inspec/libraries/iam_password_policy.rb

# author: Viktor Yakovlyev

require 'aws_conn'

class IamPasswordPolicy < Inspec.resource(1)
  name 'iam_password_policy'
  desc 'Verifies iam password policy'

  example "
    describe iam_password_policy('i-123456') do
      its('requires_lowercase_letters?') { should be true }
    end

    describe iam_password_policy('i-123456') do
      its('requires_uppercase_letters?') { should be true }
    end
  "

  def initialize(conn = AWSConnection.new)
    @policy = conn.iam_resource.account_password_policy
  rescue Aws::IAM::Errors::NoSuchEntity
    @policy = nil
  end

  def exists?
    !@policy.nil?
  end

  def requires_lowercase_characters?
    @policy.require_lowercase_characters
  end

  def requires_uppercase_characters?
    @policy.require_uppercase_characters
  end

  def minimum_password_length
    @policy.minimum_password_length
  end

  def requires_numbers?
    @policy.require_numbers
  end

  def requires_symbols?
    @policy.require_symbols
  end

  def allows_users_to_change_password?
    @policy.allow_users_to_change_password
  end
end
Add iam password policy Signed-off-by: Viktor Yakovlyev <Viktor.Y@D2L.com> wire up mock resource twice Signed-off-by: Viktor Yakovlyev <Viktor.Y@D2L.com> cleaning up as per pr feedback Signed-off-by: Viktor Yakovlyev <Viktor.Y@D2L.com> style fixes Signed-off-by: Viktor Yakovlyev <Viktor.Y@D2L.com> fix indent in test Signed-off-by: Viktor Yakovlyev <Viktor.Y@D2L.com> remove unneeded line Signed-off-by: Viktor Yakovlyev <Viktor.Y@D2L.com> use minitest mock instead of object Signed-off-by: Viktor Yakovlyev <Viktor.Y@D2L.com> 2017-04-06 19:12:19 +00:00			`# author: Viktor Yakovlyev`

			`require 'aws_conn'`

			`class IamPasswordPolicy < Inspec.resource(1)`
			`name 'iam_password_policy'`
			`desc 'Verifies iam password policy'`

			`example "`
			`describe iam_password_policy('i-123456') do`
			`its('requires_lowercase_letters?') { should be true }`
			`end`

			`describe iam_password_policy('i-123456') do`
			`its('requires_uppercase_letters?') { should be true }`
			`end`
			`"`

			`def initialize(conn = AWSConnection.new)`
			`@policy = conn.iam_resource.account_password_policy`
			`rescue Aws::IAM::Errors::NoSuchEntity`
			`@policy = nil`
			`end`

			`def exists?`
			`!@policy.nil?`
			`end`

			`def requires_lowercase_characters?`
			`@policy.require_lowercase_characters`
			`end`

			`def requires_uppercase_characters?`
			`@policy.require_uppercase_characters`
			`end`

			`def minimum_password_length`
			`@policy.minimum_password_length`
			`end`

			`def requires_numbers?`
			`@policy.require_numbers`
			`end`

			`def requires_symbols?`
			`@policy.require_symbols`
			`end`

			`def allows_users_to_change_password?`
			`@policy.allow_users_to_change_password`
			`end`
			`end`