github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/digitalocean/spaces/acl_no_public_read.tf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/digitalocean/spaces/acl_no_public_read.tf.go (about)

     1  package spaces
     2  
     3  var terraformAclNoPublicReadGoodExamples = []string{
     4  	`
     5   resource "digitalocean_spaces_bucket" "good_example" {
     6     name   = "private_space"
     7     region = "nyc3"
     8     acl    = "private"
     9   }
    10     
    11   resource "digitalocean_spaces_bucket_object" "index" {
    12     region       = digitalocean_spaces_bucket.good_example.region
    13     bucket       = digitalocean_spaces_bucket.good_example.name
    14     key          = "index.html"
    15     content      = "<html><body><p>This page is empty.</p></body></html>"
    16     content_type = "text/html"
    17   }
    18   `,
    19  }
    20  
    21  var terraformAclNoPublicReadBadExamples = []string{
    22  	`
    23   resource "digitalocean_spaces_bucket" "bad_example" {
    24     name   = "public_space"
    25     region = "nyc3"
    26     acl    = "public-read"
    27   }
    28   
    29   resource "digitalocean_spaces_bucket_object" "index" {
    30     region       = digitalocean_spaces_bucket.bad_example.region
    31     bucket       = digitalocean_spaces_bucket.bad_example.name
    32     key          = "index.html"
    33     content      = "<html><body><p>This page is empty.</p></body></html>"
    34     content_type = "text/html"
    35     acl          = "public-read"
    36   }
    37   `,
    38  }
    39  
    40  var terraformAclNoPublicReadLinks = []string{
    41  	`https://registry.terraform.io/providers/digitalocean/digitalocean/latest/docs/resources/spaces_bucket#acl`, `https://registry.terraform.io/providers/digitalocean/digitalocean/latest/docs/resources/spaces_bucket_object#acl`,
    42  }
    43  
    44  var terraformAclNoPublicReadRemediationMarkdown = ``