feat(shield): Service and checks (#1504)

2026-02-10 14:55:00 +00:00 · 2022-11-21 10:18:54 +01:00
parent 1370e0dec4
commit 52a3e990c6
49 changed files with 3474 additions and 1663 deletions
--- a/providers/aws/services/route53/route53_public_hosted_zones_cloudwatch_logging_enabled/route53_public_hosted_zones_cloudwatch_logging_enabled_test.py
+++ b/providers/aws/services/route53/route53_public_hosted_zones_cloudwatch_logging_enabled/route53_public_hosted_zones_cloudwatch_logging_enabled_test.py
@@ -37,6 +37,7 @@ class Test_route53_public_hosted_zones_cloudwatch_logging_enabled:
        route53.hosted_zones = {
            hosted_zone_name: HostedZone(
                name=hosted_zone_name,
+                arn=f"arn:aws:route53:::{hosted_zone_id}",
                id=hosted_zone_id,
                private_zone=False,
                region=AWS_REGION,
@@ -72,6 +73,7 @@ class Test_route53_public_hosted_zones_cloudwatch_logging_enabled:
        route53.hosted_zones = {
            hosted_zone_name: HostedZone(
                name=hosted_zone_name,
+                arn=f"arn:aws:route53:::{hosted_zone_id}",
                id=hosted_zone_id,
                private_zone=False,
                region=AWS_REGION,
@@ -106,6 +108,7 @@ class Test_route53_public_hosted_zones_cloudwatch_logging_enabled:
        route53.hosted_zones = {
            hosted_zone_name: HostedZone(
                name=hosted_zone_name,
+                arn=f"arn:aws:route53:::{hosted_zone_id}",
                id=hosted_zone_id,
                private_zone=True,
                region=AWS_REGION,
--- a/providers/aws/services/route53/route53_service.py
+++ b/providers/aws/services/route53/route53_service.py
@@ -9,6 +9,7 @@ class Route53:
    def __init__(self, audit_info):
        self.service = "route53"
        self.session = audit_info.audit_session
+        self.audited_partition = audit_info.audited_partition
        self.client = self.session.client(self.service)
        self.region = get_region_global_service(audit_info)
        self.hosted_zones = {}
@@ -32,6 +33,7 @@ class Route53:
                        id=hosted_zone_id,
                        name=hosted_zone_name,
                        private_zone=private_zone,
+                        arn=f"arn:{self.audited_partition}:route53:::{hosted_zone_id}",
                        region=self.region,
                    )

@@ -69,6 +71,7 @@ class LoggingConfig(BaseModel):

 class HostedZone(BaseModel):
    id: str
+    arn: str
    name: str
    private_zone: bool
    logging_config: LoggingConfig = None
--- a/providers/aws/services/route53/route53_service_test.py
+++ b/providers/aws/services/route53/route53_service_test.py
@@ -93,6 +93,10 @@ class Test_Route53_Service:
        assert len(route53.hosted_zones) == 1
        assert route53.hosted_zones[hosted_zone_id]
        assert route53.hosted_zones[hosted_zone_id].id == hosted_zone_id
+        assert (
+            route53.hosted_zones[hosted_zone_id].arn
+            == f"arn:aws:route53:::{hosted_zone_id}"
+        )
        assert route53.hosted_zones[hosted_zone_id].name == hosted_zone_name
        assert route53.hosted_zones[hosted_zone_id].private_zone
        assert route53.hosted_zones[hosted_zone_id].logging_config
@@ -131,6 +135,10 @@ class Test_Route53_Service:
        assert len(route53.hosted_zones) == 1
        assert route53.hosted_zones[hosted_zone_id]
        assert route53.hosted_zones[hosted_zone_id].id == hosted_zone_id
+        assert (
+            route53.hosted_zones[hosted_zone_id].arn
+            == f"arn:aws:route53:::{hosted_zone_id}"
+        )
        assert route53.hosted_zones[hosted_zone_id].name == hosted_zone_name
        assert not route53.hosted_zones[hosted_zone_id].private_zone
        assert route53.hosted_zones[hosted_zone_id].logging_config
@@ -159,6 +167,10 @@ class Test_Route53_Service:
        assert len(route53.hosted_zones) == 1
        assert route53.hosted_zones[hosted_zone_id]
        assert route53.hosted_zones[hosted_zone_id].id == hosted_zone_id
+        assert (
+            route53.hosted_zones[hosted_zone_id].arn
+            == f"arn:aws:route53:::{hosted_zone_id}"
+        )
        assert route53.hosted_zones[hosted_zone_id].name == hosted_zone_name
        assert route53.hosted_zones[hosted_zone_id].private_zone
        assert not route53.hosted_zones[hosted_zone_id].logging_config
@@ -183,6 +195,10 @@ class Test_Route53_Service:
        assert len(route53.hosted_zones) == 1
        assert route53.hosted_zones[hosted_zone_id]
        assert route53.hosted_zones[hosted_zone_id].id == hosted_zone_id
+        assert (
+            route53.hosted_zones[hosted_zone_id].arn
+            == f"arn:aws:route53:::{hosted_zone_id}"
+        )
        assert route53.hosted_zones[hosted_zone_id].name == hosted_zone_name
        assert not route53.hosted_zones[hosted_zone_id].private_zone
        assert not route53.hosted_zones[hosted_zone_id].logging_config