This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Type: 'AWS::Serverless::Function' | |
Properties: | |
Handler: index-get.handler | |
CodeUri: src/ | |
Runtime: nodejs12.x | |
AutoPublishAlias: live | |
DeploymentPreference: ... | |
MemorySize: 128 | |
Policies: | |
- DynamoDBReadPolicy: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
version: 0.2 | |
phases: | |
install: | |
runtime-versions: | |
nodejs: 10 | |
commands: | |
- node --version | |
- npm install newman --global | |
- yum install -y jq | |
pre_build: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
{ | |
"name": "cloudproviders", | |
"_postman_id": "ff104412-e27d-4aec-8876-8aceea5f9e45", | |
"request": { | |
"method": "GET", | |
"header": [ | |
], | |
"url": "{{apigw-root}}" | |
}, |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
- Name: BuildLambda | |
Actions: | |
- InputArtifacts: | |
- Name: MyApp | |
Name: BuildLambdaFunctions | |
ActionTypeId: | |
Category: Build | |
Owner: AWS | |
Version: '1' | |
Provider: CodeBuild |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
version: 0.2 | |
phases: | |
install: | |
runtime-versions: | |
python: 3.7 | |
commands: | |
- python --version | |
build: | |
commands: | |
- pip install --user aws-sam-cli |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
CodeCommitRepo: | |
Type: AWS::CodeCommit::Repository | |
Properties: | |
RepositoryName: | |
Ref: PipelineBucket | |
RepositoryDescription: CodeCommit Repository for Secrets Rotation Solution | |
Code: | |
S3: | |
Bucket: !Ref CodeCommitS3Bucket | |
Key: !Ref CodeCommitS3Key |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
cd ~/environment | |
aws s3 mb s3://ceoa-3-$(aws sts get-caller-identity --output text --query 'Account') | |
git clone https://github.com/PaulDuvall/aws-encryption-workshop.git | |
cd aws-encryption-workshop/lesson3-develop | |
zip ceoa-3-examples.zip *.* | |
aws s3 sync /home/ec2-user/environment/aws-encryption-workshop/lesson3-develop s3://ceoa-3-$(aws sts get-caller-identity --output text --query 'Account') | |
aws cloudformation create-stack --stack-name rds-secrets-rotation --disable-rollback --template-body file:///home/ec2-user/environment/aws-encryption-workshop/lesson3-develop/ceoa-3-rotation-1-pipeline.yml --parameters ParameterKey=EmailAddress,ParameterValue=fake-email@fake-fake-fake-email.com ParameterKey=CodeCommitS3Bucket,ParameterValue=ceoa-3-$(aws sts get-caller-identity --output text --query 'Account') ParameterKey=CodeCommitS3Key,ParameterValue=ceoa-3-examples.zip --capabilities CAPABILITY_NAMED_IAM CAPABILITY_AUTO_EXPAND --disable-rollback |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Pipeline: | |
Type: AWS::CodePipeline::Pipeline | |
Properties: | |
RoleArn: !GetAtt CodePipelineRole.Arn | |
Stages: | |
- Name: Source | |
Actions: | |
- InputArtifacts: [] | |
Name: Source | |
ActionTypeId: |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Outputs: | |
MyVPC: | |
Value: !Ref VPC | |
Description: VPC ID - used by Cloud9 | |
PublicSubnet1: | |
Value: !Ref SubnetAPublic | |
Description: SubnetAPublic - used by Cloud9 | |
PrivateSubnet1: | |
Value: !Ref SubnetAPrivate | |
Description: SubnetAPrivate - used by Cloud9, Lambda Function, and RDS::DBSubnetGroup |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
MyRDSInstanceRotationSecret: | |
Type: AWS::SecretsManager::Secret | |
Properties: | |
Description: 'This is my rds instance secret' | |
GenerateSecretString: | |
SecretStringTemplate: '{"username": "admin"}' | |
GenerateStringKey: 'password' | |
PasswordLength: 16 | |
ExcludeCharacters: '"@/\' | |
Tags: |