search

noqdev / iambic

IAMbic is Version-Control for IAM. It centralizes and simplifies cloud access and permissions. It maintains an eventually consistent, human-readable, bi-directional representation of IAM in Git.
https://iambic.org
Apache License 2.0
282 stars 26 forks source link

AWS Resource Policy Monitoring and Management #385

Open rjulian opened 1 year ago

rjulian commented 1 year ago

Is your feature request related to a problem? Please describe. Not so much a problem, just a part of IAM that is important for most organizations that I don't see managed currently in iambic.

Describe the solution you'd like When I import IAM policies for my account, every resource policy associated with an AWS resource in my account should be accounted for and managed.

Describe alternatives you've considered I guess I would just have to not manage them and hope that I had a sane way of using resource policies?

smoy commented 1 year ago

Resource policy monitoring and management is a massive feature lift.

What are the types of resource are most interesting? S3? EC2? AWS Control API attempts to standardize things; however, I've heard it's not that generic across resources types.

This feature will need a champion to design and plan how to move forward.