feat: allow config of single AWS region by cli arg / config

Will also work if you have no config or cli argument set but do have AWS_REGION set in your environment. Signed-off-by: Bradley Jones <bradley.jones@anchore.com>
anchore · Dec 20, 2022 · e0723b9 · e0723b9
1 parent 8110070
commit e0723b9
Show file tree

Hide file tree

Showing 3 changed files with 40 additions and 3 deletions.
diff --git a/cmd/root.go b/cmd/root.go
@@ -101,4 +101,11 @@ func init() {
 		fmt.Printf("unable to bind flag '%s': %+v", opt, err)
 		os.Exit(1)
 	}
+
+	opt = "region"
+	rootCmd.Flags().StringP(opt, "r", "", "If set overrides the AWS_REGION environment variable/region specified in ECF config")
+	if err := viper.BindPFlag(opt, rootCmd.Flags().Lookup(opt)); err != nil {
+		fmt.Printf("unable to bind flag '%s': %+v", opt, err)
+		os.Exit(1)
+	}
 }
diff --git a/ecg/lib.go b/ecg/lib.go
@@ -12,7 +12,9 @@ import (
 	"github.com/anchore/elastic-container-gatherer/internal/config"
 	"github.com/anchore/elastic-container-gatherer/internal/log"
 	"github.com/aws/aws-sdk-go/aws"
+	"github.com/aws/aws-sdk-go/aws/awserr"
 	"github.com/aws/aws-sdk-go/aws/session"
+	"github.com/aws/aws-sdk-go/service/ecs"
 )
 
 type channels struct {
@@ -60,9 +62,11 @@ func PeriodicallyGetInventoryReport(cfg *config.Application) {
 
 // GetInventoryReport is an atomic method for getting in-use image results, in parallel for multiple clusters
 func GetInventoryReport(cfg *config.Application) (inventory.Report, error) {
-	sess, err := session.NewSession(&aws.Config{
-		Region: aws.String("eu-west-2")}, // TODO - make this configurable
-	)
+	sessConfig := &aws.Config{}
+	if cfg.Region != "" {
+		sessConfig.Region = aws.String(cfg.Region)
+	}
+	sess, err := session.NewSession(sessConfig)
 	if err != nil {
 		log.Errorf("Failed to create AWS session: %w", err)
 	}
@@ -72,6 +76,31 @@ func GetInventoryReport(cfg *config.Application) (inventory.Report, error) {
 		return inventory.Report{}, err
 	}
 
+	svc := ecs.New(sess)
+	input := &ecs.ListClustersInput{}
+
+	result, err := svc.ListClusters(input)
+	if err != nil {
+		if aerr, ok := err.(awserr.Error); ok {
+			switch aerr.Code() {
+			case ecs.ErrCodeServerException:
+				fmt.Println(ecs.ErrCodeServerException, aerr.Error())
+			case ecs.ErrCodeClientException:
+				fmt.Println(ecs.ErrCodeClientException, aerr.Error())
+			case ecs.ErrCodeInvalidParameterException:
+				fmt.Println(ecs.ErrCodeInvalidParameterException, aerr.Error())
+			default:
+				fmt.Println(aerr.Error())
+			}
+		} else {
+			// Print the error, cast err to awserr.Error to get the Code and
+			// Message from an error.
+			fmt.Println(err.Error())
+		}
+	}
+
+	fmt.Println(result)
+
 	return inventory.Report{
 		Timestamp:     time.Now().UTC().Format(time.RFC3339),
 		Results:       []inventory.ReportItem{},

diff --git a/internal/config/config.go b/internal/config/config.go
@@ -51,6 +51,7 @@ type Application struct {
 	IgnoreNotRunning       bool        `mapstructure:"ignore-not-running"`
 	PollingIntervalSeconds int         `mapstructure:"polling-interval-seconds"`
 	AnchoreDetails         AnchoreInfo `mapstructure:"anchore"`
+	Region                 string      `mapstructure:"region"`
 }
 
 // MissingTagConf details the policy for handling missing tags when reporting images