UNPKG

@cloud-copilot/iam-collect

Version:

Collect IAM information from AWS Accounts

github.com/cloud-copilot/iam-collect

cloud-copilot/iam-collect

89 lines 3.62 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.AwsConfigEfsClient = void 0; const client_efs_1 = require("@aws-sdk/client-efs"); const AbstractClient_js_1 = require("../../customClients/AbstractClient.js"); const json_js_1 = require("../../utils/json.js"); const AwsConfigClientContext_js_1 = require("../AwsConfigClientContext.js"); const awsConfigUtils_js_1 = require("../awsConfigUtils.js"); /** * AWS Config-based EFS client implementation */ class AwsConfigEfsClient extends AbstractClient_js_1.AbstractClient { static clientName = client_efs_1.EFSClient.name; constructor(options, customContext) { super(options, customContext); } /** * Register all EFS command implementations */ registerCommands() { this.registerCommand(AwsConfigDescribeFileSystemsCommand); this.registerCommand(AwsConfigDescribeFileSystemPolicyCommand); } } exports.AwsConfigEfsClient = AwsConfigEfsClient; /** * Config-based implementation of EFS DescribeFileSystemPolicyCommand * Uses configuration.FileSystemPolicy from AWS Config */ const AwsConfigDescribeFileSystemPolicyCommand = (0, AwsConfigClientContext_js_1.awsConfigCommand)({ command: client_efs_1.DescribeFileSystemPolicyCommand, execute: async (input, context) => { const configuration = context.getCache(input.FileSystemId, 'configuration'); return { FileSystemId: input.FileSystemId, Policy: (0, json_js_1.stringifyIfPresent)(configuration?.FileSystemPolicy) }; } }); /** * Config-based implementation of EFS DescribeFileSystemsCommand * Retrieves file system information from AWS Config with minimal required fields */ const AwsConfigDescribeFileSystemsCommand = (0, AwsConfigClientContext_js_1.awsConfigCommand)({ command: client_efs_1.DescribeFileSystemsCommand, execute: async (input, context) => { let query = ` SELECT resourceId, arn, configuration.Name, configuration.AvailabilityZoneId, configuration.KmsKeyId, configuration.Encrypted, configuration.CreationTime, configuration.FileSystemPolicy, tags WHERE resourceType = 'AWS::EFS::FileSystem' AND awsRegion = '${context.region}' AND accountId = '${context.accountId}' AND ${awsConfigUtils_js_1.resourceStatusWhereClause} `; // Add specific file system ID filter if provided if (input.FileSystemId) { query += ` AND resourceId = '${input.FileSystemId}'`; } const results = await (0, awsConfigUtils_js_1.executeConfigQuery)(query, context); // Transform Config results to match AWS SDK format with minimal required fields const fileSystems = results.map((resultString) => { const { configItem, configuration, tags } = (0, awsConfigUtils_js_1.parseConfigItem)(resultString); // Cache data that will be needed by other commands context.putCache(configItem.resourceId, 'configuration', configuration); return { FileSystemId: configItem.resourceId, FileSystemArn: configItem.arn, Name: configuration.Name, Encrypted: configuration.Encrypted || false, KmsKeyId: configuration.KmsKeyId, AvailabilityZoneId: configuration.AvailabilityZoneId, Tags: tags }; }); return { FileSystems: fileSystems }; } }); //# sourceMappingURL=AwsConfigEfsClient.js.map