π§ AWS ACM RSA Certificate key length is less than 2048 bits - prod.logic.yaml π’
- Contextual name: π§ prod.logic.yaml π’
- ID:
/ce/ca/aws/acm/rsa-certificate-key-length-less-than-2048-bits/prod.logic.yaml - Located in: π AWS ACM RSA Certificate key length is less than 2048 bits π’
Flagsβ
- π’ Logic test success
- π’ Logic with extracts
- π’ Logic with test data
Input Typeβ
| Type | API Name | Extracts | Extract Files | Logic Files | |
|---|---|---|---|---|---|
| π | π AWS ACM Certificate | CA10__CaAwsAcmCertificate__c | 5 | 1 | 4 |
Usesβ
Test Results π’β
Generated at: 2025-05-10T12:01:26.886322858Z Open
| Result | Id | Condition Index | Condition Text | Runtime Error |
|---|---|---|---|---|
| π’ | test1 | βοΈ 99 | βοΈ isDisappeared(CA10__disappearanceTime__c) | βοΈ null |
| π’ | test2 | βοΈ 199 | βοΈ extract('CA10__status__c') != 'ISSUED' | βοΈ null |
| π’ | test3 | βοΈ 299 | βοΈ extract('CA10__keyAlgorithm__c') == 'RSA-1024' | βοΈ null |
| π’ | test4 | βοΈ 300 | βοΈ otherwise | βοΈ null |
Generationβ
| File | MD5 | |
|---|---|---|
| Open | /ce/ca/aws/acm/rsa-certificate-key-length-less-than-2048-bits/policy.yaml | D5787C55F480B64458193A6EA141EBE7 |
| Open | /ce/ca/aws/acm/rsa-certificate-key-length-less-than-2048-bits/prod.logic.yaml | B9EC0531D9631D020381F5A8B0339CA9 |
| Open | /ce/ca/aws/acm/rsa-certificate-key-length-less-than-2048-bits/test-data.json | BD258A117D8C1A80DF8120F4347273F7 |
| Open | /types/CA10__CaAwsAcmCertificate__c/object.extracts.yaml | D20EE095842A506CDEF3AC47E90A5A3B |
Generate FULL scriptβ
java -jar repo-manager.jar policies generate FULL /ce/ca/aws/acm/rsa-certificate-key-length-less-than-2048-bits/prod.logic.yaml
Generate DEBUG scriptβ
java -jar repo-manager.jar policies generate DEBUG /ce/ca/aws/acm/rsa-certificate-key-length-less-than-2048-bits/prod.logic.yaml
Generate CAPTURE_TEST_DATA scriptβ
java -jar repo-manager.jar policies generate CAPTURE_TEST_DATA /ce/ca/aws/acm/rsa-certificate-key-length-less-than-2048-bits/prod.logic.yaml
Generate TESTS scriptβ
java -jar repo-manager.jar policies generate TESTS /ce/ca/aws/acm/rsa-certificate-key-length-less-than-2048-bits/prod.logic.yaml
Execute testsβ
java -jar repo-manager.jar policies test /ce/ca/aws/acm/rsa-certificate-key-length-less-than-2048-bits/prod.logic.yaml
Contentβ
---
inputType: "CA10__CaAwsAcmCertificate__c"
testData:
- file: test-data.json
importExtracts:
- file: /types/CA10__CaAwsAcmCertificate__c/object.extracts.yaml
conditions:
- status: "INAPPLICABLE"
currentStateMessage: "The certificate is not active."
check:
NOT_EQUAL:
left:
EXTRACT: "CA10__status__c"
right:
TEXT: "ISSUED"
- status: "INCOMPLIANT"
currentStateMessage: "The certificate key length is smaller than 2,048 bits."
remediationMessage: "Consider deleting the certificate with a key length smaller than 2,048 bits."
check:
IS_EQUAL:
left:
EXTRACT: "CA10__keyAlgorithm__c"
right:
TEXT: "RSA-1024"
otherwise:
status: "COMPLIANT"
currentStateMessage: "The certificate uses a key length of at least 2,048 bits."