Skip to content

bsgrigorov/btp-scripts

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

1 Commit
cf
cf
 
 
csv
csv
 
 
sh
sh
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
credentials.sh
credentials.sh
 
 

Repository files navigation

BTP CLI for Subaccount management

This is used for managing users in subaccounts. This was used during a p-user securuty incident we experienced with a leaked credential.

Requirements to run

  • btp cli
  • cf cli
  • brew install coreutils
  • Copy the credentials.sh file into folder credentials and add the credentials to it. Name 2 files prod.sh and nonprod.sh.

Manual steps performed by scripts

Replacing users in cf org reference: https://wiki.wdf.sap.corp/wiki/display/Eureka/Change+the+bss+global+account+user+guide

How to run

Get subaccount IDs

sh cf/list_subaccounts.sh <global-account-id> <csv-file-name-without-extension>

Output

CSV files in csv folder.

Replace org user

Example execution

sh cf/replace_org_user_global.sh <global-account-id> <csv-file-name-without-extension> >> <log-file-name>.log

Note: global account id must correspond to the correct csv file name

Output

These scripts were run for 5 subaccounts and the outputs are in log folder.

Replace subaccount permissions

sh sh/assign.sh <global-account-id> <input-csv-without-extension>
sh sh/unassign.sh <global-account-id> <input-csv-without-extension>
sh sh/delete.sh <global-account-id> <input-csv-without-extension>

About

SAP BTP Scripts for using the BTP CLI

Topics

cli sap btp sapcp sapcloudplatform sap-btp

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Languages