forked from awsdocs/aws-doc-sdk-examples
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathput_config_rule.py
55 lines (47 loc) · 1.85 KB
/
put_config_rule.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
# Copyright 2010-2019 Amazon.com, Inc. or its affiliates. All Rights Reserved.
#
# This file is licensed under the Apache License, Version 2.0 (the 'License').
# You may not use this file except in compliance with the License. A copy of the
# License is located at
#
# http://aws.amazon.com/apache2.0/
#
# This file is distributed on an 'AS IS' BASIS, WITHOUT WARRANTIES OR CONDITIONS
# OF ANY KIND, either express or implied. See the License for the specific
# language governing permissions and limitations under the License.
# snippet-start:[config.python.put_config_rule.complete]
import boto3
from botocore.exceptions import ClientError
config = boto3.client('config')
try:
response = config.put_config_rule(
ConfigRule={
'ConfigRuleName': 'S3BucketRule',
'Description': 'S3 Public Read Prohibited Bucket Rule',
'Scope': {
'ComplianceResourceTypes': [
'AWS::S3::Bucket',
],
},
'Source': {
'Owner': 'AWS',
'SourceIdentifier': 'S3_BUCKET_PUBLIC_READ_PROHIBITED',
},
'InputParameters': '{}',
'ConfigRuleState': 'ACTIVE'
}
)
print('\n\rResponse: ' + str(response) + '\n\r')
except ClientError as e:
print(e)
# snippet-end:[config.python.put_config_rule.complete]
# snippet-comment:[These are tags for the AWS doc team's sample catalog. Do not remove.]
# snippet-sourcedescription:[put_config_rule.py demonstrates how to add a AWS Config rule.]
# snippet-keyword:[Python]
# snippet-keyword:[AWS SDK for Python (Boto3)]
# snippet-keyword:[Code Sample]
# snippet-keyword:[AWS Config]
# snippet-service:[config]
# snippet-sourcetype:[full-example]
# snippet-sourcedate:[2018-12-26]
# snippet-sourceauthor:[walkerk1980]