iam

package

v0.1.11 Latest Latest Go to latest Published: Dec 10, 2024 License: Apache-2.0 Imports: 21 Imported by: 0

Documentation ¶

Package iam handles IAM validation rule reconciliation.

View Source

const AccountIDFromARNRegex = "arn:[a-z]*:[a-z]*::([?<AccountID>\\d{12}$]*):[0-9A-Za-z]*\\/[0-9A-Za-z]*"

AccountIDFromARNRegex is a regex pattern to extract the Account ID from an ARN.

This section is empty.

This section is empty.

type RuleService struct {
	// contains filtered or unexported fields
}

RuleService reconciles IAM validation rules.

func NewIAMRuleService(log logr.Logger, iamSvc iamAPI) *RuleService

NewIAMRuleService creates a new IAMRuleService.

func (s *RuleService) ReconcileIAMGroupRule(rule iamRule) (*types.ValidationRuleResult, error)

ReconcileIAMGroupRule reconciles an IAM group validation rule from an AWSValidator config nolint:dupl

func (s *RuleService) ReconcileIAMPolicyRule(rule iamRule) (*types.ValidationRuleResult, error)

ReconcileIAMPolicyRule reconciles an IAM policy validation rule from an AWSValidator config

func (s *RuleService) ReconcileIAMRoleRule(rule iamRule) (*types.ValidationRuleResult, error)

ReconcileIAMRoleRule reconciles an IAM role validation rule from an AWSValidator config nolint:dupl

func (s *RuleService) ReconcileIAMUserRule(rule iamRule) (*types.ValidationRuleResult, error)

ReconcileIAMUserRule reconciles an IAM user validation rule from an AWSValidator config nolint:dupl