Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type NewServiceInput ¶
type NewServiceInput struct {
Session *session.Session
Sts stsiface.STSAPI
Storager common.Storager
Config ServiceConfig
}
NewServiceInput are the items needed to create a new service
type Service ¶
type Service struct {
// contains filtered or unexported fields
}
Service manages account resources
func NewService ¶
func NewService(input NewServiceInput) (*Service, error)
NewService creates a new account manager server
func (*Service) DeletePrincipalAccess ¶
DeletePrincipalAccess removes all the principal roles and policies
func (*Service) UpsertPrincipalAccess ¶
UpsertPrincipalAccess creates roles, policies and updates them as needed
type ServiceConfig ¶
type ServiceConfig struct {
AccountID string `env:"ACCOUNT_ID" envDefault:"111111111111"`
S3BucketName string `env:"ARTIFACTS_BUCKET" envDefault:"DefaultArtifactBucket"`
S3PolicyKey string `env:"PRINCIPAL_POLICY_S3_KEY" envDefault:"DefaultPrincipalPolicyS3Key"`
PrincipalIAMDenyTags []string `env:"PRINCIPAL_IAM_DENY_TAGS" envDefault:"DefaultPrincipalIamDenyTags"`
PrincipalMaxSessionDuration int64 `env:"PRINCIPAL_MAX_SESSION_DURATION" envDefault:"3600"` // 3600 is the default minimum value
AllowedRegions []string `env:"ALLOWED_REGIONS" envDefault:"us-east-1"`
TagEnvironment string `env:"TAG_ENVIRONMENT" envDefault:"DefaultTagEnvironment"`
TagContact string `env:"TAG_CONTACT" envDefault:"DefaultTagContact"`
TagAppName string `env:"TAG_APP_NAME" envDefault:"DefaultTagAppName"`
PrincipalRoleDescription string `env:"PRINCIPAL_ROLE_DESCRIPTION" envDefault:"Role for principal users of DCE"`
PrincipalPolicyDescription string `env:"PRINCIPAL_POLICY_DESCRIPTION" envDefault:"Policy for principal users of DCE"`
// contains filtered or unexported fields
}
ServiceConfig has specific static values for the service configuration
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.