Generate IAM actions list from AWS Access Advisor reports.
Project description
Overview
Generate IAM actions list from AWS Access Advisor reports.
Prerequisites
Python >= 3.6
[aws-ssooidc](https://pypi.org/project/aws-ssooidc/) >= 2021.1.1.1
[boto3](https://pypi.org/project/boto3/) >= 1.17.78
Required Arguments
AWS account ID
AWS entity ARN (role, user, etc. to use for report generation)
AWS SSO Permission Set (admin role) name for login purposes
AWS SSO login URL
Usage
Installation:
pip3 install aws-access-advisor
# or
python3 -m pip install aws-access-advisorIn Python3:
import aws_access_advisor as access
auth = access.login("<account_id>", "<sso_url>", "<admin_role_name>")
report = access.get_report(
"<entity_role_arn>",
auth["roleCredentials"]["accessKeyId"],
auth["roleCredentials"]["secretAccessKey"],
auth["roleCredentials"]["sessionToken"]
)
print(
f'Job status: {report["JobStatus"]} after {report["processing_time"]} second(s).'
)
print('\n'.join(access.parse(report)))In BASH:
python [/path/to/module/]__init__.py \
-a <account_id> \
-e <entity_role_arn> \
-r <admin_role_name> \ # [OPTIONAL]
-u <sso_url> \ # [OPTIONAL]
> <output_path>Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Close
Hashes for aws_access_advisor-2022.10.1.3.tar.gz
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 755ebd2f8e81efd395117cfe2d28ab0d8b4804057aeaf35e95da8efba81347c8 |
|
| MD5 | cedbdbf4c9ef92bb29b11af4bea81d6b |
|
| BLAKE2b-256 | 943e8bc8c9371d8c0653eeafdfcecf7518eb76c04f2f47e86c457319bb0c1e20 |
Close
Hashes for aws_access_advisor-2022.10.1.3-py3-none-any.whl
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 | 2b06e9a7d6ec9de4b022b4a1b353c89afe279e8da5dfcd7a58f546e53219e7b5 |
|
| MD5 | 46761d14aa16d8b24fc65611f5c471bb |
|
| BLAKE2b-256 | 65929e5a2079999b0558f6ad4e0e9784b858bbbf9c5e5a2e93541e3c95cfb060 |
