From aa0025abbe2bc0f9ead24af4241241238cd035eb Mon Sep 17 00:00:00 2001 From: Toni de la Fuente Date: Thu, 12 Jan 2023 17:40:10 +0100 Subject: [PATCH] fix(quick_inventory): Prowler quick inventory for US GovCloud and China (#1698) --- .../aws/lib/quick_inventory/quick_inventory.py | 12 +++++++++--- 1 file changed, 9 insertions(+), 3 deletions(-) diff --git a/prowler/providers/aws/lib/quick_inventory/quick_inventory.py b/prowler/providers/aws/lib/quick_inventory/quick_inventory.py index 9d762b7b..c199a8a3 100644 --- a/prowler/providers/aws/lib/quick_inventory/quick_inventory.py +++ b/prowler/providers/aws/lib/quick_inventory/quick_inventory.py @@ -23,7 +23,9 @@ def quick_inventory(audit_info: AWS_Audit_Info, output_directory: str): # If not inputed regions, check all of them if not audit_info.audited_regions: # EC2 client for describing all regions - ec2_client = audit_info.audit_session.client("ec2", region_name="us-east-1") + ec2_client = audit_info.audit_session.client( + "ec2", region_name=audit_info.profile_region + ) # Get all the available regions audit_info.audited_regions = [ region["RegionName"] for region in ec2_client.describe_regions()["Regions"] @@ -41,9 +43,13 @@ def quick_inventory(audit_info: AWS_Audit_Info, output_directory: str): bar.title = f"-> Scanning {orange_color}{region}{Style.RESET_ALL} region" resources_in_region = [] try: - # If us-east-1 get IAM resources + # If us-east-1 get IAM resources from there otherwise see if it is US GovCloud or China iam_client = audit_info.audit_session.client("iam") - if region == "us-east-1": + if ( + region == "us-east-1" + or region == "us-gov-west-1" + or region == "cn-north-1" + ): get_roles_paginator = iam_client.get_paginator("list_roles") for page in get_roles_paginator.paginate():