UNPKG

aws-resource-remediation

Version:

A module to remediate AWS resources.

67 lines (59 loc) 2.28 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
/** * Created by kpadmawa on 1/23/2017. */ const constants = require('../src/constants'); var logger = require('node-generic-logger'); logger.init({ file: { name: 'aws-resource-remediation-test.log', level: 'info' }, console: { level: 'debug' } }); function IAMCredentialsRemediatorTests (remediator) { this.resourceRemediator = remediator; } IAMCredentialsRemediatorTests.prototype.test = function () { var self = this; describe('IAMCredentialsRemediatorTests:test', function () { it('IAMCredentialsRemediatorTests:remediateRuleThree', function (done) { var params = { "policyId": "AWS CIS IAM Credentials", "ruleId": "3", "ruleName": "1.3 Ensure credentials unused for 90 days or greater are disabled", "resourceId": "vl-pun-1989", "connectorId": "AKIAIIDS4HIAUHM6SEYA", "actionContent": "AWS IAM Credentials Remediation_1.0.0", "actionDefinition": "Update access key", "action": "Deactivate access key when unused for 90 days or greater", "result": { "origin": "93534757", "resourceType": "IAM_CREDS" }, "aws.credentials.accessKeyId":"abc", "aws.credentials.secretAccessKey":"xyz", "region": "us-east-1", "moduleName": "iamCredentials", "method": "updateAccessKey", "payload": { "userName": "bmcUser" } }; self.callRemediate(params, done); }); }) }; IAMCredentialsRemediatorTests.prototype.callRemediate = function (params, done) { this.resourceRemediator.remediate(params, function (err, data) { if (err) { logger.error('Got error in remediating IAM credential policy for rule :' + params.ruleId, err); logger.error(err.stack); } else { logger.info('Successfully remediated IAM credentials policy :' + JSON.stringify(data)); } }); done(); }; module.exports = IAMCredentialsRemediatorTests;