JupiterOne-Archives · gastonyelmini · Apr 20, 2023 · Apr 19, 2023 · Apr 19, 2023 · Apr 20, 2023
diff --git a/docs/jupiterone.md b/docs/jupiterone.md
@@ -422,6 +422,7 @@ The following entities are created:
 | Organization                                             | `google_cloud_organization`                                       | `Organization`                     |
 | Private CA Certificate                                   | `google_privateca_certificate`                                    | `Certificate`                      |
 | Private CA Certificate Authority                         | `google_privateca_certificate_authority`                          | `Service`                          |
+| Private CA Pool                                          | `google_privateca_pool`                                           | `Group`                            |
 | Project                                                  | `google_cloud_project`                                            | `Account`                          |
 | PubSub Subscription                                      | `google_pubsub_subscription`                                      | `Service`                          |
 | PubSub Topic                                             | `google_pubsub_topic`                                             | `Channel`                          |
@@ -560,6 +561,7 @@ The following relationships are created:
 | `google_cloud_organization`                                      | **HAS**               | `google_cloud_project`                                            |
 | `google_privateca_certificate_authority`                         | **CREATED**           | `google_privateca_certificate`                                    |
 | `google_privateca_certificate_authority`                         | **USES**              | `google_storage_bucket`                                           |
+| `google_privateca_pool`                                          | **HAS**               | `google_privateca_certificate_authority`                          |
 | `google_pubsub_subscription`                                     | **USES**              | `google_pubsub_topic`                                             |
 | `google_pubsub_topic`                                            | **USES**              | `google_kms_crypto_key`                                           |
 | `google_redis_instance`                                          | **USES**              | `google_compute_network`                                          |

diff --git a/src/getStepStartStates.ts b/src/getStepStartStates.ts
@@ -158,11 +158,7 @@ import {
 import { monitoringSteps } from './steps/monitoring';
 import { STEP_MONITORING_ALERT_POLICIES } from './steps/monitoring/constants';
 import { privateCaSteps } from './steps/privateca';
-import {
-  STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_BUCKET_RELATIONSHIPS,
-  STEP_PRIVATE_CA_CERTIFICATES,
-  STEP_PRIVATE_CA_CERTIFICATE_AUTHORITIES,
-} from './steps/privateca/constants';
+import { PrivatecaSteps } from './steps/privateca/constants';
 import { pubSubSteps } from './steps/pub-sub';
 import {
   STEP_CREATE_PUBSUB_TOPIC_KMS_RELATIONSHIPS,
@@ -413,11 +409,24 @@ function getDefaultStepStartStates(params: {
     [STEP_API_GATEWAY_APIS]: { disabled: false },
     [STEP_API_GATEWAY_API_CONFIGS]: { disabled: false },
     [STEP_API_GATEWAY_GATEWAYS]: { disabled: false },
-    [STEP_PRIVATE_CA_CERTIFICATE_AUTHORITIES]: { disabled: false },
-    [STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_BUCKET_RELATIONSHIPS]: {
+    [PrivatecaSteps.STEP_PRIVATE_CA_POOLS.id]: { disabled: false },
+    [PrivatecaSteps.STEP_PRIVATE_CA_CERTIFICATE_AUTHORITIES.id]: {
+      disabled: false,
+    },
+    [PrivatecaSteps
+      .STEP_CREATE_PRIVATE_CA_POOL_CERTIFICATE_AUTHORITY_RELATIONSHIPS.id]: {
+      disabled: false,
+    },
+    [PrivatecaSteps
+      .STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_BUCKET_RELATIONSHIPS.id]: {
       disabled: false,
     },
-    [STEP_PRIVATE_CA_CERTIFICATES]: { disabled: false },
+    [PrivatecaSteps
+      .STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_CERTIFICATE_RELATIONSHIPS
+      .id]: {
+      disabled: false,
+    },
+    [PrivatecaSteps.STEP_PRIVATE_CA_CERTIFICATES.id]: { disabled: false },
     [STEP_DATAPROC_CLUSTERS]: { disabled: false },
     [STEP_DATAPROC_CLUSTER_KMS_RELATIONSHIPS]: { disabled: false },
     [STEP_CREATE_CLUSTER_STORAGE_RELATIONSHIPS]: { disabled: false },
@@ -806,12 +815,21 @@ async function getStepStartStatesUsingServiceEnablements(params: {
     [STEP_API_GATEWAY_GATEWAYS]: createStepStartState(
       ServiceUsageName.API_GATEWAY,
     ),
-    [STEP_PRIVATE_CA_CERTIFICATE_AUTHORITIES]: createStepStartState(
+    [PrivatecaSteps.STEP_PRIVATE_CA_POOLS.id]: createStepStartState(
       ServiceUsageName.PRIVATE_CA,
     ),
-    [STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_BUCKET_RELATIONSHIPS]:
+    [PrivatecaSteps.STEP_PRIVATE_CA_CERTIFICATE_AUTHORITIES.id]:
+      createStepStartState(ServiceUsageName.PRIVATE_CA),
+    [PrivatecaSteps
+      .STEP_CREATE_PRIVATE_CA_POOL_CERTIFICATE_AUTHORITY_RELATIONSHIPS.id]:
+      createStepStartState(ServiceUsageName.PRIVATE_CA),
+    [PrivatecaSteps
+      .STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_BUCKET_RELATIONSHIPS.id]:
       createStepStartState(ServiceUsageName.PRIVATE_CA),
-    [STEP_PRIVATE_CA_CERTIFICATES]: createStepStartState(
+    [PrivatecaSteps
+      .STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_CERTIFICATE_RELATIONSHIPS
+      .id]: createStepStartState(ServiceUsageName.PRIVATE_CA),
+    [PrivatecaSteps.STEP_PRIVATE_CA_CERTIFICATES.id]: createStepStartState(
       ServiceUsageName.PRIVATE_CA,
     ),
     [STEP_DATAPROC_CLUSTERS]: createStepStartState(

diff --git a/src/index.test.ts b/src/index.test.ts
@@ -134,11 +134,7 @@ import {
   STEP_MEMCACHE_INSTANCES,
 } from './steps/memcache/constants';
 import { STEP_MONITORING_ALERT_POLICIES } from './steps/monitoring/constants';
-import {
-  STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_BUCKET_RELATIONSHIPS,
-  STEP_PRIVATE_CA_CERTIFICATES,
-  STEP_PRIVATE_CA_CERTIFICATE_AUTHORITIES,
-} from './steps/privateca/constants';
+import { PrivatecaSteps } from './steps/privateca/constants';
 import {
   STEP_CREATE_PUBSUB_TOPIC_KMS_RELATIONSHIPS,
   STEP_PUBSUB_SUBSCRIPTIONS,
@@ -477,15 +473,26 @@ describe('#getStepStartStates success', () => {
         [STEP_API_GATEWAY_GATEWAYS]: {
           disabled: false,
         },
-        [STEP_PRIVATE_CA_CERTIFICATE_AUTHORITIES]: {
+        [PrivatecaSteps.STEP_PRIVATE_CA_POOLS.id]: { disabled: false },
+        [PrivatecaSteps.STEP_PRIVATE_CA_CERTIFICATE_AUTHORITIES.id]: {
           disabled: false,
         },
-        [STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_BUCKET_RELATIONSHIPS]: {
+        [PrivatecaSteps
+          .STEP_CREATE_PRIVATE_CA_POOL_CERTIFICATE_AUTHORITY_RELATIONSHIPS.id]:
+          {
+            disabled: false,
+          },
+        [PrivatecaSteps
+          .STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_BUCKET_RELATIONSHIPS
+          .id]: {
           disabled: false,
         },
-        [STEP_PRIVATE_CA_CERTIFICATES]: {
+        [PrivatecaSteps
+          .STEP_CREATE_PRIVATE_CA_CERTIFICATE_AUTHORITY_CERTIFICATE_RELATIONSHIPS
+          .id]: {
           disabled: false,
         },
+        [PrivatecaSteps.STEP_PRIVATE_CA_CERTIFICATES.id]: { disabled: false },
         [STEP_IAM_BINDINGS]: {
           disabled: false,
         },