global address to InSpec (#1309)

Merged PR #1309.
GoogleCloudPlatform · Jan 28, 2019 · d435677 · d435677
1 parent 107fcae
commit d435677
Show file tree

Hide file tree

Showing 7 changed files with 35 additions and 4 deletions.
diff --git a/build/inspec b/build/inspec
diff --git a/products/compute/inspec.yaml b/products/compute/inspec.yaml
@@ -31,8 +31,6 @@ overrides: !ruby/object:Overrides::ResourceOverrides
       end
   ForwardingRule: !ruby/object:Overrides::Inspec::ResourceOverride
     exclude: true
-  GlobalAddress: !ruby/object:Overrides::Inspec::ResourceOverride
-    exclude: true
   GlobalForwardingRule: !ruby/object:Overrides::Inspec::ResourceOverride
     exclude: true
   Image: !ruby/object:Overrides::Inspec::ResourceOverride

diff --git a/templates/inspec/examples/attributes/google_compute_global_address.erb b/templates/inspec/examples/attributes/google_compute_global_address.erb
@@ -0,0 +1,2 @@
+gcp_project_id = attribute(:gcp_project_id, default: '<%= external_attribute('gcp_project_id') -%>', description: 'The GCP project identifier.')
+global_address = attribute('global_address', default: <%= JSON.pretty_generate(grab_attributes['global_address']) -%>, description: 'Compute Global Address definition')
diff --git a/templates/inspec/examples/google_compute_global_address.erb b/templates/inspec/examples/google_compute_global_address.erb
@@ -0,0 +1,10 @@
+<% gcp_project_id = "#{external_attribute('gcp_project_id', doc_generation)}" -%>
+<% global_address = grab_attributes['global_address'] -%>
+describe google_compute_global_address(project: <%= gcp_project_id -%>, name: <%= doc_generation ? "'#{global_address['name']}'" : "global_address['name']" -%>) do
+  it { should exist }
+  its('ip_version') { should eq <%= doc_generation ? "'#{global_address['ip_version']}'" : "global_address['ip_version']" -%> }
+end
+
+describe google_compute_global_address(project: <%= doc_generation ? "#{gcp_project_id}" : "gcp_project_id" -%>, name: 'nonexistent') do
+  it { should_not exist }
+end
diff --git a/templates/inspec/examples/google_compute_global_addresses.erb b/templates/inspec/examples/google_compute_global_addresses.erb
@@ -0,0 +1,7 @@
+<% gcp_project_id = "#{external_attribute('gcp_project_id', doc_generation)}" -%>
+<% global_address = grab_attributes['global_address'] -%>
+describe google_compute_global_addresses(project: <%= gcp_project_id -%>, name: <%= doc_generation ? "'#{global_address['name']}'" : "global_address['name']" -%>) do
+  its('count') { should be >= 1 }
+  its('names') { should include <%= doc_generation ? "'#{global_address['name']}'" : "global_address['name']" -%> }
+  its('ip_versions') { should include <%= doc_generation ? "'#{global_address['ip_version']}'" : "global_address['ip_version']" -%> }
+end
diff --git a/templates/inspec/tests/integration/build/gcp-mm.tf b/templates/inspec/tests/integration/build/gcp-mm.tf
@@ -54,6 +54,10 @@ variable "instance_template" {
   type = "map"
 }
 
+variable "global_address" {
+  type = "map"
+}
+
 resource "google_compute_ssl_policy" "custom-ssl-policy" {
   name            = "${var.ssl_policy["name"]}"
   min_tls_version = "${var.ssl_policy["min_tls_version"]}"
@@ -223,4 +227,10 @@ resource "google_compute_instance_template" "gcp-inspec-instance-template" {
   service_account {
     scopes = ["${var.instance_template["service_account_scope"]}"]
   }
+}
+
+resource "google_compute_global_address" "gcp-inspec-global-address" {
+  project = "${var.gcp_project_id}"
+  name = "${var.global_address["name"]}"
+  ip_version = "${var.global_address["ip_version"]}"
 }
diff --git a/templates/inspec/tests/integration/configuration/mm-attributes.yml b/templates/inspec/tests/integration/configuration/mm-attributes.yml
@@ -88,4 +88,8 @@ instance_template:
   disk_auto_delete: true
   disk_boot: true
   network_interface_network: default
-  service_account_scope: storage-ro
+  service_account_scope: storage-ro
+
+global_address:
+  name: inspec-gcp-global-address
+  ip_version: IPV6
+39 −0		docs/resources/google_compute_global_address.md
+34 −0		docs/resources/google_compute_global_addresses.md
+65 −0		libraries/google_compute_global_address.rb
+96 −0		libraries/google_compute_global_addresses.rb
+10 −0		test/integration/build/gcp-mm.tf
+5 −1		test/integration/configuration/mm-attributes.yml
+34 −0		test/integration/verify/controls/google_compute_global_address.rb
+31 −0		test/integration/verify/controls/google_compute_global_addresses.rb
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,2 @@
		gcp_project_id = attribute(:gcp_project_id, default: '<%= external_attribute('gcp_project_id') -%>', description: 'The GCP project identifier.')
		global_address = attribute('global_address', default: <%= JSON.pretty_generate(grab_attributes['global_address']) -%>, description: 'Compute Global Address definition')