inspec/libraries/aws_iam_user_provider.rb

# author: Alex Bedley
# author: Steffanie Freeman

module AwsIam
  class UserProvider
    def initialize(conn = AWSConnection.new)
      @iam_resource = conn.iam_resource
    end

    def user(name)
      aws_user = @iam_resource.user(name)
      self.class.convert(aws_user)
    end

    def list_users
      aws_users = @iam_resource.users
      aws_users.map do |aws_user|
        self.class.convert(aws_user)
      end
    end

    class << self
      def name(aws_user)
        aws_user.name
      end

      def has_mfa_enabled?(aws_user)
        !aws_user.mfa_devices.first.nil?
      end

      def has_console_password?(aws_user)
        return !aws_user.login_profile.create_date.nil?
      rescue Aws::IAM::Errors::NoSuchEntity
        return false
      end

      def access_keys(aws_user)
        aws_user.access_keys
      end

      def convert(aws_user)
        {
          name: name(aws_user),
          has_mfa_enabled?: has_mfa_enabled?(aws_user),
          has_console_password?: has_console_password?(aws_user),
          access_keys: access_keys(aws_user),
        }
      end
    end
  end
end
Added user provider Signed-off-by: sfreeman <Steffanie.Freeman@d2l.com> 2017-03-29 21:09:05 +00:00			`# author: Alex Bedley`
			`# author: Steffanie Freeman`

			`module AwsIam`
			`class UserProvider`
			`def initialize(conn = AWSConnection.new)`
			`@iam_resource = conn.iam_resource`
			`end`

Add list_users Signed-off-by: sfreeman <Steffanie.Freeman@d2l.com> 2017-05-10 19:41:03 +00:00			`def user(name)`
Added user provider Signed-off-by: sfreeman <Steffanie.Freeman@d2l.com> 2017-03-29 21:09:05 +00:00			`aws_user = @iam_resource.user(name)`
			`self.class.convert(aws_user)`
			`end`

Add list_users Signed-off-by: sfreeman <Steffanie.Freeman@d2l.com> 2017-05-10 19:41:03 +00:00			`def list_users`
			`aws_users = @iam_resource.users`
			`aws_users.map do \|aws_user\|`
			`self.class.convert(aws_user)`
			`end`
			`end`

Added user provider Signed-off-by: sfreeman <Steffanie.Freeman@d2l.com> 2017-03-29 21:09:05 +00:00			`class << self`
A real-world working AwsIamUsers (#71) * Add aws_iam_users Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Adding Filter table and Collect User Details to aws_iam_users.rb Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Adding Filter table and Collect User Details to aws_iam_users.rb Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Adding Filter table and Collect User Details to aws_iam_users.rb Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Get an aws_iam_users integration test to pass Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Fix RuboCop issues and tests Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Improving code based on PR feedback Signed-off-by: Chris Redekop <chris.redekop@d2l.com> 2017-08-08 13:50:35 +00:00			`def name(aws_user)`
			`aws_user.name`
			`end`

Added user provider Signed-off-by: sfreeman <Steffanie.Freeman@d2l.com> 2017-03-29 21:09:05 +00:00			`def has_mfa_enabled?(aws_user)`
			`!aws_user.mfa_devices.first.nil?`
			`end`

			`def has_console_password?(aws_user)`
			`return !aws_user.login_profile.create_date.nil?`
			`rescue Aws::IAM::Errors::NoSuchEntity`
			`return false`
			`end`

Add access_keys method to aws_iam_user (#44) * Add access_keys method to aws_iam_user Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Fix unit test that accessed AWS Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Incorporate PR feedback Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Fix unit tests Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Update tests based on PR feedback Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Rebase to master Signed-off-by: Chris Redekop <chris.redekop@d2l.com> 2017-06-13 05:36:43 +00:00			`def access_keys(aws_user)`
			`aws_user.access_keys`
			`end`

Added user provider Signed-off-by: sfreeman <Steffanie.Freeman@d2l.com> 2017-03-29 21:09:05 +00:00			`def convert(aws_user)`
			`{`
A real-world working AwsIamUsers (#71) * Add aws_iam_users Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Adding Filter table and Collect User Details to aws_iam_users.rb Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Adding Filter table and Collect User Details to aws_iam_users.rb Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Adding Filter table and Collect User Details to aws_iam_users.rb Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Get an aws_iam_users integration test to pass Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Fix RuboCop issues and tests Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Improving code based on PR feedback Signed-off-by: Chris Redekop <chris.redekop@d2l.com> 2017-08-08 13:50:35 +00:00			`name: name(aws_user),`
Added user provider Signed-off-by: sfreeman <Steffanie.Freeman@d2l.com> 2017-03-29 21:09:05 +00:00			`has_mfa_enabled?: has_mfa_enabled?(aws_user),`
			`has_console_password?: has_console_password?(aws_user),`
Add access_keys method to aws_iam_user (#44) * Add access_keys method to aws_iam_user Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Fix unit test that accessed AWS Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Incorporate PR feedback Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Fix unit tests Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Update tests based on PR feedback Signed-off-by: Chris Redekop <chris.redekop@d2l.com> * Rebase to master Signed-off-by: Chris Redekop <chris.redekop@d2l.com> 2017-06-13 05:36:43 +00:00			`access_keys: access_keys(aws_user),`
Added user provider Signed-off-by: sfreeman <Steffanie.Freeman@d2l.com> 2017-03-29 21:09:05 +00:00			`}`
			`end`
			`end`
			`end`
			`end`