antonmry/updateAWSecurityGroup.bash

## updateAWSecurityGroup.bash
#! /bin/bash

publicIP=`dig +short myip.opendns.com @resolver1.opendns.com`

## TODO: move port, description and group-id to variables

## Consult previous one
cidrIP=`aws ec2 describe-security-groups --group-ids sg-XXXXXX | jq -r '.SecurityGroups[0].IpPermissions[] | select(.ToPort==80) | .IpRanges[] | select(.Description == "antonmry") | .CidrIp' | tail -1f`

## Delete the previous one
if [ -n "${cidrIP}" ]; then
  aws ec2 revoke-security-group-ingress --group-id sg-XXXXXX --ip-permissions '[{"IpProtocol": "tcp", "FromPort": 80, "ToPort": 80, "IpRanges": [{"CidrIp":"'$cidrIP'"}]}]'
fi

## Add the new one
aws ec2 authorize-security-group-ingress --group-id sg-XXXXXX --ip-permissions '[{"IpProtocol": "tcp", "FromPort": 80, "ToPort": 80, "IpRanges": [{"CidrIp": "'$publicIP'/32", "Description": "antonmry"}]}]'
	#! /bin/bash

	publicIP=`dig +short myip.opendns.com @resolver1.opendns.com`

	## TODO: move port, description and group-id to variables

	## Consult previous one
	cidrIP=`aws ec2 describe-security-groups --group-ids sg-XXXXXX \| jq -r '.SecurityGroups[0].IpPermissions[] \| select(.ToPort==80) \| .IpRanges[] \| select(.Description == "antonmry") \| .CidrIp' \| tail -1f`

	## Delete the previous one
	if [ -n "${cidrIP}" ]; then
	aws ec2 revoke-security-group-ingress --group-id sg-XXXXXX --ip-permissions '[{"IpProtocol": "tcp", "FromPort": 80, "ToPort": 80, "IpRanges": [{"CidrIp":"'$cidrIP'"}]}]'
	fi

	## Add the new one
	aws ec2 authorize-security-group-ingress --group-id sg-XXXXXX --ip-permissions '[{"IpProtocol": "tcp", "FromPort": 80, "ToPort": 80, "IpRanges": [{"CidrIp": "'$publicIP'/32", "Description": "antonmry"}]}]'