Class: DirectoryServiceMicrosoftADPasswordRule
Overview
Rule class to fail on DirectoryService::MicrosoftAD password in template
Instance Method Summary
collapse
#audit_impl, #sub_property_name
Methods inherited from BaseRule
#audit, #audit_impl
Instance Method Details
#password_property ⇒ Object
26
27
28
|
# File 'lib/cfn-nag/custom_rules/DirectoryServiceMicrosoftADPasswordRule.rb', line 26
def password_property
:password
end
|
#resource_type ⇒ Object
22
23
24
|
# File 'lib/cfn-nag/custom_rules/DirectoryServiceMicrosoftADPasswordRule.rb', line 22
def resource_type
'AWS::DirectoryService::MicrosoftAD'
end
|
18
19
20
|
# File 'lib/cfn-nag/custom_rules/DirectoryServiceMicrosoftADPasswordRule.rb', line 18
def rule_id
'F36'
end
|
#rule_text ⇒ Object
8
9
10
11
12
|
# File 'lib/cfn-nag/custom_rules/DirectoryServiceMicrosoftADPasswordRule.rb', line 8
def rule_text
'Directory Service Microsoft AD password must not be a plaintext string ' \
'or a Ref to a Parameter with a Default value. ' \
'Can be Ref to a NoEcho Parameter without a Default, or a dynamic reference to a secretsmanager/ssm-secure value.'
end
|
#rule_type ⇒ Object
14
15
16
|
# File 'lib/cfn-nag/custom_rules/DirectoryServiceMicrosoftADPasswordRule.rb', line 14
def rule_type
Violation::FAILING_VIOLATION
end
|