weirdAAL/libs/dynamodb.py

'''
dynamoDB functions
'''

import boto3
import botocore
import pprint
import sys,os

pp = pprint.PrettyPrinter(indent=5, width=80)

#from http://docs.aws.amazon.com/general/latest/gr/rande.html
regions = ['us-east-1', 'us-east-2', 'us-west-1', 'us-west-2', 'ca-central-1', 'eu-central-1', 'eu-west-1', 'eu-west-2', 'ap-northeast-1', 'ap-northeast-2', 'ap-southeast-1', 'ap-southeast-2',  ]

def list_dynamodb_tables(AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY):
    print("### Printing DynamoDB Tables ###")
    try:
    	for region in regions:
    		client = boto3.client('dynamodb', aws_access_key_id=AWS_ACCESS_KEY_ID, aws_secret_access_key=AWS_SECRET_ACCESS_KEY, region_name=region)

        	response = client.list_tables()
        	if response.get('TableNames') is None:
        		print "{} likely does not have DynamoDB permissions\n" .format(AWS_ACCESS_KEY_ID)
        	elif len(response['TableNames']) <= 0:
        		print "[-] ListTables allowed for {} but no results [-]" .format(region)
        	else:
        		print"### {} DynamoDB Tables ###" .format(region)
        		for tables in response['TableNames']:
        			pp.pprint(tables)
        print("\n")
        	
    except botocore.exceptions.ClientError as e:
        if e.response['Error']['Code'] == 'InvalidClientTokenId':
            sys.exit("{} : The AWS KEY IS INVALID. Exiting" .format(AWS_ACCESS_KEY_ID))
        elif e.response['Error']['Code'] == 'AccessDenied':
            print('{} : Does not have the required permissions' .format(AWS_ACCESS_KEY_ID))
        else:
            print "Unexpected error: {}" .format(e)
    except KeyboardInterrupt:
        print("CTRL-C received, exiting...")

def list_dynamodb_tables_detailed(AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY):
    print("### Printing DynamoDB Tables ###")
    try:
    	for region in regions:
    		client = boto3.client('dynamodb', aws_access_key_id=AWS_ACCESS_KEY_ID, aws_secret_access_key=AWS_SECRET_ACCESS_KEY, region_name=region)

        	response = client.list_tables()
        	if response.get('TableNames') is None:
        		print "{} likely does not have DynamoDB permissions\n" .format(AWS_ACCESS_KEY_ID)
        	elif len(response['TableNames']) <= 0:
        		print "[-] ListTables allowed for {} but no results [-]" .format(region)
        	else:
        		print"### {} DynamoDB Tables ###" .format(region)
        		for tables in response['TableNames']:
        			#pp.pprint(tables)
        			describe_table(AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, tables, region)
        print("\n")
        	
    except botocore.exceptions.ClientError as e:
        if e.response['Error']['Code'] == 'InvalidClientTokenId':
            sys.exit("{} : The AWS KEY IS INVALID. Exiting" .format(AWS_ACCESS_KEY_ID))
        elif e.response['Error']['Code'] == 'AccessDenied':
            print('{} : Does not have the required permissions' .format(AWS_ACCESS_KEY_ID))
        else:
            print "Unexpected error: {}" .format(e)
    except KeyboardInterrupt:
        print("CTRL-C received, exiting...")

def describe_table(AWS_ACCESS_KEY_ID, AWS_SECRET_ACCESS_KEY, table, region):
    print "### Describing DynamoDB Table: {} ###" .format(table)
    try:
    	client = boto3.client('dynamodb', aws_access_key_id=AWS_ACCESS_KEY_ID, aws_secret_access_key=AWS_SECRET_ACCESS_KEY, region_name=region)

        response = client.describe_table(TableName=table)
        if response.get('Table') is None:
        	print "{} likely does not have DynamoDB permissions\n" .format(AWS_ACCESS_KEY_ID)
        elif len(response['Table']) <= 0:
        	print "[-] DescribeTable allowed for {} but no results [-]" .format(region)
        else:
        	print "TableArn: {}" .format(response['Table']['TableArn'])
        	print "AttributeDefinitions: {}" .format(response['Table']['AttributeDefinitions'])
        	print "ProvisionedThroughput: {}" .format(response['Table']['ProvisionedThroughput'])
        	print "TableSizeBytes: {}" .format(response['Table']['TableSizeBytes'])
        	print "TableName: {}" .format(response['Table']['TableName'])
        	print "TableStatus: {}" .format(response['Table']['TableStatus'])
        	print "KeySchema: {}" .format(response['Table']['KeySchema'])
        	print "ItemCount: {}" .format(response['Table']['ItemCount'])
        	print "CreationDateTime: {}" .format(response['Table']['CreationDateTime'])
        print("\n")
        	
    except botocore.exceptions.ClientError as e:
        if e.response['Error']['Code'] == 'InvalidClientTokenId':
            sys.exit("{} : The AWS KEY IS INVALID. Exiting" .format(AWS_ACCESS_KEY_ID))
        elif e.response['Error']['Code'] == 'AccessDenied':
            print('{} : Does not have the required permissions' .format(AWS_ACCESS_KEY_ID))
        else:
            print "Unexpected error: {}" .format(e)
    except KeyboardInterrupt:
        print("CTRL-C received, exiting...")