AWS lambda function written in go to rotate access keys. Resources are created with terraform.
-
check access keys for all iam users
-
delete keys created (expiration + 30) days ago
-
deactive keys created expiration(90 by default) days ago
-
send slack notification if key was created (expiration - 7) days ago
-
list keys for slack user
-
generate new key for slack user
-
delete keys for slack user
GOOS=linux go build -o main main.go && build-lambda-zip -o aws-rotate-access-keys.zip main
set -x GOOS linux; and go build -o main main.go; and build-lambda-zip -o aws-rotate-access-keys.zip main