Class: EMRSecurityConfigurationEncryptionsEnabledAndConfiguredRule

Inherits:
BaseRule
  • Object
show all
Defined in:
lib/cfn-nag/custom_rules/EMRSecurityConfigurationEncryptionsEnabledAndConfiguredRule.rb

Instance Method Summary collapse

Methods inherited from BaseRule

#audit

Instance Method Details

#audit_impl(cfn_model) ⇒ Object


19
20
21
22
23
24
25
# File 'lib/cfn-nag/custom_rules/EMRSecurityConfigurationEncryptionsEnabledAndConfiguredRule.rb', line 19

def audit_impl(cfn_model)
  violating_emr_sec_configs = cfn_model.resources_by_type('AWS::EMR::SecurityConfiguration').select do |sec_config|
    bad_security_config?(sec_config)
  end

  violating_emr_sec_configs.map(&:logical_resource_id)
end

#rule_idObject


15
16
17
# File 'lib/cfn-nag/custom_rules/EMRSecurityConfigurationEncryptionsEnabledAndConfiguredRule.rb', line 15

def rule_id
  'W61'
end

#rule_textObject


7
8
9
# File 'lib/cfn-nag/custom_rules/EMRSecurityConfigurationEncryptionsEnabledAndConfiguredRule.rb', line 7

def rule_text
  'EMR SecurityConfiguration should enable and properly configure encryption at rest and in transit.'
end

#rule_typeObject


11
12
13
# File 'lib/cfn-nag/custom_rules/EMRSecurityConfigurationEncryptionsEnabledAndConfiguredRule.rb', line 11

def rule_type
  Violation::WARNING
end