AutoTagOwner/lambda.py at master · casper-gh/AutoTagOwner · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
from __future__ import print_function
import json
import boto3
import logging
import time
import datetime
import urllib2
import os

logger = logging.getLogger()
logger.setLevel(logging.INFO)

def lambda_handler(event, context):

    resourceName = ''

    # logger.info(event)

    try:
        region = event['region']
        detail = event['detail']
        eventname = detail['eventName']
        arn = detail['userIdentity']['arn']
        principal = detail['userIdentity']['principalId']
        userType = detail['userIdentity']['type']

        if userType == 'IAMUser':
            user = detail['userIdentity']['userName']
        elif userType == 'Root':
            user = detail['userIdentity']['userName']
        else:
            try:
                user = principal.split(':')[1]
            except:
                user = accountNumber

        if not detail['responseElements']:
            logger.warning('Not responseElements found')
            if detail['errorCode']:
                logger.error('errorCode: ' + detail['errorCode'])
            if detail['errorMessage']:
                logger.error('errorMessage: ' + detail['errorMessage'])
            return False

        lambdaClient = boto3.client('lambda')
        sns = boto3.client('sns')

        # if eventname == 'CreateFunction':
        if 'CreateFunction' in eventname:
            resourceName=detail['responseElements']['functionArn']
            logger.info(resourceName)

        else:
            logger.info(eventname)
            logger.warning('Not supported action')

        if resourceName:

            logger.info("Delaying 10s before checking tags..")
            time.sleep(10)

            # Get tags
            tags = lambdaClient.list_tags(Resource=resourceName)

            logger.info(tags['Tags'])

            # Check if Creator tag exist
            if 'CreatedBy' not in tags['Tags']:
                logger.info('CreatedBy tag missing, applying tag...')
                lambdaClient.tag_resource(Resource=resourceName, Tags={'CreatedBy': user})
            else:
                logger.info('Creator tag exists, skipping...')

        logger.info(' Remaining time (ms): ' + str(context.get_remaining_time_in_millis()) + '\n')
        return True
    except Exception as e:
        logger.error('Something went wrong: ' + str(e))
        return False