class UserHasInlinePolicyRule

Public Instance Methods

audit_impl(cfn_model) click to toggle source
# File lib/cfn-nag/custom_rules/UserHasInlinePolicyRule.rb, line 19
def audit_impl(cfn_model)
  violating_users = cfn_model.iam_users.reject do |iam_user|
    iam_user.policy_objects.empty?
  end

  violating_users.map(&:logical_resource_id)
end
rule_id() click to toggle source
# File lib/cfn-nag/custom_rules/UserHasInlinePolicyRule.rb, line 15
def rule_id
  'F10'
end
rule_text() click to toggle source
# File lib/cfn-nag/custom_rules/UserHasInlinePolicyRule.rb, line 7
def rule_text
  'IAM user should not have any inline policies.  Should be centralized Policy object on group'
end
rule_type() click to toggle source
# File lib/cfn-nag/custom_rules/UserHasInlinePolicyRule.rb, line 11
def rule_type
  Violation::FAILING_VIOLATION
end