Add SSM Support

resources/ssm-activations.go

@@ -0,0 +1,60 @@
+package resources
+
+import (
+	"github.com/aws/aws-sdk-go/aws"
+	"github.com/aws/aws-sdk-go/aws/session"
+	"github.com/aws/aws-sdk-go/service/ssm"
+)
+
+type SSMActivation struct {
+	svc *ssm.SSM
+	ID  *string
+}
+
+func init() {
+	register("SSMActivation", ListSSMActivations)
+}
+
+func ListSSMActivations(sess *session.Session) ([]Resource, error) {
+	svc := ssm.New(sess)
+	resources := []Resource{}
+
+	params := &ssm.DescribeActivationsInput{
+		MaxResults: aws.Int64(50),
+	}
+
+	for {
+		output, err := svc.DescribeActivations(params)
+		if err != nil {
+			return nil, err
+		}
+
+		for _, activation := range output.ActivationList {
+			resources = append(resources, &SSMActivation{
+				svc: svc,
+				ID:  activation.ActivationId,
+			})
+		}
+
+		if output.NextToken == nil {
+			break
+		}
+
+		params.NextToken = output.NextToken
+	}
+
+	return resources, nil
+}
+
+func (f *SSMActivation) Remove() error {
+
+	_, err := f.svc.DeleteActivation(&ssm.DeleteActivationInput{
+		ActivationId: f.ID,
+	})
+
+	return err
+}
+
+func (f *SSMActivation) String() string {
+	return *f.ID
+}

resources/ssm-associations.go

@@ -0,0 +1,62 @@
+package resources
+
+import (
+	"github.com/aws/aws-sdk-go/aws"
+	"github.com/aws/aws-sdk-go/aws/session"
+	"github.com/aws/aws-sdk-go/service/ssm"
+)
+
+type SSMAssociation struct {
+	svc           *ssm.SSM
+	associationID *string
+	instanceID    *string
+}
+
+func init() {
+	register("SSMAssociation", ListSSMAssociations)
+}
+
+func ListSSMAssociations(sess *session.Session) ([]Resource, error) {
+	svc := ssm.New(sess)
+	resources := []Resource{}
+
+	params := &ssm.ListAssociationsInput{
+		MaxResults: aws.Int64(50),
+	}
+
+	for {
+		output, err := svc.ListAssociations(params)
+		if err != nil {
+			return nil, err
+		}
+
+		for _, association := range output.Associations {
+			resources = append(resources, &SSMAssociation{
+				svc:           svc,
+				associationID: association.AssociationId,
+				instanceID:    association.InstanceId,
+			})
+		}
+
+		if output.NextToken == nil {
+			break
+		}
+
+		params.NextToken = output.NextToken
+	}
+
+	return resources, nil
+}
+
+func (f *SSMAssociation) Remove() error {
+
+	_, err := f.svc.DeleteAssociation(&ssm.DeleteAssociationInput{
+		AssociationId: f.associationID,
+	})
+
+	return err
+}
+
+func (f *SSMAssociation) String() string {
+	return *f.associationID
+}

resources/ssm-documents.go

@@ -0,0 +1,68 @@
+package resources
+
+import (
+	"github.com/aws/aws-sdk-go/aws"
+	"github.com/aws/aws-sdk-go/aws/session"
+	"github.com/aws/aws-sdk-go/service/ssm"
+)
+
+type SSMDocument struct {
+	svc  *ssm.SSM
+	name *string
+}
+
+func init() {
+	register("SSMDocument", ListSSMDocuments)
+}
+
+func ListSSMDocuments(sess *session.Session) ([]Resource, error) {
+	svc := ssm.New(sess)
+	resources := []Resource{}
+
+	documentKeyFilter := []*ssm.DocumentKeyValuesFilter{
+		{
+			Key:    aws.String("Owner"),
+			Values: []*string{aws.String("Self")},
+		},
+	}
+
+	params := &ssm.ListDocumentsInput{
+		MaxResults: aws.Int64(50),
+		Filters:    documentKeyFilter,
+	}
+
+	for {
+		output, err := svc.ListDocuments(params)
+		if err != nil {
+			return nil, err
+		}
+
+		for _, documentIdentifier := range output.DocumentIdentifiers {
+			resources = append(resources, &SSMDocument{
+				svc:  svc,
+				name: documentIdentifier.Name,
+			})
+		}
+
+		if output.NextToken == nil {
+			break
+		}
+
+		params.NextToken = output.NextToken
+	}
+
+	return resources, nil
+}
+
+func (f *SSMDocument) Remove() error {
+
+	_, err := f.svc.DeleteDocument(&ssm.DeleteDocumentInput{
+		Name: f.name,
+	})
+
+	return err
+}
+
+func (f *SSMDocument) String() string {
+	return *f.name
+}

resources/ssm-maintenancewindows.go

@@ -0,0 +1,60 @@
+package resources
+
+import (
+	"github.com/aws/aws-sdk-go/aws"
+	"github.com/aws/aws-sdk-go/aws/session"
+	"github.com/aws/aws-sdk-go/service/ssm"
+)
+
+type SSMMaintenanceWindow struct {
+	svc *ssm.SSM
+	ID  *string
+}
+
+func init() {
+	register("SSMMaintenanceWindow", ListSSMMaintenanceWindows)
+}
+
+func ListSSMMaintenanceWindows(sess *session.Session) ([]Resource, error) {
+	svc := ssm.New(sess)
+	resources := []Resource{}
+
+	params := &ssm.DescribeMaintenanceWindowsInput{
+		MaxResults: aws.Int64(50),
+	}
+
+	for {
+		output, err := svc.DescribeMaintenanceWindows(params)
+		if err != nil {
+			return nil, err
+		}
+
+		for _, windowIdentity := range output.WindowIdentities {
+			resources = append(resources, &SSMMaintenanceWindow{
+				svc: svc,
+				ID:  windowIdentity.WindowId,
+			})
+		}
+
+		if output.NextToken == nil {
+			break
+		}
+
+		params.NextToken = output.NextToken
+	}
+
+	return resources, nil
+}
+
+func (f *SSMMaintenanceWindow) Remove() error {
+
+	_, err := f.svc.DeleteMaintenanceWindow(&ssm.DeleteMaintenanceWindowInput{
+		WindowId: f.ID,
+	})
+
+	return err
+}
+
+func (f *SSMMaintenanceWindow) String() string {
+	return *f.ID
+}

resources/ssm-parameters.go

@@ -0,0 +1,60 @@
+package resources
+
+import (
+	"github.com/aws/aws-sdk-go/aws"
+	"github.com/aws/aws-sdk-go/aws/session"
+	"github.com/aws/aws-sdk-go/service/ssm"
+)
+
+type SSMParameter struct {
+	svc  *ssm.SSM
+	name *string
+}
+
+func init() {
+	register("SSMParameter", ListSSMParameters)
+}
+
+func ListSSMParameters(sess *session.Session) ([]Resource, error) {
+	svc := ssm.New(sess)
+	resources := []Resource{}
+
+	params := &ssm.DescribeParametersInput{
+		MaxResults: aws.Int64(50),
+	}
+
+	for {
+		output, err := svc.DescribeParameters(params)
+		if err != nil {
+			return nil, err
+		}
+
+		for _, parameter := range output.Parameters {
+			resources = append(resources, &SSMParameter{
+				svc:  svc,
+				name: parameter.Name,
+			})
+		}
+
+		if output.NextToken == nil {
+			break
+		}
+
+		params.NextToken = output.NextToken
+	}
+
+	return resources, nil
+}
+
+func (f *SSMParameter) Remove() error {
+
+	_, err := f.svc.DeleteParameter(&ssm.DeleteParameterInput{
+		Name: f.name,
+	})
+
+	return err
+}
+
+func (f *SSMParameter) String() string {
+	return *f.name
+}

resources/ssm-patchbaselines.go

@@ -0,0 +1,79 @@
+package resources
+
+import (
+	"fmt"
+
+	"github.com/aws/aws-sdk-go/aws"
+	"github.com/aws/aws-sdk-go/aws/session"
+	"github.com/aws/aws-sdk-go/service/ssm"
+)
+
+type SSMPatchBaseline struct {
+	svc             *ssm.SSM
+	ID              *string
+	defaultBaseline *bool
+}
+
+func init() {
+	register("SSMPatchBaseline", ListSSMPatchBaselines)
+}
+
+func ListSSMPatchBaselines(sess *session.Session) ([]Resource, error) {
+	svc := ssm.New(sess)
+	resources := []Resource{}
+
+	patchBaselineFilter := []*ssm.PatchOrchestratorFilter{
+		{
+			Key:    aws.String("OWNER"),
+			Values: []*string{aws.String("Self")},
+		},
+	}
+
+	params := &ssm.DescribePatchBaselinesInput{
+		MaxResults: aws.Int64(50),
+		Filters:    patchBaselineFilter,
+	}
+
+	for {
+		output, err := svc.DescribePatchBaselines(params)
+		if err != nil {
+			return nil, err
+		}
+
+		for _, baselineIdentity := range output.BaselineIdentities {
+			resources = append(resources, &SSMPatchBaseline{
+				svc:             svc,
+				ID:              baselineIdentity.BaselineId,
+				defaultBaseline: baselineIdentity.DefaultBaseline,
+			})
+		}
+
+		if output.NextToken == nil {
+			break
+		}
+
+		params.NextToken = output.NextToken
+	}
+
+	return resources, nil
+}
+
+func (f *SSMPatchBaseline) Remove() error {
+
+	_, err := f.svc.DeletePatchBaseline(&ssm.DeletePatchBaselineInput{
+		BaselineId: f.ID,
+	})
+
+	return err
+}
+
+func (f *SSMPatchBaseline) String() string {
+	return *f.ID
+}
+
+func (f *SSMPatchBaseline) Filter() error {
+	if *f.defaultBaseline {
+		return fmt.Errorf("cannot delete default patch baseline, reassign default first")
+	}
+	return nil
+}