/
policies_fetch.go
57 lines (52 loc) · 1.66 KB
/
policies_fetch.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
package iam
import (
"context"
"net/url"
"github.com/OpsHelmInc/cloudquery/client"
"github.com/aws/aws-sdk-go-v2/aws"
"github.com/aws/aws-sdk-go-v2/service/iam"
"github.com/aws/aws-sdk-go-v2/service/iam/types"
"github.com/cloudquery/plugin-sdk/schema"
)
func fetchIamPolicies(ctx context.Context, meta schema.ClientMeta, parent *schema.Resource, res chan<- any) error {
config := iam.GetAccountAuthorizationDetailsInput{
Filter: []types.EntityType{
types.EntityTypeAWSManagedPolicy, types.EntityTypeLocalManagedPolicy,
},
}
svc := meta.(*client.Client).Services().Iam
for {
response, err := svc.GetAccountAuthorizationDetails(ctx, &config)
if err != nil {
return err
}
res <- response.Policies
if aws.ToString(response.Marker) == "" {
break
}
config.Marker = response.Marker
}
return nil
}
func resolveIamPolicyTags(ctx context.Context, meta schema.ClientMeta, resource *schema.Resource, c schema.Column) error {
r := resource.Item.(types.ManagedPolicyDetail)
cl := meta.(*client.Client)
svc := cl.Services().Iam
response, err := svc.ListPolicyTags(ctx, &iam.ListPolicyTagsInput{PolicyArn: r.Arn})
if err != nil {
if cl.IsNotFoundError(err) {
return nil
}
return err
}
return resource.Set("tags", client.TagsToMap(response.Tags))
}
func resolveIamPolicyVersionList(ctx context.Context, meta schema.ClientMeta, resource *schema.Resource, c schema.Column) error {
r := resource.Item.(types.ManagedPolicyDetail)
for i := range r.PolicyVersionList {
if v, err := url.PathUnescape(aws.ToString(r.PolicyVersionList[i].Document)); err == nil {
r.PolicyVersionList[i].Document = &v
}
}
return resource.Set(c.Name, r.PolicyVersionList)
}