Amazon Firewall Manager · API Governance Rules

Amazon Firewall Manager API Rules

Spectral linting rules defining API design standards and conventions for Amazon Firewall Manager.

25 Rules error 8 warn 14 info 3
View Rules File View on GitHub

Rule Categories

fms

Rules

warn
fms-info-contact
API must include contact information
$.info
error
fms-info-description
API must have a description
$.info
error
fms-server-https
All server URLs must use HTTPS
$.servers[*].url
error
fms-operation-summary
Operations must have a summary
$.paths[*][get,post,put,patch,delete]
warn
fms-operation-description
Operations should have a description
$.paths[*][get,post,put,patch,delete]
error
fms-operation-tags
Operations must have at least one tag
$.paths[*][get,post,put,patch,delete]
error
fms-operation-id
Operations must have operationId
$.paths[*][get,post,put,patch,delete]
warn
fms-operation-id-camel-case
operationId should use camelCase
$.paths[*][get,post,put,patch,delete].operationId
warn
fms-response-200
GET and POST operations should define 200 response
$.paths[*][get,post]
warn
fms-response-400
Operations should define 400 response
$.paths[*][get,post,put,patch,delete]
warn
fms-response-500
Operations should define 500 response
$.paths[*][get,post,put,patch,delete]
warn
fms-response-404
Operations accessing resources by ID should define 404
$.paths[*~'\{[^}]+\}'][get,put,patch,delete].responses
error
fms-parameter-description
Parameters must have descriptions
$.paths[*][get,post,put,patch,delete].parameters[*]
error
fms-path-param-required
Path parameters must be marked as required
$.paths[*][get,post,put,patch,delete].parameters[?(@.in=='path')]
warn
fms-schema-description
Schema components should have descriptions
$.components.schemas[*]
warn
fms-tags-title-case
Operation tags should use Title Case
$.paths[*][*].tags[*]
warn
fms-list-operation-prefix
Collection GET operationIds should start with 'list'
$.paths[*~'[^}]$'].get.operationId
error
fms-put-policy-request
PUT policy requests should define a request body
$.paths[*].post.requestBody
warn
fms-policy-remediation-documented
Policies should document RemediationEnabled field in schema
$.components.schemas.Policy.properties
warn
fms-security-service-type-enum
SecurityServicePolicyData Type should define allowed enum values
$.components.schemas.SecurityServicePolicyData.properties.Type
warn
fms-delete-operation
DELETE operations should have a description
$.paths[*].delete
info
fms-admin-account-documented
Admin account endpoint should be documented
$.paths
info
fms-compliance-endpoint-documented
Compliance endpoint should be documented
$.paths
info
fms-resource-set-documented
Resource set endpoint should be documented
$.paths
warn
fms-schema-properties-defined
Object schemas should define properties
$.components.schemas[?(@.type=='object')]

Spectral Ruleset

Raw ↑ 
# Amazon Firewall Manager Spectral Rules
extends: spectral:oas
rules:
  fms-info-contact:
    description: API must include contact information
    severity: warn
    given: "$.info"
    then:
      field: contact
      function: truthy
  fms-info-description:
    description: API must have a description
    severity: error
    given: "$.info"
    then:
      field: description
      function: truthy
  fms-server-https:
    description: All server URLs must use HTTPS
    severity: error
    given: "$.servers[*].url"
    then:
      function: pattern
      functionOptions:
        match: "^https://"
  fms-operation-summary:
    description: Operations must have a summary
    severity: error
    given: "$.paths[*][get,post,put,patch,delete]"
    then:
      field: summary
      function: truthy
  fms-operation-description:
    description: Operations should have a description
    severity: warn
    given: "$.paths[*][get,post,put,patch,delete]"
    then:
      field: description
      function: truthy
  fms-operation-tags:
    description: Operations must have at least one tag
    severity: error
    given: "$.paths[*][get,post,put,patch,delete]"
    then:
      field: tags
      function: truthy
  fms-operation-id:
    description: Operations must have operationId
    severity: error
    given: "$.paths[*][get,post,put,patch,delete]"
    then:
      field: operationId
      function: truthy
  fms-operation-id-camel-case:
    description: operationId should use camelCase
    severity: warn
    given: "$.paths[*][get,post,put,patch,delete].operationId"
    then:
      function: pattern
      functionOptions:
        match: "^[a-z][a-zA-Z0-9]*$"
  fms-response-200:
    description: GET and POST operations should define 200 response
    severity: warn
    given: "$.paths[*][get,post]"
    then:
      field: responses.200
      function: truthy
  fms-response-400:
    description: Operations should define 400 response
    severity: warn
    given: "$.paths[*][get,post,put,patch,delete]"
    then:
      field: responses.400
      function: truthy
  fms-response-500:
    description: Operations should define 500 response
    severity: warn
    given: "$.paths[*][get,post,put,patch,delete]"
    then:
      field: responses.500
      function: truthy
  fms-response-404:
    description: Operations accessing resources by ID should define 404
    severity: warn
    given: "$.paths[*~'\\{[^}]+\\}'][get,put,patch,delete].responses"
    then:
      field: "404"
      function: truthy
  fms-parameter-description:
    description: Parameters must have descriptions
    severity: error
    given: "$.paths[*][get,post,put,patch,delete].parameters[*]"
    then:
      field: description
      function: truthy
  fms-path-param-required:
    description: Path parameters must be marked as required
    severity: error
    given: "$.paths[*][get,post,put,patch,delete].parameters[?(@.in=='path')]"
    then:
      field: required
      function: truthy
  fms-schema-description:
    description: Schema components should have descriptions
    severity: warn
    given: "$.components.schemas[*]"
    then:
      field: description
      function: truthy
  fms-tags-title-case:
    description: Operation tags should use Title Case
    severity: warn
    given: "$.paths[*][*].tags[*]"
    then:
      function: pattern
      functionOptions:
        match: "^[A-Z][a-zA-Z0-9 ]*$"
  fms-list-operation-prefix:
    description: Collection GET operationIds should start with 'list'
    severity: warn
    given: "$.paths[*~'[^}]$'].get.operationId"
    then:
      function: pattern
      functionOptions:
        match: "^list"
  fms-put-policy-request:
    description: PUT policy requests should define a request body
    severity: error
    given: "$.paths[*].post.requestBody"
    then:
      field: content
      function: truthy
  fms-policy-remediation-documented:
    description: Policies should document RemediationEnabled field in schema
    message: "Policy schema should include RemediationEnabled property"
    severity: warn
    given: "$.components.schemas.Policy.properties"
    then:
      field: RemediationEnabled
      function: truthy
  fms-security-service-type-enum:
    description: SecurityServicePolicyData Type should define allowed enum values
    severity: warn
    given: "$.components.schemas.SecurityServicePolicyData.properties.Type"
    then:
      field: enum
      function: truthy
  fms-delete-operation:
    description: DELETE operations should have a description
    severity: warn
    given: "$.paths[*].delete"
    then:
      field: description
      function: truthy
  fms-admin-account-documented:
    description: Admin account endpoint should be documented
    severity: info
    given: "$.paths"
    then:
      field: "/fms/2018-01-01/admin-account"
      function: truthy
  fms-compliance-endpoint-documented:
    description: Compliance endpoint should be documented
    severity: info
    given: "$.paths"
    then:
      field: "/fms/2018-01-01/compliance/{policyId}/detail/{memberAccountId}"
      function: truthy
  fms-resource-set-documented:
    description: Resource set endpoint should be documented
    severity: info
    given: "$.paths"
    then:
      field: "/fms/2018-01-01/resource-set"
      function: truthy
  fms-schema-properties-defined:
    description: Object schemas should define properties
    severity: warn
    given: "$.components.schemas[?(@.type=='object')]"
    then:
      field: properties
      function: truthy