{ "info": { "author": "Harvard University Information Technology", "author_email": "ithelp@harvard.edu", "bugtrack_url": null, "classifiers": [], "description": "aws-dnsadmin53\n==============\n[![Build Status](https://travis-ci.org/huit/python-dnsadmin53.png?branch=master)](https://travis-ci.org/huit/python-dnsadmin53)\n\nManage access to zones in Route 53\n\nThere are a couple of limitations on IAM Objects\nhttp://docs.aws.amazon.com/IAM/latest/UserGuide/LimitationsOnEntities.html\n\nBased on this it seems like roles will be the best way to go\n\nTwo types of cross account access both grant access by giving the external AWS account the ARN of the role and the user then makes api calls to AssumeRole with the ARN of the role to get temp credentials allowing access to the role. (in our case updating DNS entries within a zone) \n\nThe first allows you to delegate access with just Account ID putting the trust on the repote account to create a group which has approriate access to the Role ARN\n\nhttp://docs.aws.amazon.com/IAM/latest/UserGuide/cross-acct-access.html\n\n\nThe second type of delegation requires both an Account ID AND a External ID, which prevents the \"Confused Deputy\" problem ( http://en.wikipedia.org/wiki/Confused_deputy_problem) \n\nhttp://docs.aws.amazon.com/STS/latest/UsingSTS/sts-delegating-externalid.html\n\nhttp://docs.aws.amazon.com/STS/latest/UsingSTS/Welcome.html\n", "description_content_type": null, "docs_url": null, "download_url": "UNKNOWN", "downloads": { "last_day": -1, "last_month": -1, "last_week": -1 }, "home_page": "https://github.com/huit/python-dnsadmin53", "keywords": null, "license": "LICENSE", "maintainer": null, "maintainer_email": null, "name": "dnsadmin53", "package_url": "https://pypi.org/project/dnsadmin53/", "platform": "UNKNOWN", "project_url": "https://pypi.org/project/dnsadmin53/", "project_urls": { "Download": "UNKNOWN", "Homepage": "https://github.com/huit/python-dnsadmin53" }, "release_url": "https://pypi.org/project/dnsadmin53/0.0.1/", "requires_dist": null, "requires_python": null, "summary": "DNS Admin tool for Route53 IAM/ARN Managment", "version": "0.0.1" }, "last_serial": 1028969, "releases": { "0.0.1": [ { "comment_text": "", "digests": { "md5": "931d4d80e78c10329c718b180a8047af", "sha256": "85df689175f09caf87c68582df30151f267dd2622053bec6c4c4a5a426a3feeb" }, "downloads": -1, "filename": "dnsadmin53-0.0.1.tar.gz", "has_sig": false, "md5_digest": "931d4d80e78c10329c718b180a8047af", "packagetype": "sdist", "python_version": "source", "requires_python": null, "size": 4847, "upload_time": "2014-03-13T23:16:16", "url": "https://files.pythonhosted.org/packages/9e/77/fed1178f2aae86b7035477c0c1c1289f83c8b45a7ff2636269e24a541830/dnsadmin53-0.0.1.tar.gz" } ] }, "urls": [ { "comment_text": "", "digests": { "md5": "931d4d80e78c10329c718b180a8047af", "sha256": "85df689175f09caf87c68582df30151f267dd2622053bec6c4c4a5a426a3feeb" }, "downloads": -1, "filename": "dnsadmin53-0.0.1.tar.gz", "has_sig": false, "md5_digest": "931d4d80e78c10329c718b180a8047af", "packagetype": "sdist", "python_version": "source", "requires_python": null, "size": 4847, "upload_time": "2014-03-13T23:16:16", "url": "https://files.pythonhosted.org/packages/9e/77/fed1178f2aae86b7035477c0c1c1289f83c8b45a7ff2636269e24a541830/dnsadmin53-0.0.1.tar.gz" } ] }