policy_sentry
0.6.6

Introduction

  • Overview
    • Motivation
      • Authoring Secure IAM Policies
    • Installation
      • Usage
    • Author Information
  • Comparison to other tools
    • Policy Revocation Tools
      • Repokid
    • AWS Tools
      • AWS Console - Visual Policy Editor
      • AWS Policy Generator (static website)
    • Log-based Policy Generators
      • CloudTracker
      • Trailscraper
    • Other Infrastructure as Code Tools
      • aws-iam-generator
      • Terraform

User Guide

  • Installation
  • Initialization
    • Options
    • Usage
    • Skipping Initialization
  • Writing IAM Policies
    • CRUD Mode: ARNs and Access Levels
      • Command options
      • Instructions
    • Actions Mode: Lists of IAM Actions
      • Command options
      • Instructions
    • Folder Mode: Write Multiple Policies from CRUD mode files
  • Downloading Policies
    • Customer-managed policies - one account
    • AWS Managed policies
  • Analyzing Policies
    • Motivation
    • Options
    • Instructions
      • Risk Categories
      • Audit all downloaded policies and generate a report
      • Audit a single IAM policy and generate a report
      • Custom Config file
  • Querying the Policy Database
    • Commands
    • Options
  • Docker
  • Command cheat sheet
    • Commands
    • Initialization
    • Policy Writing Commands
    • IAM Database Query Commands
    • Policy Download and Analysis Commands

Terraform

  • Terraform Demo
    • Command options
    • Prerequisites
    • Tutorial
  • Terraform Modules
    • 1: Install policy_sentry
    • 2: Generate the policy_sentry YAML File
    • 3: Run policy_sentry and specify proper target directory
    • 4: Create the IAM Policies using JSON files from directory

Contributing

  • Contributing
    • Contributing to Documentation
      • Building Documentation
      • Docstrings
    • IAM Database
      • How Policy Sentry uses the IAM database
        • Updating the AWS HTML files
    • Testing
      • Pipenv
      • Invoke
      • Local Unit Testing and Integration Testing: Quick and Easy
      • Running the Test Suite
    • Project Structure
      • Subfolders
      • Files and functions
    • Versioning
      • Version bumps
    • Roadmap
      • Condition Keys
      • Log-based policy generation

Library Usage

  • Library Usage
    • Getting Started with the Library
  • Module Reference
    • Querying
      • querying.all
      • querying.actions
      • querying.arns
      • querying.conditions
    • Writing
      • command.write_policy
      • writing.policy
      • writing.roles
      • writing.template
      • writing.validate
      • writing.minimize
    • Analyzing
      • analysis.analyze
    • Utilities
      • util.policy_files
      • util.arns
      • util.file
      • util.actions
  • Examples
    • Querying
      • All
        • querying.all.get_all_services
        • querying.all.get_all_actions
      • Actions
        • querying.actions.get_action_data
        • querying.actions.get_actions_for_service
        • querying.actions.get_actions_matching_condition_key
        • querying.actions.get_actions_supporting_wilcards_only
        • querying.actions.get_actions_with_access_levels
        • querying.actions.get_actions_with_arn_type_and_access_level
        • querying.actions.get_dependent_actions
      • ARNs
        • querying.arns.get_arn_type_details
        • querying.arns.get_arn_types_for_service
        • querying.arns.get_raw_arns_for_service
      • Conditions
        • querying.conditions.get_condition_key_details
        • querying.conditions.get_condition_keys_for_service

Appendix

  • Implementation Strategy

IAM Background

  • IAM Policies
    • IAM Policy Elements
    • Actions, Resources, and Condition Keys Per Service
      • Action Table
      • ARN Table
      • Condition Keys Table
      • References
  • Minimization
policy_sentry
  • Docs »
  • Python Module Index

Python Module Index

p
 
p
- policy_sentry
    policy_sentry.analysis.analyze
    policy_sentry.querying.actions
    policy_sentry.querying.all
    policy_sentry.querying.arns
    policy_sentry.querying.conditions
    policy_sentry.util.actions
    policy_sentry.util.arns
    policy_sentry.util.file
    policy_sentry.util.policy_files
    policy_sentry.writing.minimize
    policy_sentry.writing.policy
    policy_sentry.writing.roles
    policy_sentry.writing.template
    policy_sentry.writing.validate

© Copyright 2019, Kinnaird McQuade Revision 978d4544.

Built with Sphinx using a theme provided by Read the Docs.