xpk/code-dumps
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

UPD: updated iam-last-activity.py and removed hard-coded account id

Browse Source
This commit is contained in:
xpk 2024-08-08 23:49:09 +08:00
parent 68761f216a
commit b1af2b9d1b
Signed by: xpk
GPG Key ID: CD4FF6793F09AB86
1 changed files with 10 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
aws/iam-last-activity.py
View File

@ -10,7 +10,7 @@ from jmespath.exceptions import JMESPathTypeError
# dump user/group/role last activity # dump user/group/role last activity
def generateLastAccessed(myclient, arn, myAccountId: str): def generateLastAccessed(myclient, arn, myAccountId):
response = myclient.generate_service_last_accessed_details( response = myclient.generate_service_last_accessed_details(
Arn=arn, Arn=arn,
Granularity='SERVICE_LEVEL') Granularity='SERVICE_LEVEL')
@ -28,13 +28,15 @@ def generateLastAccessed(myclient, arn, myAccountId: str):
ServiceNamespaces=jmespath.search("ServicesLastAccessed[*].ServiceNamespace", accessDetails) ServiceNamespaces=jmespath.search("ServicesLastAccessed[*].ServiceNamespace", accessDetails)
) )
returnString = [] returnString = []
try: # try:
for p in jmespath.search( for p in jmespath.search("PoliciesGrantingServiceAccess[*].Policies[]", r2):
f"PoliciesGrantingServiceAccess[*].Policies[?contains(PolicyArn,'${myAccountId}')].PolicyArn", r2): if p.get("PolicyType") == "INLINE":
if len(p) > 0: returnString.append("INLINE:" + p.get("PolicyName"))
returnString.append(p[0]) else:
except JMESPathTypeError: if myAccountId in p.get("PolicyArn"):
pass returnString.append(p.get("PolicyArn"))
# except JMESPathTypeError:
# pass
return list(dict.fromkeys(returnString)) return list(dict.fromkeys(returnString))