Terraform users would like to see Terraform support destroy provisioners that would run before a destroy action. There are many use cases documented in the terraform github issue #386 on how this would be helpful to users.
It seems the Terraform community has a shared consesus that custom destroy steps should be handled somehow with a terraform provisioner. This feature spec is an attempt to propose a solution to the following question.
| #!/usr/bin/env bash | |
| # | |
| # Check a WordPress domain against CVE-2017-8295. | |
| # https://exploitbox.io/vuln/WordPress-Exploit-4-7-Unauth-Password-Reset-0day-CVE-2017-8295.html | |
| # | |
| # Usage: | |
| # ./wordpress-host-check <domain> <username> | |
| # | |
| # <domain> | |
| # The WordPress domain you wish to check. For example, http://example.com. |
A quick note on how I'm currently handling Blue/Green or A/B deployments with Terraform and AWS EC2 Auto Scaling.
In my particular use case, I want to be able to inspect an AMI deployment manually before disabling the previous deployment.
Hopefully someone finds this useful, and if you have and feedback please leave a comment or email me.
I build my AMI's using Packer and Ansible.
| tldr - remove microcode_ctl package - configure dracut to insure needed drivers are included for kernel/initrd updates | |
| And exmaple - The Chef way: | |
| ################ | |
| 1.) create a recipe with the following code: | |
| ################ | |
| if node['ec2']['instance_type'].include? ( "c5" || "f1" || "g3" || "h1" || "i3" || "m4.16xlarge" || "m5" || "p2" || "p3" || "r4" || "x1" ) | |
| template '/etc/dracut.conf' do |
| --- | |
| # ^^^ YAML documents must begin with the document separator "---" | |
| # | |
| #### Example docblock, I like to put a descriptive comment at the top of my | |
| #### playbooks. | |
| # | |
| # Overview: Playbook to bootstrap a new host for configuration management. | |
| # Applies to: production | |
| # Description: | |
| # Ensures that a host is configured for management with Ansible. |
| a4b:AssociateContactWithAddressBook | |
| a4b:AssociateDeviceWithRoom | |
| a4b:AssociateSkillGroupWithRoom | |
| a4b:CreateAddressBook | |
| a4b:CreateContact | |
| a4b:CreateProfile | |
| a4b:CreateRoom | |
| a4b:CreateSkillGroup | |
| a4b:CreateUser | |
| a4b:DeleteAddressBook |
| EventSource, EventName, Recorded Name, Match | |
| a4b, AssociateDeviceWithRoom, associatedevicewithroom, True | |
| a4b, AssociateSkillGroupWithRoom, associateskillgroupwithroom, True | |
| a4b, CreateProfile, createprofile, True | |
| a4b, CreateRoom, createroom, True | |
| a4b, CreateSkillGroup, createskillgroup, True | |
| a4b, CreateUser, createuser, True | |
| a4b, DeleteProfile, deleteprofile, True | |
| a4b, DeleteRoom, deleteroom, True | |
| a4b, DeleteRoomSkillParameter, deleteroomskillparameter, True |
| 5 Abort | |
| 9 Accept | |
| 3 Acknowledge | |
| 4 Activate | |
| 48 Add | |
| 23 Admin | |
| 6 Allocate | |
| 4 Apply | |
| 2 Approve | |
| 1 Archive |
| a4b | |
| account | |
| acm | |
| acm-pca | |
| amplify | |
| apigateway | |
| application-autoscaling | |
| appstream | |
| appsync | |
| artifact |
| require "timeout" | |
| class AutoScalingGroup | |
| attr_accessor :name | |
| def initialize(attrs = {}) | |
| attrs.each do |key,value| | |
| if self.respond_to?("#{key}=") | |
| self.send("#{key}=", value) | |
| end |