aws-dump: Added iam:instance-profiles report

hamstah · Jul 30, 2019 · 3d88ac6 · 3d88ac6
1 parent b7c3df3
commit 3d88ac6
Showing 1 changed file with 27 additions and 0 deletions.
diff --git a/aws/dump/iam.go b/aws/dump/iam.go
@@ -17,6 +17,7 @@ var (
 			"roles":                 IAMListRoles,
 			"policies":              IAMListPolicies,
 			"groups":                IAMListGroups,
+			"instance-profiles":     IAMListInstanceProfiles,
 		},
 	}
 )
@@ -239,3 +240,29 @@ func AttachServiceLastAccessedDetails(client *iam.IAM, result *ReportResult, job
 		i += 1
 	}
 }
+
+func IAMListInstanceProfiles(session *Session) *ReportResult {
+
+	client := iam.New(session.Session, session.Config)
+
+	resources := []Resource{}
+	err := client.ListInstanceProfilesPages(&iam.ListInstanceProfilesInput{},
+		func(page *iam.ListInstanceProfilesOutput, lastPage bool) bool {
+			for _, instanceProfile := range page.InstanceProfiles {
+				resource := Resource{
+					ID:        *instanceProfile.InstanceProfileId,
+					ARN:       *instanceProfile.Arn,
+					AccountID: session.AccountID,
+					Service:   "iam",
+					Type:      "instance-profile",
+					Region:    *session.Config.Region,
+					Metadata:  structs.Map(instanceProfile),
+				}
+				resources = append(resources, resource)
+			}
+
+			return true
+		})
+
+	return &ReportResult{resources, err}
+}