querying.arns
querying.arns
Methods that execute specific queries against the SQLite database for the ARN table. This supports the policy_sentry query functionality
get_arn_data(service_prefix, resource_type_name)
Get details about ARNs in JSON format.
Parameters:
Name | Type | Description | Default |
---|---|---|---|
service_prefix |
|
An AWS service prefix, like |
required |
resource_type_name |
|
The name of a resource type, like |
required |
Returns:
Type | Description |
---|---|
Dictionary |
Metadata about an ARN type |
get_arn_type_details(service_prefix, resource_type_name)
Get details about ARNs in JSON format.
Parameters:
Name | Type | Description | Default |
---|---|---|---|
service_prefix |
|
An AWS service prefix, like |
required |
resource_type_name |
|
The name of a resource type, like |
required |
Returns:
Type | Description |
---|---|
Dictionary |
Metadata about an ARN type |
get_matching_raw_arn(arn)
Given a user-supplied ARN, return the raw_arn since that is used as a unique identifier throughout this library
Parameters:
Name | Type | Description | Default |
---|---|---|---|
arn |
|
The user-supplied arn, like arn:aws:s3:::mybucket |
required |
Returns:
Type | Description |
---|---|
String |
The raw ARN stored in the database, like 'arn:${Partition}:s3:::${BucketName}' |
get_resource_type_name_with_raw_arn(raw_arn)
Given a raw ARN, return the resource type name as shown in the database.
Parameters:
Name | Type | Description | Default |
---|---|---|---|
raw_arn |
|
The raw ARN stored in the database, like 'arn:${Partition}:s3:::${BucketName}' |
required |
Returns:
Type | Description |
---|---|
String |
The resource type name, like bucket |