From 40343123433e3d737aec0aba85b634a002ac7176 Mon Sep 17 00:00:00 2001 From: janiko71 Date: Mon, 18 Nov 2024 16:24:10 +0100 Subject: [PATCH] resources/services added --- resources/inventory_local_IAM_security.yaml | 8 + resources/inventory_local_analytics.yaml | 152 +++++++++++- .../inventory_local_appli_integration.yaml | 1 + .../inventory_local_blockchain_quantum.yaml | 32 ++- resources/inventory_local_compute.yaml | 5 + resources/inventory_local_container.yaml | 5 + resources/inventory_local_databases.yaml | 219 ++++++++++++++++-- resources/inventory_local_networking.yaml | 22 ++ 8 files changed, 424 insertions(+), 20 deletions(-) diff --git a/resources/inventory_local_IAM_security.yaml b/resources/inventory_local_IAM_security.yaml index 9e8a7be..23c9ace 100644 --- a/resources/inventory_local_IAM_security.yaml +++ b/resources/inventory_local_IAM_security.yaml @@ -57,3 +57,11 @@ secretsmanager: detail_function: get_secret_value detail_param: SecretId +cloudHSM: + boto_resource_name: cloudhsmv2 + category: IAM and Security + inventory_nodes: + clusters: + permissions: DescribeClusters + function: describe_clusters + diff --git a/resources/inventory_local_analytics.yaml b/resources/inventory_local_analytics.yaml index 0d6922a..0557e08 100644 --- a/resources/inventory_local_analytics.yaml +++ b/resources/inventory_local_analytics.yaml @@ -23,10 +23,144 @@ # - detail_function: the function to call to get the detailed inventory. # - detail_param: the parameter to use to call the detailed inventory functions. +# Not included: Data Exchange, Lake Formation, MSK, Glue DataBrew, Amazon FinSpace, Firehose, EMR, Clean Rooms, DataZone, Entity Resolution, Managed Apache Flink +# Issue: opensearch (https://github.com/janiko71/aws-inventory/issues/67) +# ----------------------# +# File date: 2024-11-18 # +# ----------------------# + + +athena: + region_type: local + boto_resource_name: athena + category: Analytics + inventory_nodes: + WorkGroups: + permissions: ListWorkGroups + function: list_work_groups + details: + WorkGroup: + permissions: GetWorkGroup + item_search_id: Name + detail_function: get_work_group + detail_param: Name + Tags: + permissions: ListTagsForResource + item_search_id: WorkGroupArn + detail_function: list_tags_for_resource + detail_param: ResourceARN + DataCatalogs: + permissions: ListDataCatalogs + function: list_data_catalogs + details: + DataCatalog: + permissions: GetDataCatalog + item_search_id: Name + detail_function: get_data_catalog + detail_param: Name + Tags: + permissions: ListTagsForResource + item_search_id: CatalogArn + detail_function: list_tags_for_resource + detail_param: ResourceARN + DataBases: + permissions: ListDatabases + function: list_databases + details: + Database: + permissions: GetDatabase + item_search_id: Name + detail_function: get_database + detail_param: Name + Tags: + permissions: ListTagsForResource + item_search_id: DatabaseArn + detail_function: list_tags_for_resource + detail_param: ResourceARN + +cloudsearch: + region_type: local + boto_resource_name: cloudsearch + category: Analytics + inventory_nodes: + Domains: + permissions: DescribeDomains + function: describe_domains + + +kinesis: + region_type: local + boto_resource_name: kinesis + category: Analytics + inventory_nodes: + Streams: + permissions: ListStreams + function: list_streams + details: + Stream: + permissions: DescribeStream + item_search_id: StreamName + detail_function: describe_stream + detail_param: StreamName + + +quickSight: + region_type: local + boto_resource_name: quicksight + category: Analytics + inventory_nodes: + Dashboards: + permissions: ListDashboards + function: list_dashboards + details: + Dashboard: + permissions: DescribeDashboard + item_search_id: DashboardId + detail_function: describe_dashboard + detail_param: DashboardId + DataSets: + permissions: ListDataSets + function: list_data_sets + details: + DataSet: + permissions: DescribeDataSet + item_search_id: DataSetId + detail_function: describe_data_set + detail_param: DataSetId + DataSources: + permissions: ListDataSources + function: list_data_sources + details: + DataSource: + permissions: DescribeDataSource + item_search_id: DataSourceId + detail_function: describe_data_source + detail_param: DataSourceId + Analyses: + permissions: ListAnalyses + function: list_analyses + details: + Analysis: + permissions: DescribeAnalysis + item_search_id: AnalysisId + detail_function: describe_analysis + detail_param: AnalysisId + Themes: + permissions: ListThemes + function: list_themes + details: + Theme: + permissions: DescribeTheme + item_search_id: ThemeId + detail_function: describe_theme + detail_param: ThemeId + + es: region_type: local boto_resource_name: es category: Analytics + other_name: ElasticsearchService, Opensearch Service inventory_nodes: Domains: permissions: DescribeElasticsearchDomains @@ -226,4 +360,20 @@ sagemaker: detail_function: describe_labeling_job detail_param: Label - \ No newline at end of file +redshift: + region_type: local + boto_resource_name: redshift + category: Analytics + inventory_nodes: + Clusters: + permissions: DescribeClusters + function: describe_clusters + DataShares: + permissions: DescribeDataShares + function: describe_data_shares + Storage: + permissions: DescribeStorage + function: describe_storage + Tags: + permissions: DescribeTags + function: describe_tags \ No newline at end of file diff --git a/resources/inventory_local_appli_integration.yaml b/resources/inventory_local_appli_integration.yaml index 09eb768..425c0e4 100644 --- a/resources/inventory_local_appli_integration.yaml +++ b/resources/inventory_local_appli_integration.yaml @@ -22,6 +22,7 @@ # - item_search_id: the key in the item to use as an identifier for the detailed inventory functions. # - detail_function: the function to call to get the detailed inventory. # - detail_param: the parameter to use to call the detailed inventory functions. + sns: region_type: local boto_resource_name: sns diff --git a/resources/inventory_local_blockchain_quantum.yaml b/resources/inventory_local_blockchain_quantum.yaml index b00731f..23897ff 100644 --- a/resources/inventory_local_blockchain_quantum.yaml +++ b/resources/inventory_local_blockchain_quantum.yaml @@ -23,6 +23,11 @@ # - detail_function: the function to call to get the detailed inventory. # - detail_param: the parameter to use to call the detailed inventory functions. +# Not included: None +# ----------------------# +# File date: 2024-11-18 # +# ----------------------# + braket: region_type: local boto_resource_name: braket @@ -78,4 +83,29 @@ managedblockchain: permissions: GetProposal item_search_id: ProposalId detail_function: get_proposal - detail_param: ProposalId \ No newline at end of file + detail_param: ProposalId + +qldb: + region_type: local + boto_resource_name: qldb + category: Databases + inventory_nodes: + Ledgers: + permissions: ListLedgers + function: list_ledgers + details: + Ledger: + permissions: DescribeLedger + item_search_id: Name + detail_function: describe_ledger + detail_param: Name + Tables: + permissions: ListTables + function: list_tables + details: + Table: + permissions: DescribeTable + item_search_id: TableName + detail_function: describe_table + detail_param: TableName + \ No newline at end of file diff --git a/resources/inventory_local_compute.yaml b/resources/inventory_local_compute.yaml index 13295cb..94c1c75 100644 --- a/resources/inventory_local_compute.yaml +++ b/resources/inventory_local_compute.yaml @@ -47,6 +47,11 @@ # - detail_function: the function to call to get the detailed inventory. # - detail_param: the parameter to use to call the detailed inventory functions. +# Not included: Serverless Application Repository, EC2 Image Builder +# ----------------------# +# File date: 2024-11-18 # +# ----------------------# + apprunner: region_type: local boto_resource_name: apprunner diff --git a/resources/inventory_local_container.yaml b/resources/inventory_local_container.yaml index 63afc69..9498603 100644 --- a/resources/inventory_local_container.yaml +++ b/resources/inventory_local_container.yaml @@ -23,6 +23,11 @@ # - detail_function: the function to call to get the detailed inventory. # - detail_param: the parameter to use to call the detailed inventory functions. +# Not included: Red Hat OpenShift Service on AWS, Elastic Container Registry +# ----------------------# +# File date: 2024-11-18 # +# ----------------------# + ecs: region_type: local boto_resource_name: ecs diff --git a/resources/inventory_local_databases.yaml b/resources/inventory_local_databases.yaml index a1e040c..053ff18 100644 --- a/resources/inventory_local_databases.yaml +++ b/resources/inventory_local_databases.yaml @@ -23,6 +23,11 @@ # - detail_function: the function to call to get the detailed inventory. # - detail_param: the parameter to use to call the detailed inventory functions. +# Not included: +# ----------------------# +# File date: 2024-11-18 # +# ----------------------# + neptune-graph: region_type: local boto_resource_name: neptune-graph @@ -132,24 +137,202 @@ redshift: permissions: DescribeClusterSecurityGroups function: describe_cluster_security_groups -route53: +elasticache: + region_type: local + boto_resource_name: elasticache + category: Databases + inventory_nodes: + CacheClusters: + permissions: DescribeCacheClusters + function: describe_cache_clusters + ReplicationGroups: + permissions: DescribeReplicationGroups + function: describe_replication_groups + SecurityGroups: + permissions: DescribeCacheSecurityGroups + function: describe_cache_security_groups + Tags: + permissions: ListTagsForResource + function: list_tags_for_resource + + +docdb: + region_type: local + boto_resource_name: docdb + category: Databases + inventory_nodes: + DBClusters: + permissions: DescribeDBClusters + function: describe_db_clusters + DBClusterSnapshots: + permissions: DescribeDBClusterSnapshots + function: describe_db_cluster_snapshots + DBClusterParameterGroups: + permissions: DescribeDBClusterParameterGroups + function: describe_db_cluster_parameter_groups + DBClusterSecurityGroups: + permissions: DescribeDBClusterSecurityGroups + function: describe_db_cluster_security_groups + DBClusterParameterGroups: + permissions: DescribeDBClusterParameterGroups + function: describe_db_cluster_parameter_groups + DBClusterSecurityGroups: + permissions: DescribeDBClusterSecurityGroups + function: describe_db_cluster_security_groups + DBClusterParameterGroups: + permissions: DescribeDBClusterParameterGroups + function: describe_db_cluster_parameter_groups + DBClusterSecurityGroups: + permissions: DescribeDBClusterSecurityGroups + function: describe_db_cluster_security_groups + DBClusterParameterGroups: + permissions: DescribeDBClusterParameterGroups + function: describe_db_cluster_parameter_groups + DBClusterSecurityGroups: + permissions: DescribeDBClusterSecurityGroups + +docdb-elastic: + region_type: local + boto_resource_name: docdb + category: Databases + inventory_nodes: + DBClusters: + permissions: DescribeDBClusters + function: describe_db_clusters + DBClusterSnapshots: + permissions: DescribeDBClusterSnapshots + function: describe_db_cluster_snapshots + DBClusterParameterGroups: + permissions: DescribeDBClusterParameterGroups + function: describe_db_cluster_parameter_groups + DBClusterSecurityGroups: + permissions: DescribeDBClusterSecurityGroups + function: describe_db_cluster_security_groups + DBClusterParameterGroups: + permissions: DescribeDBClusterParameterGroups + function: describe_db_cluster_parameter_groups + DBClusterSecurityGroups: + permissions: DescribeDBClusterSecurityGroups + function: describe_db_cluster_security_groups + DBClusterParameterGroups: + permissions: DescribeDBClusterParameterGroups + function: describe_db_cluster_parameter_groups + DBClusterSecurityGroups: + permissions: DescribeDBClusterSecurityGroups + function: describe_db_cluster_security_groups + DBClusterParameterGroups: + permissions: DescribeDBClusterParameterGroups + function: describe_db_cluster_parameter_groups + DBClusterSecurityGroups: + permissions: DescribeDBClusterSecurityGroups + +keyspaces: region_type: local - boto_resource_name: route53 - category: Networking + boto_resource_name: cassandra + category: Databases + inventory_nodes: + Keyspaces: + permissions: DescribeKeyspaces + function: describe_keyspaces + Tables: + permissions: DescribeTables + function: describe_tables + Table: + permissions: DescribeTable + item_search_id: TableName + detail_function: describe_table + detail_param: TableName + +timestream: + region_type: local + boto_resource_name: timestream-query + category: Databases inventory_nodes: - HostedZones: - permissions: ListHostedZones - function: list_hosted_zones - HealthChecks: - permissions: ListHealthChecks - function: list_health_checks - TrafficPolicies: - permissions: ListTrafficPolicies - function: list_traffic_policies - TrafficPolicyInstances: - permissions: ListTrafficPolicyInstances - function: list_traffic_policy_instances - TrafficPolicyVersions: - permissions: ListTrafficPolicyVersions - function: list_traffic_policy_versions + Databases: + permissions: ListDatabases + function: list_databases + Tables: + permissions: ListTables + function: list_tables + Table: + permissions: DescribeTable + item_search_id: TableName + detail_function: describe_table + detail_param: TableName + Tags: + permissions: ListTagsForResource + item_search_id: arn + detail_function: list_tags_for_resource + detail_param: resourceArn + +dynamodb: + region_type: local + boto_resource_name: dynamodb + category: Databases + inventory_nodes: + Tables: + permissions: ListTables + function: list_tables + details: + Table: + permissions: DescribeTable + item_search_id: TableName + detail_function: describe_table + detail_param: TableName + GlobalTables: + permissions: ListGlobalTables + function: list_global_tables + details: + GlobalTable: + permissions: DescribeGlobalTable + item_search_id: GlobalTableName + detail_function: describe_global_table + detail_param: GlobalTableName + Backup: + permissions: ListBackups + function: list_backups + details: + Backup: + permissions: DescribeBackup + item_search_id: BackupArn + detail_function: describe_backup + detail_param: BackupArn + Restore: + permissions: ListRestores + function: list_restores + details: + Restore: + permissions: DescribeContinuousBackups + item_search_id: RestoreArn + detail_function: describe_continuous_backups + detail_param: RestoreArn +memorydb: + region_type: local + boto_resource_name: memorydb + category: Databases + inventory_nodes: + Clusters: + permissions: DescribeClusters + function: describe_clusters + ClusterSnapshots: + permissions: DescribeSnapshots + function: describe_snapshots + ParameterGroups: + permissions: DescribeParameterGroups + function: describe_parameter_groups + SecurityGroups: + permissions: DescribeSecurityGroups + function: describe_security_groups + SubnetGroups: + permissions: DescribeSubnetGroups + function: describe_subnet_groups + Users: + permissions: DescribeUsers + function: describe_users + ACLs: + permissions: DescribeACLs + function: describe_acls + Tags: + permissions: ListTagsForResource + function: list_tags_for_resource \ No newline at end of file diff --git a/resources/inventory_local_networking.yaml b/resources/inventory_local_networking.yaml index 26425e2..c1e7806 100644 --- a/resources/inventory_local_networking.yaml +++ b/resources/inventory_local_networking.yaml @@ -79,3 +79,25 @@ private-networks: item_search_id: NetworkArn detail_function: get_network detail_param: NetworkArn + + +route53: + region_type: local + boto_resource_name: route53 + category: Networking + inventory_nodes: + HostedZones: + permissions: ListHostedZones + function: list_hosted_zones + HealthChecks: + permissions: ListHealthChecks + function: list_health_checks + TrafficPolicies: + permissions: ListTrafficPolicies + function: list_traffic_policies + TrafficPolicyInstances: + permissions: ListTrafficPolicyInstances + function: list_traffic_policy_instances + TrafficPolicyVersions: + permissions: ListTrafficPolicyVersions + function: list_traffic_policy_versions \ No newline at end of file