100 lines
2.9 KiB
Python
100 lines
2.9 KiB
Python
import boto3
|
|
|
|
from moto import mock_ssm
|
|
|
|
|
|
@mock_ssm
|
|
def test_create_patch_baseLine():
|
|
ssm = boto3.client("ssm", region_name="us-east-1")
|
|
|
|
baseline_name = "ExamplePatchBaseline"
|
|
baseline_description = "Example patch baseline created using Boto3"
|
|
|
|
# Define the approval rules for the patch baseline
|
|
approval_rules = {
|
|
"PatchRules": [
|
|
{
|
|
"PatchFilterGroup": {
|
|
"PatchFilters": [
|
|
{"Key": "PRODUCT", "Values": ["AmazonLinux2012.03"]},
|
|
{"Key": "CLASSIFICATION", "Values": ["Security"]},
|
|
]
|
|
},
|
|
"ApproveAfterDays": 7,
|
|
"ComplianceLevel": "CRITICAL",
|
|
}
|
|
]
|
|
}
|
|
|
|
# Create the patch baseline
|
|
response = ssm.create_patch_baseline(
|
|
Name=baseline_name,
|
|
OperatingSystem="AMAZON_LINUX",
|
|
Description=baseline_description,
|
|
ApprovalRules=approval_rules,
|
|
)
|
|
|
|
_id = response["BaselineId"] # mw-01d6bbfdf6af2c39a
|
|
|
|
response = ssm.describe_patch_baselines(
|
|
Filters=[
|
|
{
|
|
"Key": "NAME_PREFIX",
|
|
"Values": [
|
|
baseline_name,
|
|
],
|
|
},
|
|
],
|
|
MaxResults=50,
|
|
)
|
|
assert len(response["BaselineIdentities"]) == 1
|
|
baseline = response["BaselineIdentities"][0]
|
|
assert baseline["BaselineId"] == _id
|
|
assert baseline["BaselineName"] == baseline_name
|
|
assert baseline["DefaultBaseline"] is False
|
|
assert baseline["OperatingSystem"] == "AMAZON_LINUX"
|
|
assert baseline["BaselineDescription"] == baseline_description
|
|
|
|
|
|
@mock_ssm
|
|
def test_delete_patch_baseline():
|
|
ssm = boto3.client("ssm", region_name="us-east-1")
|
|
|
|
baseline_name = "ExamplePatchBaseline"
|
|
|
|
# Create the patch baseline
|
|
response = ssm.create_patch_baseline(
|
|
Name="ExamplePatchBaseline",
|
|
OperatingSystem="AMAZON_LINUX",
|
|
Description="Example patch baseline created using Boto3",
|
|
ApprovalRules={
|
|
"PatchRules": [
|
|
{
|
|
"PatchFilterGroup": {
|
|
"PatchFilters": [
|
|
{"Key": "PRODUCT", "Values": ["AmazonLinux2012.03"]},
|
|
{"Key": "CLASSIFICATION", "Values": ["Security"]},
|
|
]
|
|
},
|
|
"ApproveAfterDays": 7,
|
|
"ComplianceLevel": "CRITICAL",
|
|
}
|
|
]
|
|
},
|
|
)
|
|
|
|
_id = response["BaselineId"] # pw-0a49ee14c7f305f55
|
|
ssm.delete_patch_baseline(BaselineId=_id)
|
|
response = ssm.describe_patch_baselines(
|
|
Filters=[
|
|
{
|
|
"Key": "NAME_PREFIX",
|
|
"Values": [
|
|
baseline_name,
|
|
],
|
|
},
|
|
],
|
|
MaxResults=50,
|
|
)
|
|
assert len(response["BaselineIdentities"]) == 0
|