shaposhnikoff · October 15, 2023 08:39
diff --git a/Ophran IAM Policies ( Not used in any role ).py b/Ophran IAM Policies ( Not used in any role ).py
 import boto3,os,shutil,re
 session = boto3.session.Session(profile_name='default')
 iam = session.client('iam')

 def list_policy_arns():
    policy_arns = []
    paginator = iam.get_paginator('list_policies')
    for response in paginator.paginate(Scope='Local'):
        for policy in response['Policies']:
            policy_arns.append(policy['Arn'])
    return policy_arns

 def policy_role(policy_arn):
    response = iam.list_entities_for_policy(PolicyArn=policy_arn,EntityFilter='Role')
    return response['PolicyRoles']

 unused_policies = []

 for policy_arn in list_policy_arns():
    list_length = len(policy_role(policy_arn))
    if list_length == 0:
        unused_policies.append(policy_arn)

 regexp = re.compile(r'rbua-data-*')
 for up in unused_policies:
    if regexp.match(up.split('/')[-1]):
        print(up.split('/')[-1])
	import boto3,os,shutil,re
	session = boto3.session.Session(profile_name='default')
	iam = session.client('iam')

	def list_policy_arns():
	policy_arns = []
	paginator = iam.get_paginator('list_policies')
	for response in paginator.paginate(Scope='Local'):
	for policy in response['Policies']:
	policy_arns.append(policy['Arn'])
	return policy_arns

	def policy_role(policy_arn):
	response = iam.list_entities_for_policy(PolicyArn=policy_arn,EntityFilter='Role')
	return response['PolicyRoles']

	unused_policies = []

	for policy_arn in list_policy_arns():
	list_length = len(policy_role(policy_arn))
	if list_length == 0:
	unused_policies.append(policy_arn)

	regexp = re.compile(r'rbua-data-*')
	for up in unused_policies:
	if regexp.match(up.split('/')[-1]):
	print(up.split('/')[-1])