cloudgraphdev
diff --git a/‎README.md‎
Lines changed: 4 additions & 1 deletion b/‎README.md‎
Lines changed: 4 additions & 1 deletion
diff --git a/‎src/enums/schemasMap.ts‎
Lines changed: 2 additions & 0 deletions b/‎src/enums/schemasMap.ts‎
Lines changed: 2 additions & 0 deletions
diff --git a/‎src/enums/serviceMap.ts‎
Lines changed: 6 additions & 0 deletions b/‎src/enums/serviceMap.ts‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎src/enums/services.ts‎
Lines changed: 3 additions & 0 deletions b/‎src/enums/services.ts‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎src/services/account/schema.graphql‎
Lines changed: 3 additions & 0 deletions b/‎src/services/account/schema.graphql‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎src/services/cognitoUserPool/connections.ts‎
Lines changed: 8 additions & 8 deletions b/‎src/services/cognitoUserPool/connections.ts‎
Lines changed: 8 additions & 8 deletions
diff --git a/‎src/services/cognitoUserPool/schema.graphql‎
Lines changed: 1 addition & 1 deletion b/‎src/services/cognitoUserPool/schema.graphql‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/services/ses/data.ts‎
Lines changed: 65 additions & 77 deletions b/‎src/services/ses/data.ts‎
Lines changed: 65 additions & 77 deletions
diff --git a/‎src/services/ses/format.ts‎
Lines changed: 16 additions & 11 deletions b/‎src/services/ses/format.ts‎
Lines changed: 16 additions & 11 deletions
diff --git a/‎src/services/ses/schema.graphql‎
Lines changed: 3 additions & 4 deletions b/‎src/services/ses/schema.graphql‎
Lines changed: 3 additions & 4 deletions
@@ -170,7 +170,10 @@ CloudGraph AWS Provider will ask you what regions you would like to crawl and wi
 | secretsManager               | kms, lambda                                                                                                                                                                                                                                                                                                                                                                                                                   |
 | securityGroup                | alb, asg, clientVpnEndpoint, codebuild, dmsReplicationInstance, ecsService, lambda, ec2, elasticSearchDomain, elb, rdsCluster, rdsDbInstance, eksCluster, elastiCacheCluster, managedAirflow, sageMakerNotebookInstance, networkInterface, vpcEndpoint, mskCluster                                                                                                                                                            |
 | securityHub                  |                                                                                                                                                                                                                                                                                                                                                                                                                               |
-| ses                          |                                                                                                                                                                                                                                                                                                                                                                                                                               |
+| ses                         |                                                                                                                                                                                                                                                                                                                                                                               |
+| sesReceiptRuleSet                         |                                                                                                                                                                                                                                                                                                                                                                               |
+| sesDomain                         |                                                                                                                                                                                                                                                                                                                                                                               |
+| sesEmail                         |                                                                                 cognitoUserPool                                                                                                                                                                                                                                                                                              |
 | sns                          | kms, cloudtrail, cloudwatch, s3                                                                                                                                                                                                                                                                                                                                                                                               |
 | sqs                          | elasticBeanstalkEnv, s3                                                                                                                                                                                                                                                                                                                                                                                                       |
 | subnet                       | alb, asg, codebuild, dmsReplicationInstance, ec2, ecsService, efsMountTarget, elastiCacheCluster, elasticSearchDomain, elb, lambda, managedAirflow, natGateway, networkInterface, rdsCluster, sageMakerNotebookInstance, routeTable, vpc, vpcEndpoint, eksCluster, emrCluster, flowLog, mskCluster                                                                                                                            |
 
@@ -104,6 +104,8 @@ export default {
   [services.s3]: 'awsS3',
   [services.secretsManager]: 'awsSecretsManager',
   [services.ses]: 'awsSes',
+  [services.sesEmail]: 'awsSesEmail',
+  [services.sesDomain]: 'awsSesDomain',
   [services.sns]: 'awsSns',
   [services.systemsManagerInstance]: 'awsSystemsManagerInstance',
   [services.systemsManagerDocument]: 'awsSystemsManagerDocument',
 
@@ -103,6 +103,9 @@ import SecretsManager from '../services/secretsManager'
 import AwsSecurityGroup from '../services/securityGroup'
 import SecurityHub from '../services/securityHub'
 import SES from '../services/ses'
+import SESReceiptRuleSet from '../services/sesReceiptRuleSet'
+import SESEmail from '../services/sesEmail'
+import SESDomain from '../services/sesDomain'
 import SNS from '../services/sns'
 import SQS from '../services/sqs'
 import AwsSubnet from '../services/subnet'
@@ -218,6 +221,9 @@ export default {
   [services.secretsManager]: SecretsManager,
   [services.securityHub]: SecurityHub,
   [services.ses]: SES,
+  [services.sesReceiptRuleSet]: SESReceiptRuleSet,
+  [services.sesEmail]: SESEmail,
+  [services.sesDomain]: SESDomain,
   [services.iamAccessAnalyzer]: IamAccessAnalyzer,
   [services.iamUser]: IamUser,
   [services.iamGroup]: IamGroup,
 
@@ -102,6 +102,9 @@ export default {
   secretsManager: 'secretsManager',
   securityHub: 'securityHub',
   ses: 'ses',
+  sesReceiptRuleSet: 'sesReceiptRuleSet',
+  sesEmail: 'sesEmail',
+  sesDomain: 'sesDomain',
   sg: 'sg',
   sns: 'sns',
   sqs: 'sqs',
 
@@ -103,6 +103,9 @@ type awsAccount implements awsOptionalService @key(fields: "id") {
   systemsManagerInstances: [awsSystemsManagerInstance]
   systemsManagerParameters: [awsSystemsManagerParameter]
   ses: [awsSes]
+  sesReceiptRuleSet: [awsSesReceiptRuleSet]
+  sesEmail: [awsSesEmail]
+  sesDomain: [awsSesDomain]
   sns: [awsSns]
   sqs: [awsSqs]
   subnets: [awsSubnet]
 
@@ -5,7 +5,7 @@ import { isEmpty } from 'lodash'
 import services from '../../enums/services'
 import { sesArn } from '../../utils/generateArns'
 import { RawAwsLambdaFunction } from '../lambda/data'
-import { RawAwsSes } from '../ses/data'
+import { RawAwsSesEmail } from '../sesEmail/data'
 import { RawAwsIamRole } from '../iamRole/data'
 import { AwsKms } from '../kms/data'
 
@@ -121,20 +121,20 @@ export default ({
    * related to this cognito user pool
    */
   const emailConfigSourceArn = emailConfiguration?.SourceArn
-  const emails = data.find(({ name }) => name === services.ses)
+  const emails = data.find(({ name }) => name === services.sesEmail)
 
   if (emailConfigSourceArn && emails?.data?.[region]) {
-    const emailInRegion: RawAwsSes = emails.data[region].find(
-      ({ Identity }: RawAwsSes) =>
-        emailConfigSourceArn === sesArn({ region, account, email: Identity })
+    const emailInRegion: RawAwsSesEmail = emails.data[region].find(
+      ({ Identity }: RawAwsSesEmail) =>
+        emailConfigSourceArn === sesArn({ region, account, identity: Identity })
     )
 
     if (emailInRegion) {
       connections.push({
-        id: sesArn({ region, account, email: emailInRegion.Identity }),
-        resourceType: services.ses,
+        id: sesArn({ region, account, identity: emailInRegion.Identity }),
+        resourceType: services.sesEmail,
         relation: 'child',
-        field: 'ses',
+        field: 'sesEmail',
       })
     }
   }
 
@@ -122,7 +122,7 @@ type awsCognitoUserPool implements awsBaseService @key(fields: "id") {
   lambdas: [awsLambda] @hasInverse(field: cognitoUserPools)
   appSync: [awsAppSync] @hasInverse(field: cognitoUserPool)
   kms: [awsKms] @hasInverse(field: cognitoUserPools)
-  ses: [awsSes] @hasInverse(field: cognitoUserPools)
+  sesEmail: [awsSesEmail] @hasInverse(field: cognitoUserPools)
   iamRole: [awsIamRole] @hasInverse(field: cognitoUserPools)
   elasticSearchDomains: [awsElasticSearchDomain] @hasInverse(field: cognitoUserPool)
 }
@@ -1,33 +1,77 @@
 import SES, {
-  ListIdentitiesResponse,
-  IdentityVerificationAttributes,
-  GetIdentityVerificationAttributesResponse,
+  ListConfigurationSetsResponse,
+  ConfigurationSet,
+  ListTemplatesResponse,
+  TemplateMetadata,
 } from 'aws-sdk/clients/ses'
 import { AWSError } from 'aws-sdk/lib/error'
 import { Config } from 'aws-sdk/lib/config'
 
 import CloudGraph from '@cloudgraph/sdk'
 import groupBy from 'lodash/groupBy'
-import isEmpty from 'lodash/isEmpty'
 
 import awsLoggerText from '../../properties/logger'
 import { initTestEndpoint } from '../../utils'
 import AwsErrorLog from '../../utils/errorLog'
 
 const lt = { ...awsLoggerText }
 const { logger } = CloudGraph
-const serviceName = 'SES'
+const serviceName = 'SES '
 const errorLog = new AwsErrorLog(serviceName)
 const endpoint = initTestEndpoint(serviceName)
 
 /**
- * SES
+ * SES 
  */
-export interface RawAwsSes extends IdentityVerificationAttributes {
-  Identity: string
+export interface RawAwsSes {
+  ConfigurationSets: ConfigurationSet[]
+  EmailTemplates: TemplateMetadata[]
   region: string
 }
 
+
+const getEmailTemplates = async (ses: SES): Promise<TemplateMetadata[]> =>
+  new Promise(resolve => {
+    try {
+      ses.listTemplates(
+        (err: AWSError, data: ListTemplatesResponse) => {
+          if (err) {
+            errorLog.generateAwsErrorLog({
+              functionName: 'ses:listTemplates',
+              err,
+            })
+            return resolve([])
+          }
+          const { TemplatesMetadata = [] } = data || {}
+          resolve(TemplatesMetadata)
+        }
+      )
+    } catch (error) {
+      resolve([])
+    }
+  })
+
+const getConfigurationSets = async (ses: SES): Promise<ConfigurationSet[]> =>
+  new Promise(resolve => {
+    try {
+      ses.listConfigurationSets(
+        (err: AWSError, data: ListConfigurationSetsResponse) => {
+          if (err) {
+            errorLog.generateAwsErrorLog({
+              functionName: 'ses:listConfigurationSets',
+              err,
+            })
+            return resolve([])
+          }
+          const { ConfigurationSets = [] } = data || {}
+          resolve(ConfigurationSets)
+        }
+      )
+    } catch (error) {
+      resolve([])
+    }
+  })
+
 export default async ({
   regions,
   config,
@@ -38,84 +82,28 @@ export default async ({
   new Promise(async resolve => {
     const sesData: RawAwsSes[] = []
     const regionPromises = []
-    const identityVerificationPromises = []
 
     regions.split(',').map(region => {
-      const regionPromise = new Promise<void>(resolveRegion => {
+      const regionPromise = new Promise<void>(async resolveRegion => {
         const ses = new SES({ ...config, region, endpoint })
 
-        ses.listIdentities(
-          {},
-          (err: AWSError, data: ListIdentitiesResponse) => {
-            /**
-             * No Data for the region
-             */
-            if (isEmpty(data)) {
-              return resolveRegion()
-            }
-
-            if (err) {
-              errorLog.generateAwsErrorLog({
-                functionName: 'ses:listIdentities',
-                err,
-              })
-            }
-
-            const { Identities }: { Identities: string[] } = data
-
-            /**
-             * No Identities Found
-             */
-
-            if (isEmpty(Identities)) {
-              return resolveRegion()
-            }
-
-            logger.debug(lt.fetchedSesIdentities(Identities.length))
-
-            const identityVerificationPromise = new Promise<void>(
-              resolveIdVer => {
-                ses.getIdentityVerificationAttributes(
-                  { Identities },
-                  (
-                    err: AWSError,
-                    {
-                      VerificationAttributes: identities,
-                    }: GetIdentityVerificationAttributesResponse
-                  ) => {
-                    if (err) {
-                      errorLog.generateAwsErrorLog({
-                        functionName: 'ses:getIdentityVerificationAttributes',
-                        err,
-                      })
-                    }
-
-                    if (!isEmpty(identities)) {
-                      sesData.push(
-                        ...Identities.map(Identity => ({
-                          Identity,
-                          ...identities[Identity],
-                          region,
-                        }))
-                      )
-                    }
-
-                    resolveIdVer()
-                    resolveRegion()
-                  }
-                )
-              }
-            )
-            identityVerificationPromises.push(identityVerificationPromise)
-          }
-        )
+        const configurationSets = await getConfigurationSets(ses)
+        const emailTemplates = await getEmailTemplates(ses)
+
+        sesData.push({
+          ConfigurationSets: configurationSets,
+          EmailTemplates: emailTemplates,
+          region
+        })
+        resolveRegion()
+
+
       })
       regionPromises.push(regionPromise)
     })
 
-    await Promise.all(regionPromises)
 
-    await Promise.all(identityVerificationPromises)
+    await Promise.all(regionPromises)
     errorLog.reset()
 
     resolve(groupBy(sesData, 'region'))
 
@@ -1,32 +1,37 @@
 import { RawAwsSes } from './data'
 import { AwsSes } from '../../types/generated'
-import { sesArn } from '../../utils/generateArns'
+import { generateUniqueId } from '@cloudgraph/sdk'
 
 /**
- * SES
+ * SES 
  */
 
-export default ({ 
+export default ({
   service,
   account,
   region,
-}:{
+}: {
   service: RawAwsSes
   account: string
   region: string
 }): AwsSes => {
   const {
-    Identity: email,
-    VerificationStatus: verificationStatus,
+    ConfigurationSets = [],
+    EmailTemplates = [],
   } = service
-  const arn = sesArn({region, account, email})
+
+  const configurationSets = ConfigurationSets.map(cs => cs.Name)
+  const emailTemplates = EmailTemplates.map(e => e.Name)
 
   return {
-    id: arn,
+    id: generateUniqueId({
+      ...service,
+      account,
+      region
+    }),
     accountId: account,
-    arn,
     region,
-    email,
-    verificationStatus,
+    configurationSets,
+    emailTemplates,
   }
 }
@@ -1,5 +1,4 @@
-type awsSes implements awsBaseService @key(fields: "arn") {
-  email: String @search(by: [hash, regexp])
-  verificationStatus: String @search(by: [hash, regexp])
-  cognitoUserPools: [awsCognitoUserPool] @hasInverse(field: ses)
+type awsSes implements awsOptionalService @key(fields: "id") {
+  configurationSets: [String] @search(by: [hash])
+  emailTemplates: [String] @search(by: [hash])
 }
Original file line number	Diff line number	Diff line change
`@@ -122,7 +122,7 @@ type awsCognitoUserPool implements awsBaseService @key(fields: "id") {`
`122`	`122`	`lambdas: [awsLambda] @hasInverse(field: cognitoUserPools)`
`123`	`123`	`appSync: [awsAppSync] @hasInverse(field: cognitoUserPool)`
`124`	`124`	`kms: [awsKms] @hasInverse(field: cognitoUserPools)`
`125`		`- ses: [awsSes] @hasInverse(field: cognitoUserPools)`
	`125`	`+ sesEmail: [awsSesEmail] @hasInverse(field: cognitoUserPools)`
`126`	`126`	`iamRole: [awsIamRole] @hasInverse(field: cognitoUserPools)`
`127`	`127`	`elasticSearchDomains: [awsElasticSearchDomain] @hasInverse(field: cognitoUserPool)`
`128`	`128`	`}`
Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,4 @@`
`1`		`-type awsSes implements awsBaseService @key(fields: "arn") {`
`2`		`- email: String @search(by: [hash, regexp])`
`3`		`- verificationStatus: String @search(by: [hash, regexp])`
`4`		`- cognitoUserPools: [awsCognitoUserPool] @hasInverse(field: ses)`
	`1`	`+type awsSes implements awsOptionalService @key(fields: "id") {`
	`2`	`+ configurationSets: [String] @search(by: [hash])`
	`3`	`+ emailTemplates: [String] @search(by: [hash])`
`5`	`4`	`}`