forked from aws-cloudformation/cfn-lint
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathParameters.py
More file actions
101 lines (83 loc) · 3.55 KB
/
Parameters.py
File metadata and controls
101 lines (83 loc) · 3.55 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
"""
Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved.
SPDX-License-Identifier: MIT-0
"""
from __future__ import annotations
from pathlib import Path
from typing import Any
from cfnlint.jsonschema import Validator
from cfnlint.rules.jsonschema.CfnLintJsonSchema import CfnLintJsonSchema
class Parameters(CfnLintJsonSchema):
id = "E2900"
shortdesc = (
"Validate deployment file parameters are valid against template parameters"
)
description = (
"Validates that required properties are provided, allowed values are "
"valid, types are correct, and the pattern matches in a deployment file "
"for the parameters specified in a template"
)
source_url = "https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/parameters-section-structure.html"
tags = ["parameters"]
def __init__(self):
"""Init"""
super().__init__(
keywords=["Parameters"],
all_matches=True,
)
def _is_type_a_list(self, parameter_type: str) -> bool:
return "List" in parameter_type
def _build_schema(self, instance: Any) -> dict[str, Any]:
if not isinstance(instance, dict):
return {}
schema: dict[str, Any] = {
"properties": {},
"additionalProperties": False,
"required": [],
"type": "object",
}
singular_types = ["string", "integer", "number", "boolean"]
for parameter_name, parameter_object in instance.items():
schema["properties"][parameter_name] = {}
if not isinstance(parameter_object, dict):
continue
if "Default" not in parameter_object:
schema["required"] = [parameter_name]
parameter_type = parameter_object.get("Type")
if not isinstance(parameter_type, str):
continue
schema_constraints = {}
if "AllowedValues" in parameter_object:
schema_constraints["enum"] = parameter_object["AllowedValues"]
if "Pattern" in parameter_object:
schema_constraints["pattern"] = parameter_object["Pattern"]
if self._is_type_a_list(parameter_type):
schema["properties"][parameter_name] = {
"type": "array",
"items": {
"type": singular_types,
},
}
schema["properties"][parameter_name]["items"].update(schema_constraints)
else:
schema["properties"][parameter_name]["type"] = singular_types
schema["properties"][parameter_name].update(schema_constraints)
return schema
def validate(self, validator: Validator, _: Any, instance: Any, schema: Any):
if validator.context.parameter_sets is None:
return
for parameter_set in validator.context.parameter_sets:
cfn_validator = self.extend_validator(
validator=validator,
schema=self._build_schema(instance),
context=validator.context,
).evolve(
context=validator.context.evolve(strict_types=False),
function_filter=validator.function_filter.evolve(
add_cfn_lint_keyword=False,
),
)
for err in super()._iter_errors(cfn_validator, parameter_set.parameters):
if parameter_set.source:
err.extra_args["filename"] = str(Path(parameter_set.source))
yield err