config

Documentation

Index

• Constants
• Variables
• func Datastream(namespace string, indexPrefix string) string
• type AwsConfig
• type AzureClientOpt
• type AzureConfig
• type CloudConfig
• type Config
  • func New(cfg *config.C) (*Config, error)
• type Fetcher
• type GcpClientOpt
• type GcpConfig

Constants

const (
	CIS_K8S   = "cis_k8s"
	CIS_EKS   = "cis_eks"
	CIS_AWS   = "cis_aws"
	CIS_GCP   = "cis_gcp"
	CIS_AZURE = "cis_azure"
)

https://github.com/elastic/integrations/tree/main/packages/cloud_security_posture/data_stream/findings/agent/stream

const (
	DefaultNamespace             = "default"
	VulnerabilityType            = "vuln_mgmt"
	AssetInventoryType           = "asset_inventory"
	ResultsDatastreamIndexPrefix = "logs-cloud_security_posture.findings"
)

const (
	AzureClientCredentialsTypeARMTemplate      = "arm_template"
	AzureClientCredentialsTypeManagedIdentity  = "managed_identity"
	AzureClientCredentialsTypeManual           = "manual"
	AzureClientCredentialsTypeSecret           = "service_principal_with_client_secret"
	AzureClientCredentialsTypeCertificate      = "service_principal_with_client_certificate"
	AzureClientCredentialsTypeUsernamePassword = "service_principal_with_client_username_and_password"
)

const (
	SingleAccount       = "single-account"
	OrganizationAccount = "organization-account"
)

Variables

var SupportedCIS = []string{CIS_AWS, CIS_K8S, CIS_EKS, CIS_GCP, CIS_AZURE}

Functions

func Datastream

func Datastream(namespace string, indexPrefix string) string

Datastream function to generate the datastream value

Types

type AwsConfig

type AwsConfig struct {
	Cred        aws.ConfigAWS `config:"credentials"`
	AccountType string        `config:"account_type"`
}

type AzureClientOpt

type AzureClientOpt struct {
	ClientCredentialsType     string `config:"type"`
	ClientID                  string `config:"client_id"`
	TenantID                  string `config:"tenant_id"`
	ClientSecret              string `config:"client_secret"`
	ClientUsername            string `config:"client_username"`
	ClientPassword            string `config:"client_password"`
	ClientCertificatePath     string `config:"client_certificate_path"`
	ClientCertificatePassword string `config:"client_certificate_password"`
}

type AzureConfig

type AzureConfig struct {
	Credentials AzureClientOpt `config:"credentials"`
	// SingleAccount or OrganizationAccount
	AccountType string `config:"account_type"`
}

type CloudConfig

type CloudConfig struct {
	Aws   AwsConfig   `config:"aws"`
	Gcp   GcpConfig   `config:"gcp"`
	Azure AzureConfig `config:"azure"`
}

type Config

type Config struct {
	Benchmark             string                  `config:"config.v1.benchmark"`
	Type                  string                  `config:"config.v1.type"`
	Deployment            string                  `config:"config.v1.deployment"`
	CloudConfig           CloudConfig             `config:"config.v1"`
	KubeConfig            string                  `config:"kube_config"`
	Period                time.Duration           `config:"period"`
	Processors            processors.PluginConfig `config:"processors"`
	BundlePath            string                  `config:"bundle_path"`
	PackagePolicyId       string                  `config:"package_policy_id"`
	PackagePolicyRevision int                     `config:"revision"`
}

func New

func New(cfg *config.C) (*Config, error)

type Fetcher

type Fetcher struct {
	Name string `config:"name"` // Name of the fetcher
}

type GcpClientOpt

type GcpClientOpt struct {
	CredentialsJSON     string `config:"credentials_json"`
	CredentialsFilePath string `config:"credentials_file_path"`
}

type GcpConfig

type GcpConfig struct {
	// empty for OrganizationAccount
	ProjectId string `config:"project_id"`

	// empty for SingleAccount
	OrganizationId string `config:"organization_id"`

	// SingleAccount or OrganizationAccount
	AccountType string `config:"account_type"`

	GcpClientOpt `config:"credentials"`
}