The raw JSON evidence is available to view and download for AWS, Azure, and Google Cloud Platform (GCP) integration tests in the Secureframe app.
View JSON evidence
- In the Secureframe application, navigate to the Tests dashboard.
- Click the test you’d like to see data for, opening the test pane.
Note that JSON data is only available for AWS, Azure, and GCP integration tests. - On the test pane, click the Evidence tab. Resource results will be displayed.
- Click the three dot icon to see the options for a specific resource row.
- Click View raw JSON.
The raw JSON is generated in a pop-up window. You can view or copy the JSON. Use the arrows at the top of the window to navigate between the resources in the test that are generating the result.
The raw JSON will also include the highlight fields we inspect for the test.
Exporting the JSON
You can export the JSON for the entire test by clicking the download icon in the test panel. The file type will be CSV but the data in the file will be JSON format.
Below is an example of the JSON that is generated. Certain fields in the JSON object (highlighted below) will be evaluated to determine if a test is passing or failing.
[
{
"account_id": "01234567901",
"region": "us-east-1",
"authorized_principals": null,
"tags": {},
"arn": "arn:aws:es:us-east-1:01234567901:domain/sqdomainos6d85e-lhflrca8cu8m",
"domain_id": "01234567901/sqdomainos6d85e-lhflrca8cu8m",
"domain_name": "sqdomainos6d85e-lhflrca8cu8m",
"elasticsearch_cluster_config": {
"WarmType": "",
"WarmCount": null,
"WarmEnabled": false,
"InstanceType": "r5.large.elasticsearch",
"InstanceCount": 3,
"ColdStorageOptions": {
"Enabled": false
},
"DedicatedMasterType": "r5.large.elasticsearch",
"ZoneAwarenessConfig": {
"AvailabilityZoneCount": 3
},
"DedicatedMasterCount": 3,
"ZoneAwarenessEnabled": true,
"DedicatedMasterEnabled": true
},
"access_policies": "{\\\\"Version\\\\":\\\\"2012-10-17\\\\",\\\\"Statement\\\\":[{\\\\"Effect\\\\":\\\\"Allow\\\\",\\\\"Principal\\\\":{\\\\"AWS\\\\":\\\\"arn:aws:iam::012345678901:role/SecureframeSecurityQuesti-SecurityQuestionnaireASG-4PUY5TCK8CEM\\\\"},\\\\"Action\\\\":\\\\"es:*\\\\",\\\\"Resource\\\\":\\\\"arn:aws:es:us-east-1:012345678901:domain/sqdomainos6d85e-lhflrca8cu8m/*\\\\"}]}",
"advanced_options": {
"override_main_response_version": "false",
"rest.action.multi.allow_explicit_index": "true"
},
"advanced_security_options": {
"Enabled": false,
"SAMLOptions": null,
"AnonymousAuthEnabled": false,
"AnonymousAuthDisableDate": null,
"InternalUserDatabaseEnabled": false
},
"auto_tune_options": {
"State": "ENABLED",
"ErrorMessage": null
},
"change_progress_details": null,
"cognito_options": {
"Enabled": false,
"RoleArn": null,
"UserPoolId": null,
"IdentityPoolId": null
},
"created": true,
"deleted": false,
"domain_endpoint_options": {
"EnforceHTTPS": true,
"CustomEndpoint": null,
"TLSSecurityPolicy": "Policy-Min-TLS-1-0-2019-07",
"CustomEndpointEnabled": false,
"CustomEndpointCertificateArn": null
},
"ebs_options": {
"Iops": null,
"EBSEnabled": true,
"Throughput": null,
"VolumeSize": 10,
"VolumeType": "gp2"
},
"elasticsearch_version": "OpenSearch_1.2",
"encryption_at_rest_options": {
"Enabled": true,
"KmsKeyId": "arn:aws:kms:us-east-1:01234567901:key/670dc613-199a-41c3-b39d-cdb547b3da3a"
},
"endpoint": "search-sqdomainos6d85e-lhflrca8cu8m-5rmi4qdlfv4du74luiokzr2qym.us-east-1.es.amazonaws.com",
"endpoints": {},
"log_publishing_options": {
"INDEX_SLOW_LOGS": {
"Enabled": true,
"CloudWatchLogsLogGroupArn": "arn:aws:logs:us-east-1:01234567901:log-group:SecureframeSecurityQuestionnaireStack-Prod-SQDomainosSlowIndexLogsEA357C13-6qTaBKyX6qE1:*"
},
"SEARCH_SLOW_LOGS": {
"Enabled": true,
"CloudWatchLogsLogGroupArn": "arn:aws:logs:us-east-1:01234567901:log-group:SecureframeSecurityQuestionnaireStack-Prod-SQDomainosSlowSearchLogsA0C3BE30-lrJx2X5Nmpva:*"
},
"ES_APPLICATION_LOGS": {
"Enabled": true,
"CloudWatchLogsLogGroupArn": "arn:aws:logs:us-east-1:012345678901:log-group:SecureframeSecurityQuestionnaireStack-Prod-SQDomainosAppLogsE4F2A6B4-szGFWoorQ6hm:*"
}
},
"node_to_node_encryption_options": {
"Enabled": true
},
"processing": false,
"service_software_options": {
"NewVersion": "",
"Cancellable": false,
"Description": "There is no software update available for this domain.",
"UpdateStatus": "COMPLETED",
"CurrentVersion": "R20221114-P2",
"UpdateAvailable": false,
"OptionalDeployment": true,
"AutomatedUpdateDate": "1970-01-01T00:00:00Z"
},
"snapshot_options": {
"AutomatedSnapshotStartHour": 0
},
"upgrade_processing": false,
"vpc_options": null
}
]
Comments
0 comments
Article is closed for comments.