def test_success(self): provider_conf = {'region': ['us-west-2']} scan_result = check.scan_provider_conf(conf=provider_conf) self.assertEqual(CheckResult.PASSED, scan_result) provider_conf = {} scan_result = check.scan_provider_conf(conf=provider_conf) self.assertEqual(CheckResult.PASSED, scan_result)
def test_success_empty(self): hcl_res = hcl2.loads(""" provider "aws" {} """) provider_conf = hcl_res["provider"][0]["aws"] scan_result = check.scan_provider_conf(conf=provider_conf) self.assertEqual(CheckResult.PASSED, scan_result)
def test_failure_secret_key(self): hcl_res = hcl2.loads(""" provider "aws" { region = "us-west-2" secret_key = "wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY" } """) provider_conf = hcl_res["provider"][0]["aws"] scan_result = check.scan_provider_conf(conf=provider_conf) self.assertEqual(CheckResult.FAILED, scan_result)
def test_failure_access_key(self): hcl_res = hcl2.loads(""" provider "aws" { region = "us-west-2" access_key = "AKIAIOSFODNN7EXAMPLE" } """) provider_conf = hcl_res["provider"][0]["aws"] scan_result = check.scan_provider_conf(conf=provider_conf) self.assertEqual(CheckResult.FAILED, scan_result)
def test_failure(self): provider_conf = { 'region': ['us-west-2'], 'access_key': ['AKIAIOSFODNN7EXAMPLE'], 'secret_key': ['wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY'] } scan_result = check.scan_provider_conf(conf=provider_conf) self.assertEqual(CheckResult.FAILED, scan_result) provider_conf = { 'region': ['us-west-2'], 'secret_key': ['wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY'] } scan_result = check.scan_provider_conf(conf=provider_conf) self.assertEqual(CheckResult.FAILED, scan_result) provider_conf = { 'region': ['us-west-2'], 'access_key': ['AKIAIOSFODNN7EXAMPLE'] } scan_result = check.scan_provider_conf(conf=provider_conf) self.assertEqual(CheckResult.FAILED, scan_result)