fix index references

Author: Emyrk

extract/parameter.go

@@ -6,6 +6,7 @@ import (
 
 	"github.com/aquasecurity/trivy/pkg/iac/terraform"
 	"github.com/hashicorp/hcl/v2"
+	"github.com/hashicorp/hcl/v2/hclsyntax"
 	"github.com/zclconf/go-cty/cty"
 
 	"github.com/coder/preview/hclext"
@@ -315,16 +316,41 @@ func required(block *terraform.Block, keys ...string) hcl.Diagnostics {
 
 func richParameterValue(block *terraform.Block) types.HCLString {
 	// Find the value of the parameter from the context.
-	paramPath := append([]string{"data"}, block.Labels()...)
-	path := strings.Join(paramPath, ".")
+	ref := block.Reference()
+	travs := []hcl.Traverser{
+		hcl.TraverseRoot{
+			Name: "data",
+		},
+		hcl.TraverseAttr{
+			Name: ref.TypeLabel(),
+		},
+		hcl.TraverseAttr{
+			Name: ref.NameLabel(),
+		},
+	}
 
-	valueRef := hclext.ScopeTraversalExpr(append(paramPath, "value")...)
-	val, diags := valueRef.Value(block.Context().Inner())
+	raw := ref.RawKey()
+	if !raw.IsNull() {
+		travs = append(travs, hcl.TraverseIndex{
+			Key:      raw,
+			SrcRange: hcl.Range{},
+		})
+	}
+
+	travs = append(travs, hcl.TraverseAttr{
+		Name: "value",
+	})
+
+	valRef := hclsyntax.ScopeTraversalExpr{
+		Traversal: travs,
+	}
+	val, diags := valRef.Value(block.Context().Inner())
+	source := ref.String()
 	return types.HCLString{
 		Value:      val,
 		ValueDiags: diags,
-		ValueExpr:  &valueRef,
-		Source:     &path,
+		ValueExpr:  &valRef,
+		Source:     &source,
 	}
 }
 

hclext/references.go

@@ -5,29 +5,8 @@ import (
 	"strings"
 
 	"github.com/hashicorp/hcl/v2"
-	"github.com/hashicorp/hcl/v2/hclsyntax"
 )
 
-func ScopeTraversalExpr(parts ...string) hclsyntax.ScopeTraversalExpr {
-	if len(parts) == 0 {
-		return hclsyntax.ScopeTraversalExpr{}
-	}
-
-	v := hclsyntax.ScopeTraversalExpr{
-		Traversal: []hcl.Traverser{
-			hcl.TraverseRoot{
-				Name: parts[0],
-			},
-		},
-	}
-	for _, part := range parts[1:] {
-		v.Traversal = append(v.Traversal, hcl.TraverseAttr{
-			Name: part,
-		})
-	}
-	return v
-}
-
 func ReferenceNames(exp hcl.Expression) []string {
 	allVars := exp.Variables()
 	vars := make([]string, 0, len(allVars))

preview.go

@@ -68,12 +68,12 @@ func Preview(ctx context.Context, input Input, dir fs.FS) (*Output, hcl.Diagnost
 
 	// moduleSource is "" for a local module
 	p := parser.New(dir, "",
-		parser.OptionStopOnHCLError(true),
+		parser.OptionStopOnHCLError(false),
 		parser.OptionWithDownloads(false),
 		parser.OptionWithTFVarsPaths(varFiles...),
 		parser.OptionWithEvalHook(planHook),
-		parser.OptionWithEvalHook(ParameterContextsEvalHook(input)),
 		parser.OptionWithEvalHook(ownerHook),
+		parser.OptionWithEvalHook(ParameterContextsEvalHook(input)),
 		parser.OptionWithSkipCachedModules(true),
 	)
 

preview_test.go

@@ -245,6 +245,37 @@ func Test_Extract(t *testing.T) {
 			expUnknowns: []string{},
 			params:      map[string]func(t *testing.T, parameter types.Parameter){},
 		},
+		{
+			name: "demo",
+			dir:  "demo",
+			expTags: map[string]string{
+				"cluster": "confidential",
+			},
+			input: preview.Input{
+				PlanJSONPath:    "",
+				ParameterValues: map[string]string{},
+				Owner: types.WorkspaceOwner{
+					Groups: []string{"admin"},
+				},
+			},
+			expUnknowns: []string{},
+			params:      map[string]func(t *testing.T, parameter types.Parameter){},
+		},
+		{
+			name:    "defexpression",
+			dir:     "defexpression",
+			expTags: map[string]string{},
+			input: preview.Input{
+				PlanJSONPath:    "plan.json",
+				ParameterValues: map[string]string{},
+				Owner:           types.WorkspaceOwner{},
+			},
+			expUnknowns: []string{},
+			params:      map[string]func(t *testing.T, parameter types.Parameter){
+				//"hash": ap[cty.Value]().value(cty.StringVal("hash")).
+				//	f(),
+			},
+		},
 	} {
 		t.Run(tc.name, func(t *testing.T) {
 			t.Parallel()

testdata/countsub/main.tf

@@ -0,0 +1,25 @@
+terraform {
+  required_providers {
+    coder = {
+      source = "coder/coder"
+    }
+  }
+}
+
+module "sub" {
+  source = "./submodule"
+}
+
+data "coder_workspace_tags" "test" {
+  tags = {
+    "test" = tostring(module.sub.static == "static")
+  }
+}
+
+data "coder_parameter" "region" {
+  count       = module.sub.static == "static" ? 1 : 0
+  name        = "Region"
+  description = "Which region would you like to deploy to?"
+  type        = "string"
+  default     = upper(module.sub.static)
+}

testdata/countsub/plan.json

@@ -0,0 +1,165 @@
+{
+  "format_version": "1.2",
+  "terraform_version": "1.11.0-dev",
+  "planned_values": {
+    "root_module": {}
+  },
+  "prior_state": {
+    "format_version": "1.0",
+    "terraform_version": "1.11.0",
+    "values": {
+      "root_module": {
+        "resources": [
+          {
+            "address": "data.coder_parameter.region",
+            "mode": "data",
+            "type": "coder_parameter",
+            "name": "region",
+            "provider_name": "registry.terraform.io/coder/coder",
+            "schema_version": 0,
+            "values": {
+              "default": "STATIC",
+              "description": "Which region would you like to deploy to?",
+              "display_name": null,
+              "ephemeral": false,
+              "icon": null,
+              "id": "ba3edc1c-0c58-4be6-9d19-b12ff883fa2a",
+              "mutable": false,
+              "name": "Region",
+              "option": null,
+              "optional": true,
+              "order": null,
+              "type": "string",
+              "validation": [],
+              "value": "STATIC"
+            },
+            "sensitive_values": {
+              "validation": []
+            }
+          },
+          {
+            "address": "data.coder_workspace_tags.test",
+            "mode": "data",
+            "type": "coder_workspace_tags",
+            "name": "test",
+            "provider_name": "registry.terraform.io/coder/coder",
+            "schema_version": 0,
+            "values": {
+              "id": "56f64bcd-dee3-4db3-b254-97a44b0fb8e5",
+              "tags": {
+                "test": "true"
+              }
+            },
+            "sensitive_values": {
+              "tags": {}
+            }
+          },
+          {
+            "address": "data.docker_registry_image.coder",
+            "mode": "data",
+            "type": "docker_registry_image",
+            "name": "coder",
+            "provider_name": "registry.terraform.io/kreuzwerker/docker",
+            "schema_version": 0,
+            "values": {
+              "id": "sha256:141d112217ea44f85a0319822be6499e03f37aa9f8ea2f04b21e6a2dcb5b859b",
+              "insecure_skip_verify": false,
+              "name": "ghcr.io/coder/coder:latest",
+              "sha256_digest": "sha256:141d112217ea44f85a0319822be6499e03f37aa9f8ea2f04b21e6a2dcb5b859b"
+            },
+            "sensitive_values": {}
+          }
+        ]
+      }
+    }
+  },
+  "configuration": {
+    "provider_config": {
+      "coder": {
+        "name": "coder",
+        "full_name": "registry.terraform.io/coder/coder"
+      },
+      "docker": {
+        "name": "docker",
+        "full_name": "registry.terraform.io/kreuzwerker/docker",
+        "version_constraint": "3.0.2"
+      }
+    },
+    "root_module": {
+      "resources": [
+        {
+          "address": "data.coder_parameter.region",
+          "mode": "data",
+          "type": "coder_parameter",
+          "name": "region",
+          "provider_config_key": "coder",
+          "expressions": {
+            "default": {
+              "references": [
+                "module.sub.static",
+                "module.sub"
+              ]
+            },
+            "description": {
+              "constant_value": "Which region would you like to deploy to?"
+            },
+            "name": {
+              "constant_value": "Region"
+            },
+            "type": {
+              "constant_value": "string"
+            }
+          },
+          "schema_version": 0
+        },
+        {
+          "address": "data.coder_workspace_tags.test",
+          "mode": "data",
+          "type": "coder_workspace_tags",
+          "name": "test",
+          "provider_config_key": "coder",
+          "expressions": {
+            "tags": {
+              "references": [
+                "module.sub.static",
+                "module.sub"
+              ]
+            }
+          },
+          "schema_version": 0
+        },
+        {
+          "address": "data.docker_registry_image.coder",
+          "mode": "data",
+          "type": "docker_registry_image",
+          "name": "coder",
+          "provider_config_key": "docker",
+          "expressions": {
+            "name": {
+              "constant_value": "ghcr.io/coder/coder:latest"
+            }
+          },
+          "schema_version": 0
+        }
+      ],
+      "module_calls": {
+        "sub": {
+          "source": "./submodule",
+          "module": {
+            "outputs": {
+              "static": {
+                "expression": {
+                  "constant_value": "static"
+                }
+              }
+            }
+          }
+        }
+      }
+    }
+  },
+  "timestamp": "2025-03-04T17:01:06Z",
+  "applyable": false,
+  "complete": true,
+  "errored": false
+}

testdata/countsub/submodule/main.tf

@@ -0,0 +1,3 @@
+output "static" {
+  value = "static"
+}

testdata/defexpression/main.tf

@@ -0,0 +1,25 @@
+terraform {
+  required_providers {
+    coder = {
+      source = "coder/coder"
+    }
+    docker = {
+      source  = "kreuzwerker/docker"
+      version = "3.0.2"
+    }
+  }
+}
+
+
+data "coder_parameter" "hash" {
+  # count       = 1
+  name        = "hash"
+  display_name = "Hash"
+  description = "The hash of the image"
+  type        = "string"
+  default     = trimprefix(data.docker_registry_image.coder.sha256_digest, "sha256:")
+}
+
+data "docker_registry_image" "coder" {
+  name = "ghcr.io/coder/coder:latest"
+}