fr34k8 · August 13, 2018 12:03
diff --git a/generator.py b/generator.py
 #!/usr/bin/env python

 """Convert CSV policies into AWS JSON format."""

 import json
 import csv

 POLICIES = 'terraform.csv'
 CRUD_COL = 2
 ACTION_COL = 3
 POLICIES_COL_COUNT = 8

 TEMPLATE = """{
    "Version": "2012-10-17",
    "Statement": [
        {
            "Action": [
            ],
            "Effect": "Allow",
            "Resource": "*"
        }
    ]
 }
 """

 CREATE_OPS = {'CREATE', 'READ', 'UPDATE'}
 DELETE_OPS = {'DELETE', 'READ', 'UPDATE'}

 INSTANCE_CREATE_FILE = 'instance-create.json'
 INSTANCE_DELETE_FILE = 'instance-delete.json'


 def parse_policies():
    policies = {'CREATE': set(), 'DELETE': set()}
    with open(POLICIES) as fp:
        csv_policies = csv.reader(fp)
        for row in csv_policies:
            if len(row) < POLICIES_COL_COUNT:
                continue
            operation = row[CRUD_COL]
            ec2action = row[ACTION_COL]
            if operation in CREATE_OPS:
                policies['CREATE'].add(ec2action)
            if operation in DELETE_OPS:
                policies['DELETE'].add(ec2action)
    return policies


 def save_policies(policies):
    create = json.loads(TEMPLATE)
    create['Statement'][0]['Action'] = sorted(policies['CREATE'])
    delete = json.loads(TEMPLATE)
    delete['Statement'][0]['Action'] = sorted(policies['DELETE'])
    with open(INSTANCE_CREATE_FILE, 'w') as fp:
        json.dump(create, fp, indent=4)
    with open(INSTANCE_DELETE_FILE, 'w') as fp:
        json.dump(delete, fp, indent=4)


 if __name__ == '__main__':
    policies = parse_policies()
    save_policies(policies)
	#!/usr/bin/env python

	"""Convert CSV policies into AWS JSON format."""

	import json
	import csv

	POLICIES = 'terraform.csv'
	CRUD_COL = 2
	ACTION_COL = 3
	POLICIES_COL_COUNT = 8

	TEMPLATE = """{
	"Version": "2012-10-17",
	"Statement": [
	{
	"Action": [
	],
	"Effect": "Allow",
	"Resource": "*"
	}
	]
	}
	"""

	CREATE_OPS = {'CREATE', 'READ', 'UPDATE'}
	DELETE_OPS = {'DELETE', 'READ', 'UPDATE'}

	INSTANCE_CREATE_FILE = 'instance-create.json'
	INSTANCE_DELETE_FILE = 'instance-delete.json'


	def parse_policies():
	policies = {'CREATE': set(), 'DELETE': set()}
	with open(POLICIES) as fp:
	csv_policies = csv.reader(fp)
	for row in csv_policies:
	if len(row) < POLICIES_COL_COUNT:
	continue
	operation = row[CRUD_COL]
	ec2action = row[ACTION_COL]
	if operation in CREATE_OPS:
	policies['CREATE'].add(ec2action)
	if operation in DELETE_OPS:
	policies['DELETE'].add(ec2action)
	return policies


	def save_policies(policies):
	create = json.loads(TEMPLATE)
	create['Statement'][0]['Action'] = sorted(policies['CREATE'])
	delete = json.loads(TEMPLATE)
	delete['Statement'][0]['Action'] = sorted(policies['DELETE'])
	with open(INSTANCE_CREATE_FILE, 'w') as fp:
	json.dump(create, fp, indent=4)
	with open(INSTANCE_DELETE_FILE, 'w') as fp:
	json.dump(delete, fp, indent=4)


	if __name__ == '__main__':
	policies = parse_policies()
	save_policies(policies)