/
waf_ipset.go
executable file
·56 lines (47 loc) · 1.3 KB
/
waf_ipset.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
package lister
import (
"fmt"
"sync"
"github.com/aws/aws-sdk-go-v2/service/waf"
"github.com/trek10inc/awsets/context"
"github.com/trek10inc/awsets/resource"
)
var listWafIpSetsOnce sync.Once
type AWSWafIpSet struct {
}
func init() {
i := AWSWafIpSet{}
listers = append(listers, i)
}
func (l AWSWafIpSet) Types() []resource.ResourceType {
return []resource.ResourceType{resource.WafIpSet}
}
func (l AWSWafIpSet) List(ctx context.AWSetsCtx) (*resource.Group, error) {
svc := waf.NewFromConfig(ctx.AWSCfg)
rg := resource.NewGroup()
var outerErr error
listWafIpSetsOnce.Do(func() {
outerErr = Paginator(func(nt *string) (*string, error) {
res, err := svc.ListIPSets(ctx.Context, &waf.ListIPSetsInput{
Limit: 100,
NextMarker: nt,
})
if err != nil {
return nil, fmt.Errorf("failed to list ip sets: %w", err)
}
for _, ipsetId := range res.IPSets {
ipset, err := svc.GetIPSet(ctx.Context, &waf.GetIPSetInput{IPSetId: ipsetId.IPSetId})
if err != nil {
return nil, fmt.Errorf("failed to get ipset %s: %w", *ipsetId.IPSetId, err)
}
if ipset.IPSet == nil {
continue
}
r := resource.NewGlobal(ctx, resource.WafIpSet, ipset.IPSet.IPSetId, ipset.IPSet.Name, ipset.IPSet)
rg.AddResource(r)
}
return res.NextMarker, nil
})
})
return rg, outerErr
}