Class: KMS
Overview
Collect KMS resources
Constant Summary
Constants inherited from Mapper
Mapper::SINGLE_REGION_SERVICES
Instance Method Summary collapse
-
#collect ⇒ Object
Returns an array of resources.
Methods inherited from Mapper
Constructor Details
This class inherits a constructor from Mapper
Instance Method Details
#collect ⇒ Object
Returns an array of resources.
10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 |
# File 'lib/aws_recon/collectors/kms.rb', line 10 def collect resources = [] # # list_keys # @client.list_keys.each_with_index do |response, page| log(response.context.operation_name, page) # describe_key response.keys.each do |key| log(response.context.operation_name, 'describe_key', page) struct = OpenStruct.new(@client .describe_key({ key_id: key.key_id }) ..to_h) struct.type = 'key' struct.grants = [] # get_key_rotation_status log(response.context.operation_name, 'get_key_rotation_status') # The default master key rotation status can't be queried begin struct.rotation_enabled = @client .get_key_rotation_status({ key_id: key.key_id }) .key_rotation_enabled rescue Aws::KMS::Errors::ServiceError => e log_error(e.code) raise e unless suppressed_errors.include?(e.code) && !@options.quit_on_exception end # list_grants @client.list_grants({ key_id: key.key_id }).each_with_index do |response, page| log(response.context.operation_name, 'list_grants', page) response.grants.each do |grant| struct.grants.push(grant.to_h) end end # get_key_policy - 'default' is the only valid policy log(response.context.operation_name, 'get_key_policy') struct.policy = @client .get_key_policy({ key_id: key.key_id, policy_name: 'default' }) .policy.parse_policy # list_aliases log(response.context.operation_name, 'list_aliases') struct.aliases = @client .list_aliases({ key_id: key.key_id }) .aliases.map(&:to_h) resources.push(struct.to_h) end end resources end |