mirror of
https://github.com/ghndrx/prowler.git
synced 2026-02-11 15:25:10 +00:00
42 lines
1.7 KiB
Python
42 lines
1.7 KiB
Python
import sure # noqa
|
|
|
|
from prowler.providers.aws.lib.arn.arn import arn_parsing, is_valid_arn
|
|
|
|
ACCOUNT_ID = "123456789012"
|
|
RESOURCE_TYPE = "role"
|
|
IAM_ROLE = "test-role"
|
|
|
|
|
|
class Test_ARN_Parsing:
|
|
def test_arn_parsing(self):
|
|
test_cases = [
|
|
{
|
|
"input_arn": f"arn:aws:iam::{ACCOUNT_ID}:{RESOURCE_TYPE}/{IAM_ROLE}",
|
|
"expected": {
|
|
"partition": "aws",
|
|
"service": "iam",
|
|
"region": None,
|
|
"account_id": ACCOUNT_ID,
|
|
"resource_type": RESOURCE_TYPE,
|
|
"resource": IAM_ROLE,
|
|
},
|
|
}
|
|
]
|
|
for test in test_cases:
|
|
input_arn = test["input_arn"]
|
|
parsed_arn = arn_parsing(input_arn)
|
|
parsed_arn.partition.should.equal(test["expected"]["partition"])
|
|
parsed_arn.service.should.equal(test["expected"]["service"])
|
|
parsed_arn.region.should.equal(test["expected"]["region"])
|
|
parsed_arn.account_id.should.equal(test["expected"]["account_id"])
|
|
parsed_arn.resource_type.should.equal(test["expected"]["resource_type"])
|
|
parsed_arn.resource.should.equal(test["expected"]["resource"])
|
|
|
|
def test_is_valid_arn(self):
|
|
assert is_valid_arn("arn:aws:iam::012345678910:user/test")
|
|
assert is_valid_arn("arn:aws-cn:ec2:us-east-1:123456789012:vpc/vpc-12345678")
|
|
assert is_valid_arn("arn:aws-us-gov:s3:::bucket")
|
|
assert not is_valid_arn("arn:azure:::012345678910:user/test")
|
|
assert not is_valid_arn("arn:aws:iam::account:user/test")
|
|
assert not is_valid_arn("arn:aws:::012345678910:resource")
|