turbot/aws_insights

Query: iam_boundary_policy_for_role

Usage

powerpipe query aws_insights.query.iam_boundary_policy_for_role

Steampipe Tables

SQL

select
case
when permissions_boundary_type is null then 'Not set'
when permissions_boundary_type = '' then 'Not set'
else substring(permissions_boundary_arn, 'arn:aws:iam::\d{12}:.+\/(.*)')
end as value,
'Boundary Policy' as label,
case
when permissions_boundary_type is null then 'alert'
when permissions_boundary_type = '' then 'alert'
else 'ok'
end as type
from
aws_iam_role
where
arn = $1
and account_id = split_part($1, ':', 5);

Dashboards

The query is used in the dashboards: