104 lines
2.5 KiB
Go
104 lines
2.5 KiB
Go
package aws
|
|
|
|
import (
|
|
"fmt"
|
|
"testing"
|
|
|
|
"github.com/aws/aws-sdk-go/aws/awserr"
|
|
"github.com/aws/aws-sdk-go/service/ssm"
|
|
"github.com/hashicorp/terraform/helper/acctest"
|
|
"github.com/hashicorp/terraform/helper/resource"
|
|
"github.com/hashicorp/terraform/terraform"
|
|
)
|
|
|
|
func TestAccAWSSSMPatchGroup_basic(t *testing.T) {
|
|
name := acctest.RandString(10)
|
|
resource.Test(t, resource.TestCase{
|
|
PreCheck: func() { testAccPreCheck(t) },
|
|
Providers: testAccProviders,
|
|
CheckDestroy: testAccCheckAWSSSMPatchGroupDestroy,
|
|
Steps: []resource.TestStep{
|
|
{
|
|
Config: testAccAWSSSMPatchGroupBasicConfig(name),
|
|
Check: resource.ComposeTestCheckFunc(
|
|
testAccCheckAWSSSMPatchGroupExists("aws_ssm_patch_group.patchgroup"),
|
|
),
|
|
},
|
|
},
|
|
})
|
|
}
|
|
|
|
func testAccCheckAWSSSMPatchGroupExists(n string) resource.TestCheckFunc {
|
|
return func(s *terraform.State) error {
|
|
rs, ok := s.RootModule().Resources[n]
|
|
if !ok {
|
|
return fmt.Errorf("Not found: %s", n)
|
|
}
|
|
|
|
if rs.Primary.ID == "" {
|
|
return fmt.Errorf("No SSM Patch Baseline ID is set")
|
|
}
|
|
|
|
conn := testAccProvider.Meta().(*AWSClient).ssmconn
|
|
|
|
resp, err := conn.DescribePatchGroups(&ssm.DescribePatchGroupsInput{})
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
for _, i := range resp.Mappings {
|
|
if *i.BaselineIdentity.BaselineId == rs.Primary.Attributes["baseline_id"] && *i.PatchGroup == rs.Primary.ID {
|
|
return nil
|
|
}
|
|
}
|
|
|
|
return fmt.Errorf("No AWS SSM Patch Group found")
|
|
}
|
|
}
|
|
|
|
func testAccCheckAWSSSMPatchGroupDestroy(s *terraform.State) error {
|
|
conn := testAccProvider.Meta().(*AWSClient).ssmconn
|
|
|
|
for _, rs := range s.RootModule().Resources {
|
|
if rs.Type != "aws_ssm_patch_group" {
|
|
continue
|
|
}
|
|
|
|
resp, err := conn.DescribePatchGroups(&ssm.DescribePatchGroupsInput{})
|
|
|
|
if err != nil {
|
|
// Verify the error is what we want
|
|
if ae, ok := err.(awserr.Error); ok && ae.Code() == "DoesNotExistException" {
|
|
continue
|
|
}
|
|
return err
|
|
}
|
|
|
|
for _, i := range resp.Mappings {
|
|
if *i.BaselineIdentity.BaselineId == rs.Primary.Attributes["baseline_id"] && *i.PatchGroup == rs.Primary.ID {
|
|
return fmt.Errorf("Expected AWS SSM Patch Group to be gone, but was still found")
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
func testAccAWSSSMPatchGroupBasicConfig(rName string) string {
|
|
return fmt.Sprintf(`
|
|
|
|
resource "aws_ssm_patch_baseline" "foo" {
|
|
name = "patch-baseline-%s"
|
|
approved_patches = ["KB123456"]
|
|
}
|
|
|
|
resource "aws_ssm_patch_group" "patchgroup" {
|
|
baseline_id = "${aws_ssm_patch_baseline.foo.id}"
|
|
patch_group = "patch-group"
|
|
}
|
|
|
|
`, rName)
|
|
}
|