AWS Config

AWS Config enables you to assess, audit, and evaluate the configurations of your AWS resources. This class inherits from TopLevelResource and has direct access to the resource’s database object. The following attributes are directly accessible:

attr resource_id:
 primary resource identifier, takes the form of a prefix followed by numbers and letters
attr organization_service_id:
 The ID of the parent organization service (cloud)
attr region_name:
 The region in which AWS Config is enabled
attr delivery_channel_created:
 When the delivery channel was created
attr configuration_reorder_created:
 Dennotes whether or not the configuration reorder has been created
attr auditing_has_begun:
 Boolean value to denote whether or not auditing has begun
attr auditing_is_enabled:
 Boolean value to denote whether or not auditing is enabled
attr policy:The policy for giving AWS config the permissions it needs to track your resources
class DivvyResource.Resources.awsconfig.AwsConfig(resource_id)

Bases: DivvyResource.Resources.toplevelresource.TopLevelResource

AwsConfig operations

auditing_is_enabled
awsconfig
get_auditing_is_enabled()

Retrieve the instance type of the resource

static get_db_class()
get_name()
static get_provider_id_field()
get_region()

Retrieve the name of the availability zone

get_resource_name()
static get_resource_name_field()
static get_resource_type()
get_supported_actions()

Retrieve all the actions which are supported by this resource.

Restricts actions by resource state

handle_resource_created(user_resource_id=None, project_resource_id=None)

This should be called when a resource is created/discovered after the basic data is added to the database. This gives an opportunity for post-addition hooks (assignment to projects/groups, alerts, etc)

handle_resource_destroyed(user_resource_id=None)

This should be called when a resource is destroyed before the basic data is removed from the database. This gives an opportunity for pre-destruction hooks (removal from projects/groups, alerts, etc)

handle_resource_modified(resource, *args, **kwargs)

This should be called when a resource is modified after the new data has been updated in the DB session This gives an opportunity for post-modification hooks

instance_id
name
region
top_level_resource = True