|dZddlZddlmZmZmZddlmZddlm Z deee efde fdZ deee efde fd Z y) zWModule for storing the functions for parsing the tfstate files for dfifferent findings.N)SequenceMappingAny)const) arg_utils all_resourcesreturnc<g} tj|d}|D]}d}|ddk(r7|D]1}|dd|jk(s|dd|jk(s/d}n?n=|dd k(r5|D]0}|dd|jk(s|j|dd vs.d}n|s|j t j |d |j tjd j|S#ttjf$r }Yd}~y d}~wwxYw)aParses the terraform state file for IAM recommender findings. Args: all_resources: List of resources from the tfstate file. Resource Format: { "type": "google_project_iam_member", "value": { "member": "user:test@google.com", "role": "roles/owner" } } finding_data: SCC Finding data in form of class (securityposture.messages.Finding). Returns: A string containing the terraform resource data blocks in structured format for the given finding data. Format: (Data block as json string + SEPARATOR ...) If any error occurs, returns an empty string. z+findingMetadata.iamBindingsList.iamBindingsFtypegoogle_project_iam_membervaluememberroleTgoogle_project_iam_bindingmembersindentN) rGetFieldValueFromMessagerrappendjsondumpsrBLOCK_SEPARATORjoinKeyErrorInvalidFieldPathError)r finding_data data_blocks iam_bindingsresourceis_relevant_resourcebinding_s =lib/googlecloudsdk/api_lib/scc/remediation_intents/parsers.pyiam_recommender_parserr&s5.+55CL"# & 8 8#Gw)W^^;7#F+w||;#'  $ F ; ;#Gw'7<<7>>Xg%6y%AA#'  $ 4::hq9:5001/"0 77;  I33 4 s0?C8C8(C8C8C8 AC88DDc tj|d}|D]/}|ddk(s |dd|k(stj|dcSy#ttj f$r }Yd}~y d}~wwxYw) aParses the terraform state file for firewall findings. Args: all_resources: List of resources from the tfstate file. Resource Format: { "type": "google_compute_firewall", "value": { "name": "default-allow-ssh" } } finding_data: SCC Finding data in form of class (securityposture.messages.Finding). Returns: A string containing the terraform resource data block in json format for the given finding data. If any error occurs, returns an empty string. z!findingMetadata.firewallRule.namer google_compute_firewallr namerrNr)rrrrrr)rr firewall_namer!r$s r%firewall_parserr+Qsz" 669M" 6 7 7w'=8zz(1-- " I33 4 s!#A A A A A0+A0) __doc__rtypingrrr.googlecloudsdk.api_lib.scc.remediation_intentsr$googlecloudsdk.command_lib.util.apisrstrr&r+r%r3sa^ ))@:6GCH-.66rGCH-.r2