Welcome to Dome9’s documentation!¶
Dome9 is a web service that allows you to improve the security of your cloud technologies (AWS, Azure, GCP, Kubernetes, etc…). Through its service you can centralize all the information and perform security controls (GDPR, HIPAA, ISO27001…) individually or globally.
This repository contains a Python SDK of this tool. Initially its SDK did not have much functionality and that is why I developed this one to be able to work and include it within my continuous integration processes.
Installation¶
pip install dome9
Usage¶
from dome9 import Dome9
dome9 = Dome9(key='xxxxxx', secret='yyyyyyy')
rulesets = dome9.list_rulesets()
Authentication¶
There are two ways to authenticate:
- As Arguments: Passing variables on init -> Dome9(key=’xxxxxx’, secret=’yyyyyyy’)
- As Environment variables: Setting your credentials as environment variables -> DOME9_ACCESS_KEY and DOME9_SECRET_KEY
Example:
from dome9 import Dome9
dome9 = Dome9(key='xxxxxx', secret='yyyyyyy')
rulesets = dome9.list_rulesets()
export DOME9_ACCESS_KEY='xxxxxxxxxxxxxxxxxxxx'
export DOME9_SECRET_KEY='yyyyyyyyyyyyyyyyyyyy'
python -c "from dome9 import Dome9; print(Dome9().list_rulesets())"
Agile¶
import json
from dome9 import Dome9
cloudAccount = '00000-00000-00000-00000'
d9 = Dome9()
rulesetTemplate = {}
with open('ruleset','r') as f:
rulesetTemplate = json.loads(f.read())
# Step 1. Create ruleset
ruleset = d9.create_ruleset(rulesetTemplate)
# Step 2. Run Assessment
results = d9.run_assessment(rulesetId=ruleset['id'], cloudAccountId=cloudAccount)
# Step 3. Delete ruleset
ruleset = d9.delete_ruleset(ruleset['id'])