inspec 2.1.80 → 2.1.81

data/docs/resources/aws_iam_group.md.erb

@@ -1,64 +1,64 @@
----
-title: About the aws_iam_group Resource
-platform: aws
----
-
-# aws\_iam\_group
-
-Use the `aws_iam_group` InSpec audit resource to test properties of a single IAM group.
-
-To test properties of multiple or all groups, use the `aws_iam_groups` resource.
-
-<br>
-
-## Syntax
-
-An `aws_iam_group` resource block identifies a group by group name.
-
-    # Find a group by group name
-    describe aws_iam_group('mygroup') do
-      it { should exist }
-    end
-
-    # Hash syntax for group name
-    describe aws_iam_group(group_name: 'mygroup') do
-      it { should exist }
-    end
-
-<br>
-
-## Examples
-
-The following examples show how to use this InSpec audit resource.
-
-As this is the initial release of `aws_iam_group`, its limited functionality precludes examples.
-
-<br>
-
-## Properties
-
-### users
-
-Provides a list of the users that are attached to the group
-
-    describe aws_iam_group('mygroup')
-      its('users') { should include 'iam_user_name' }
-    end
-
-<br>
-
-## Matchers
-
-### exists
-
-The control will pass if a group with the given group name exists.
-
-    describe aws_iam_group('mygroup')
-      it { should exist }
-    end
-
-## AWS Permissions
-
-Your [Principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/intro-structure.html#intro-structure-principal) will need the `iam:GetGroup` action with Effect set to Allow.
-
-You can find detailed documentation at [Actions, Resources, and Condition Keys for Identity And Access Management](https://docs.aws.amazon.com/IAM/latest/UserGuide/list_identityandaccessmanagement.html).
+---
+title: About the aws_iam_group Resource
+platform: aws
+---
+
+# aws\_iam\_group
+
+Use the `aws_iam_group` InSpec audit resource to test properties of a single IAM group.
+
+To test properties of multiple or all groups, use the `aws_iam_groups` resource.
+
+<br>
+
+## Syntax
+
+An `aws_iam_group` resource block identifies a group by group name.
+
+    # Find a group by group name
+    describe aws_iam_group('mygroup') do
+      it { should exist }
+    end
+
+    # Hash syntax for group name
+    describe aws_iam_group(group_name: 'mygroup') do
+      it { should exist }
+    end
+
+<br>
+
+## Examples
+
+The following examples show how to use this InSpec audit resource.
+
+As this is the initial release of `aws_iam_group`, its limited functionality precludes examples.
+
+<br>
+
+## Properties
+
+### users
+
+Provides a list of the users that are attached to the group
+
+    describe aws_iam_group('mygroup')
+      its('users') { should include 'iam_user_name' }
+    end
+
+<br>
+
+## Matchers
+
+### exists
+
+The control will pass if a group with the given group name exists.
+
+    describe aws_iam_group('mygroup')
+      it { should exist }
+    end
+
+## AWS Permissions
+
+Your [Principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/intro-structure.html#intro-structure-principal) will need the `iam:GetGroup` action with Effect set to Allow.
+
+You can find detailed documentation at [Actions, Resources, and Condition Keys for Identity And Access Management](https://docs.aws.amazon.com/IAM/latest/UserGuide/list_identityandaccessmanagement.html).

data/docs/resources/aws_iam_groups.md.erb

@@ -1,49 +1,49 @@
----
-title: About the aws_iam_groups Resource
-platform: aws
----
-
-# aws\_iam\_groups
-
-Use the `aws_iam_groups` InSpec audit resource to test properties of all or multiple groups.
-
-To test properties of a single group, use the `aws_iam_group` resource.
-
-<br>
-
-## Syntax
-
-An `aws_iam_groups` resource block uses an optional filter to select a collection of IAM groups and then tests that collection.
-
-    # The control will pass if the filter returns at least one result. Use `should_not` if you expect zero matches.
-    describe aws_iam_groups do
-      it { should exist }
-    end
-
-<br>
-
-## Examples
-
-The following examples show how to use this InSpec audit resource.
-
-As this is the initial release of `aws_iam_groups`, its limited functionality precludes examples.
-
-<br>
-
-## Matchers
-
-For a full list of available matchers, please visit our [matchers page](https://www.inspec.io/docs/reference/matchers/).
-
-### exists
-
-The control will pass if the filter returns at least one result. Use `should_not` if you expect zero matches.
-
-    describe aws_iam_groups
-      it { should exist }
-    end
-
-## AWS Permissions
-
-Your [Principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/intro-structure.html#intro-structure-principal) will need the `iam:ListGroups` action with Effect set to Allow.
-
-You can find detailed documentation at [Actions, Resources, and Condition Keys for Identity And Access Management](https://docs.aws.amazon.com/IAM/latest/UserGuide/list_identityandaccessmanagement.html).
+---
+title: About the aws_iam_groups Resource
+platform: aws
+---
+
+# aws\_iam\_groups
+
+Use the `aws_iam_groups` InSpec audit resource to test properties of all or multiple groups.
+
+To test properties of a single group, use the `aws_iam_group` resource.
+
+<br>
+
+## Syntax
+
+An `aws_iam_groups` resource block uses an optional filter to select a collection of IAM groups and then tests that collection.
+
+    # The control will pass if the filter returns at least one result. Use `should_not` if you expect zero matches.
+    describe aws_iam_groups do
+      it { should exist }
+    end
+
+<br>
+
+## Examples
+
+The following examples show how to use this InSpec audit resource.
+
+As this is the initial release of `aws_iam_groups`, its limited functionality precludes examples.
+
+<br>
+
+## Matchers
+
+For a full list of available matchers, please visit our [matchers page](https://www.inspec.io/docs/reference/matchers/).
+
+### exists
+
+The control will pass if the filter returns at least one result. Use `should_not` if you expect zero matches.
+
+    describe aws_iam_groups
+      it { should exist }
+    end
+
+## AWS Permissions
+
+Your [Principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/intro-structure.html#intro-structure-principal) will need the `iam:ListGroups` action with Effect set to Allow.
+
+You can find detailed documentation at [Actions, Resources, and Condition Keys for Identity And Access Management](https://docs.aws.amazon.com/IAM/latest/UserGuide/list_identityandaccessmanagement.html).

data/docs/resources/aws_iam_password_policy.md.erb

@@ -1,82 +1,82 @@
----
-title: About the aws_iam_password_policy Resource
-platform: aws
----
-
-# aws\_iam\_password\_policy
-
-Use the `aws_iam_password_policy` InSpec audit resource to test properties of the AWS IAM Password Policy.
-
-<br>
-
-## Syntax
-
-An `aws_iam_password_policy` resource block takes no parameters. Several properties and matchers are available.
-
-    describe aws_iam_password_policy do
-      it { should require_lowercase_characters }
-    end
-
-<br>
-
-## Properties
-
-* `max_password_age_in_days`, `minimum_password_length`, `number_of_passwords_to_remember`
-
-## Examples
-
-The following examples show how to use this InSpec audit resource.
-
-### Test that the IAM Password Policy requires lowercase characters, uppercase characters, numbers, symbols, and a minimum length greater than eight
-
-    describe aws_iam_password_policy do
-      it { should require_lowercase_characters }
-      it { should require_uppercase_characters }
-      it { should require_symbols }
-      it { should require_numbers }
-      its('minimum_password_length') { should be > 8 }
-    end
-
-### Test that the IAM Password Policy allows users to change their password
-
-    describe aws_iam_password_policy do
-      it { should allow_users_to_change_passwords }
-    end
-
-### Test that the IAM Password Policy expires passwords
-
-    describe aws_iam_password_policy do
-      it { should expire_passwords }
-    end
-
-### Test that the IAM Password Policy has a max password age
-
-    describe aws_iam_password_policy do
-      its('max_password_age_in_days') { should be 90 }
-    end
-
-### Test that the IAM Password Policy prevents password reuse
-
-    describe aws_iam_password_policy do
-      it { should prevent_password_reuse }
-    end
-
-### Test that the IAM Password Policy requires users to remember 3 previous passwords
-
-    describe aws_iam_password_policy do
-      its('number_of_passwords_to_remember') { should eq 3 }
-    end
-
-<br>
-
-## Matchers
-
-This resource uses the following special matchers. For a full list of available matchers, please visit our [matchers page](https://www.inspec.io/docs/reference/matchers/).
-
-* `allows_users_to_change_passwords`, `expire_passwords`, `prevent_password_reuse`, `require_lowercase_characters` , `require_uppercase_characters`, `require_numbers`, `require_symbols`
-
-## AWS Permissions
-
-Your [Principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/intro-structure.html#intro-structure-principal) will need the `iam:GetAccountPasswordPolicy` action with Effect set to Allow.
-
-You can find detailed documentation at [Actions, Resources, and Condition Keys for Identity And Access Management](https://docs.aws.amazon.com/IAM/latest/UserGuide/list_identityandaccessmanagement.html).
+---
+title: About the aws_iam_password_policy Resource
+platform: aws
+---
+
+# aws\_iam\_password\_policy
+
+Use the `aws_iam_password_policy` InSpec audit resource to test properties of the AWS IAM Password Policy.
+
+<br>
+
+## Syntax
+
+An `aws_iam_password_policy` resource block takes no parameters. Several properties and matchers are available.
+
+    describe aws_iam_password_policy do
+      it { should require_lowercase_characters }
+    end
+
+<br>
+
+## Properties
+
+* `max_password_age_in_days`, `minimum_password_length`, `number_of_passwords_to_remember`
+
+## Examples
+
+The following examples show how to use this InSpec audit resource.
+
+### Test that the IAM Password Policy requires lowercase characters, uppercase characters, numbers, symbols, and a minimum length greater than eight
+
+    describe aws_iam_password_policy do
+      it { should require_lowercase_characters }
+      it { should require_uppercase_characters }
+      it { should require_symbols }
+      it { should require_numbers }
+      its('minimum_password_length') { should be > 8 }
+    end
+
+### Test that the IAM Password Policy allows users to change their password
+
+    describe aws_iam_password_policy do
+      it { should allow_users_to_change_passwords }
+    end
+
+### Test that the IAM Password Policy expires passwords
+
+    describe aws_iam_password_policy do
+      it { should expire_passwords }
+    end
+
+### Test that the IAM Password Policy has a max password age
+
+    describe aws_iam_password_policy do
+      its('max_password_age_in_days') { should be 90 }
+    end
+
+### Test that the IAM Password Policy prevents password reuse
+
+    describe aws_iam_password_policy do
+      it { should prevent_password_reuse }
+    end
+
+### Test that the IAM Password Policy requires users to remember 3 previous passwords
+
+    describe aws_iam_password_policy do
+      its('number_of_passwords_to_remember') { should eq 3 }
+    end
+
+<br>
+
+## Matchers
+
+This resource uses the following special matchers. For a full list of available matchers, please visit our [matchers page](https://www.inspec.io/docs/reference/matchers/).
+
+* `allows_users_to_change_passwords`, `expire_passwords`, `prevent_password_reuse`, `require_lowercase_characters` , `require_uppercase_characters`, `require_numbers`, `require_symbols`
+
+## AWS Permissions
+
+Your [Principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/intro-structure.html#intro-structure-principal) will need the `iam:GetAccountPasswordPolicy` action with Effect set to Allow.
+
+You can find detailed documentation at [Actions, Resources, and Condition Keys for Identity And Access Management](https://docs.aws.amazon.com/IAM/latest/UserGuide/list_identityandaccessmanagement.html).

data/docs/resources/aws_iam_policies.md.erb

@@ -1,87 +1,87 @@
----
-title: About the aws_iam_policies Resource
-platform: aws
----
-
-# aws\_iam\_policies
-
-Use the `aws_iam_policies` InSpec audit resource to test properties of some or all AWS IAM Policies.
-
-A policy is an entity in AWS that, when attached to an identity or resource, defines their permissions. AWS evaluates these policies when a principal, such as a user, makes a request. Permissions in the policies determine if the request is allowed or denied.
-
-Each IAM Policy is uniquely identified by either its `policy_name` or `arn`.
-
-<br>
-
-## Syntax
-
-An `aws_iam_policies` resource block collects a group of IAM Policies and then tests that group.
-
-    # Verify the policy specified by the policy name is included in IAM Policies in the AWS account.
-    describe aws_iam_policies do
-      its('policy_names') { should include('test-policy-1') }
-    end
-
-<br>
-
-## Examples
-
-The following examples show how to use this InSpec audit resource.
-
-As this is the initial release of `aws_iam_policies`, its limited functionality precludes examples.
-
-<br>
-
-## Properties
-
-* `arns`, `entries`, `policy_names`
-
-<br>
-
-## Property Examples
-
-### policy\_names
-
-Provides a list of policy names for all IAM Policies in the AWS account.
-
-    describe aws_iam_policies do
-      its('policy_names') { should include('test-policy-1') }
-    end
-
-### arns
-
-Provides a list of policy arns for all IAM Policies in the AWS account.
-
-    describe aws_iam_policies do
-      its('arns') { should include('arn:aws:iam::aws:policy/test-policy-1') }
-    end
-
-### entries
-
-Provides access to the raw results of the query. This can be useful for checking counts and other advanced operations.
-
-    # Allow at most 100 IAM Policies on the account
-    describe aws_iam_policies do
-      its('entries.count') { should be <= 100}
-    end
-
-<br>
-
-## Matchers
-
-For a full list of available matchers, please visit our [matchers page](https://www.inspec.io/docs/reference/matchers/).
-
-### exists
-
-The control will pass if the filter returns at least one result. Use `should_not` if you expect zero matches.
-
-    # Verify that at least one IAM Policies exists.
-    describe aws_iam_policies
-      it { should exist }
-    end
-
-## AWS Permissions
-
-Your [Principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/intro-structure.html#intro-structure-principal) will need the `iam:ListPolicies` action with Effect set to Allow.
-
-You can find detailed documentation at [Actions, Resources, and Condition Keys for Identity And Access Management](https://docs.aws.amazon.com/IAM/latest/UserGuide/list_identityandaccessmanagement.html).
+---
+title: About the aws_iam_policies Resource
+platform: aws
+---
+
+# aws\_iam\_policies
+
+Use the `aws_iam_policies` InSpec audit resource to test properties of some or all AWS IAM Policies.
+
+A policy is an entity in AWS that, when attached to an identity or resource, defines their permissions. AWS evaluates these policies when a principal, such as a user, makes a request. Permissions in the policies determine if the request is allowed or denied.
+
+Each IAM Policy is uniquely identified by either its `policy_name` or `arn`.
+
+<br>
+
+## Syntax
+
+An `aws_iam_policies` resource block collects a group of IAM Policies and then tests that group.
+
+    # Verify the policy specified by the policy name is included in IAM Policies in the AWS account.
+    describe aws_iam_policies do
+      its('policy_names') { should include('test-policy-1') }
+    end
+
+<br>
+
+## Examples
+
+The following examples show how to use this InSpec audit resource.
+
+As this is the initial release of `aws_iam_policies`, its limited functionality precludes examples.
+
+<br>
+
+## Properties
+
+* `arns`, `entries`, `policy_names`
+
+<br>
+
+## Property Examples
+
+### policy\_names
+
+Provides a list of policy names for all IAM Policies in the AWS account.
+
+    describe aws_iam_policies do
+      its('policy_names') { should include('test-policy-1') }
+    end
+
+### arns
+
+Provides a list of policy arns for all IAM Policies in the AWS account.
+
+    describe aws_iam_policies do
+      its('arns') { should include('arn:aws:iam::aws:policy/test-policy-1') }
+    end
+
+### entries
+
+Provides access to the raw results of the query. This can be useful for checking counts and other advanced operations.
+
+    # Allow at most 100 IAM Policies on the account
+    describe aws_iam_policies do
+      its('entries.count') { should be <= 100}
+    end
+
+<br>
+
+## Matchers
+
+For a full list of available matchers, please visit our [matchers page](https://www.inspec.io/docs/reference/matchers/).
+
+### exists
+
+The control will pass if the filter returns at least one result. Use `should_not` if you expect zero matches.
+
+    # Verify that at least one IAM Policies exists.
+    describe aws_iam_policies
+      it { should exist }
+    end
+
+## AWS Permissions
+
+Your [Principal](https://docs.aws.amazon.com/IAM/latest/UserGuide/intro-structure.html#intro-structure-principal) will need the `iam:ListPolicies` action with Effect set to Allow.
+
+You can find detailed documentation at [Actions, Resources, and Condition Keys for Identity And Access Management](https://docs.aws.amazon.com/IAM/latest/UserGuide/list_identityandaccessmanagement.html).