✨ backup way to describe aws regions #5143
Open
+102
−1
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This is a workaround for cases where the DescribeRegions API is blocked. We use a well known regional table provided by AWS to list all possible regions. https://api.regional-table.region-services.aws.a2z.com/index.json NOTE: if we need to validate that we have access to that region or, that the region is enabled, we can improve this function to do STS identity calls for all regions. Signed-off-by: Salim Afiune Maya <[email protected]>
|
have you tested this in an aws account with one region denied? im asking because i wanted to make sure we know that the scan will go through/the resources will behave properly with a denied region |
|
@vjeffrey I have not tested how a denied region will behave, I can do that testing and report back the findings. |
|
@afiune any progress on this? |
|
@vjeffrey trying to get access to an AWS organization, maybe with Control Tower, I can test on. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
This is a workaround for cases where the DescribeRegions API is blocked. We use a well known regional table provided by AWS to list all possible regions.
https://api.regional-table.region-services.aws.a2z.com/index.json
NOTE: if we need to validate that we have access to that region or, that the region is enabled, we can improve this function to do STS identity calls for all regions.