Access Check (accesschk)

Access Check (accesschk) is a separate pipeline from Access Control (accessctl) that focuses on evidence collection of the current state of users and configuration for each compliance in-scope system. This pipeline automates the extract-transform-load (ETL) process for (e)xtracting/fetching data from the API, formatting/(t)ransforming it into a CSV and JSON datestamped file, and loading it into a GitLab repository for analysis and reference by audit and compliance users.

CI/CD Pipeline Overview

accesschk GitLab CI/CD Pipeline Jobs

GitLab Self-Managed Instance API

GitLab Self-Managed Groups Job
chk:gitlab-self-groups

GitLab Self-Managed Projects Job
chk:gitlab-self-projects

GitLab Self-Managed Admin Roles Job
chk:gitlab-self-admins

GitLab.com SaaS API

GitLab SaaS Groups Job
chk:gitlab-saas-groups

GitLab SaaS Projects Job
chk:gitlab-saas-projects

GitLab SaaS Admin Roles Job
chk:gitlab-saas-admins

Google Cloud Resource Manager and IAM API

Google Cloud Organizations Job
chk:gcp-organizations

Google Cloud Folders Job
chk:gcp-folders

Google Cloud Projects Job
chk:gcp-projects

Google Cloud Service Accounts Job
chk:gcp-service-accounts

Google Cloud Billing Accounts Job
chk:gcp-billing-accounts

Google Workspace Directory API

Google Users Job
chk:google-users

Google Admin Roles Job
chk:google-admin-roles

Google Groups Job
chk:google-groups

Google Chrome Policies Job
chk:google-chrome

Google Org Units Job
chk:google-org-units

Okta API

Okta Users Job
chk:okta-users

Okta Apps Job
chk:okta-apps

Okta Groups Job
chk:okta-groups

Okta Policies Job
chk:okta-policies

Okta Admin Roles Job
chk:okta-admin-roles

Okta Settings Job
chk:okta-settings

accesschk GitLab Repositories

accesschk-evidence Repo

Last modified November 14, 2024: Fix broken external links (ac0e3d5e)