ShubhamKhairnar/template.yaml

## template.yaml
AWSTemplateFormatVersion: '2010-09-09'
Transform: AWS::Serverless-2016-10-31
Description: >
  Template for deploying lambda function
Parameters:
  LambdaSg:
    Description: "Lambda security group ID"
    Type: AWS::EC2::SecurityGroup::Id
  LambdaSubnets:
    Description: "Lambda subnets"
    Type: List<AWS::EC2::Subnet::Id>
  LambdaEnv:
    Description: "Environment"
    Type: String

Resources:
  <FUNCTION_NAME>:
    Type: AWS::Serverless::Function
    Properties:
      Description: <FUNCTION_DESCRIPTION>
      CodeUri: .
      Environment:
        Variables:
          ENV: !Ref LambdaEnv
      FunctionName: <FUNCTION_NAME>
      Handler: index.<FUNCTION_NAME>
      MemorySize: 128
      Runtime: nodejs14.x
      Timeout: 15
      VpcConfig:
        SecurityGroupIds:
          - !Ref LambdaSg
        SubnetIds: !Ref LambdaSubnets
      Policies:
        - VPCAccessPolicy: {}
      Role: !GetAtt <FUNCTION_ROLE_NAME>.Arn

  <FUNCTION_ROLE_NAME>:
    Type: AWS::IAM::Role
    Properties:
      AssumeRolePolicyDocument:
          Version: "2012-10-17"
          Statement:
            - Effect: Allow
              Principal:
                Service:
                  - lambda.amazonaws.com
              Action:
                - "sts:AssumeRole"
      Path: /
      ManagedPolicyArns:
        - "arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
      Policies:
        - PolicyName: <FUNCTION_POLICY_NAME>
          PolicyDocument:
            Version: "2012-10-17"
            Statement:
              - Effect: Allow
                Action:
                  - "ec2:DescribeNetworkInterfaces"
                  - "ec2:CreateNetworkInterface"
                  - "ec2:DeleteNetworkInterface"
                  - "ec2:DescribeInstances"
                  - "ec2:AttachNetworkInterface"
                Resource: "*"
	AWSTemplateFormatVersion: '2010-09-09'
	Transform: AWS::Serverless-2016-10-31
	Description: >
	Template for deploying lambda function
	Parameters:
	LambdaSg:
	Description: "Lambda security group ID"
	Type: AWS::EC2::SecurityGroup::Id
	LambdaSubnets:
	Description: "Lambda subnets"
	Type: List<AWS::EC2::Subnet::Id>
	LambdaEnv:
	Description: "Environment"
	Type: String

	Resources:
	<FUNCTION_NAME>:
	Type: AWS::Serverless::Function
	Properties:
	Description: <FUNCTION_DESCRIPTION>
	CodeUri: .
	Environment:
	Variables:
	ENV: !Ref LambdaEnv
	FunctionName: <FUNCTION_NAME>
	Handler: index.<FUNCTION_NAME>
	MemorySize: 128
	Runtime: nodejs14.x
	Timeout: 15
	VpcConfig:
	SecurityGroupIds:
	- !Ref LambdaSg
	SubnetIds: !Ref LambdaSubnets
	Policies:
	- VPCAccessPolicy: {}
	Role: !GetAtt <FUNCTION_ROLE_NAME>.Arn

	<FUNCTION_ROLE_NAME>:
	Type: AWS::IAM::Role
	Properties:
	AssumeRolePolicyDocument:
	Version: "2012-10-17"
	Statement:
	- Effect: Allow
	Principal:
	Service:
	- lambda.amazonaws.com
	Action:
	- "sts:AssumeRole"
	Path: /
	ManagedPolicyArns:
	- "arn:aws:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole"
	Policies:
	- PolicyName: <FUNCTION_POLICY_NAME>
	PolicyDocument:
	Version: "2012-10-17"
	Statement:
	- Effect: Allow
	Action:
	- "ec2:DescribeNetworkInterfaces"
	- "ec2:CreateNetworkInterface"
	- "ec2:DeleteNetworkInterface"
	- "ec2:DescribeInstances"
	- "ec2:AttachNetworkInterface"
	Resource: "*"