Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Permissions Boundaries Support #41

Closed
4 tasks done
ncc-erik-steringer opened this issue Oct 4, 2019 · 2 comments
Closed
4 tasks done

Add Permissions Boundaries Support #41

ncc-erik-steringer opened this issue Oct 4, 2019 · 2 comments
Assignees
@ncc-erik-steringer
Milestone
1.1.0 - Resource ...

Comments

@ncc-erik-steringer
Copy link
Collaborator

ncc-erik-steringer commented Oct 4, 2019
edited
Loading

https://docs.aws.amazon.com/IAM/latest/UserGuide/access_policies_boundaries.html

From my reading of the docs, these boundary policies have to allow a request in conjunction with the principal's other policies. Need to add:

  • Permission Boundary field to Node objects (breaking change of graph data, we'll need a minor version bump).
  • Obtain Permission Boundary data during gathering for graph creation.
  • Support for evaluation when the Node has a Permission Boundary set (is not None).
  • Test cases for the evaluation work.
@ncc-erik-steringer ncc-erik-steringer self-assigned this Oct 4, 2019
@ncc-erik-steringer
Copy link
Collaborator Author

Waiting on boto/botocore#1902 . May need to enforce a specific version of botocore.

@ncc-erik-steringer ncc-erik-steringer mentioned this issue Jan 10, 2020
Closed
@ncc-erik-steringer
Copy link
Collaborator Author

Current commit in v1.1.0-dev, 5828a87, completed this

wdahlenburg pushed a commit to wdahlenburg/PMapper that referenced this issue Sep 5, 2022
@Frichetten
Merge pull request nccgroup#41 from Hacking-the-Cloud/stealth_enum
c2f6ea8 
Added new article and fixed table css
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ncc-erik-steringer ncc-erik-steringer

Labels
None yet
Projects
None yet
Milestone
1.1.0 - Resource Policies, Cross-Acco...
Development

No branches or pull requests
1 participant
@ncc-erik-steringer