Adding cloudasset_enable.sh convenience script

Updated README to include guidance on usage

Author: iok0

resource_management/gcp/README.md

@@ -37,11 +37,17 @@ The user executing the script must have roles/cloudassset.viewer and roles/servi
 
 Script requires access to cloudasset API.
 
-### A) We recommend granting at the org level:
+### A) We recommend granting for all projects in the org:
 
-`gcloud --organization <organization_id> services enable cloudasset.googleapis.com`
+1. Download the script cloudasset_enable.sh
 
-### B) Alternative is granting for each project to be examined:
+wget https://github.com/lacework-dev/scripts/blob/main/resource_management/gcp/cloudasset_enable.sh
+
+2. Run the script:
+
+`chmod +x ./cloudasset_enable.sh; mkdir -p /tmp/lacework; ./cloudasset_enable.sh 2>&1 | tee /tmp/lacework/enable_output`
+
+### B) Alternative is manually granting for each project to be examined:
 
 `gcloud --project <project_id> services enable cloudasset.googleapis.com`
 

resource_management/gcp/cloudasset_enable.sh

@@ -0,0 +1,32 @@
+#!/bin/bash
+
+STAR=*
+FILEENDING=".enable"
+
+mkdir -p /tmp/lacework
+gcloud config set accessibility/screen_reader false
+
+var=$(gcloud projects list --filter='lifecycleState:ACTIVE' | sed "1 d" | cut -d ' ' -f 1)
+number_projects=$(echo "$var" | wc -l)
+
+echo "==> Project list:"
+echo $var | tr " " "\n"
+echo "==> Total number of projects = $number_projects"
+
+read -p "Continue to enable on all projects? " -n 1 -r
+echo    # (optional) move to a new line
+if [[ ! $REPLY =~ ^[Yy]$ ]]
+then
+    [[ "$0" = "$BASH_SOURCE" ]] && exit 1 || return 1 # handle exits from shell or function but don't exit interactive shell
+fi
+
+for val in $var; do
+    echo "=> Enabling for Project $val"
+    if gcloud --project $val services enable cloudasset.googleapis.com > /tmp/lacework/$val$FILEENDING
+    then
+       echo "==> Done."
+    else
+       echo "==> Error enabling."
+    fi
+    echo "***************************************"
+done