ghndrx/prowler
1
0
Fork 0
mirror of https://github.com/ghndrx/prowler.git synced 2026-02-11 15:25:10 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
c13cab792be21fb00788100b3b83810620e9cfc7
prowler/tests/providers/aws/services/fms/fms_service_test.py
Pepe Fagoaga e3d4e38a59 feat(aws): New AWSService class as parent (#2638)
2023-07-31 11:18:54 +02:00

132 lines
4.6 KiB
Python
Raw Blame History

from datetime import datetime
from unittest.mock import patch
import botocore
from boto3 import session
from prowler.providers.aws.lib.audit_info.audit_info import AWS_Audit_Info
from prowler.providers.aws.services.fms.fms_service import FMS
from prowler.providers.common.models import Audit_Metadata
# Mock Test Region
AWS_REGION = "us-east-1"
POLICY_ARN = "arn:aws:fms:us-east-1:123456789012:policy/MyFMSManagedPolicy"
POLICY_ID = "12345678-1234-1234-1234-123456789012"
POLICY_NAME = "MyFMSManagedPolicy"
RESOURCE_TYPE = "AWS::EC2::Instance"
SERVICE_TYPE = "WAF"
REMEDIATION_ENABLED = True
DELETE_UNUSED_MANAGED_RESOURCES = True
# Mocking Calls
make_api_call = botocore.client.BaseClient._make_api_call
def mock_make_api_call(self, operation_name, kwargs):
"""We have to mock every AWS API call using Boto3"""
if operation_name == "ListPolicies":
return {
"PolicyList": [
{
"DeleteUnusedFMManagedResources": DELETE_UNUSED_MANAGED_RESOURCES,
"PolicyArn": POLICY_ARN,
"PolicyId": POLICY_ID,
"PolicyName": POLICY_NAME,
"RemediationEnabled": REMEDIATION_ENABLED,
"ResourceType": RESOURCE_TYPE,
"SecurityServiceType": SERVICE_TYPE,
}
]
}
if operation_name == "ListComplianceStatus":
return {
"PolicyComplianceStatusList": [
{
"EvaluationResults": [
{
"ComplianceStatus": "COMPLIANT",
"EvaluationLimitExceeded": False,
"ViolatorCount": 10,
}
],
"IssueInfoMap": {"string": "test"},
"LastUpdated": datetime(2024, 1, 1),
"MemberAccount": "123456789012",
"PolicyId": POLICY_ID,
"PolicyName": POLICY_NAME,
"PolicyOwner": "123456789011",
}
]
}
return make_api_call(self, operation_name, kwargs)
# Patch every AWS call using Boto3
@patch("botocore.client.BaseClient._make_api_call", new=mock_make_api_call)
class Test_FMS_Service:
# Mocked Audit Info
def set_mocked_audit_info(self):
audit_info = AWS_Audit_Info(
session_config=None,
original_session=None,
audit_session=session.Session(
profile_name=None,
botocore_session=None,
),
audited_account=None,
audited_account_arn=None,
audited_user_id=None,
audited_partition="aws",
audited_identity_arn=None,
profile=None,
profile_region=None,
credentials=None,
assumed_role_info=None,
audited_regions=None,
organizations_metadata=None,
audit_resources=None,
mfa_enabled=False,
audit_metadata=Audit_Metadata(
services_scanned=0,
expected_checks=[],
completed_checks=0,
audit_progress=0,
),
)
return audit_info
def test__get_client__(self):
audit_info = self.set_mocked_audit_info()
fms = FMS(audit_info)
assert fms.client.__class__.__name__ == "FMS"
def test__get_service__(self):
audit_info = self.set_mocked_audit_info()
fms = FMS(audit_info)
assert fms.service == "fms"
def test__list_policies__(self):
audit_info = self.set_mocked_audit_info()
fms = FMS(audit_info)
assert len(fms.fms_policies) == 1
assert fms.fms_admin_account is True
assert fms.fms_policies[0].arn == POLICY_ARN
assert fms.fms_policies[0].id == POLICY_ID
assert fms.fms_policies[0].name == POLICY_NAME
assert fms.fms_policies[0].resource_type == RESOURCE_TYPE
assert fms.fms_policies[0].service_type == SERVICE_TYPE
assert fms.fms_policies[0].remediation_enabled == REMEDIATION_ENABLED
assert (
fms.fms_policies[0].delete_unused_managed_resources
== DELETE_UNUSED_MANAGED_RESOURCES
)
def test__list_compliance_status__(self):
audit_info = self.set_mocked_audit_info()
fms = FMS(audit_info)
assert len(fms.fms_policies) == 1
assert fms.fms_policies[0].compliance_status[0].status == "COMPLIANT"
assert fms.fms_policies[0].compliance_status[0].account_id == "123456789012"
assert fms.fms_policies[0].compliance_status[0].policy_id == POLICY_ID
Reference in New Issue View Git Blame Copy Permalink