Pulls the account level S3 Bucket Public Access.
There is something a bit wonky where the api requires me to pass in the accountid (of the account i'm calling this from). Seemed like the cleanest solution was to also chain an sts.get_caller_identity to rely on the parameter propagation. Please let me know if there is a better way. Also kind of confusing that the api call is s3control, not intuitive that this is an account wide resource.
sfc-gh-afedorov
commented
4 years ago
Related to https://github.com/snowflakedb/SnowAlert/pull/454 and https://github.com/snowflakedb/SnowAlert/issues/453
Pulls the account level S3 Bucket Public Access. There is something a bit wonky where the api requires me to pass in the accountid (of the account i'm calling this from). Seemed like the cleanest solution was to also chain an sts.get_caller_identity to rely on the parameter propagation. Please let me know if there is a better way. Also kind of confusing that the api call is
s3control, not intuitive that this is an account wide resource.Tested by:
python runners/connectors_runner.py "AWS_COLLECT_%%"select * from "SNOWALERT"."DATA"."AWS_COLLECT_S3CONTROL_GET_PUBLIC_ACCESS_BLOCK";select * from "SNOWALERT"."DATA"."AWS_COLLECT_STS_GET_CALLER_IDENTITY";