steampipe/tests/manual_testing/node_reuse/graph_as_node/dashboard.sp

dashboard "with_graph_as_node" {
  title = "With Graph as Node"


  input "instance_id" {
    title = "Select an instance:"
    query = query.ec2_instance_input
    width = 4
  }

   graph {
     base = graph.security_groups_to_vpc
     param "security_group_ids" {
       default = ["sg-0fb7e820f98871e0b", "sg-0963689e95ad3f4cb", "sg-0fa5ad244c986a9d8"]
     }
     param "subnet_ids" {
       default =   with.vpc.rows[*].vpc_id
     }
   }

  // vpc: vpc-0a93262e0a9f10dda

  graph "ec2_instance_detail" {

    with "security_groups" {
      sql = <<-EOQ
      select
        s ->> 'GroupId' as sg_id
      from
        aws_ec2_instance,
        jsonb_array_elements(security_groups) as s
      where
        instance_id = $1
    EOQ

      args = [self.input.instance_id.value]
    }

    with "vpc_details" {
      sql = <<-EOQ
      select
        instance_id,
        vpc_id,
        subnet_id
      from
        aws_ec2_instance
      where
        instance_id = $1
    EOQ

      args = [self.input.instance_id.value]
    }


    node {
      base = node.ec2_instance
      args = {
        ec2_instance_ids  = [self.input.instance_id]
      }
    }

    # graph {
    #   base = graph.security_groups_to_vpc
    #   args =  {
    #     security_group_ids        = with.security_groups.rows[*].sg_id
    #     subnet_ids    = with.vpc_details.rows[*].subnet_id
    #   }
    # }

    edge {
      base = edge.aws_ec2_instance_to_security_group
      args = {
        ec2_instance_id  = self.input.instance_id.value
      }
    }

  }

}

query "ec2_instance_input" {
  sql = <<-EOQ
    select
      title as label,
      instance_id as value,
      json_build_object(
        'account_id', account_id,
        'region', region,
        'instance_id', instance_id
      ) as tags
    from
      aws_ec2_instance
    order by
      title;
  EOQ
}

node "ec2_instance" {
  //category = category.ec2_instance

  sql = <<-EOQ
    select
      instance_id as id,
      title,
      jsonb_build_object(
        'Instance ID', instance_id,
        'Name', tags ->> 'Name',
        'ARN', arn,
        'Account ID', account_id,
        'Region', region
      ) as properties
    from
      aws_ec2_instance
    where
      instance_id = any($1);
  EOQ

  param "ec2_instance_ids" {}
}

edge "aws_ec2_instance_to_security_group" {
  title = "security group"

  sql = <<-EOQ
    select
      instance_id as from_id,
      sg ->> 'GroupId' as to_id
    from
      aws_ec2_instance,
      jsonb_array_elements(security_groups) as sg
    where
      instance_id = $1
  EOQ

  param "ec2_instance_id" {}
}

graph "security_groups_to_vpc" {

  param "security_group_ids" {}
  param "subnet_ids" {}


  with "vpc" {
    sql = <<-EOQ
      select
        vpc_id
      from
        aws_vpc_subnet
      where
        subnet_id = any ($1)
    EOQ
    args = [param.subnet_ids]
    //args = [["subnet-0b349fd9ce6590352", "subnet-05ec8288f0b9be5aa"]]

  }


  node {
    base = node.vpc_vpc
    args = {
      vpc_vpc_ids = with.vpc.rows[*].vpc_id
      //vpc_vpc_ids = ["vpc-0a93262e0a9f10dda"]
    }
  }

  node {
    base = node.vpc_subnet
    args = {
      vpc_subnet_ids = param.subnet_ids
      //vpc_subnet_ids = [["subnet-0b349fd9ce6590352", "subnet-05ec8288f0b9be5aa"]]
    }
  }

  node {
    base = node.vpc_security_group
    args = {
      vpc_security_group_ids = param.security_group_ids
      //vpc_security_group_ids = ["sg-0fb7e820f98871e0b", "sg-0963689e95ad3f4cb", "sg-0fa5ad244c986a9d8"]
    }
  }

  edge {
    base = edge.vpc_security_group_to_vpc_subnet
    args = {
      vpc_security_group_ids = param.security_group_ids
    }
  }

  edge {
    base = edge.vpc_subnet_to_vpc
    args = {
      vpc_subnet_ids = param.subnet_ids
    }
  }

}

node "vpc_vpc" {
  //category = category.vpc_vpc

  sql = <<-EOQ
   select
      vpc_id as id,
      title as title,
      jsonb_build_object(
        'ARN', arn,
        'VPC ID', vpc_id,
        'Is Default', is_default,
        'State', state,
        'CIDR Block', cidr_block,
        'DHCP Options ID', dhcp_options_id,
        'Owner ID', owner_id,
        'Account ID', account_id,
        'Region', region
      ) as properties
    from
      aws_vpc
    where
      vpc_id = any($1 ::text[]);
  EOQ

  param "vpc_vpc_ids" {}
}

node "vpc_security_group" {
  //category = category.vpc_security_group

  sql = <<-EOQ
    select
      group_id as id,
      title as title,
      jsonb_build_object(
        'Group ID', group_id,
        'Description', description,
        'ARN', arn,
        'Account ID', account_id,
        'Region', region
      ) as properties
    from
      aws_vpc_security_group
    where
      group_id = any($1 ::text[]);
  EOQ

  param "vpc_security_group_ids" {}
}

node "vpc_subnet" {
  //category = category.vpc_subnet

  sql = <<-EOQ
   select
      subnet_id as id,
      title as title,
      jsonb_build_object(
        'Subnet ID', subnet_id,
        'ARN', subnet_arn,
        'VPC ID', vpc_id,
        'Account ID', account_id,
        'Region', region
      ) as properties
    from
      aws_vpc_subnet
    where
      subnet_id = any($1 ::text[]);
  EOQ

  param "vpc_subnet_ids" {}
}

edge "vpc_subnet_to_vpc" {
  title = "vpc"

  sql = <<-EOQ
    select
      subnet_id as from_id,
      vpc_id as to_id
    from
      aws_vpc_subnet
    where
      subnet_id = any($1)
  EOQ

  param "vpc_subnet_ids" {}
}

edge "vpc_security_group_to_vpc_subnet" {
  title = "subnet"

  sql = <<-EOQ
    select
      subnet.subnet_id as from_id,
      sg.group_id as to_id
    from
      aws_vpc_security_group as sg,
      aws_svpc_subnet as subnet
    where
      sg.vpc_id = subnet.vpc_id
      and sg.group_id = any($1)
  EOQ

  param "vpc_security_group_ids" {}
}