print "aws_key_key:%s" % key_key #put the user policy plicy_json = """{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": "ses:SendRawEmail", "Resource": "*" } ] }""" policy = iamconn.put_user_policy(username, AmazonSesSendingAccess, plicy_json) #display policy print policy time.sleep(10) #delete key delete = iamconn.delete_access_key(key_id, user_name=username) print "success delete key_id" #delete user delete = iamconn.delete_user(username) print delete
print "INITIALIZE: Group %s does not exist, creating" % ( group_name,) group = iam.create_group(group_name) print "INITIALIZE: Adding policy %s to group %s" % ( policy_name, group_name) iam.put_group_policy(group_name, policy_name, policy_json) # 2) Check if IAM user 'can-opener-user' exists, if not, # create, set to group 'can-opener-grp', get credentials # and print them out. user_exists = user_name in [u.user_name for u in iam.get_all_users().list_users_response.list_users_result.users] if user_exists and destructive: for key in iam.get_all_access_keys(user_name).list_access_keys_response.list_access_keys_result.access_key_metadata: print "DESTROY: Destroying access key %s of user %s" % ( key.access_key_id, user_name) iam.delete_access_key(key.access_key_id, user_name) print "DESTROY: Destructing old user %s" % (user_name,) iam.delete_user(user_name) if not user_exists or destructive: print "INIITALIZE: User %s does not exist, creating" % ( user_name,) user = iam.create_user(user_name) print "INITIALIZE: Adding user %s to group %s" % ( user_name, group_name) iam.add_user_to_group(group_name, user_name) print "INITIALIZE: Creating new access key for user %s" % ( user_name,) key = iam.create_access_key(user_name).create_access_key_response.create_access_key_result.access_key access_key = key.access_key_id secret_key = key.secret_access_key
"Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": "ses:SendRawEmail", "Resource": "*" } ] }""" policy=iamconn.put_user_policy(username,AmazonSesSendingAccess,plicy_json) print policy time.sleep(10) #delete key delete = iamconn.delete_access_key(key_id,user_name=username) print "success delete key_id" #delete user delete = iamconn.delete_user(username) print delete #for user in data.user: # print(user['user_name'])