Along the lines of #44, maybe we can add a --consider-creds arg to the query subcommands to ignore users with inactive creds (but only as the "root" of a chain of principals since other users would have to create active creds to gain access to them).
Definitely not the default setting for queries tho, since PMapper should focus more on interpreting IAM Policies.
Along the lines of #44, maybe we can add a
--consider-creds
arg to the query subcommands to ignore users with inactive creds (but only as the "root" of a chain of principals since other users would have to create active creds to gain access to them).Definitely not the default setting for queries tho, since PMapper should focus more on interpreting IAM Policies.