Documentation ¶
Index ¶
- Constants
- func CreateWhatFromPolicyDocument(policy *awspolicy.Policy, policyName string, account string, ...) ([]sync_from_target.WhatItem, bool)
- func CreateWhoAndWhatFromAccessPointPolicy(policy *awspolicy.Policy, bucketName string, name string, account string, ...) (*sync_from_target.WhoItem, []sync_from_target.WhatItem, bool)
- func CreateWhoFromTrustPolicyDocument(policy *awspolicy.Policy, role string, account string) (*sync_from_target.WhoItem, bool)
- type AwsIamRepository
- func (repo *AwsIamRepository) AddAttachedEntitiesToManagedPolicy(ctx context.Context, client *iam.Client, policy *model.PolicyEntity) error
- func (repo *AwsIamRepository) AttachGroupToManagedPolicy(ctx context.Context, policyArn string, groupNames []string) error
- func (repo *AwsIamRepository) AttachRoleToManagedPolicy(ctx context.Context, policyArn string, roleNames []string) error
- func (repo *AwsIamRepository) AttachUserToManagedPolicy(ctx context.Context, policyArn string, userNames []string) error
- func (repo *AwsIamRepository) ClearCache()
- func (repo *AwsIamRepository) ClearManagedPoliciesCache()
- func (repo *AwsIamRepository) ClearRolesCache()
- func (repo *AwsIamRepository) CreateAccessPoint(ctx context.Context, name, bucket string, region string, ...) (string, error)
- func (repo *AwsIamRepository) CreateAssumeRolePolicyDocument(existingPolicyDoc *string, userNames ...string) (string, error)
- func (repo *AwsIamRepository) CreateManagedPolicy(ctx context.Context, policyName string, statements []*awspolicy.Statement) (*types.Policy, error)
- func (repo *AwsIamRepository) CreateRole(ctx context.Context, name, description string, userNames []string) (bool, error)
- func (repo *AwsIamRepository) CreateRoleInlinePolicy(ctx context.Context, roleName string, policyName string, ...) error
- func (repo *AwsIamRepository) DeleteAccessPoint(ctx context.Context, name string, region string) error
- func (repo *AwsIamRepository) DeleteInlinePolicy(ctx context.Context, policyName, resourceName, resourceType string) error
- func (repo *AwsIamRepository) DeleteManagedPolicy(ctx context.Context, policyName string, awsManaged bool) error
- func (repo *AwsIamRepository) DeleteRole(ctx context.Context, name string) error
- func (repo *AwsIamRepository) DeleteRoleInlinePolicies(ctx context.Context, roleName string) error
- func (repo *AwsIamRepository) DetachGroupFromManagedPolicy(ctx context.Context, policyArn string, groupNames []string) error
- func (repo *AwsIamRepository) DetachRoleFromManagedPolicy(ctx context.Context, policyArn string, roleNames []string) error
- func (repo *AwsIamRepository) DetachUserFromManagedPolicy(ctx context.Context, policyArn string, userNames []string) error
- func (repo *AwsIamRepository) GetConfig() *config.ConfigMap
- func (repo *AwsIamRepository) GetGroups(ctx context.Context) ([]model.GroupEntity, error)
- func (repo *AwsIamRepository) GetIamClient(ctx context.Context) (*iam.Client, error)
- func (repo *AwsIamRepository) GetIamOrgClient(ctx context.Context) (*iam.Client, error)
- func (repo *AwsIamRepository) GetInlinePoliciesForEntities(ctx context.Context, entityNames []string, entityType string) (map[string][]model.PolicyEntity, error)
- func (repo *AwsIamRepository) GetManagedPolicies(ctx context.Context) ([]model.PolicyEntity, error)
- func (repo *AwsIamRepository) GetPolicyArn(policyName string, awsManaged bool, configMap *config.ConfigMap) string
- func (repo *AwsIamRepository) GetRoles(ctx context.Context) ([]model.RoleEntity, error)
- func (repo *AwsIamRepository) GetSsoRoleWithPrefix(ctx context.Context, prefixName string) (*model.RoleEntity, error)
- func (repo *AwsIamRepository) GetUsers(ctx context.Context, withDetails bool) ([]model.UserEntity, error)
- func (repo *AwsIamRepository) ListAccessPoints(ctx context.Context, region string) ([]model.AwsS3AccessPoint, error)
- func (repo *AwsIamRepository) UpdateAccessPoint(ctx context.Context, name string, region string, ...) error
- func (repo *AwsIamRepository) UpdateAssumeEntities(ctx context.Context, roleName string, userNames []string) error
- func (repo *AwsIamRepository) UpdateInlinePolicy(ctx context.Context, policyName, resourceName, resourceType string, ...) error
- func (repo *AwsIamRepository) UpdateManagedPolicy(ctx context.Context, policyName string, awsManaged bool, ...) error
- type AwsSsoIamRepository
- func (repo *AwsSsoIamRepository) AssignPermissionSet(ctx context.Context, permissionSetArn string, ...) error
- func (repo *AwsSsoIamRepository) AttachAwsManagedPolicyToPermissionSet(ctx context.Context, permissionSetArn string, policyArn string) error
- func (repo *AwsSsoIamRepository) AttachCustomerManagedPolicyToPermissionSet(ctx context.Context, permissionSetArn string, name string, path *string) error
- func (repo *AwsSsoIamRepository) CreateSsoRole(ctx context.Context, name, description string) (arn string, err error)
- func (repo *AwsSsoIamRepository) DeleteSsoRole(ctx context.Context, permissionSetArn string) error
- func (repo *AwsSsoIamRepository) DetachAwsManagedPolicyFromPermissionSet(ctx context.Context, permissionSetArn string, policyArn string) error
- func (repo *AwsSsoIamRepository) DetachCustomerManagedPolicyFromPermissionSet(ctx context.Context, permissionSetArn string, name string, path *string) error
- func (repo *AwsSsoIamRepository) GetGroups(ctx context.Context) (bimap.Bimap[string, string], error)
- func (repo *AwsSsoIamRepository) GetSsoRole(ctx context.Context, permissionSetArn string) (*ssoTypes.PermissionSet, error)
- func (repo *AwsSsoIamRepository) GetUsers(ctx context.Context) (bimap.Bimap[string, string], error)
- func (repo *AwsSsoIamRepository) HasRaitoCreatedTag(ctx context.Context, permissionSetArn string) (bool, error)
- func (repo *AwsSsoIamRepository) ListAwsManagedPolicyFromPermissionSet(ctx context.Context, permissionSetArn string) (set.Set[string], error)
- func (repo *AwsSsoIamRepository) ListCustomerManagedPolicyFromPermissionSet(ctx context.Context, permissionSetArn string) (set.Set[string], error)
- func (repo *AwsSsoIamRepository) ListPermissionSetAssignment(ctx context.Context, permissionSetArn string) ([]ssoTypes.AccountAssignment, error)
- func (repo *AwsSsoIamRepository) ListSsoRole(ctx context.Context) ([]string, error)
- func (repo *AwsSsoIamRepository) ProvisionPermissionSet(ctx context.Context, permissionSetArn string) (*ssoTypes.PermissionSetProvisioningStatus, error)
- func (repo *AwsSsoIamRepository) ProvisionPermissionSetAndWait(ctx context.Context, permissionSetArn string) error
- func (repo *AwsSsoIamRepository) UnassignPermissionSet(ctx context.Context, permissionSetArn string, ...) error
- func (repo *AwsSsoIamRepository) UpdateInlinePolicyToPermissionSet(ctx context.Context, permissionSetArn string, ...) error
- func (repo *AwsSsoIamRepository) UpdateSsoRole(ctx context.Context, arn string, description string) error
Constants ¶
View Source
const ( UserResourceType string = "user" GroupResourceType string = "group" RoleResourceType string = "role" SsoRoleResourceType string = "ssorole" )
Variables ¶
This section is empty.
Functions ¶
Types ¶
type AwsIamRepository ¶
type AwsIamRepository struct {
// contains filtered or unexported fields
}
func NewAwsIamRepository ¶
func NewAwsIamRepository(configMap *config.ConfigMap) *AwsIamRepository
func (*AwsIamRepository) AddAttachedEntitiesToManagedPolicy ¶
func (repo *AwsIamRepository) AddAttachedEntitiesToManagedPolicy(ctx context.Context, client *iam.Client, policy *model.PolicyEntity) error
func (*AwsIamRepository) AttachGroupToManagedPolicy ¶
func (*AwsIamRepository) AttachRoleToManagedPolicy ¶
func (*AwsIamRepository) AttachUserToManagedPolicy ¶
func (*AwsIamRepository) ClearCache ¶ added in v0.0.4
func (repo *AwsIamRepository) ClearCache()
func (*AwsIamRepository) ClearManagedPoliciesCache ¶
func (repo *AwsIamRepository) ClearManagedPoliciesCache()
func (*AwsIamRepository) ClearRolesCache ¶
func (repo *AwsIamRepository) ClearRolesCache()
func (*AwsIamRepository) CreateAccessPoint ¶
func (*AwsIamRepository) CreateAssumeRolePolicyDocument ¶
func (repo *AwsIamRepository) CreateAssumeRolePolicyDocument(existingPolicyDoc *string, userNames ...string) (string, error)
func (*AwsIamRepository) CreateManagedPolicy ¶
func (*AwsIamRepository) CreateRole ¶
func (repo *AwsIamRepository) CreateRole(ctx context.Context, name, description string, userNames []string) (bool, error)
CreateRole creates an AWS Role. Every role needs a non-empty policy document (otherwise the Role is useless). the principals input parameters define which users will be able to assume the policy initially
func (*AwsIamRepository) CreateRoleInlinePolicy ¶
func (*AwsIamRepository) DeleteAccessPoint ¶
func (*AwsIamRepository) DeleteInlinePolicy ¶
func (repo *AwsIamRepository) DeleteInlinePolicy(ctx context.Context, policyName, resourceName, resourceType string) error
func (*AwsIamRepository) DeleteManagedPolicy ¶
func (*AwsIamRepository) DeleteRole ¶
func (repo *AwsIamRepository) DeleteRole(ctx context.Context, name string) error
func (*AwsIamRepository) DeleteRoleInlinePolicies ¶
func (repo *AwsIamRepository) DeleteRoleInlinePolicies(ctx context.Context, roleName string) error
func (*AwsIamRepository) DetachGroupFromManagedPolicy ¶
func (*AwsIamRepository) DetachRoleFromManagedPolicy ¶
func (*AwsIamRepository) DetachUserFromManagedPolicy ¶
func (*AwsIamRepository) GetConfig ¶
func (repo *AwsIamRepository) GetConfig() *config.ConfigMap
func (*AwsIamRepository) GetGroups ¶
func (repo *AwsIamRepository) GetGroups(ctx context.Context) ([]model.GroupEntity, error)
func (*AwsIamRepository) GetIamClient ¶
func (*AwsIamRepository) GetIamOrgClient ¶
func (*AwsIamRepository) GetInlinePoliciesForEntities ¶
func (repo *AwsIamRepository) GetInlinePoliciesForEntities(ctx context.Context, entityNames []string, entityType string) (map[string][]model.PolicyEntity, error)
func (*AwsIamRepository) GetManagedPolicies ¶
func (repo *AwsIamRepository) GetManagedPolicies(ctx context.Context) ([]model.PolicyEntity, error)
func (*AwsIamRepository) GetPolicyArn ¶
func (*AwsIamRepository) GetRoles ¶
func (repo *AwsIamRepository) GetRoles(ctx context.Context) ([]model.RoleEntity, error)
func (*AwsIamRepository) GetSsoRoleWithPrefix ¶
func (repo *AwsIamRepository) GetSsoRoleWithPrefix(ctx context.Context, prefixName string) (*model.RoleEntity, error)
func (*AwsIamRepository) GetUsers ¶
func (repo *AwsIamRepository) GetUsers(ctx context.Context, withDetails bool) ([]model.UserEntity, error)
func (*AwsIamRepository) ListAccessPoints ¶
func (repo *AwsIamRepository) ListAccessPoints(ctx context.Context, region string) ([]model.AwsS3AccessPoint, error)
func (*AwsIamRepository) UpdateAccessPoint ¶
func (*AwsIamRepository) UpdateAssumeEntities ¶
func (*AwsIamRepository) UpdateInlinePolicy ¶
func (*AwsIamRepository) UpdateManagedPolicy ¶
type AwsSsoIamRepository ¶
type AwsSsoIamRepository struct {
// contains filtered or unexported fields
}
func NewAwsSsoIamRepository ¶
func NewAwsSsoIamRepository(configMap *config.ConfigMap, account string, client *ssoadmin.Client, identityStoreClient *identitystore.Client) (*AwsSsoIamRepository, error)
func NewSsoClient ¶
func (*AwsSsoIamRepository) AssignPermissionSet ¶
func (repo *AwsSsoIamRepository) AssignPermissionSet(ctx context.Context, permissionSetArn string, principalType ssoTypes.PrincipalType, principal string) error
func (*AwsSsoIamRepository) AttachAwsManagedPolicyToPermissionSet ¶
func (*AwsSsoIamRepository) AttachCustomerManagedPolicyToPermissionSet ¶
func (*AwsSsoIamRepository) CreateSsoRole ¶
func (*AwsSsoIamRepository) DeleteSsoRole ¶
func (repo *AwsSsoIamRepository) DeleteSsoRole(ctx context.Context, permissionSetArn string) error
func (*AwsSsoIamRepository) DetachAwsManagedPolicyFromPermissionSet ¶
func (*AwsSsoIamRepository) DetachCustomerManagedPolicyFromPermissionSet ¶
func (*AwsSsoIamRepository) GetSsoRole ¶
func (repo *AwsSsoIamRepository) GetSsoRole(ctx context.Context, permissionSetArn string) (*ssoTypes.PermissionSet, error)
func (*AwsSsoIamRepository) HasRaitoCreatedTag ¶
func (*AwsSsoIamRepository) ListAwsManagedPolicyFromPermissionSet ¶
func (*AwsSsoIamRepository) ListCustomerManagedPolicyFromPermissionSet ¶
func (*AwsSsoIamRepository) ListPermissionSetAssignment ¶
func (repo *AwsSsoIamRepository) ListPermissionSetAssignment(ctx context.Context, permissionSetArn string) ([]ssoTypes.AccountAssignment, error)
func (*AwsSsoIamRepository) ListSsoRole ¶
func (repo *AwsSsoIamRepository) ListSsoRole(ctx context.Context) ([]string, error)
func (*AwsSsoIamRepository) ProvisionPermissionSet ¶
func (repo *AwsSsoIamRepository) ProvisionPermissionSet(ctx context.Context, permissionSetArn string) (*ssoTypes.PermissionSetProvisioningStatus, error)
func (*AwsSsoIamRepository) ProvisionPermissionSetAndWait ¶
func (repo *AwsSsoIamRepository) ProvisionPermissionSetAndWait(ctx context.Context, permissionSetArn string) error
func (*AwsSsoIamRepository) UnassignPermissionSet ¶
func (repo *AwsSsoIamRepository) UnassignPermissionSet(ctx context.Context, permissionSetArn string, principalType ssoTypes.PrincipalType, principal string) error
func (*AwsSsoIamRepository) UpdateInlinePolicyToPermissionSet ¶
func (*AwsSsoIamRepository) UpdateSsoRole ¶
Click to show internal directories.
Click to hide internal directories.