class DirectoryServiceMicrosoftADPasswordRule

Rule class to fail on DirectoryService::MicrosoftAD password in template

Public Instance Methods

password_property() click to toggle source
# File lib/cfn-nag/custom_rules/DirectoryServiceMicrosoftADPasswordRule.rb, line 26
def password_property
  :password
end
resource_type() click to toggle source
# File lib/cfn-nag/custom_rules/DirectoryServiceMicrosoftADPasswordRule.rb, line 22
def resource_type
  'AWS::DirectoryService::MicrosoftAD'
end
rule_id() click to toggle source
# File lib/cfn-nag/custom_rules/DirectoryServiceMicrosoftADPasswordRule.rb, line 18
def rule_id
  'F36'
end
rule_text() click to toggle source
# File lib/cfn-nag/custom_rules/DirectoryServiceMicrosoftADPasswordRule.rb, line 8
def rule_text
  'Directory Service Microsoft AD password must not be a plaintext string ' \
  'or a Ref to a Parameter with a Default value.  ' \
  'Can be Ref to a NoEcho Parameter without a Default, or a dynamic reference to a secretsmanager/ssm-secure value.'
end
rule_type() click to toggle source
# File lib/cfn-nag/custom_rules/DirectoryServiceMicrosoftADPasswordRule.rb, line 14
def rule_type
  Violation::FAILING_VIOLATION
end