v1.0 for Steampipe, Powerpipe, Flowpipe, 116 plugins, and 44 mods →
Steampipe logo 
Hub
Plugins
turbot/aws
Overview
504Tables
Versions
PowerpipeMods
GitHub
steampipe plugin install aws

Table: aws_transfer_user - Query AWS Transfer Family users using SQL

AWS Transfer Family is a secure transfer service that enables you to transfer files into and out of AWS storage services.

Table Usage Guide

The aws_transfer_user table in Steampipe provides you with information about users inside defined servers in the AWS Transfer Family service. This table allows you, as a DevOps engineer, to query user-specific details, including home directories, ssh keys, usernames and IAM roles.

Examples

Basic info

Explore which AWS Transfer users are defined in a server

select
  arn,
  server_id,
  user_name
from
  aws_transfer_user;
where
  server_id = "s-xxxxxxxxxxxxxxxxx";
select
  arn,
  server_id,
  user_name
from
  aws_transfer_user;
where
  server_id = "s-xxxxxxxxxxxxxxxxx";

Sort users descending by SSH public key count

select
  arn,
  server_id,
  user_name,
  ssh_public_key_count
from
  aws_transfer_user;
where
  server_id = "s-xxxxxxxxxxxxxxxxx"
order by
  ssh_public_key_count desc;
select
  arn,
  server_id,
  user_name,
  ssh_public_key_count
from
  aws_transfer_user;
where
  server_id = "s-xxxxxxxxxxxxxxxxx"
order by
  ssh_public_key_count desc;

Get home directory mappings for users

select
  server_id,
  user_name,
  home_directory_mappings -> 0 ->> 'Entry' as entry_home_directory,
  home_directory_mappings -> 0 ->> 'Target' as target_home_directory
from
  aws_transfer_user
where
  server_id = 's-xxxxxxxxxxxxxxxxx';
select
  server_id,
  user_name,
  json_extract(home_directory_mappings, '$[0].Entry') as entry_home_directory,
  json_extract(home_directory_mappings, '$[0].Target') as target_home_directory
from
  aws_transfer_user
where
  server_id = 's-xxxxxxxxxxxxxxxxx';

Find user_name across multiple servers

select
  server_id,
  user_name,
  arn
from
  aws_transfer_user
where
  server_id in (
    select
      server_id
    from
      aws_transfer_server
  )
  and user_name = 'my_user_to_search';
select
  server_id,
  user_name,
  arn
from
  aws_transfer_user
where
  server_id in (
    select
      server_id
    from
      aws_transfer_server
  )
  and user_name = 'my_user_to_search';

Count users by server_id descending

select
  count(*) as total_users,
  server_id
from
  aws_transfer_user
group by
  server_id
order by
  total_users desc;
select
  count(*) as total_users,
  server_id
from
  aws_transfer_user
group by
  server_id
order by
  total_users desc;

Schema for aws_transfer_user

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
account_idtext=, !=, ~~, ~~*, !~~, !~~*The AWS Account ID in which the resource is located.
akasjsonbArray of globally unique identifier strings (also known as) for the resource.
arntextThe Amazon Resource Name (ARN) for the user.
home_directorytextSpecifies the landing directory (folder) for a user when they log in to the server.
home_directory_mappingsjsonbThe landing directory (folder) for a user when they log in to the server using the client.
home_directory_typetextThe type of landing directory (folder) you mapped for your users to see when they log in to the server.
partitiontextThe AWS partition in which the resource is located (aws, aws-cn, or aws-us-gov).
regiontextThe AWS Region in which the resource is located.
roletextThe Amazon Resource Name (ARN) of the AWS Identity and Access Management (IAM) role that controls your users' access to your Amazon S3 bucket or Amazon EFS file system.
server_idtext=The ID of the server that the user is attached to.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
ssh_public_key_countbigintThe number of SSH public keys stored for the user on the server.
ssh_public_keysjsonbThe public SSH keys stored for the user on the server.
tagsjsonbA map of tags for the resource.
titletextTitle of the resource.
user_nametext=Specifies the name of the user whose ARN was specified. User names are used for authentication purposes.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- aws

You can pass the configuration to the command with the --config argument:

steampipe_export_aws --config '<your_config>' aws_transfer_user