G! SrSSKJr SSKJr SSKJr SSKrSSKrSSKrSSKJ r J r SSK J r SSK Jr SSKrS \ \\ \\ \44S \ \ \\4S \S \ \\ \ \\444S jrS\ \S \ \\44SjrS\ \\44SjrS\ \\4S \\ \\444SjrS\S \4SjrS\S \4SjrS\ \\4S \S\S\S \4 SjrS\S \ \4SjrS\ \S\S \ \ \\44SjrS\S \ \ \\44Sjrg) zLibrary for fetching TF Files.)absolute_import)division)unicode_literalsN)DictList)run_subprocess)files iam_bindingstfstate_json_list resource_namereturnc `0nUR5HupEUHnSU;a=USH4n[XbXt5nU(dMXC;a/X4'X4RU5 M6 SU;dMNUSH4n[XbXt5nU(dMXC;a/X4'X4RU5 M6 M Us $ g)a#Gets the TFState information for the given IAM bindings. Args: iam_bindings: IAM bindings for the resource. tfstate_json_list: List of TFState files. resource_name: Resource name for which the finding was generated. Returns: List of TFState information for the given IAM bindings. ADDREMOVEN)itemsfetch_relevant_modulesappend) r r r tfstate_informationmemberbinding tfstate_jsonrole resource_datas ;lib/googlecloudsdk/api_lib/scc/iac_remediation/terraform.py"get_tfstate_information_per_memberrs:<%++-of) ' END04 -]0,.!)  ' . .} =# W H%D04 -]0,.!)  ' . .} =&*& ).tf_files_pathsc|[[[4"5nUHn[R"U5nX1U'M U$)zReads the original files content. Args: tf_files_paths: List of TF files paths. Returns: Dict of file path and file content. )dictstrr ReadFileContents)roriginal_tf_files file_pathoriginal_file_contents rread_original_files_contentr%Fs@38n&!i!229=#8i " r response_dictcbUR5Hup[R"X5nM g)zuUpdates the TF files with the response dict. Args: response_dict: Response dict containing the updated TF files. N)rr WriteFileContents)r&r# file_data_s rupdate_tf_filesr+Xs*,113i  5A4rc|[[[4"5nUR5Hjup#[R"U5nXAU'[R "X#5nSSSU/n[ R"USSS9 [R"U5X'Ml SS/n[ R"USSS9n[U5 [R"S US [R5(aS U4$g ![an[U5 SU4sSnAs $SnAff=f![an[U5 SU4sSnA$SnAff=f) aValidates the TFState information for the given IAM bindings. Args: response_dict: response dict containing the updated TF files. Returns: True if the response is valid, False otherwise. updated_response_dict: Updated response dict containing the original TF files. terraformfmtz -write=trueF) timeout_sec show_stderrNvalidateSuccessrT)FN) rr rr r!r(rGetOutputLines Exceptionr+research IGNORECASE) r&r"r#r)r$r*cmdevalidate_outputs rvalidate_tf_filesr<es038n&+113i!229=#8i   ! !) 7a % :c##CRUK!&!7!7 !Bm4 j!#$33 O #$ii ?1-r}}==    '( AXo %& !8Os= A C0D0 D:DDD D;"D60D;6D;dir_pathc[R"U5 SS/n[R"USS9 /SQn[R"USS9nU$![a nSnAgSnAff=f![a nSnAgSnAff=f)zFetches the TFState json for the given directory. Args: dir_path: The path of the directory to fetch the TFState files from. Returns: The json of the TFState file or None if there is an error. r-init )r0N)r-showz-json)oschdirrr4r5)r=r9r*rs rfetch_tfstate_json_from_dirrEszHHX  C!!#26 (C!00"EL     s"/A A$ A!A!$ A83A8r#c^[R"U5n[R"U5nU$)zFetches the TFState json for the given tfstate file path. Args: file_path: The path of the file to fetch the TFState json from. Returns: The json of the TFState files. )r r!hcl2loads)r#filers rfetch_tfstate_json_from_filerJs(    *$D!, rr role_name member_namecSnSU;dSUS;d SUSS;aU$USSSHYnSU;dM SUS;dMSUS;dM!SUS;dM,USSU:XdM:USSU:XdMHUSSU:XdMVUn U$ U$)z:Fetches the relevant modules from the given TFState files.rAvalues root_module resourcesrr project_id)rr rKrLrresources rrrs -l" l84 4 L2=A A x(7 DhH * * hx( ( HX. . X x (K 7 X v &) 3 X | , =m E rroot_dirc/n[R"U/5nU(Ga"UR5n[R"U5Hn[R R X45n[R RU5(a+URS5(dURU5 MoMq[R RU5(dMURS5(d0URS5(dMURS5(aMURU5 M U(aGM"U$)zFinds all the TF files in the given directory. Args: root_dir: The path of the directory to find the TF files in. Returns: A list of the TF files paths in the given directory. .z.tfz.tfvars) collectionsdequepopleftrClistdirpathjoinisdir startswithrisfileendswith)rTtf_filesqueue current_diritem item_paths r find_tf_filesrfs(   XJ '% --/K ;''',,{1i y ! !s## ,,y !$ 77>>) $ $   U # #y'9'9)'D'D&&s++ "(  /rtfstate_file_pathsct/nU(a%UHnUR[U55 M U$[U5$)zFetches the TFState list for the given TFState file paths. Args: tfstate_file_paths: List of TFState file paths. root_dir: The path of the root directory. Returns: List of TFState json. )rrJfind_tfstate_jsons)rgrTr tfstate_file_paths rfetch_tfstate_listrksD/ &'8 90  h ''rc/n[R"U/5nU(aUR5nUR[ U55 [ R "U5HqnURS5(aM[ RRX45n[ RRU5(dM`URU5 Ms U(aMU$)zFinds the TFState jsons in the given directory. Args: dir_path: The path of the directory to find the TFState jsons in. Returns: List of TFState jsons. rV) rWrXrYrrErCrZr^r[r\r])r= tfstate_jsonsrbrcrdres rriris-   XJ '% --/K4[AB ;' __S ! !GGLL3 77== # # ,,y ! (  r)__doc__ __future__rrrrWrCr6typingrrgooglecloudsdk.command_lib.codergooglecloudsdk.core.utilr rGr rr%r+boolr<rErJrrfrkrirRrrrts%&' :* $sDd3i001$DcN+$$ #tDcN# #$ $NIcN$ 6S> 6$S>$ DcN$N##. C C sCx.#&58 6CDI4S  $sCx.0 $sCx.r