Merge pull request #14 from cloudgraphdev/feature/CG-1133-add-vpn-connection

feat(vpnConnection): add vpnConnection service

Author: tyler-dunkel

README.md

@@ -56,15 +56,16 @@ CloudGraph Tencent Provider will ask you what regions you would like to crawl an
 
 | Service | Relations |
 | ------------------- | ------------------- |
-| customerGateway | |
+| customerGateway | vpnConnection |
 | routeTable | vpc, subnet |
 | securityGroup | | 
 | securityGroupRule | |
 | ccn | ccnAttachment |
 | ccnAttachment | ccn |
 | networkAcl | subnet, vpc |
 | subnet | networkAcl, vpc, routeTable |
-| vpc | networkAcl, subnet, vpnGateway, routeTable |
-| vpnGateway | vpc, vpnGatewayRoute |
+| vpc | networkAcl, subnet, vpnGateway, routeTable, vpnConnection |
+| vpnConnection | vpc, vpnGateway, customerGateway |
+| vpnGateway | vpc, vpnGatewayRoute, vpnConnection |
 | vpnGatewayRoute | vpnGateway |
 | securityGroup | | 

src/enums/schemasMap.ts

@@ -15,6 +15,7 @@ export default {
   [services.securityGroupRule]: 'tencentSecurityGroupRule',
   [services.subnet]: 'tencentSubnet',
   [services.vpc]: 'tencentVpc',
+  [services.vpnConnection]: 'tencentVpnConnection',
   [services.vpnGateway]: 'tencentVpnGateway',
   [services.vpnGatewayRoute]: 'tencentVpnGatewayRoute',
   tag: 'tencentTag',

src/enums/serviceAliases.ts

@@ -1,10 +1,12 @@
 export default {
-  routeTable: 'routeTables',
-  securityGroup: 'securityGroups',
   ccn: 'ccns',
   ccnAttachment: 'ccnAttachments',
+  customerGateway: 'customerGateways',
+  routeTable: 'routeTables',
+  securityGroup: 'securityGroups',
   subnet: 'subnets',
   vpc: 'vpcInstances',
+  vpnConnection: 'vpnConnections',
   vpnGateway: 'vpnGateways',
   vpnGatewayRoute: 'vpnGatewayRoutes',
 }

src/enums/serviceMap.ts

@@ -11,23 +11,23 @@ import TencentRouteTable from '../services/routeTable'
 import TencentVpnGateway from '../services/vpnGateway'
 import TencentVpnGatewayRoute from '../services/vpnGatewayRoute'
 import TencentCustomerGateway from '../services/customerGateway'
+import TencentVpnConnection from '../services/vpnConnection'
 
 /**
  * serviceMap is an object that contains all currently supported services
  * serviceMap is used by the serviceFactory to produce instances of service classes
  */
 export default {
-  [services.customerGateway]: TencentCustomerGateway,
-  [services.routeTable]: TencentRouteTable,
-  [services.securityGroup]: TencentSecurityGroup,
-  [services.securityGroupRule]: TencentSecurityGroupRule,
   [services.ccn]: TencentCcn,
   [services.ccnAttachment]: TencentCcnAttachment,
+  [services.customerGateway]: TencentCustomerGateway,
   [services.networkAcl]: TencentNetworkAcl,
+  [services.routeTable]: TencentRouteTable,
   [services.securityGroup]: TencentSecurityGroup,
   [services.securityGroupRule]: TencentSecurityGroupRule,
   [services.subnet]: TencentSubnet,
   [services.vpc]: TencentVpc,
+  [services.vpnConnection]: TencentVpnConnection,
   [services.vpnGateway]: TencentVpnGateway,
   [services.vpnGatewayRoute]: TencentVpnGatewayRoute,
   tag: TencentTag,

src/enums/services.ts

@@ -1,13 +1,14 @@
 export default {
+  ccn: 'ccn',
+  ccnAttachment: 'ccnAttachment',
   customerGateway: 'customerGateway',
   routeTable: 'routeTable',
   networkAcl: 'networkAcl',
   securityGroup: 'securityGroup',
   securityGroupRule: 'securityGroupRule',
-  ccn: 'ccn',
-  ccnAttachment: 'ccnAttachment',
   subnet: 'subnet',
   vpc: 'vpc',
+  vpnConnection: 'vpnConnection',
   vpnGateway: 'vpnGateway',
   vpnGatewayRoute: 'vpnGatewayRoute',
 }

src/services/customerGateway/schema.graphql

@@ -3,4 +3,5 @@ type tencentCustomerGateway implements tencentBaseService @key(fields: "id") {
   ipAddress: String @search(by: [hash, regexp])
   createdTime: String @search(by: [hash, regexp])
   tags: [tencentRawTag]
+  vpnConnections: [tencentVpnConnection] @hasInverse(field: customerGateways)
 }

src/services/vpnConnection/connections.ts

@@ -0,0 +1,53 @@
+import { ServiceConnection } from '@cloudgraph/sdk'
+import { RawTencentVpnConnection } from './data'
+import services from '../../enums/services'
+import aliases from '../../enums/serviceAliases'
+import { RawTencentVpnGateway } from '../vpnGateway/data'
+import { RawTencentCustomerGateway } from '../customerGateway/data'
+
+export default ({
+  service,
+  data,
+  region,
+}: {
+  service: RawTencentVpnConnection
+  data: { name: string; data: { [property: string]: any[] } }[]
+  region: string
+}): {
+  [property: string]: ServiceConnection[]
+} => {
+  const { id } = service
+  const connections: ServiceConnection[] = []
+
+  const vpnGatewayId = service.VpnGatewayId
+  const vpnGatewayInstances = data.find(({ name }) => name === services.vpnGateway)
+
+  if (vpnGatewayInstances?.data?.[region]) {
+    const instance: RawTencentVpnGateway = vpnGatewayInstances.data[region].find(({id: serviceId}) => serviceId === vpnGatewayId)
+    connections.push({
+      id: instance.id,
+      resourceType: services.vpnGateway,
+      relation: 'child',
+      field: aliases[services.vpnGateway]
+    })
+  }
+
+  const customerGatewayId = service.CustomerGatewayId
+  const customerGatewayInstances = data.find(({ name }) => name === services.customerGateway)
+
+  if (customerGatewayInstances?.data?.[region]) {
+    const instance: RawTencentCustomerGateway = customerGatewayInstances.data[region]
+      .find(({id: serviceId}) => serviceId === customerGatewayId)
+    connections.push({
+      id: instance.id,
+      resourceType: services.customerGateway,
+      relation: 'child',
+      field: aliases[services.customerGateway]
+    })
+  }
+
+  const result = {
+    [id]: connections,
+  }
+  return result
+}

src/services/vpnConnection/data.ts

@@ -0,0 +1,56 @@
+import * as tencentcloud from 'tencentcloud-sdk-nodejs'
+import { VpnConnection } from 'tencentcloud-sdk-nodejs/tencentcloud/services/vpc/v20170312/vpc_models'
+import { ClientConfig } from 'tencentcloud-sdk-nodejs/tencentcloud/common/interface'
+import CloudGraph from '@cloudgraph/sdk'
+import groupBy from 'lodash/groupBy'
+import isEmpty from 'lodash/isEmpty'
+import loggerText from '../../properties/logger'
+import { TencentServiceInput } from '../../types'
+import { initTestEndpoint, generateTencentErrorLog } from '../../utils'
+
+const lt = { ...loggerText }
+const { logger } = CloudGraph
+export const serviceName = 'VpnConnection'
+const apiEndpoint = initTestEndpoint(serviceName)
+
+export interface RawTencentVpnConnection extends VpnConnection {
+  id: string
+  region: string
+}
+
+export default async ({
+  regions,
+  config,
+}: TencentServiceInput): Promise<{
+  [region: string]: RawTencentVpnConnection[]
+}> =>
+  new Promise(async resolve => {
+    const vpnConnectionList: RawTencentVpnConnection[] = []
+
+    for (const region of regions.split(',')) {
+      /**
+       * Get all the vpn gateways
+       */
+      try {
+        const VpcClient = tencentcloud.vpc.v20170312.Client
+        const clientConfig: ClientConfig  = { credential: config, region, profile: { httpProfile: { endpoint: apiEndpoint } } }
+        const vpc = new VpcClient(clientConfig)
+        const response =  await vpc.DescribeVpnConnections(null)
+
+        if (response && !isEmpty(response.VpnConnectionSet)) {
+          for (const instance of response.VpnConnectionSet) {
+            vpnConnectionList.push({
+              id: instance.VpnConnectionId,
+              ...instance,
+              region,
+            })
+          }
+        }
+      } catch (error) {
+        generateTencentErrorLog(serviceName, 'vpc:DescribeVpnConnections', error)
+      }
+    }
+
+    logger.debug(lt.foundResources(serviceName, vpnConnectionList.length))
+    resolve(groupBy(vpnConnectionList, 'region'))
+  })

src/services/vpnConnection/format.ts

@@ -0,0 +1,119 @@
+import cuid from 'cuid'
+import {
+  IKEOptionsSpecification,
+  IPSECOptionsSpecification,
+} from 'tencentcloud-sdk-nodejs/tencentcloud/services/vpc/v20170312/vpc_models';
+import {
+  TencentVpnConnection,
+  TencentVpnConnectionIkeOptionsSpecification,
+  TencentVpnConnectionIpsecOptionsSpecification,
+} from '../../types/generated'
+import { RawTencentVpnConnection } from './data'
+
+const formatIKEOptionsSpecification = (ikeOptionsSpecification: IKEOptionsSpecification): TencentVpnConnectionIkeOptionsSpecification => {
+  const {
+    PropoEncryAlgorithm: propoEncryAlgorithm = '',
+    PropoAuthenAlgorithm: propoAuthenAlgorithm = '',
+    ExchangeMode: exchangeMode = '',
+    LocalIdentity: localIdentity = '',
+    RemoteIdentity: remoteIdentity = '',
+    LocalAddress: localAddress = '',
+    RemoteAddress: remoteAddress = '',
+    LocalFqdnName: localFqdnName = '',
+    RemoteFqdnName: remoteFqdnName = '',
+    DhGroupName: dhGroupName = '',
+    IKESaLifetimeSeconds: ikeSaLifetimeSeconds = 0,
+    IKEVersion: ikeVersion = '',
+  } = ikeOptionsSpecification
+
+  return {
+    propoEncryAlgorithm,
+    propoAuthenAlgorithm,
+    exchangeMode,
+    localIdentity,
+    remoteIdentity,
+    localAddress,
+    remoteAddress,
+    localFqdnName,
+    remoteFqdnName,
+    dhGroupName,
+    ikeSaLifetimeSeconds,
+    ikeVersion,
+  }
+}
+
+const formatIPSECOptionsSpecification = (
+  ipsecOptionsSpecification: IPSECOptionsSpecification,
+): TencentVpnConnectionIpsecOptionsSpecification => {
+  const {
+    EncryptAlgorithm: encryptAlgorithm = '',
+    IntegrityAlgorith: integrityAlgorith = '',
+    IPSECSaLifetimeSeconds: ipsecSaLifetimeSeconds = 0,
+    PfsDhGroup: pfsDhGroup = '',
+    IPSECSaLifetimeTraffic: ipsecSaLifetimeTraffic = 0,
+  } = ipsecOptionsSpecification
+
+  return {
+    encryptAlgorithm,
+    integrityAlgorith,
+    ipsecSaLifetimeSeconds,
+    pfsDhGroup,
+    ipsecSaLifetimeTraffic,
+  }
+}
+
+export default ({
+  service,
+  region,
+}: {
+  service: RawTencentVpnConnection
+  region: string
+}): TencentVpnConnection=> {
+  const {
+    id,
+    VpnConnectionName: name,
+    PreShareKey: preShareKey,
+    VpnProto: vpnProto,
+    EncryptProto: encryptProto,
+    RouteType: routeType,
+    CreatedTime: createdTime,
+    State: state,
+    NetStatus: netStatus,
+    SecurityPolicyDatabaseSet = [],
+    IKEOptionsSpecification: ikeOptionsSpecification = {},
+    IPSECOptionsSpecification: ipsecOptionsSpecification = {},
+    EnableHealthCheck: enableHealthCheck,
+    HealthCheckLocalIp: healthCheckLocalIp,
+    HealthCheckRemoteIp: healthCheckRemoteIp,
+    HealthCheckStatus: healthCheckStatus,
+  } = service
+
+  return {
+    id,
+    region,
+    name,
+    preShareKey,
+    vpnProto,
+    encryptProto,
+    routeType,
+    createdTime,
+    state,
+    netStatus,
+    securityPolicyDatabaseSet: SecurityPolicyDatabaseSet.map(({
+      LocalCidrBlock: localCidrBlock,
+      RemoteCidrBlock: remoteCidrBlock,
+    }) => {
+      return {
+        id: cuid(),
+        localCidrBlock,
+        remoteCidrBlock,
+      }
+    }),
+    ikeOptionsSpecification: formatIKEOptionsSpecification(ikeOptionsSpecification),
+    ipsecOptionsSpecification: formatIPSECOptionsSpecification(ipsecOptionsSpecification),
+    enableHealthCheck,
+    healthCheckLocalIp,
+    healthCheckRemoteIp,
+    healthCheckStatus,
+  }
+}

src/services/vpnConnection/index.ts

@@ -0,0 +1,16 @@
+import { Service } from '@cloudgraph/sdk'
+import BaseService from '../base'
+import format from './format'
+import getData, { serviceName } from './data'
+import getConnections from './connections'
+import { getMutation } from '../../utils'
+
+export default class TencentVpnConnection extends BaseService implements Service {
+  format = format.bind(this)
+
+  getData = getData.bind(this)
+
+  getConnections = getConnections.bind(this)
+
+  mutation = getMutation(serviceName)
+}