feat: Add EFS FileSystemPolicy to AWS source plugin #14632
Comments
|
I'm working on this at the moment, and it looks nature to me by extending the |
cychiang
added a commit
to cychiang/cloudquery
that referenced
this issue
Oct 17, 2023
5 tasks
kodiakhq bot
pushed a commit
that referenced
this issue
Oct 20, 2023
#### Summary resolves #14632 I'm looking for a way to reduce the duplicate implementations, for example, the following part is a way to get a service to resolve data for the table. It works well when a table relays on a single resolver. But if a table needs multiple resolver then might be a good way to do it. ```go p := resource.Item.(types.FileSystemDescription) config := efs.DescribeFileSystemPolicyInput{ FileSystemId: p.FileSystemId, } cl := meta.(*client.Client) svc := cl.Services(client.AWSServiceEfs).Efs ``` <!-- Explain what problem this PR addresses -->
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the resource
EFS supports File system policies to be configured. These policies are currently not collected by CloudQuery.
https://docs.aws.amazon.com/efs/latest/ug/API_DescribeFileSystemPolicy.html
Blog post:
https://aws.amazon.com/blogs/aws/new-for-amazon-efs-iam-authorization-and-access-points/
Can this be added to the EFS table or as a separate table perhaps?
Use Case
Our use case is to build a full cloud resource inventory and perform security and compliance analyses on top of that.
One of the reason we require the file systems is to ensure that they are not overprivileged or public.
Link to API documentation
https://docs.aws.amazon.com/sdk-for-go/api/service/efs/#EFS.DescribeFileSystemPolicy
Additional Context
No response
Pull request (optional)
The text was updated successfully, but these errors were encountered: