Mirrors/inspec
2
0
Fork 0
mirror of https://github.com/inspec/inspec synced 2024-11-27 23:20:33 +00:00
Code Issues Projects Releases Packages Wiki Activity
inspec/libraries/aws_iam_root_user.rb
Chris Redekop c77d442007 Add has_mfa_enabled? to aws_iam_root_account (#80) 
Signed-off-by: Chris Redekop <chris.redekop@d2l.com>
2017-08-16 11:53:44 +02:00

32 lines
633 B
Ruby
Raw Blame History

# author: Miles Tjandrawidjaja
class AwsIamRootUser < Inspec.resource(1)
name 'aws_iam_root_user'
desc 'Verifies settings for AWS root account'
example "
describe aws_iam_root_user do
its('access_key_count') { should eq 0 }
end
"
def initialize(conn = AWSConnection.new)
@client = conn.iam_client
end
def access_key_count
summary_account['AccountAccessKeysPresent']
end
def has_mfa_enabled?
summary_account['AccountMFAEnabled'] == 1
end
def to_s
'AWS Root-User'
end
private
def summary_account
@summary_account ||= @client.get_account_summary.summary_map
end
end
Reference in a new issue View git blame Copy permalink