-
Notifications
You must be signed in to change notification settings - Fork 0
/
analyzers_fetch.go
101 lines (92 loc) · 2.83 KB
/
analyzers_fetch.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
package accessanalyzer
import (
"context"
"github.com/OpsHelmInc/cloudquery/client"
"github.com/aws/aws-sdk-go-v2/aws"
"github.com/aws/aws-sdk-go-v2/aws/arn"
awsmiddleware "github.com/aws/aws-sdk-go-v2/aws/middleware"
"github.com/aws/aws-sdk-go-v2/service/accessanalyzer"
"github.com/aws/aws-sdk-go-v2/service/accessanalyzer/types"
"github.com/aws/smithy-go/middleware"
"github.com/cloudquery/plugin-sdk/schema"
)
func fetchAccessanalyzerAnalyzers(ctx context.Context, meta schema.ClientMeta, parent *schema.Resource, res chan<- any) error {
config := accessanalyzer.ListAnalyzersInput{}
c := meta.(*client.Client)
svc := c.Services().Accessanalyzer
for {
response, err := svc.ListAnalyzers(ctx, &config, func(options *accessanalyzer.Options) {
options.APIOptions = append(options.APIOptions, func(stack *middleware.Stack) error {
if err := stack.Initialize.Add(&awsmiddleware.RegisterServiceMetadata{
Region: c.Region,
ServiceID: accessanalyzer.ServiceID,
SigningName: "access-analyzer",
OperationName: "ListAnalyzers",
}, middleware.Before); err != nil {
return nil
}
return nil
})
})
if err != nil {
return err
}
res <- response.Analyzers
if aws.ToString(response.NextToken) == "" {
break
}
config.NextToken = response.NextToken
}
return nil
}
func fetchAccessanalyzerAnalyzerFindings(ctx context.Context, meta schema.ClientMeta, parent *schema.Resource, res chan<- any) error {
analyzer := parent.Item.(types.AnalyzerSummary)
c := meta.(*client.Client)
svc := c.Services().Accessanalyzer
config := accessanalyzer.ListFindingsInput{
AnalyzerArn: analyzer.Arn,
}
for {
response, err := svc.ListFindings(ctx, &config)
if err != nil {
return err
}
res <- response.Findings
if aws.ToString(response.NextToken) == "" {
break
}
config.NextToken = response.NextToken
}
return nil
}
func fetchAccessanalyzerAnalyzerArchiveRules(ctx context.Context, meta schema.ClientMeta, parent *schema.Resource, res chan<- any) error {
analyzer := parent.Item.(types.AnalyzerSummary)
c := meta.(*client.Client)
svc := c.Services().Accessanalyzer
config := accessanalyzer.ListArchiveRulesInput{
AnalyzerName: analyzer.Name,
}
for {
response, err := svc.ListArchiveRules(ctx, &config)
if err != nil {
return err
}
res <- response.ArchiveRules
if aws.ToString(response.NextToken) == "" {
break
}
config.NextToken = response.NextToken
}
return nil
}
func resolveFindingArn(ctx context.Context, meta schema.ClientMeta, resource *schema.Resource, c schema.Column) error {
cl := meta.(*client.Client)
a := arn.ARN{
Partition: cl.Partition,
Service: "accessanalyzer",
Region: cl.Region,
AccountID: cl.AccountID,
Resource: "finding_summary/" + aws.ToString(resource.Item.(types.FindingSummary).Id),
}
return resource.Set(c.Name, a.String())
}