feat default policies (#41)

* feat: adding the ability to source in default managed and inline policies into the roles created

* chore(deps): upgrading the terraform providers

Author: gambol99

.tflint.hcl

@@ -1,12 +1,18 @@
 plugin "aws" {
   enabled = true
-  version = "0.30.0"
+  version = "0.32.0"
   source  = "github.com/terraform-linters/tflint-ruleset-aws"
 }
 
+plugin "terraform" {
+  enabled = true
+  version = "0.7.0"
+  source  = "github.com/terraform-linters/tflint-ruleset-terraform"
+}
+
 config {
-  module = true
-  force  = false
+  call_module_type = "local"
+  force            = false
 }
 
 rule "terraform_required_providers" {
@@ -55,7 +61,7 @@ rule "terraform_module_pinned_source" {
 }
 
 rule "terraform_standard_module_structure" {
-  enabled = false
+  enabled = true
 }
 
 rule "terraform_workspace_remote" {

Makefile

@@ -1,6 +1,4 @@
 #
-# Copyright (C) 2024  Appvia Ltd <info@appvia.io>
-#  
 # This program is free software; you can redistribute it and/or
 # modify it under the terms of the GNU General Public License
 # as published by the Free Software Foundation; either version 2
@@ -14,15 +12,23 @@
 # You should have received a copy of the GNU General Public License
 # along with this program.  If not, see <http://www.gnu.org/licenses/>.
 #
-AUTHOR_EMAIL=info@appvia.io
-
-.PHONY: all security lint format documentation documentation-examples validate-all validate validate-examples init
+.PHONY: all security lint format documentation documentation-examples validate-all validate validate-examples init examples tests
 
 default: all
 
 all: 
 	$(MAKE) init
 	$(MAKE) validate
+	$(MAKE) tests
+	$(MAKE) lint
+	$(MAKE) security
+	$(MAKE) format
+	$(MAKE) documentation
+
+examples:
+	$(MAKE) validate-examples
+	$(MAKE) tests
+	$(MAKE) lint-examples
 	$(MAKE) lint
 	$(MAKE) security
 	$(MAKE) format
@@ -31,11 +37,33 @@ all:
 documentation: 
 	@echo "--> Generating documentation"
 	@terraform-docs markdown table --output-file ${PWD}/README.md --output-mode inject .
+	$(MAKE) documentation-modules
 	$(MAKE) documentation-examples
 
+documentation-modules:
+	@echo "--> Generating documentation for modules"
+	@if [ -d modules ]; then \
+		find modules -type d -mindepth 1 -maxdepth 1 -exec terraform-docs markdown table --output-file README.md --output-mode inject {} \; ; \
+	fi
+
 documentation-examples:
 	@echo "--> Generating documentation examples"
-	@find examples -type d -mindepth 1 -maxdepth 1 -exec terraform-docs markdown table --output-file README.md --output-mode inject {} \;
+	@if [ -d examples ]; then \
+		find examples -type d -mindepth 1 -maxdepth 1 -exec terraform-docs markdown table --output-file README.md --output-mode inject {} \; ; \
+	fi
+
+upgrade-terraform-providers:
+	@printf "%s Upgrading Terraform providers for %-24s" "-->" "."
+	@terraform init -upgrade >/dev/null && echo "[OK]" || echo "[FAILED]"
+	@$(MAKE) upgrade-terraform-example-providers
+
+upgrade-terraform-example-providers:
+	@if [ -d examples ]; then \
+		find examples -type d -mindepth 1 -maxdepth 1 | while read -r dir; do \
+			printf "%s Upgrading Terraform providers for %-24s" "-->" "$$dir"; \
+			terraform -chdir=$$dir init -upgrade >/dev/null && echo "[OK]" || echo "[FAILED]"; \
+		done; \
+	fi
 
 init: 
 	@echo "--> Running terraform init"
@@ -44,47 +72,87 @@ init:
 security: 
 	@echo "--> Running Security checks"
 	@trivy config .
+	$(MAKE) security-modules
 	$(MAKE) security-examples
 
+security-modules:
+	@echo "--> Running Security checks on modules"
+	@if [ -d modules ]; then \
+		find modules -type d -mindepth 1 -maxdepth 1 | while read -r dir; do \
+			echo "--> Validating $$dir"; \
+			trivy config  --format table --exit-code  1 --severity  CRITICAL,HIGH --ignorefile .trivyignore $$dir; \
+		done; \
+	fi
+
 security-examples:
 	@echo "--> Running Security checks on examples"
-	@find examples -type d -mindepth 1 -maxdepth 1 | while read -r dir; do \
-		echo "--> Validating $$dir"; \
-		trivy config $$dir; \
-	done
+	@if [ -d examples ]; then \
+		find examples -type d -mindepth 1 -maxdepth 1 | while read -r dir; do \
+			echo "--> Validating $$dir"; \
+			trivy config  --format table --exit-code  1 --severity  CRITICAL,HIGH --ignorefile .trivyignore $$dir; \
+		done; \
+	fi
 
-validate-all:
-	@echo "--> Running all validation checks"
-	$(MAKE) validate
-	$(MAKE) validate-examples
+tests: 
+	@echo "--> Running Terraform Tests" 
+	@terraform test
 
 validate:
 	@echo "--> Running terraform validate"
 	@terraform init -backend=false
 	@terraform validate
+	$(MAKE) validate-modules
 	$(MAKE) validate-examples
 
+validate-modules:
+	@echo "--> Running terraform validate on modules"
+	@if [ -d modules ]; then \
+		find modules -type d -mindepth 1 -maxdepth 1 | while read -r dir; do \
+			echo "--> Validating $$dir"; \
+			terraform -chdir=$$dir init -backend=false; \
+			terraform -chdir=$$dir validate; \
+		done; \
+	fi
+
 validate-examples:
 	@echo "--> Running terraform validate on examples"
-	@find examples -type d -mindepth 1 -maxdepth 1 | while read -r dir; do \
-		echo "--> Validating $$dir"; \
-		terraform -chdir=$$dir init; \
-		terraform -chdir=$$dir validate; \
-	done
+	@if [ -d examples ]; then \
+		find examples -type d -mindepth 1 -maxdepth 1 | while read -r dir; do \
+			echo "--> Validating $$dir"; \
+			terraform -chdir=$$dir init -backend=false; \
+			terraform -chdir=$$dir validate; \
+		done; \
+	fi
+
+validate-commits:
+	@echo "--> Running commitlint against the "
 
 lint:
 	@echo "--> Running tflint"
 	@tflint --init 
 	@tflint -f compact
+	$(MAKE) lint-modules
 	$(MAKE) lint-examples
 
+lint-modules:
+	@echo "--> Running tflint on modules"
+	@if [ -d modules ]; then \
+		find modules -type d -mindepth 1 -maxdepth 1 | while read -r dir; do \
+			echo "--> Linting $$dir"; \
+			tflint --chdir=$$dir --init; \
+			tflint --chdir=$$dir -f compact; \
+		done; \
+	fi
+
 lint-examples:
 	@echo "--> Running tflint on examples"
-	@find examples -type d -mindepth 1 -maxdepth 1 | while read -r dir; do \
-		echo "--> Linting $$dir"; \
-		tflint --chdir=$$dir --init; \
-		tflint --chdir=$$dir -f compact; \
-	done
+	@if [ -d examples ]; then \
+		find examples -type d -mindepth 1 -maxdepth 1 | while read -r dir; do \
+			echo "--> Linting $$dir"; \
+			tflint --chdir=$$dir --init; \
+			tflint --chdir=$$dir -f compact; \
+		done; \
+	fi
 
 format: 
 	@echo "--> Running terraform fmt"