Resolve egress rules cyclic dependencies for security groups (#229)

TiberiuGC · web-flow · commit 09a1b5ce5c0e · 2024-10-22T17:41:29.000Z
Issue #, if available: aws-controllers-k8s/community#2191 Description of changes: - generates the code for resolving egress rules SG references - updates integration tests to account for egress rules references By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.
diff --git a/apis/v1alpha1/ack-generate-metadata.yaml b/apis/v1alpha1/ack-generate-metadata.yaml
@@ -1,13 +1,13 @@
 ack_generate_info:
-  build_date: "2024-10-10T04:00:51Z"
+  build_date: "2024-10-22T13:52:25Z"
   build_hash: 36c2d234498c2bc4f60773ab8df632af4067f43b
   go_version: go1.23.2
   version: v0.39.1
 api_directory_checksum: 585098fc7c99c27ca523f83e860107d22aaa5a10
 api_version: v1alpha1
 aws_sdk_go_version: v1.44.93
 generator_config_info:
-  file_checksum: cd7df4af2cf851dbae7c054c499c3c251064ab0c
+  file_checksum: 2c5ef491ef62c9347bcb87918f715692adf727bc
   original_file_name: generator.yaml
 last_modification:
   reason: API generation
diff --git a/apis/v1alpha1/generator.yaml b/apis/v1alpha1/generator.yaml
@@ -530,6 +530,16 @@ resources:
           path: Status.ID
           skip_resource_state_validations: true
         is_required: false
+      EgressRules.UserIDGroupPairs.VPCID:
+        references:
+          resource: VPC
+          path: Status.VPCID
+      EgressRules.UserIDGroupPairs.GroupID:
+        references:
+          resource: SecurityGroup
+          path: Status.ID
+          skip_resource_state_validations: true
+        is_required: false
     renames:
       operations:
         CreateSecurityGroup:
diff --git a/generator.yaml b/generator.yaml
@@ -530,6 +530,16 @@ resources:
           path: Status.ID
           skip_resource_state_validations: true
         is_required: false
+      EgressRules.UserIDGroupPairs.VPCID:
+        references:
+          resource: VPC
+          path: Status.VPCID
+      EgressRules.UserIDGroupPairs.GroupID:
+        references:
+          resource: SecurityGroup
+          path: Status.ID
+          skip_resource_state_validations: true
+        is_required: false
     renames:
       operations:
         CreateSecurityGroup:
diff --git a/pkg/resource/security_group/references.go b/pkg/resource/security_group/references.go
diff --git a/test/e2e/resources/security_group_with_sg_ref.yaml b/test/e2e/resources/security_group_with_sg_ref.yaml
@@ -15,3 +15,12 @@ spec:
           groupRef:
             from:
               name: $SECURITY_GROUP_REF_NAME
+  egressRules:
+    - fromPort: 443
+      toPort: 443
+      ipProtocol: tcp
+      userIDGroupPairs:
+        - description: test UID group pair
+          groupRef:
+            from:
+              name: $SECURITY_GROUP_REF_NAME
diff --git a/test/e2e/tests/test_security_group.py b/test/e2e/tests/test_security_group.py
