Add dates to IAM users, access keys & Elasticache Replication Groups (#…

…1093) * Add `CreateDate` property to IAM users Add the ability to easily filter for old or expired IAM users by adding the `CreateDate` property to them. This allows the possibility of nuking users that are "old" while leaving recently-created ones intact. * Add `CreateDate` property to IAM user access keys Add the ability to easily filter for old or expired IAM user access keys by adding the `CreateDate` property to them. This allows us to nuke user access keys that are old or expired while leaving recent ones intact. * Add `CreationTime` to elasticache replication groups Add the ability to easily filter for old or expired elasticache replication groups by adding the `CreationTime` property to them. This allows `aws-nuke` to easily clear out all "old" resources while leaving recent ones intact. * Fix ECRG change to stop using whole object --------- Co-authored-by: Remi Broemeling <[email protected]>
rebuy-de · Aug 29, 2023 · ac386b8 · ac386b8
1 parent bffd366
commit ac386b8
Show file tree

Hide file tree

Showing 3 changed files with 47 additions and 10 deletions.
diff --git a/resources/elasticache-replicationgroups.go b/resources/elasticache-replicationgroups.go
@@ -1,14 +1,18 @@
 package resources
 
 import (
+	"time"
+
 	"github.com/aws/aws-sdk-go/aws"
 	"github.com/aws/aws-sdk-go/aws/session"
 	"github.com/aws/aws-sdk-go/service/elasticache"
+	"github.com/rebuy-de/aws-nuke/v2/pkg/types"
 )
 
 type ElasticacheReplicationGroup struct {
-	svc     *elasticache.ElastiCache
-	groupID *string
+	svc        *elasticache.ElastiCache
+	groupID    *string
+	createTime *time.Time
 }
 
 func init() {
@@ -29,8 +33,9 @@ func ListElasticacheReplicationGroups(sess *session.Session) ([]Resource, error)
 
 		for _, replicationGroup := range resp.ReplicationGroups {
 			resources = append(resources, &ElasticacheReplicationGroup{
-				svc:     svc,
-				groupID: replicationGroup.ReplicationGroupId,
+				svc:        svc,
+				groupID:    replicationGroup.ReplicationGroupId,
+				createTime: replicationGroup.ReplicationGroupCreateTime,
 			})
 		}
 
@@ -44,6 +49,18 @@ func ListElasticacheReplicationGroups(sess *session.Session) ([]Resource, error)
 	return resources, nil
 }
 
+func (i *ElasticacheReplicationGroup) Properties() types.Properties {
+	properties := types.NewProperties()
+
+	properties.Set("ID", i.groupID)
+
+	if i.createTime != nil {
+		properties.Set("CreateTime", i.createTime.Format(time.RFC3339))
+	}
+
+	return properties
+}
+
 func (i *ElasticacheReplicationGroup) Remove() error {
 	params := &elasticache.DeleteReplicationGroupInput{
 		ReplicationGroupId: i.groupID,

diff --git a/resources/iam-user-access-keys.go b/resources/iam-user-access-keys.go
@@ -2,6 +2,7 @@ package resources
 
 import (
 	"fmt"
+	"time"
 
 	"github.com/aws/aws-sdk-go/aws/session"
 	"github.com/aws/aws-sdk-go/service/iam"
@@ -11,6 +12,7 @@ import (
 type IAMUserAccessKey struct {
 	svc         *iam.IAM
 	accessKeyId string
+	createDate  *time.Time
 	userName    string
 	status      string
 	userTags    []*iam.Tag
@@ -47,6 +49,7 @@ func ListIAMUserAccessKeys(sess *session.Session) ([]Resource, error) {
 			resources = append(resources, &IAMUserAccessKey{
 				svc:         svc,
 				accessKeyId: *meta.AccessKeyId,
+				createDate:  meta.CreateDate,
 				userName:    *meta.UserName,
 				status:      *meta.Status,
 				userTags:    userTags.Tags,
@@ -75,6 +78,10 @@ func (e *IAMUserAccessKey) Properties() types.Properties {
 	properties.Set("UserName", e.userName)
 	properties.Set("AccessKeyID", e.accessKeyId)
 
+	if e.createDate != nil {
+		properties.Set("CreateDate", e.createDate.Format(time.RFC3339))
+	}
+
 	for _, tag := range e.userTags {
 		properties.SetTag(tag.Key, tag.Value)
 	}

diff --git a/resources/iam-users.go b/resources/iam-users.go
@@ -1,16 +1,20 @@
 package resources
 
 import (
+	"time"
+
 	"github.com/aws/aws-sdk-go/aws/session"
 	"github.com/aws/aws-sdk-go/service/iam"
 	"github.com/rebuy-de/aws-nuke/v2/pkg/types"
 	"github.com/sirupsen/logrus"
 )
 
 type IAMUser struct {
-	svc  *iam.IAM
-	name string
-	tags []*iam.Tag
+	svc              *iam.IAM
+	name             string
+	tags             []*iam.Tag
+	createDate       *time.Time
+	passwordLastUsed *time.Time
 }
 
 func init() {
@@ -37,9 +41,11 @@ func ListIAMUsers(sess *session.Session) ([]Resource, error) {
 				continue
 			}
 			resources = append(resources, &IAMUser{
-				svc:  svc,
-				name: *out.UserName,
-				tags: user.Tags,
+				svc:              svc,
+				name:             *user.UserName,
+				tags:             user.Tags,
+				createDate:       user.CreateDate,
+				passwordLastUsed: user.PasswordLastUsed,
 			})
 		}
 		return true
@@ -70,6 +76,13 @@ func (e *IAMUser) Properties() types.Properties {
 	properties := types.NewProperties()
 	properties.Set("Name", e.name)
 
+	if e.createDate != nil {
+		properties.Set("CreateDate", e.createDate.Format(time.RFC3339))
+	}
+	if e.passwordLastUsed != nil {
+		properties.Set("PasswordLastUsed", e.passwordLastUsed.Format(time.RFC3339))
+	}
+
 	for _, tag := range e.tags {
 		properties.SetTag(tag.Key, tag.Value)
 	}