CloudAssets

class jmpr.CloudAssets(identity_account_id: str, shared_role: str, asset_path: str = 'jmpr', default_region: str = 'us-east-1', switches: list = None, purge_accounts: set = None, identity_account_iam_client: <module 'boto3' from '/home/docs/checkouts/readthedocs.org/user_builds/jmpr/envs/latest/lib/python3.7/site-packages/boto3/__init__.py'> = None)

Bases: object

Methods Summary

abort(concerns)

[summary]

accounts_role_clean()

[summary]

commit()

[summary]

commit_roles(target_account)

[summary]

create_proto_role(parsed_role_arn, role_arn)

[summary]

from_json(json_config)

[summary]

from_org(identity_account_id, org_unit_id, …)

[summary]

from_yaml(filename)

[summary]

get_actions()

get_identity_userlist()

[summary]

get_org_accounts(org_unit_id)

[summary]

has_concern(arn)

[summary]

parse_role_arn(arn)

[summary]

persist_role_policy(assume_role_policy_doc, …)

[summary]

precommit_audit()

[summary]

print_actions()

[summary]

remove_tbd_roles(role, target_account)

[summary]

save_log()

serialize and print actions to a logfile

update_role_policies(role, target_account)

[summary]

update_targets(principals, defined_accounts)

[summary]

update_trust_principals(role, target_account)

[summary]

Methods Documentation

abort(concerns: list)

[summary]

Parameters

{list} -- [description] (concerns) –

accounts_role_clean()

[summary]

commit()

[summary]

commit_roles(target_account)

[summary]

Parameters

{[type]} -- [description] (target_account) –

create_proto_role(parsed_role_arn, role_arn)

[summary]

Parameters

  • {[type]} -- [description] (role_arn) –

  • {[type]} -- [description]

Returns

[type] – [description]

classmethod from_json(json_config: str) → jmpr.cloudassets.CloudAssets

[summary]

Returns

[type] – [description]

classmethod from_org(identity_account_id: str, org_unit_id: str, shared_role: str, args) → jmpr.cloudassets.CloudAssets

[summary]

Returns

[type] – [description]

classmethod from_yaml(filename: str) → jmpr.cloudassets.CloudAssets

[summary]

Returns

[type] – [description]

classmethod get_actions()
get_identity_userlist()

[summary]

Returns

[type] – [description]

static get_org_accounts(org_unit_id)

[summary]

Parameters

{[type]} -- [description] (org_unit_id) –

Returns

[type] – [description]

has_concern(arn)

[summary]

Parameters

{[type]} -- [description] (arn) –

Returns

[type] – [description]

static parse_role_arn(arn: str)

[summary]

Parameters

{str} -- [description] (arn) –

Returns

[type] – [description]

persist_role_policy(assume_role_policy_doc, role, target_account)

[summary]

Parameters

  • {[type]} -- [description] (target_account) –

  • {[type]} -- [description]

  • {[type]} -- [description]

precommit_audit()

[summary]

Returns

[type] – [description]

classmethod print_actions()

[summary]

remove_tbd_roles(role, target_account)

[summary]

Parameters

  • {[type]} -- [description] (target_account) –

  • {[type]} -- [description]

classmethod save_log()

serialize and print actions to a logfile

update_role_policies(role, target_account)

[summary]

Parameters

  • {[type]} -- [description] (target_account) –

  • {[type]} -- [description]

update_targets(principals, defined_accounts)

[summary]

Parameters

  • {[type]} -- [description] (defined_accounts) –

  • {[type]} -- [description]

update_trust_principals(role, target_account)

[summary]

Parameters

  • {[type]} -- [description] (target_account) –

  • {[type]} -- [description]