in rules/customer-fc/aggregate-ram-role-last-login-expired-check.py [0:0]
def evaluate_configuration_item(rule_parameters, configuration_item):
compliance_type = COMPLIANCE_TYPE_NON_COMPLIANT
annotation = None
full_configuration = configuration_item['configuration']
configuration = parse_json(full_configuration)
resource_id = configuration_item["resourceId"]
sls_region_id, sls_project, sls_logstore = actiontrail_get_default_trail(resource_id)
## 只查看第一页是否有数据
cnt = sls_get_logs_cnt(sls_region_id, sls_project, sls_logstore, resource_id)
if cnt and cnt > 0:
compliance_type = COMPLIANCE_TYPE_COMPLIANT
annotation = json.dumps({'configuration': '', 'desiredValue': '', 'operator': ''})
else:
annotation = json.dumps({'configuration': 'RAM Role have no activity within X (90) days', 'desiredValue': '', 'operator': ''})
return compliance_type, annotation