Paul Duvall PaulDuvall

## serverless-web-apps.py
# https://diagrams.mingrammer.com/docs/nodes/aws
from diagrams import Cluster, Diagram
from diagrams.aws.compute import Lambda
from diagrams.aws.storage import S3
from diagrams.aws.network import APIGateway
from diagrams.aws.database import DynamodbTable
from diagrams.aws.security import IdentityAndAccessManagementIam
from diagrams.aws.devtools import Codebuild
from diagrams.aws.devtools import Codecommit
from diagrams.aws.devtools import Codedeploy

## rotate-secrets-rds.yml
  MyDBInstance:
    Type: AWS::RDS::DBInstance
    Properties:
      AllocatedStorage: 20
      DBInstanceClass: db.t2.micro
      Engine: mysql
      MasterUsername: !Join ['', ['{{resolve:secretsmanager:', !Ref MyRDSInstanceRotationSecret, ':SecretString:username}}' ]]
      MasterUserPassword: !Join ['', ['{{resolve:secretsmanager:', !Ref MyRDSInstanceRotationSecret, ':SecretString:password}}' ]]
      BackupRetentionPeriod: 0
      DBInstanceIdentifier: 'rotation-instance'

## stelligent-blog-pipeline-serverless-app.yml
  Pipeline:
    Type: AWS::CodePipeline::Pipeline
    Properties:
      RoleArn: !GetAtt CodePipelineRole.Arn
      Stages:
      - Name: Source
        ...
          ActionTypeId:
            Category: Source
            Owner: ThirdParty

## stelligent-blog-sam-safe-deployment.yml
  GetDataFunction:
    Type: 'AWS::Serverless::Function'
    Properties:
      Handler: index-get.handler
      CodeUri: src/
      Runtime: nodejs12.x
      AutoPublishAlias: live
      DeploymentPreference:
        Type: CodeDeployDefault.LambdaCanary10Percent5Minutes
        Hooks:

## stelligent-blog-swa-launch-stack.sh
git clone https://github.com/PaulDuvall/cloudproviders.git
cd cloudproviders
sudo chmod +x launch-stack.sh
./launch-stack.sh

## stelligent-blog-diagrams-secrets.sh
aws secretsmanager create-secret --name github/personal-access-token --description "GitHub Token" --secret-string "GITHUBTOKEN"

## diagrams-as-code.sh
git clone https://github.com/PaulDuvall/diagrams-as-code.git
cd diagrams-as-code
sudo chmod +x *.sh
./launch-stack.sh

## stelligent-blog-diagrams-pipeline.yml
  Pipeline:
    Type: AWS::CodePipeline::Pipeline
    Properties:
      RoleArn: !GetAtt CodePipelineRole.Arn
      Stages:
      - Name: Source
        Actions:
        - InputArtifacts: []
          Name: Source
          ActionTypeId:

## stelligent-blog-diagrams-buildspec.yml
version: 0.2
phases:
  install:
    runtime-versions:
      python: 3.7
    commands:
      - python --version
      - 'curl -O https://bootstrap.pypa.io/get-pip.py'
      - python3 get-pip.py --user
      - pip install --upgrade pip

## stelligent-blog-diagrams-codebuild.yml
  CodeBuildCommands:
    Type: AWS::CodeBuild::Project
    DependsOn: CodeBuildRole
    Properties:
      Name:
        Ref: AWS::StackName
      Description: Build application
      ServiceRole:
        Fn::GetAtt:
        - CodeBuildRole
	# https://diagrams.mingrammer.com/docs/nodes/aws
	from diagrams import Cluster, Diagram
	from diagrams.aws.compute import Lambda
	from diagrams.aws.storage import S3
	from diagrams.aws.network import APIGateway
	from diagrams.aws.database import DynamodbTable
	from diagrams.aws.security import IdentityAndAccessManagementIam
	from diagrams.aws.devtools import Codebuild
	from diagrams.aws.devtools import Codecommit
	from diagrams.aws.devtools import Codedeploy
	MyDBInstance:
	Type: AWS::RDS::DBInstance
	Properties:
	AllocatedStorage: 20
	DBInstanceClass: db.t2.micro
	Engine: mysql
	MasterUsername: !Join ['', ['{{resolve:secretsmanager:', !Ref MyRDSInstanceRotationSecret, ':SecretString:username}}' ]]
	MasterUserPassword: !Join ['', ['{{resolve:secretsmanager:', !Ref MyRDSInstanceRotationSecret, ':SecretString:password}}' ]]
	BackupRetentionPeriod: 0
	DBInstanceIdentifier: 'rotation-instance'
	Pipeline:
	Type: AWS::CodePipeline::Pipeline
	Properties:
	RoleArn: !GetAtt CodePipelineRole.Arn
	Stages:
	- Name: Source
	...
	ActionTypeId:
	Category: Source
	Owner: ThirdParty
	GetDataFunction:
	Type: 'AWS::Serverless::Function'
	Properties:
	Handler: index-get.handler
	CodeUri: src/
	Runtime: nodejs12.x
	AutoPublishAlias: live
	DeploymentPreference:
	Type: CodeDeployDefault.LambdaCanary10Percent5Minutes
	Hooks:
	git clone https://github.com/PaulDuvall/cloudproviders.git
	cd cloudproviders
	sudo chmod +x launch-stack.sh
	./launch-stack.sh
	git clone https://github.com/PaulDuvall/diagrams-as-code.git
	cd diagrams-as-code
	sudo chmod +x *.sh
	./launch-stack.sh
	version: 0.2
	phases:
	install:
	runtime-versions:
	python: 3.7
	commands:
	- python --version
	- 'curl -O https://bootstrap.pypa.io/get-pip.py'
	- python3 get-pip.py --user
	- pip install --upgrade pip
	CodeBuildCommands:
	Type: AWS::CodeBuild::Project
	DependsOn: CodeBuildRole
	Properties:
	Name:
	Ref: AWS::StackName
	Description: Build application
	ServiceRole:
	Fn::GetAtt:
	- CodeBuildRole