Class: CloudFormationAuthenticationRule

Inherits:
BaseRule show all
Defined in:
lib/cfn-nag/custom_rules/CloudFormationAuthenticationRule.rb

Instance Method Summary collapse

Methods inherited from BaseRule

#audit, #violation

Instance Method Details

#audit_impl(cfn_model) ⇒ Object



19
20
21
22
23
24
# File 'lib/cfn-nag/custom_rules/CloudFormationAuthenticationRule.rb', line 19

def audit_impl(cfn_model)
  violating_resources = cfn_model.raw_model['Resources'].select do |_resource_name, resource|
    resource_has_authentication?(resource) && resource_has_sensitive_credentials?(resource)
  end
  violating_resources.keys
end

#rule_idObject



15
16
17
# File 'lib/cfn-nag/custom_rules/CloudFormationAuthenticationRule.rb', line 15

def rule_id
  'W1'
end

#rule_textObject



7
8
9
# File 'lib/cfn-nag/custom_rules/CloudFormationAuthenticationRule.rb', line 7

def rule_text
  'Specifying credentials in the template itself is probably not the safest thing'
end

#rule_typeObject



11
12
13
# File 'lib/cfn-nag/custom_rules/CloudFormationAuthenticationRule.rb', line 11

def rule_type
  Violation::WARNING
end