Paul Duvall PaulDuvall
PaulDuvall
/ stelligent-blog-serverless-function-index-get.yml
Last active
June 11, 2020 18:17
Use the AWS SAM to define a Serverless Function
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Type: 'AWS::Serverless::Function' | |
| Properties: | |
| Handler: index-get.handler | |
| CodeUri: src/ | |
| Runtime: nodejs12.x | |
| AutoPublishAlias: live | |
| DeploymentPreference: ... | |
| MemorySize: 128 | |
| Policies: | |
| - DynamoDBReadPolicy: |
PaulDuvall
/ stelligent-blog-buildspec-api-tests.yml
Created
June 9, 2020 23:44
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| version: 0.2 | |
| phases: | |
| install: | |
| runtime-versions: | |
| nodejs: 10 | |
| commands: | |
| - node --version | |
| - npm install newman --global | |
| - yum install -y jq | |
| pre_build: |
PaulDuvall
/ stelligent-blog-postman-test.json
Last active
June 9, 2020 23:43
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "name": "cloudproviders", | |
| "_postman_id": "ff104412-e27d-4aec-8876-8aceea5f9e45", | |
| "request": { | |
| "method": "GET", | |
| "header": [ | |
| ], | |
| "url": "{{apigw-root}}" | |
| }, |
PaulDuvall
/ rotate-secrets-lambda-pipeline.yml
Last active
February 16, 2020 19:24
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| - Name: BuildLambda | |
| Actions: | |
| - InputArtifacts: | |
| - Name: MyApp | |
| Name: BuildLambdaFunctions | |
| ActionTypeId: | |
| Category: Build | |
| Owner: AWS | |
| Version: '1' | |
| Provider: CodeBuild |
PaulDuvall
/ rotate-secrets-buildpsec.yml
Last active
February 14, 2020 16:02
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| version: 0.2 | |
| phases: | |
| install: | |
| runtime-versions: | |
| python: 3.7 | |
| commands: | |
| - python --version | |
| build: | |
| commands: | |
| - pip install --user aws-sam-cli |
PaulDuvall
/ rotate-secrets-codecommit.yml
Last active
February 14, 2020 15:43
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| CodeCommitRepo: | |
| Type: AWS::CodeCommit::Repository | |
| Properties: | |
| RepositoryName: | |
| Ref: PipelineBucket | |
| RepositoryDescription: CodeCommit Repository for Secrets Rotation Solution | |
| Code: | |
| S3: | |
| Bucket: !Ref CodeCommitS3Bucket | |
| Key: !Ref CodeCommitS3Key |
PaulDuvall
/ rotate-secrets-launch-stack.sh
Last active
February 14, 2020 15:30
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| cd ~/environment | |
| aws s3 mb s3://ceoa-3-$(aws sts get-caller-identity --output text --query 'Account') | |
| git clone https://github.com/PaulDuvall/aws-encryption-workshop.git | |
| cd aws-encryption-workshop/lesson3-develop | |
| zip ceoa-3-examples.zip *.* | |
| aws s3 sync /home/ec2-user/environment/aws-encryption-workshop/lesson3-develop s3://ceoa-3-$(aws sts get-caller-identity --output text --query 'Account') | |
| aws cloudformation create-stack --stack-name rds-secrets-rotation --disable-rollback --template-body file:///home/ec2-user/environment/aws-encryption-workshop/lesson3-develop/ceoa-3-rotation-1-pipeline.yml --parameters ParameterKey=EmailAddress,ParameterValue=fake-email@fake-fake-fake-email.com ParameterKey=CodeCommitS3Bucket,ParameterValue=ceoa-3-$(aws sts get-caller-identity --output text --query 'Account') ParameterKey=CodeCommitS3Key,ParameterValue=ceoa-3-examples.zip --capabilities CAPABILITY_NAMED_IAM CAPABILITY_AUTO_EXPAND --disable-rollback |
PaulDuvall
/ rotate-secrets-codepipeline.yml
Last active
February 13, 2020 21:48
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Pipeline: | |
| Type: AWS::CodePipeline::Pipeline | |
| Properties: | |
| RoleArn: !GetAtt CodePipelineRole.Arn | |
| Stages: | |
| - Name: Source | |
| Actions: | |
| - InputArtifacts: [] | |
| Name: Source | |
| ActionTypeId: |
PaulDuvall
/ rotate-secrets-vpc.yml
Last active
February 13, 2020 21:39
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Outputs: | |
| MyVPC: | |
| Value: !Ref VPC | |
| Description: VPC ID - used by Cloud9 | |
| PublicSubnet1: | |
| Value: !Ref SubnetAPublic | |
| Description: SubnetAPublic - used by Cloud9 | |
| PrivateSubnet1: | |
| Value: !Ref SubnetAPrivate | |
| Description: SubnetAPrivate - used by Cloud9, Lambda Function, and RDS::DBSubnetGroup |
PaulDuvall
/ rotate-secrets-sm.yml
Last active
February 13, 2020 21:26
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| MyRDSInstanceRotationSecret: | |
| Type: AWS::SecretsManager::Secret | |
| Properties: | |
| Description: 'This is my rds instance secret' | |
| GenerateSecretString: | |
| SecretStringTemplate: '{"username": "admin"}' | |
| GenerateStringKey: 'password' | |
| PasswordLength: 16 | |
| ExcludeCharacters: '"@/\' | |
| Tags: |