forked from turbot/steampipe-mod-gcp-compliance
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathvariables.sp
62 lines (55 loc) · 2.68 KB
/
variables.sp
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
// Benchmarks and controls for specific services should override the "service" tag
locals {
gcp_compliance_common_tags = {
category = "Compliance"
plugin = "gcp"
service = "GCP"
}
}
variable "common_dimensions" {
type = list(string)
description = "A list of common dimensions to add to each control."
# Define which common dimensions should be added to each control.
# - connection_name (_ctx ->> 'connection_name')
# - location
# - project
default = ["location", "project"]
}
variable "tag_dimensions" {
type = list(string)
description = "A list of tags to add as dimensions to each control."
# A list of tag names to include as dimensions for resources that support
# tags (e.g. "owner", "environment"). Default to empty since tag names are
# a personal choice
default = []
}
locals {
# Local internal variable to build the SQL select clause for common
# dimensions using a table name qualifier if required. Do not edit directly.
common_dimensions_qualifier_sql = <<-EOQ
%{~if contains(var.common_dimensions, "connection_name")}, __QUALIFIER___ctx ->> 'connection_name' as connection_name%{endif~}
%{~if contains(var.common_dimensions, "location")}, __QUALIFIER__location as location%{endif~}
%{~if contains(var.common_dimensions, "project")}, __QUALIFIER__project as project%{endif~}
EOQ
common_dimensions_qualifier_global_sql = <<-EOQ
%{~if contains(var.common_dimensions, "connection_name")}, __QUALIFIER___ctx ->> 'connection_name' as connection_name%{endif~}
%{~if contains(var.common_dimensions, "project")}, __QUALIFIER__project as project%{endif~}
EOQ
common_dimensions_qualifier_project_sql = <<-EOQ
%{~if contains(var.common_dimensions, "connection_name")}, __QUALIFIER___ctx ->> 'connection_name' as connection_name%{endif~}
%{~if contains(var.common_dimensions, "project")}, __QUALIFIER__project_id as project%{endif~}
EOQ
# Local internal variable to build the SQL select clause for tag
# dimensions. Do not edit directly.
tag_dimensions_qualifier_sql = <<-EOQ
%{~for dim in var.tag_dimensions}, __QUALIFIER__tags ->> '${dim}' as "${replace(dim, "\"", "\"\"")}"%{endfor~}
EOQ
}
locals {
# Local internal variable with the full SQL select clause for common
# and tag dimensions. Do not edit directly.
common_dimensions_sql = replace(local.common_dimensions_qualifier_sql, "__QUALIFIER__", "")
common_dimensions_global_sql = replace(local.common_dimensions_qualifier_global_sql, "__QUALIFIER__", "")
common_dimensions_project_sql = replace(local.common_dimensions_qualifier_project_sql, "__QUALIFIER__", "")
tag_dimensions_sql = replace(local.tag_dimensions_qualifier_sql, "__QUALIFIER__", "")
}