fix: VPC Flow Logs constraint issue + Adding gcloud terraform vet usage to test (#779)

* Adding new strategy to deal with both flowlogs parameters

* Adding line that insert terraform vet test setup

* changing from relative to absolute path for policy libraries folder

* Adding the PL setup to testable object

* Removing back the terrafor vet usage

* removing terraform vet

* Adding gcloud beta terraform vet to tests

* Adding project parameter to policyLibrary test definition + Bumping cft version

Author: mauro-cit

policy-library/policies/templates/gcp_network_enable_flow_logs_v1.yaml

@@ -59,8 +59,12 @@ spec:
         	asset.asset_type == "compute.googleapis.com/Subnetwork"
 
         	network := asset.resource.data
-        	enable_flow_logs := lib.get_default(network, "enableFlowLogs", false)
-        	enable_flow_logs == false
+        	legacy_enable_flow_logs := lib.get_default(network, "enableFlowLogs", false)
+        	log_config := lib.get_default(network, "logConfig", {})
+        	log_config_enable_flow_logs := lib.get_default(log_config, "enable", false)
+
+        	log_config_enable_flow_logs != true
+        	legacy_enable_flow_logs != true
 
         	message := sprintf("Flow logs are disabled in subnetwork %v.", [asset.name])
         	metadata := {"resource": asset.name}

test/integration/app-infra/app_infra_test.go

@@ -43,6 +43,7 @@ func TestAppInfra(t *testing.T) {
 
 			appInfra := tft.NewTFBlueprintTest(t,
 				tft.WithTFDir(fmt.Sprintf("../../../5-app-infra/business_unit_1/%s", envName)),
+				tft.WithPolicyLibraryPath("/workspace/policy-library", projects.GetStringOutput("base_shared_vpc_project")),
 				tft.WithVars(vars),
 			)
 

test/integration/bootstrap/bootstrap_test.go

@@ -50,9 +50,14 @@ func TestBootstrap(t *testing.T) {
 		"bucket_force_destroy": true,
 	}
 
+	temp := tft.NewTFBlueprintTest(t,
+		tft.WithTFDir("../../../0-bootstrap"),
+	)
+
 	bootstrap := tft.NewTFBlueprintTest(t,
 		tft.WithTFDir("../../../0-bootstrap"),
 		tft.WithVars(vars),
+		tft.WithPolicyLibraryPath("/workspace/policy-library", temp.GetTFSetupStringOutput("project_id")),
 	)
 
 	cloudSourceRepos := []string{

test/integration/envs/envs_test.go

@@ -56,6 +56,7 @@ func TestEnvs(t *testing.T) {
 		t.Run(envName, func(t *testing.T) {
 			envs := tft.NewTFBlueprintTest(t,
 				tft.WithTFDir(fmt.Sprintf("../../../2-environments/envs/%s", envName)),
+				tft.WithPolicyLibraryPath("/workspace/policy-library", bootstrap.GetTFSetupStringOutput("project_id")),
 				tft.WithVars(vars),
 				tft.WithBackendConfig(backendConfig),
 			)

test/integration/go.mod

@@ -3,7 +3,7 @@ module github.com/terraform-google-modules/terraform-example-foundation/test/int
 go 1.17
 
 require (
-	github.com/GoogleCloudPlatform/cloud-foundation-toolkit/infra/blueprint-test v0.1.1-0.20220802155302-a13ee7fb1c62
+	github.com/GoogleCloudPlatform/cloud-foundation-toolkit/infra/blueprint-test v0.2.1-0.20220822233358-4e9b833071f9
 	github.com/gruntwork-io/terratest v0.40.7
 	github.com/stretchr/testify v1.7.1
 	github.com/tidwall/gjson v1.12.1

test/integration/go.sum

@@ -65,8 +65,8 @@ github.com/Azure/go-autorest/logger v0.2.1/go.mod h1:T9E3cAhj2VqvPOtCYAvby9aBXkZ
 github.com/Azure/go-autorest/tracing v0.6.0/go.mod h1:+vhtPC754Xsa23ID7GlGsrdKBpUA79WCAKPPZVC2DeU=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
-github.com/GoogleCloudPlatform/cloud-foundation-toolkit/infra/blueprint-test v0.1.1-0.20220802155302-a13ee7fb1c62 h1:uDiVwwTc7caRf6k2+MBKf3Ia+Z9nWu9diaJQUN3oGdA=
-github.com/GoogleCloudPlatform/cloud-foundation-toolkit/infra/blueprint-test v0.1.1-0.20220802155302-a13ee7fb1c62/go.mod h1:E655Ka0BfIYALBmqU9ZbemLk/nutxw4vU6wkLEjshSA=
+github.com/GoogleCloudPlatform/cloud-foundation-toolkit/infra/blueprint-test v0.2.1-0.20220822233358-4e9b833071f9 h1:sU9+r4cUupqDkfcWYjMRAf/fTFx7bQWUrO/aCMWNwko=
+github.com/GoogleCloudPlatform/cloud-foundation-toolkit/infra/blueprint-test v0.2.1-0.20220822233358-4e9b833071f9/go.mod h1:E655Ka0BfIYALBmqU9ZbemLk/nutxw4vU6wkLEjshSA=
 github.com/GoogleContainerTools/kpt-functions-sdk/go v0.0.0-20220301220754-6964a09d6cd2/go.mod h1:lJYiqfBOl6AOiefK9kmkhinbffIysu+nnclOBwKEPlQ=
 github.com/Microsoft/go-winio v0.4.11/go.mod h1:VhR8bwka0BXejwEJY73c50VrPtXAaKcyvVC4A4RozmA=
 github.com/Microsoft/go-winio v0.4.14/go.mod h1:qXqCSQ3Xa7+6tgxaGTIe4Kpcdsi+P8jBhyzoq1bpyYA=

test/integration/networks/networks_test.go

@@ -145,6 +145,7 @@ func TestNetworks(t *testing.T) {
 			networks := tft.NewTFBlueprintTest(t,
 				tft.WithTFDir(fmt.Sprintf(tfdDir, envName)),
 				tft.WithVars(vars),
+				tft.WithPolicyLibraryPath("/workspace/policy-library", bootstrap.GetTFSetupStringOutput("project_id")),
 				tft.WithBackendConfig(backendConfig),
 			)
 			networks.DefineVerify(

test/integration/org/org_test.go

@@ -56,6 +56,7 @@ func TestOrg(t *testing.T) {
 	org := tft.NewTFBlueprintTest(t,
 		tft.WithTFDir("../../../1-org/envs/shared"),
 		tft.WithVars(vars),
+		tft.WithPolicyLibraryPath("/workspace/policy-library", bootstrap.GetTFSetupStringOutput("project_id")),
 		tft.WithBackendConfig(backendConfig),
 	)
 

test/integration/projects-shared/projects_shared_test.go

@@ -71,6 +71,7 @@ func TestProjectsShared(t *testing.T) {
 				tft.WithTFDir(tts.tfDir),
 				tft.WithVars(sharedVars),
 				tft.WithBackendConfig(backendConfig),
+				tft.WithPolicyLibraryPath("/workspace/policy-library", bootstrap.GetTFSetupStringOutput("project_id")),
 			)
 
 			shared.DefineVerify(

test/integration/projects/projects_test.go

@@ -141,6 +141,7 @@ func TestProjects(t *testing.T) {
 				tft.WithTFDir(fmt.Sprintf(tt.baseDir, env)),
 				tft.WithVars(vars),
 				tft.WithBackendConfig(backendConfig),
+				tft.WithPolicyLibraryPath("/workspace/policy-library", bootstrap.GetTFSetupStringOutput("project_id")),
 			)
 
 			projects.DefineVerify(

test/integration/shared/shared_test.go

@@ -72,6 +72,7 @@ func TestShared(t *testing.T) {
 	shared := tft.NewTFBlueprintTest(t,
 		tft.WithTFDir(tfdDir),
 		tft.WithVars(vars),
+		tft.WithPolicyLibraryPath("/workspace/policy-library", bootstrap.GetTFSetupStringOutput("project_id")),
 		tft.WithBackendConfig(backendConfig),
 	)
 	shared.DefineVerify(