Generate IAM actions list from AWS Access Advisor reports.

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for fer1035 from gravatar.com fer1035

Unverified details

These details have not been verified by PyPI
Project links

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: GNU General Public License v2 (GPLv2) (GPL-2.0-only)

Author: Ahmad Ferdaus Abd Razak

Tags AWS, Access, Advisor

Requires: Python >=3.6, <4.0

Classifiers

Project description

Overview

Generate IAM actions list from AWS Access Advisor reports.

Prerequisites

  • Python >= 3.6

  • aws-authenticator (https://pypi.org/project/aws-authenticator/) >= 2022.10.1.0

Required Arguments

  • AWS entity ARN (role, user, etc. to use for report generation)

  • AWS authentication method (profile, iam, or sso)

Conditional Arguments

If authenticating with named profiles:

  • AWSCLI profile name

If authenticating with IAM acccess key credentials:

  • AWS access key id

  • AWS secret access key

If authenticating with SSO:

  • AWS account ID

  • AWS SSO Permission Set (role) name

  • AWS SSO login URL

Usage

Installation:

pip3 install aws-access-advisor
# or
python3 -m pip install aws-access-advisor

In Python3 authenticating with named profiles:

import aws_access_advisor as access

report = access.get_report(
   "<entity_arn>",
   "profile",
   profile_name="<profile_name>",
 )
print(
   f'Job status: {report["JobStatus"]} after {report["processing_time"]} second(s).'
)
print("\n".join(access.parse(report)))

In Python3 authenticating with IAM access key credentials:

import aws_access_advisor as access

report = access.get_report(
   "<entity_arn>",
   "iam"
   access_key_id="<access_key_id>",
   secret_access_key="<secret_access_key>",
 )
print(
   f'Job status: {report["JobStatus"]} after {report["processing_time"]} second(s).'
)
print("\n".join(access.parse(report)))

In Python3 authenticating with SSO:

import aws_access_advisor as access

report = access.get_report(
   "<entity_arn>",
   "sso"
   sso_url="<sso_url>",
   sso_role_name="<sso_role_name>",
   sso_account_id="<sso_account_id>",
 )
print(
   f'Job status: {report["JobStatus"]} after {report["processing_time"]} second(s).'
)
print("\n".join(access.parse(report)))

In BASH authenticating with named profiles:

python [/path/to/]aws_access_advisor \
-e <entity_arn> \
-m profile \
-p <profile_name>

In BASH authenticating with IAM access key credentials:

python [/path/to/]aws_access_advisor \
-e <entity_arn> \
-m iam \
-k <access_key_id> \
-s <secret_access_key>

In BASH authenticating with SSO:

python [/path/to/]aws_access_advisor \
-e <entity_arn> \
-m sso \
-a <sso_account_id> \
-r <sso_role_name> \
-u <sso_url>

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for fer1035 from gravatar.com fer1035

Unverified details

These details have not been verified by PyPI
Project links

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: GNU General Public License v2 (GPLv2) (GPL-2.0-only)

Author: Ahmad Ferdaus Abd Razak

Tags AWS, Access, Advisor

Requires: Python >=3.6, <4.0

Classifiers

Release history Release notifications | RSS feed

This version

2024.1.0.0

2022.10.2.1

2022.10.2.0

2022.10.1.9

2022.10.1.8

2022.10.1.7

2022.10.1.6

2022.10.1.5

2022.10.1.4

2022.10.1.3

2022.10.1.2

2022.10.1.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

aws_access_advisor-2024.1.0.0.tar.gz (2.8 kB view hashes)

Uploaded Source

Built Distribution

aws_access_advisor-2024.1.0.0-py3-none-any.whl (3.6 kB view hashes)

Uploaded Python 3

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page