Hierarchy

  • GlobalConfigValidator

Constructors

Methods

checkForArray checkSchema getAccountNames getOuIdNames isDynamicLogType validateAcceleratorMetadata validateAccessLogsBucketConfigDeploymentTargetAccounts validateAccessLogsBucketConfigDeploymentTargetOUs validateAccessLogsS3Policy validateAwsBackup validateBudgetDeploymentTargetOUs validateBudgetNotificationEmailIds validateBudgetSubscriberAddress validateCdkOptions validateCentralLogsBucketRegionName validateCentralLogsKmsResourcePolicyFileExists validateCentralLogsS3Policy validateCentralLogsS3ResourcePolicyFileExists validateCloudTrailSettings validateCloudWatch validateCloudWatchDynamicPartition validateCloudWatchExclusions validateCloudWatchExclusionsTargets validateCloudWatchLogsEncryptionConfigDeploymentTargetAccounts validateCloudWatchLogsEncryptionDeploymentTargetOUs validateCmkExistsInManagementAccount validateControlTowerControls validateDeploymentTargetAccountNames validateDeploymentTargetOUs validateElbLogsS3Policy validateImportedAccessLogsBucketPolicies validateImportedAssetBucketConfig validateImportedAssetBucketKmsPolicies validateImportedAssetBucketPolicies validateImportedCentralLogsBucketKmsPolicies validateImportedCentralLogsBucketPolicies validateImportedElbLogsBucketPolicies validateLambdaEncryptionConfigDeploymentTargetAccounts validateLambdaEncryptionConfigDeploymentTargetOUs validateLifecycleRuleExpirationForAccessLogBucket validateLifecycleRuleExpirationForCentralLogBucket validateLifecycleRuleExpirationForReports validateLoggingAccountName validateMaxConcurrency validateS3ConfigDeploymentTargetAccounts validateS3ConfigDeploymentTargetOUs validateServiceLimitQuotas validateSessionManager validateSnsTopics

Constructors

Methods

  • Parameters

    • inputStr: string
    • errorMessage: string
    • errors: string[]

    Returns void

  • Parameters

    • inputStr: string
    • errorMessage: string
    • errors: string[]

    Returns void

  • Prepare list of Account names from account config file

    Returns

    Parameters

    Returns string[]

  • Prepare list of OU ids from organization config file

    Returns

    Parameters

    Returns string[]

  • Parameters

    • o: any

    Returns o is {
        logGroupPattern: string;
        s3Prefix: string;
    }

  • Parameters

    • values: GlobalConfig
    • accountNames: string[]
    • errors: string[]

    Returns void

  • Function to validate existence of AccessLogs bucket configuration deployment target Accounts Make sure deployment target Accounts are part of account config file

    Parameters

    • values: GlobalConfig
    • accountNames: string[]
    • errors: string[]

    Returns void

  • Function to validate existence of AccessLogs bucket config deployment target OUs Make sure deployment target OUs are part of Organization config file

    Parameters

    Returns void

  • Validate Access Log S3 bucket policy for AWS Principal if block public access is enabled.

    Returns

    Parameters

    Returns void

  • Parameters

    Returns void

  • Function to validate existence of budget deployment target OUs Make sure deployment target OUs are part of Organization config file

    Parameters

    Returns void

  • Function to validate budget notification email address

    Parameters

    Returns void

  • Function to validate budget subscriber address

    Parameters

    Returns void

  • Parameters

    Returns void

  • Function to validate existence of central logs bucket region in enabled region list CentralLogs bucket region name must part of pipeline enabled region

    Parameters

    Returns void

  • Validate s3 resource policy file existence

    Returns

    Parameters

    Returns void

  • Validate Central S3 bucket policy for AWS Principal if block public access is enabled.

    Returns

    Parameters

    Returns void

  • Validate s3 resource policy file existence

    Returns

    Parameters

    Returns void

  • Parameters

    Returns void

  • Validate CloudWatch Logs replication

    Parameters

    • values: GlobalConfig
    • configDir: string
    • ouIdNames: string[]
    • accountNames: string[]
    • errors: string[]

    Returns void

  • Function to validate CloudWatch Logs Dynamic Partition and enforce format, key-value provided

    Parameters

    Returns void

  • Validate Cloudwatch logs exclusion inputs

    Parameters

    • values: GlobalConfig
    • ouIdNames: string[]
    • accountNames: string[]
    • errors: string[]

    Returns void

  • Parameters

    • inputList: string[]
    • globalList: string[]
    • errors: string[]

    Returns void

  • Function to validate existence of CloudWatch log group encryption configuration deployment target Accounts Make sure deployment target Accounts are part of account config file

    Parameters

    • values: GlobalConfig
    • accountNames: string[]
    • errors: string[]

    Returns void

  • Function to validate existence of CloudWatch encryption deployment target OUs Make sure deployment target OUs are part of Organization config file

    Parameters

    Returns void

  • Parameters

    Returns void

  • Function to validate Deployment targets account name for security services

    Parameters

    • values: GlobalConfig
    • accountNames: string[]
    • errors: string[]

    Returns void

  • Function to validate Deployment targets OU name for security services

    Parameters

    Returns void

  • Validate ELB Log S3 bucket policy for AWS Principal if block public access is enabled.

    Returns

    Parameters

    Returns void

  • Function to validate imported AccessLogs bucket policies

    Returns

    Parameters

    Returns void

  • Function to validate imported Assets bucket config

    Returns

    Parameters

    Returns void

  • Function to validate imported CentralLogs bucket kms policies

    Returns

    Parameters

    Returns void

  • Function to validate imported Assets S3 bucket policies

    Returns

    Parameters

    Returns void

  • Function to validate imported CentralLogs bucket kms policies

    Returns

    Parameters

    Returns void

  • Function to validate imported CentralLogs bucket policies

    Returns

    Parameters

    Returns void

  • Function to validate imported ElbLogs bucket policies

    Returns

    Parameters

    Returns void

  • Function to validate existence of Lambda encryption configuration deployment target Accounts Make sure deployment target Accounts are part of account config file

    Parameters

    • values: GlobalConfig
    • accountNames: string[]
    • errors: string[]

    Returns void

  • Function to validate existence of Lambda encryption configuration deployment target OUs Make sure deployment target OUs are part of Organization config file

    Parameters

    Returns void

  • Parameters

    Returns void

  • Function to validate S3 lifecycle rules Central Log Bucket

    Parameters

    Returns void

  • Function to validate S3 lifecycle rules for Cost Reporting

    Parameters

    Returns void

  • Function to validate existence of logging target account name Make sure deployment target accounts are part of account config file

    Parameters

    • values: GlobalConfig
    • accountNames: string[]
    • errors: string[]

    Returns void

  • validateMaxConcurrency

    Parameters

    Returns void

  • Function to validate existence of S3 configuration deployment target Accounts Make sure deployment target Accounts are part of account config file

    Parameters

    • values: GlobalConfig
    • accountNames: string[]
    • errors: string[]

    Returns void

  • Function to validate existence of S3 bucket config deployment target OUs Make sure deployment target OUs are part of Organization config file

    Parameters

    Returns void

  • Parameters

    Returns void

  • Parameters

    Returns void

Generated using TypeDoc