Soenke Ruempler s0enke

## index.php
import { CfnOutput, Stack, StackProps } from "aws-cdk-lib";
import { Construct } from "constructs";
import * as lambda from "aws-cdk-lib/aws-lambda";
import * as apigateway from "@aws-cdk/aws-apigatewayv2-alpha";
import { HttpLambdaIntegration } from "@aws-cdk/aws-apigatewayv2-integrations-alpha";

import * as cdk from "aws-cdk-lib";

export class CdkBrefStack extends Stack {
  constructor(scope: Construct, id: string, props?: StackProps) {

## cdk_with_service_catalog.ts

// Possible since https://github.com/aws/aws-cdk/pull/17144

class VpcProduct extends servicecatalog.ProductStack {

  vpc: aws_ec2.Vpc;

  constructor(scope: Construct, id: string) {
    super(scope, id);
    this.vpc = new aws_ec2.Vpc(this, 'Vpc', {

## host_id_new
PS C:\gfos\jdk\bin> java -jar .\HostId.jar
display name    : Software Loopback Interface 1
name            : lo
index           : 1
loopback        : true
p2p             : false
up              : true
virtual         : false
network interface Software Loopback Interface 1 is invalid: no hardware address

## scp.json
        {
            "Sid": "ProtectBackups",
            "Condition": {
                "ArnNotLike": {
                    "aws:PrincipalARN": "arn:aws:iam::*:role/AWSControlTowerExecution"
                }
            },
            "Action": [
                "backup:Delete*",
                "backup:Update*"

## aws_backup_sample.yaml
AWSTemplateFormatVersion: "2010-09-09"
Resources:
  BackupRole:
    Type: "AWS::IAM::Role"
    Properties:
      RoleName: SampleBackupRole
      AssumeRolePolicyDocument:
        Version: "2012-10-17"
        Statement:
          - Effect: "Allow"

## manifest.yaml
# Landing Zone Service Control Policies
organization_policies:
  ...
  - name: restrict-to-eu
    description: Restrict to EU regions
    policy_file: policies/restrict_to_eu_regions.json
    #Apply to accounts in the following OU(s)
    apply_to_accounts_in_ou:
      - core
      - applications

## resources.md

      
              1 file
            
          
              0 forks
            
          
              2 comments
            
          
              2 stars
            
          
                s0enke
                / resources.md
            
            
              Last active
              September 28, 2018 20:43
            
              
                List of resources for a howto for Post Mortem / Learning Review meeting moderator/facilitators. 
              
          
    Do you have more resources? Please leave a comment!

Beyond Blame (Dave Zwieback)
https://response.pagerduty.com/after/post_mortem_process/
https://victorops.com/wp-content/uploads/2014/09/Blameless-Post-Mortems.pdf
https://response.pagerduty.com/after/post_mortem_process/
https://medium.com/production-ready/writing-your-first-postmortem-8053c678b90f
https://medium.com/production-ready/on-finding-root-causes-c0ce524bf98b
https://www.slideshare.net/jallspaw/advanced-postmortem-fu-and-human-error-101-velocity-2011
http://extfiles.etsy.com/DebriefingFacilitationGuide.pdf


## ansible_playbook.yaml
# call me with
# $ ansible-playbook ansible_playbook.yaml
---
- hosts: localhost
  connection: local
  gather_facts: no

  tasks:
  - cloudformation:
      stack_name: "stack_name"

## aws intro.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              0 stars
            
          
                s0enke
                / aws intro.md
            
            
              Created
              February 27, 2017 21:04
            
              
                aws intro
              
          
    http://blog.gardeviance.org/2015/04/the-only-structure-youll-ever-need.html

  
## gist:97920702cf1cdb4f45411e926ca028a3
policies:

  - name: s3-bucket-check
    resource: s3
    mode:
      role: arn:aws:iam::xxxxx:role/lambda-basic-execution
      type: periodic
      schedule: "rate(10 minutes)"
	import { CfnOutput, Stack, StackProps } from "aws-cdk-lib";
	import { Construct } from "constructs";
	import * as lambda from "aws-cdk-lib/aws-lambda";
	import * as apigateway from "@aws-cdk/aws-apigatewayv2-alpha";
	import { HttpLambdaIntegration } from "@aws-cdk/aws-apigatewayv2-integrations-alpha";

	import * as cdk from "aws-cdk-lib";

	export class CdkBrefStack extends Stack {
	constructor(scope: Construct, id: string, props?: StackProps) {

	// Possible since https://github.com/aws/aws-cdk/pull/17144

	class VpcProduct extends servicecatalog.ProductStack {

	vpc: aws_ec2.Vpc;

	constructor(scope: Construct, id: string) {
	super(scope, id);
	this.vpc = new aws_ec2.Vpc(this, 'Vpc', {
	PS C:\gfos\jdk\bin> java -jar .\HostId.jar
	display name : Software Loopback Interface 1
	name : lo
	index : 1
	loopback : true
	p2p : false
	up : true
	virtual : false
	network interface Software Loopback Interface 1 is invalid: no hardware address
	{
	"Sid": "ProtectBackups",
	"Condition": {
	"ArnNotLike": {
	"aws:PrincipalARN": "arn:aws:iam::*:role/AWSControlTowerExecution"
	}
	},
	"Action": [
	"backup:Delete*",
	"backup:Update*"
	AWSTemplateFormatVersion: "2010-09-09"
	Resources:
	BackupRole:
	Type: "AWS::IAM::Role"
	Properties:
	RoleName: SampleBackupRole
	AssumeRolePolicyDocument:
	Version: "2012-10-17"
	Statement:
	- Effect: "Allow"
	# Landing Zone Service Control Policies
	organization_policies:
	...
	- name: restrict-to-eu
	description: Restrict to EU regions
	policy_file: policies/restrict_to_eu_regions.json
	#Apply to accounts in the following OU(s)
	apply_to_accounts_in_ou:
	- core
	- applications
	# call me with
	# $ ansible-playbook ansible_playbook.yaml
	---
	- hosts: localhost
	connection: local
	gather_facts: no

	tasks:
	- cloudformation:
	stack_name: "stack_name"
	policies:

	- name: s3-bucket-check
	resource: s3
	mode:
	role: arn:aws:iam::xxxxx:role/lambda-basic-execution
	type: periodic
	schedule: "rate(10 minutes)"