UNPKG

@cloud-copilot/iam-collect

Version:

Collect IAM information from AWS Accounts

github.com/cloud-copilot/iam-collect

cloud-copilot/iam-collect

62 lines 2.17 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
import { APIGatewayClient, GetRestApisCommand } from '@aws-sdk/client-api-gateway'; import { log } from '@cloud-copilot/log'; import {} from '../sync.js'; import { createResourceSyncType, createTypedSyncOperation } from '../typedSync.js'; export const RestApisSync = createTypedSyncOperation('apigateway', 'gateways', createResourceSyncType({ client: APIGatewayClient, command: GetRestApisCommand, key: 'items', paginationConfig: { inputKey: 'position', outputKey: 'position' }, arn: (api, region, account, partition) => restApiArn(api.id, region, partition), tags: (api) => api.tags, resourceTypeParts: (account, region) => ({ account, service: 'apigateway', region, resourceType: 'restapis' }), results: (api) => ({ metadata: { id: api.id, name: api.name }, policy: parseApiGatewayPolicy(api.id, api.policy) }) })); /** * Get the ARN for an API Gateway REST API. * * @param apiId the ID of the API Gateway REST API * @param region the AWS region of the API Gateway * @param partition the AWS partition (aws, aws-cn, aws-us-gov) * @returns the ARN of the API Gateway REST API */ function restApiArn(apiId, region, partition) { return `arn:${partition}:apigateway:${region}::/restapis/${apiId}`; } /** * Parse the API Gateway policy string into a JSON object. * For some reason API Gateway policies can have \\\ at the start of every string * and any forward slash is escaped with a double backslash (\\/) * * @param apiId the ID of the API Gateway * @param policy the policy string to parse * @returns the parsed policy object or undefined if the policy is not provided */ export function parseApiGatewayPolicy(apiId, policy) { if (!policy) { return undefined; } policy = policy.replace(/\\"/g, '"').replace(/\\\//g, '/'); try { return JSON.parse(policy); } catch (error) { log.error('Failed to parse API Gateway policy', { apiId }, error); throw new Error(`Unable to parse policy for API Gateway ${apiId}`); } } //# sourceMappingURL=gateways.js.map