/
ecs_instance_report_public_access.sp
75 lines (62 loc) · 1.59 KB
/
ecs_instance_report_public_access.sp
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
dashboard "ecs_instance_public_access_report" {
title = "AliCloud ECS Instance Public Access Report"
documentation = file("./dashboards/ecs/docs/ecs_instance_report_public_access.md")
tags = merge(local.ecs_common_tags, {
type = "Report"
category = "Public Access"
})
container {
card {
query = query.ecs_instance_count
width = 3
}
card {
query = query.ecs_instance_public_access_count
width = 3
}
}
table {
column "Account ID" {
display = "none"
}
column "ARN" {
display = "none"
}
column "Instance ID" {
href = "${dashboard.ecs_instance_detail.url_path}?input.instance_arn={{.ARN | @uri}}"
}
query = query.ecs_instance_public_access_table
}
}
query "ecs_instance_public_access_count" {
sql = <<-EOQ
select
count(*) as value,
'Publicly Accessible' as label,
case count(*) when 0 then 'ok' else 'alert' end as "type"
from
alicloud_ecs_instance
where
public_ip_address is not null;
EOQ
}
query "ecs_instance_public_access_table" {
sql = <<-EOQ
select
i.instance_id as "Instance ID",
i.tags ->> 'Name' as "Name",
case when public_ip_address is null then 'Private' else 'Public' end as "Public/Private",
i.public_ip_address as "Public IP Address",
a.title as "Account",
i.account_id as "Account ID",
i.region as "Region",
i.arn as "ARN"
from
alicloud_ecs_instance as i,
alicloud_account as a
where
i.account_id = a.account_id
order by
i.instance_id;
EOQ
}