module Awspec::Helper::Finder::Iam

Public Instance Methods

select_all_attached_policies() click to toggle source
# File lib/awspec/helper/finder/iam.rb, line 64
def select_all_attached_policies
  selected = []
  res = iam_client.list_policies

  loop do
    selected += res.policies.select { |p| p.attachment_count > 0 }
    break unless res.is_truncated
    res = iam_client.list_policies({
                                     marker: res.marker
                                   })
  end

  selected
end
select_all_iam_groups() click to toggle source
# File lib/awspec/helper/finder/iam.rb, line 105
def select_all_iam_groups
  iam_client.list_groups.map do |response|
    response.groups
  end.flatten
end
select_all_iam_roles() click to toggle source
# File lib/awspec/helper/finder/iam.rb, line 111
def select_all_iam_roles
  iam_client.list_roles.map do |response|
    response.roles
  end.flatten
end
select_all_iam_users() click to toggle source
# File lib/awspec/helper/finder/iam.rb, line 99
def select_all_iam_users
  iam_client.list_users.map do |response|
    response.users
  end.flatten
end
select_attached_entities(policy_id) click to toggle source
# File lib/awspec/helper/finder/iam.rb, line 79
def select_attached_entities(policy_id)
  policy = find_iam_policy(policy_id)
  iam_client.list_entities_for_policy(policy_arn: policy[:arn])
end
select_attached_groups(policy_id) click to toggle source
# File lib/awspec/helper/finder/iam.rb, line 89
def select_attached_groups(policy_id)
  entities = select_attached_entities(policy_id)
  entities.policy_groups
end
select_attached_roles(policy_id) click to toggle source
# File lib/awspec/helper/finder/iam.rb, line 94
def select_attached_roles(policy_id)
  entities = select_attached_entities(policy_id)
  entities.policy_roles
end
select_attached_users(policy_id) click to toggle source
# File lib/awspec/helper/finder/iam.rb, line 84
def select_attached_users(policy_id)
  entities = select_attached_entities(policy_id)
  entities.policy_users
end
select_iam_group_by_user_name(user_name) click to toggle source
# File lib/awspec/helper/finder/iam.rb, line 39
def select_iam_group_by_user_name(user_name)
  res = iam_client.list_groups_for_user({
                                          user_name: user_name
                                        })
  res.groups
end
select_policy_evaluation_results(policy_arn, action_name, resource_arn = nil, context_entries = nil) click to toggle source
# File lib/awspec/helper/finder/iam.rb, line 27
def select_policy_evaluation_results(policy_arn, action_name, resource_arn = nil, context_entries = nil)
  options = {
    policy_source_arn: policy_arn,
    action_names: [action_name]
  }
  options[:resource_arns] = [resource_arn] if resource_arn
  options[:context_entries] = context_entries if context_entries

  res = iam_client.simulate_principal_policy(options)
  res.evaluation_results
end