Json

JQ - 將元素添加到數組並返回完整的 json

  • January 13, 2020

我正在嘗試將一個元素添加到這樣的數組中:

jq --arg root "arn:aws:iam::$ACCOUNT_ID:root" \
             '.Statement[] | select(.Sid=="Allow use of the key") \
             | .Principal.AWS |= . + [$root]' \
<<<$policy

雖然這可行,但它只輸出特定部分,因為我正在執行select.

內容$policy

{
 "Version": "2012-10-17",
 "Id": "key-consolepolicy-3",
 "Statement": [
   {
     "Sid": "Enable IAM User Permissions",
     "Effect": "Allow",
     "Principal": {
       "AWS": "arn:aws:iam::*:root"
     },
     "Action": "kms:*",
     "Resource": "*"
   },
   {
     "Sid": "Allow access for Key Administrators",
     "Effect": "Allow",
     "Principal": {
       "AWS": "arn:aws:iam::*:user/*"
     },
     "Action": [
       "kms:Create*",
       "kms:Describe*",
       "kms:Enable*",
       "kms:List*",
       "kms:Put*",
       "kms:Update*",
       "kms:Revoke*",
       "kms:Disable*",
       "kms:Get*",
       "kms:Delete*",
       "kms:TagResource",
       "kms:UntagResource"
     ],
     "Resource": "*"
   },
   {
     "Sid": "Allow use of the key",
     "Effect": "Allow",
     "Principal": {
       "AWS": [
         "arn:aws:iam::*:root"
       ]
     },
     "Action": [
       "kms:Encrypt",
       "kms:Decrypt",
       "kms:DescribeKey",
       "kms:ReEncrypt*",
       "kms:GenerateDataKey*",
       "kms:CreateGrant"
     ],
     "Resource": "*"
   }
 ]
}

預期結果:

{
 "Version": "2012-10-17",
 "Id": "key-consolepolicy-3",
 "Statement": [
   {
     "Sid": "Enable IAM User Permissions",
     "Effect": "Allow",
     "Principal": {
       "AWS": "arn:aws:iam::*:root"
     },
     "Action": "kms:*",
     "Resource": "*"
   },
   {
     "Sid": "Allow access for Key Administrators",
     "Effect": "Allow",
     "Principal": {
       "AWS": "arn:aws:iam::*:user/*"
     },
     "Action": [
       "kms:Create*",
       "kms:Describe*",
       "kms:Enable*",
       "kms:List*",
       "kms:Put*",
       "kms:Update*",
       "kms:Revoke*",
       "kms:Disable*",
       "kms:Get*",
       "kms:Delete*",
       "kms:TagResource",
       "kms:UntagResource"
     ],
     "Resource": "*"
   },
   {
     "Sid": "Allow use of the key",
     "Effect": "Allow",
     "Principal": {
       "AWS": [
         "arn:aws:iam::*:root",
         "arn:aws:iam::$root:root" <-------------
       ]
     },
     "Action": [
       "kms:Encrypt",
       "kms:Decrypt",
       "kms:DescribeKey",
       "kms:ReEncrypt*",
       "kms:GenerateDataKey*",
       "kms:CreateGrant"
     ],
     "Resource": "*"
   }
 ]
}

如何用添加的元素取回初始 json?

.Statement使用包含先前條目且目標對像已更新的新數組重新分配數組:

jq --arg root "arn:aws:iam::$ACCOUNT_ID:root" \
'.Statement |= map(select(.Sid=="Allow use of the key").Principal.AWS |= . + [$root])' <<<$policy

引用自:https://unix.stackexchange.com/questions/561835

相關問答

Json

JSON:為值匹配模式提取並列印鍵和值對

  • October 9, 2022
檢視問答
Text-Processing

文本文件轉 JSON

  • October 7, 2022
檢視問答
Bash

如何使用 jq 檢查值並更改 JSON 中的其他鍵?

  • October 1, 2022
檢視問答
Text-Processing

通過 jq 連接數千個巨大的 json 文件

  • September 23, 2022
檢視問答
Json

jq 通過僅使用數組中對象的某些值選擇列表來轉換數組

  • September 17, 2022
檢視問答
Linux

替換一個json的值

  • September 7, 2022
檢視問答