ghndrx/prowler
1
0
Fork 0
mirror of https://github.com/ghndrx/prowler.git synced 2026-02-10 14:55:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

Moved assume role before listing regions fixes issue #744

Browse Source
This commit is contained in:
Toni de la Fuente
2021-03-24 15:11:00 +01:00
parent 21f817b087
commit 0c4111efda
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
prowler
View File

@@ -254,9 +254,13 @@ unset AWS_DEFAULT_OUTPUT
. $PROWLER_DIR/include/securityhub_integration . $PROWLER_DIR/include/securityhub_integration
. $PROWLER_DIR/include/junit_integration . $PROWLER_DIR/include/junit_integration
if [[ $ACCOUNT_TO_ASSUME ]]; then
assume_role
fi
# Get list of regions based on include/whoami # Get list of regions based on include/whoami
REGIONS=$($AWSCLI ec2 describe-regions --query 'Regions[].RegionName' --output text $PROFILE_OPT --region $REGION_FOR_STS --region-names $FILTERREGION 2>&1) REGIONS=$($AWSCLI ec2 describe-regions --query 'Regions[].RegionName' --output text $PROFILE_OPT --region $REGION_FOR_STS --region-names $FILTERREGION 2>&1)
if [[ $(echo "$REGIONS" | grep AccessDenied) ]]; then if [[ $(echo "$REGIONS" | grep 'AccessDenied\|UnauthorizedOperation') ]]; then
echo "Access Denied trying to describe regions" echo "Access Denied trying to describe regions"
EXITCODE=1 EXITCODE=1
exit $EXITCODE exit $EXITCODE