github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/mq/no_public_access.tf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/aws/mq/no_public_access.tf.go (about)

     1  package mq
     2  
     3  var terraformNoPublicAccessGoodExamples = []string{
     4  	`
     5   resource "aws_mq_broker" "good_example" {
     6     broker_name = "example"
     7   
     8     configuration {
     9       id       = aws_mq_configuration.test.id
    10       revision = aws_mq_configuration.test.latest_revision
    11     }
    12   
    13     engine_type        = "ActiveMQ"
    14     engine_version     = "5.15.0"
    15     host_instance_type = "mq.t2.micro"
    16     security_groups    = [aws_security_group.test.id]
    17   
    18     user {
    19       username = "ExampleUser"
    20       password = "MindTheGap"
    21     }
    22     publicly_accessible = false
    23   }
    24   `,
    25  }
    26  
    27  var terraformNoPublicAccessBadExamples = []string{
    28  	`
    29   resource "aws_mq_broker" "bad_example" {
    30     broker_name = "example"
    31   
    32     configuration {
    33       id       = aws_mq_configuration.test.id
    34       revision = aws_mq_configuration.test.latest_revision
    35     }
    36   
    37     engine_type        = "ActiveMQ"
    38     engine_version     = "5.15.0"
    39     host_instance_type = "mq.t2.micro"
    40     security_groups    = [aws_security_group.test.id]
    41   
    42     user {
    43       username = "ExampleUser"
    44       password = "MindTheGap"
    45     }
    46     publicly_accessible = true
    47   }
    48   `,
    49  }
    50  
    51  var terraformNoPublicAccessLinks = []string{
    52  	`https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/mq_broker#publicly_accessible`,
    53  }
    54  
    55  var terraformNoPublicAccessRemediationMarkdown = ``