Add s3 fetchers

Author: donghwikim2

connector/aws/s3/src/main/java/com/blazebit/query/connector/aws/s3/AwsGrant.java

@@ -0,0 +1,23 @@
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ * Copyright Blazebit
+ */
+package com.blazebit.query.connector.aws.s3;
+
+import com.blazebit.query.connector.aws.base.AwsWrapper;
+import software.amazon.awssdk.services.s3.model.Grant;
+
+/**
+ * @author Donghwi Kim
+ * @since 1.0.0
+ */
+public class AwsGrant extends AwsWrapper<Grant> {
+	public AwsGrant(String accountId, String region, String resourceId, Grant payload) {
+		super( accountId, region, resourceId, payload );
+	}
+
+	@Override
+	public Grant getPayload() {
+		return super.getPayload();
+	}
+}

connector/aws/s3/src/main/java/com/blazebit/query/connector/aws/s3/AwsLoggingEnabled.java

@@ -0,0 +1,23 @@
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ * Copyright Blazebit
+ */
+package com.blazebit.query.connector.aws.s3;
+
+import com.blazebit.query.connector.aws.base.AwsWrapper;
+import software.amazon.awssdk.services.s3.model.LoggingEnabled;
+
+/**
+ * @author Donghwi Kim
+ * @since 1.0.0
+ */
+public class AwsLoggingEnabled extends AwsWrapper<LoggingEnabled> {
+	public AwsLoggingEnabled(String accountId, String region, String resourceId, LoggingEnabled payload) {
+		super( accountId, region, resourceId, payload );
+	}
+
+	@Override
+	public LoggingEnabled getPayload() {
+		return super.getPayload();
+	}
+}

connector/aws/s3/src/main/java/com/blazebit/query/connector/aws/s3/AwsObjectLockConfiguration.java

@@ -0,0 +1,23 @@
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ * Copyright Blazebit
+ */
+package com.blazebit.query.connector.aws.s3;
+
+import com.blazebit.query.connector.aws.base.AwsWrapper;
+import software.amazon.awssdk.services.s3.model.ObjectLockConfiguration;
+
+/**
+ * @author Donghwi Kim
+ * @since 1.0.0
+ */
+public class AwsObjectLockConfiguration extends AwsWrapper<ObjectLockConfiguration> {
+	public AwsObjectLockConfiguration(String accountId, String region, String resourceId, ObjectLockConfiguration payload) {
+		super( accountId, region, resourceId, payload );
+	}
+
+	@Override
+	public ObjectLockConfiguration getPayload() {
+		return super.getPayload();
+	}
+}

connector/aws/s3/src/main/java/com/blazebit/query/connector/aws/s3/AwsPolicyStatus.java

@@ -0,0 +1,23 @@
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ * Copyright Blazebit
+ */
+package com.blazebit.query.connector.aws.s3;
+
+import com.blazebit.query.connector.aws.base.AwsWrapper;
+import software.amazon.awssdk.services.s3.model.PolicyStatus;
+
+/**
+ * @author Donghwi Kim
+ * @since 1.0.0
+ */
+public class AwsPolicyStatus extends AwsWrapper<PolicyStatus> {
+	public AwsPolicyStatus(String accountId, String region, String resourceId, PolicyStatus payload) {
+		super( accountId, region, resourceId, payload );
+	}
+
+	@Override
+	public PolicyStatus getPayload() {
+		return super.getPayload();
+	}
+}

connector/aws/s3/src/main/java/com/blazebit/query/connector/aws/s3/AwsS3SchemaProvider.java

@@ -21,7 +21,12 @@ public final class AwsS3SchemaProvider implements QuerySchemaProvider {
 	public Set<? extends DataFetcher<?>> resolveSchemaObjects(ConfigurationProvider configurationProvider) {
 		return Set.of(
 				BucketDataFetcher.INSTANCE,
-				PublicAccessBlockConfigurationFetcher.INSTANCE
+				GrantFetcher.INSTANCE,
+				LoggingEnabledFetcher.INSTANCE,
+				ObjectLockConfigurationFetcher.INSTANCE,
+				PolicyStatusFetcher.INSTANCE,
+				PublicAccessBlockConfigurationFetcher.INSTANCE,
+				ServerSideEncryptionConfigurationFetcher.INSTANCE
 		);
 	}
 }

connector/aws/s3/src/main/java/com/blazebit/query/connector/aws/s3/AwsServerSideEncryptionConfiguration.java

@@ -0,0 +1,23 @@
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ * Copyright Blazebit
+ */
+package com.blazebit.query.connector.aws.s3;
+
+import com.blazebit.query.connector.aws.base.AwsWrapper;
+import software.amazon.awssdk.services.s3.model.ServerSideEncryptionConfiguration;
+
+/**
+ * @author Donghwi Kim
+ * @since 1.0.0
+ */
+public class AwsServerSideEncryptionConfiguration extends AwsWrapper<ServerSideEncryptionConfiguration> {
+	public AwsServerSideEncryptionConfiguration(String accountId, String region, String resourceId, ServerSideEncryptionConfiguration payload) {
+		super( accountId, region, resourceId, payload );
+	}
+
+	@Override
+	public ServerSideEncryptionConfiguration getPayload() {
+		return super.getPayload();
+	}
+}

connector/aws/s3/src/main/java/com/blazebit/query/connector/aws/s3/GrantFetcher.java

@@ -0,0 +1,79 @@
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ * Copyright Blazebit
+ */
+package com.blazebit.query.connector.aws.s3;
+
+import com.blazebit.query.connector.aws.base.AwsConnectorConfig;
+import com.blazebit.query.connector.aws.base.AwsConventionContext;
+import com.blazebit.query.connector.base.DataFormats;
+import com.blazebit.query.spi.DataFetchContext;
+import com.blazebit.query.spi.DataFetcher;
+import com.blazebit.query.spi.DataFetcherException;
+import com.blazebit.query.spi.DataFormat;
+import software.amazon.awssdk.http.SdkHttpClient;
+import software.amazon.awssdk.regions.Region;
+import software.amazon.awssdk.services.s3.S3Client;
+import software.amazon.awssdk.services.s3.S3ClientBuilder;
+import software.amazon.awssdk.services.s3.model.Bucket;
+import software.amazon.awssdk.services.s3.model.GetBucketAclRequest;
+import software.amazon.awssdk.services.s3.model.Grant;
+
+import java.io.Serializable;
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * @author Donghwi Kim
+ * @since 1.0.0
+ */
+public class GrantFetcher implements DataFetcher<AwsGrant>, Serializable {
+
+	public static final GrantFetcher INSTANCE = new GrantFetcher();
+
+	private GrantFetcher() {
+	}
+
+	@Override
+	public List<AwsGrant> fetch(DataFetchContext context) {
+		try {
+			List<AwsConnectorConfig.Account> accounts = AwsConnectorConfig.ACCOUNT.getAll( context );
+			SdkHttpClient sdkHttpClient = AwsConnectorConfig.HTTP_CLIENT.find( context );
+			List<AwsGrant> list = new ArrayList<>();
+			for ( AwsConnectorConfig.Account account : accounts ) {
+				for ( Region region : account.getRegions() ) {
+					S3ClientBuilder s3ClientBuilder = S3Client.builder()
+							.region( region )
+							.credentialsProvider( account.getCredentialsProvider() );
+					if ( sdkHttpClient != null ) {
+						s3ClientBuilder.httpClient( sdkHttpClient );
+					}
+					try (S3Client client = s3ClientBuilder.build()) {
+						for ( Bucket bucket : client.listBuckets().buckets() ) {
+							var bucketAcl = client.getBucketAcl(
+									GetBucketAclRequest.builder().bucket( bucket.name() )
+											.build() );
+							for ( Grant grant : bucketAcl.grants() ) {
+								list.add( new AwsGrant(
+										account.getAccountId(),
+										region.id(),
+										bucket.name(),
+										grant
+								) );
+							}
+						}
+					}
+				}
+			}
+			return list;
+		}
+		catch (Exception e) {
+			throw new DataFetcherException( "Could not fetch grant list", e );
+		}
+	}
+
+	@Override
+	public DataFormat getDataFormat() {
+		return DataFormats.componentMethodConvention( AwsGrant.class, AwsConventionContext.INSTANCE );
+	}
+}

connector/aws/s3/src/main/java/com/blazebit/query/connector/aws/s3/LoggingEnabledFetcher.java

@@ -0,0 +1,77 @@
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ * Copyright Blazebit
+ */
+package com.blazebit.query.connector.aws.s3;
+
+import com.blazebit.query.connector.aws.base.AwsConnectorConfig;
+import com.blazebit.query.connector.aws.base.AwsConventionContext;
+import com.blazebit.query.connector.base.DataFormats;
+import com.blazebit.query.spi.DataFetchContext;
+import com.blazebit.query.spi.DataFetcher;
+import com.blazebit.query.spi.DataFetcherException;
+import com.blazebit.query.spi.DataFormat;
+import software.amazon.awssdk.http.SdkHttpClient;
+import software.amazon.awssdk.regions.Region;
+import software.amazon.awssdk.services.s3.S3Client;
+import software.amazon.awssdk.services.s3.S3ClientBuilder;
+import software.amazon.awssdk.services.s3.model.Bucket;
+import software.amazon.awssdk.services.s3.model.GetBucketLoggingRequest;
+
+import java.io.Serializable;
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * @author Donghwi Kim
+ * @since 1.0.0
+ */
+public class LoggingEnabledFetcher implements DataFetcher<AwsLoggingEnabled>, Serializable {
+
+	public static final LoggingEnabledFetcher INSTANCE = new LoggingEnabledFetcher();
+
+	private LoggingEnabledFetcher() {
+	}
+
+	@Override
+	public List<AwsLoggingEnabled> fetch(DataFetchContext context) {
+		try {
+			List<AwsConnectorConfig.Account> accounts = AwsConnectorConfig.ACCOUNT.getAll( context );
+			SdkHttpClient sdkHttpClient = AwsConnectorConfig.HTTP_CLIENT.find( context );
+			List<AwsLoggingEnabled> list = new ArrayList<>();
+			for ( AwsConnectorConfig.Account account : accounts ) {
+				for ( Region region : account.getRegions() ) {
+					S3ClientBuilder s3ClientBuilder = S3Client.builder()
+							.region( region )
+							.credentialsProvider( account.getCredentialsProvider() );
+					if ( sdkHttpClient != null ) {
+						s3ClientBuilder.httpClient( sdkHttpClient );
+					}
+					try (S3Client client = s3ClientBuilder.build()) {
+						for ( Bucket bucket : client.listBuckets().buckets() ) {
+							GetBucketLoggingRequest.builder().build();
+							var bucketLogging = client.getBucketLogging(
+									GetBucketLoggingRequest.builder().bucket( bucket.name() )
+											.build() );
+							list.add( new AwsLoggingEnabled(
+									account.getAccountId(),
+									region.id(),
+									bucket.name(),
+									bucketLogging.loggingEnabled()
+							) );
+						}
+					}
+				}
+			}
+			return list;
+		}
+		catch (Exception e) {
+			throw new DataFetcherException( "Could not fetch logging enabled list", e );
+		}
+	}
+
+	@Override
+	public DataFormat getDataFormat() {
+		return DataFormats.componentMethodConvention( AwsLoggingEnabled.class, AwsConventionContext.INSTANCE );
+	}
+}

connector/aws/s3/src/main/java/com/blazebit/query/connector/aws/s3/ObjectLockConfigurationFetcher.java

@@ -0,0 +1,86 @@
+/*
+ * SPDX-License-Identifier: Apache-2.0
+ * Copyright Blazebit
+ */
+package com.blazebit.query.connector.aws.s3;
+
+import com.blazebit.query.connector.aws.base.AwsConnectorConfig;
+import com.blazebit.query.connector.aws.base.AwsConventionContext;
+import com.blazebit.query.connector.base.DataFormats;
+import com.blazebit.query.spi.DataFetchContext;
+import com.blazebit.query.spi.DataFetcher;
+import com.blazebit.query.spi.DataFetcherException;
+import com.blazebit.query.spi.DataFormat;
+import software.amazon.awssdk.http.SdkHttpClient;
+import software.amazon.awssdk.regions.Region;
+import software.amazon.awssdk.services.s3.S3Client;
+import software.amazon.awssdk.services.s3.S3ClientBuilder;
+import software.amazon.awssdk.services.s3.model.Bucket;
+import software.amazon.awssdk.services.s3.model.GetObjectLockConfigurationRequest;
+import software.amazon.awssdk.services.s3.model.S3Exception;
+
+import java.io.Serializable;
+import java.util.ArrayList;
+import java.util.List;
+
+/**
+ * @author Donghwi Kim
+ * @since 1.0.0
+ */
+public class ObjectLockConfigurationFetcher implements DataFetcher<AwsObjectLockConfiguration>, Serializable {
+
+	public static final ObjectLockConfigurationFetcher INSTANCE = new ObjectLockConfigurationFetcher();
+
+	private ObjectLockConfigurationFetcher() {
+	}
+
+	@Override
+	public List<AwsObjectLockConfiguration> fetch(DataFetchContext context) {
+		try {
+			List<AwsConnectorConfig.Account> accounts = AwsConnectorConfig.ACCOUNT.getAll( context );
+			SdkHttpClient sdkHttpClient = AwsConnectorConfig.HTTP_CLIENT.find( context );
+			List<AwsObjectLockConfiguration> list = new ArrayList<>();
+			for ( AwsConnectorConfig.Account account : accounts ) {
+				for ( Region region : account.getRegions() ) {
+					S3ClientBuilder s3ClientBuilder = S3Client.builder()
+							.region( region )
+							.credentialsProvider( account.getCredentialsProvider() );
+					if ( sdkHttpClient != null ) {
+						s3ClientBuilder.httpClient( sdkHttpClient );
+					}
+					try (S3Client client = s3ClientBuilder.build()) {
+						for ( Bucket bucket : client.listBuckets().buckets() ) {
+							try {
+								var objectLockConfiguration = client.getObjectLockConfiguration(
+										GetObjectLockConfigurationRequest.builder().bucket( bucket.name() )
+												.build() ).objectLockConfiguration();
+								list.add( new AwsObjectLockConfiguration(
+										account.getAccountId(),
+										region.id(),
+										bucket.name(),
+										objectLockConfiguration
+								) );
+							}
+							catch (S3Exception e) {
+								if ( "ObjectLockConfigurationNotFoundError".equals(
+										e.awsErrorDetails().errorCode() ) ) {
+									continue;
+								}
+								throw e;
+							}
+						}
+					}
+				}
+			}
+			return list;
+		}
+		catch (Exception e) {
+			throw new DataFetcherException( "Could not fetch object lock configuration list", e );
+		}
+	}
+
+	@Override
+	public DataFormat getDataFormat() {
+		return DataFormats.componentMethodConvention( AwsObjectLockConfiguration.class, AwsConventionContext.INSTANCE );
+	}
+}