gcp-iam-collector

Python scripts for collecting and visualising Google Cloud Platform IAM permissions

GCP IAM graph is created using vis.js and it's static HTML page, see example interactive graph

Features

GCP IAM collector iterates over projects using Google Cloud Resource Manager API and dumps to CSV files:

IAM graph currently supports:

pip install -r requirements.txt

gcloud auth application-default login

Command below dumps all IAM to csv files

python collector.py

Creating interactive graph:

python create_iam_graph.py

Name	Name	Last commit message	Last commit date
Latest commit marcin-kolda small fix in README Apr 23, 2017 42592cc · Apr 23, 2017 History 20 Commits
visualisation	visualisation	added retriving enabled services, added graph search from root node	Apr 19, 2017
.gitignore	.gitignore	updated README, add possibility to disable cache	Apr 23, 2017
LICENSE	LICENSE	Initial commit	Apr 11, 2017
README.md	README.md	small fix in README	Apr 23, 2017
cache_service.py	cache_service.py	updated README, add possibility to disable cache	Apr 23, 2017
collector.py	collector.py	JSON cache is disabled by default	Apr 23, 2017
create_iam_graph.py	create_iam_graph.py	JSON cache is disabled by default	Apr 23, 2017
example_graph.png	example_graph.png	added example graph	Apr 23, 2017
gcp_iam_iterator.py	gcp_iam_iterator.py	updated README, add possibility to disable cache	Apr 23, 2017
requirements.txt	requirements.txt	updated README, add possibility to disable cache	Apr 23, 2017