π§ Snowflake User password is not rotated every 90 days - prod.logic.yaml π’
- Contextual name: π§ prod.logic.yaml π’
- ID:
/ce/ca/snowflake/user/password-is-not-rotated-every-90-days/prod.logic.yaml - Located in: π Snowflake User password is not rotated every 90 days π’
Flagsβ
- π’ Logic test success
- π’ Logic with extracts
- π’ Logic with test data
Input Typeβ
| Type | API Name | Extracts | Extract Files | Logic Files | |
|---|---|---|---|---|---|
| π | π Snowflake User | CA10SN__CaSnowflakeUser__c | 4 | 1 | 4 |
Usesβ
Test Results π’β
Generated at: 2025-05-10T12:06:07.845434543Z Open
| Result | Id | Condition Index | Condition Text | Runtime Error |
|---|---|---|---|---|
| π’ | test1 | βοΈ 99 | βοΈ isDisappeared(CA10SN__disappearanceTime__c) | βοΈ null |
| π’ | test2 | βοΈ 199 | βοΈ extract('CA10SN__hasPassword__c') != 'true' | βοΈ null |
| π’ | test3 | βοΈ 299 | βοΈ extract('CA10SN__passwordLastSetTime__c').beyondLastDays(90) | βοΈ null |
| π’ | test4 | βοΈ 300 | βοΈ otherwise | βοΈ null |
Generationβ
| File | MD5 | |
|---|---|---|
| Open | /ce/ca/snowflake/user/password-is-not-rotated-every-90-days/policy.yaml | 5B2E4726583903497EC1F004FAF44285 |
| Open | /ce/ca/snowflake/user/password-is-not-rotated-every-90-days/prod.logic.yaml | 4D18CEF81843942A0200529C73B192BA |
| Open | /types/CA10SN__CaSnowflakeUser__c/object.extracts.yaml | C6EB37BF1FD385E8938A301910EC1C1E |
| Open | /ce/ca/snowflake/user/password-is-not-rotated-every-90-days/test-data.json | 3CC5E685D8B1F744EA4212A9F9A822DC |
Generate FULL scriptβ
java -jar repo-manager.jar policies generate FULL /ce/ca/snowflake/user/password-is-not-rotated-every-90-days/prod.logic.yaml
Generate DEBUG scriptβ
java -jar repo-manager.jar policies generate DEBUG /ce/ca/snowflake/user/password-is-not-rotated-every-90-days/prod.logic.yaml
Generate CAPTURE_TEST_DATA scriptβ
java -jar repo-manager.jar policies generate CAPTURE_TEST_DATA /ce/ca/snowflake/user/password-is-not-rotated-every-90-days/prod.logic.yaml
Generate TESTS scriptβ
java -jar repo-manager.jar policies generate TESTS /ce/ca/snowflake/user/password-is-not-rotated-every-90-days/prod.logic.yaml
Execute testsβ
java -jar repo-manager.jar policies test /ce/ca/snowflake/user/password-is-not-rotated-every-90-days/prod.logic.yaml
Contentβ
---
inputType: "CA10SN__CaSnowflakeUser__c"
testData:
- file: "test-data.json"
importExtracts:
- file: "/types/CA10SN__CaSnowflakeUser__c/object.extracts.yaml"
conditions:
- status: "INAPPLICABLE"
currentStateMessage: "The User does not use password authentication."
check:
NOT_EQUAL:
left:
EXTRACT: "CA10SN__hasPassword__c"
right:
TEXT: "true"
- status: "INCOMPLIANT"
currentStateMessage: "The password was last set more than 90 days ago."
remediationMessage: "Rotate the password."
check:
IS_BEYOND_LAST_DAYS:
arg:
EXTRACT: "CA10SN__passwordLastSetTime__c"
offsetDays: 90
otherwise:
status: "COMPLIANT"
currentStateMessage: "The password was last set within the last 90 days."