Created
October 3, 2017 17:14
-
-
Save rafaotetra/107928c2bb05b60d85d508e161b086a5 to your computer and use it in GitHub Desktop.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import boto3 | |
| import collections | |
| import datetime | |
| ec = boto3.client('ec2') | |
| def lambda_handler(event, context): | |
| reservations = ec.describe_instances( | |
| Filters=[ | |
| {'Name': 'tag-key', 'Values': ['Backup', 'backup']}, | |
| ] | |
| ).get( | |
| 'Reservations', [] | |
| ) | |
| instances = [ | |
| i for r in reservations | |
| for i in r['Instances'] | |
| ] | |
| print("Found %d instances that need backing up" % len(instances)) | |
| to_tag = collections.defaultdict(list) | |
| for instance in instances: | |
| try: | |
| retention_days = [ | |
| int(t.get('Value')) for t in instance['Tags'] | |
| if t['Key'] == 'Retention'][0] | |
| except IndexError: | |
| retention_days = 7 | |
| for dev in instance['BlockDeviceMappings']: | |
| if dev.get('Ebs', None) is None: | |
| continue | |
| vol_id = dev['Ebs']['VolumeId'] | |
| print("Found EBS volume %s on instance %s" % ( | |
| vol_id, instance['InstanceId'])) | |
| snap = ec.create_snapshot( | |
| VolumeId=vol_id, | |
| ) | |
| to_tag[retention_days].append(snap['SnapshotId']) | |
| print("Retaining snapshot %s of volume %s from instance %s for %d days" % ( | |
| snap['SnapshotId'], | |
| vol_id, | |
| instance['InstanceId'], | |
| retention_days, | |
| )) | |
| for retention_days in to_tag.keys(): | |
| delete_date = datetime.date.today() + datetime.timedelta(days=retention_days) | |
| delete_fmt = delete_date.strftime('%Y-%m-%d') | |
| print("Will delete %d snapshots on %s" % (len(to_tag[retention_days]), delete_fmt)) | |
| ec.create_tags( | |
| Resources=to_tag[retention_days], | |
| Tags=[ | |
| {'Key': 'DeleteOn', 'Value': delete_fmt}, | |
| ] | |
| ) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "Version": "2012-10-17", | |
| "Statement": [ | |
| { | |
| "Effect": "Allow", | |
| "Action": [ | |
| "logs:*" | |
| ], | |
| "Resource": "arn:aws:logs:*:*:*" | |
| }, | |
| { | |
| "Effect": "Allow", | |
| "Action": "ec2:Describe*", | |
| "Resource": "*" | |
| }, | |
| { | |
| "Effect": "Allow", | |
| "Action": [ | |
| "ec2:CreateSnapshot", | |
| "ec2:DeleteSnapshot", | |
| "ec2:CreateTags", | |
| "ec2:ModifySnapshotAttribute", | |
| "ec2:ResetSnapshotAttribute" | |
| ], | |
| "Resource": [ | |
| "*" | |
| ] | |
| } | |
| ] | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment