RubyGems - aws-tools - Versions diffs - 0.0.3 → 0.0.4 - Mend

aws-tools 0.0.3 → 0.0.4

Files changed (4) hide show

checksums.yaml ADDED

@@ -0,0 +1,7 @@
+---
+SHA1:
+  metadata.gz: ca067a22cebe6f3a1fce85ce9feed048ff268a45
+  data.tar.gz: 1ec0ba2eb6779f228be4e08f47e4d3209afa00f9
+SHA512:
+  metadata.gz: e641830b7260a47d7eeaa45c265f7957f13f8a4d5538021cab4bec00b6c054c705e7513862ec793c30af2e25774fcf2e7497884718b82de4f8b70f91dd212d5e
+  data.tar.gz: 945cd6a46e045496e1924e1a4c0387564252422a85170a1b09cd7cddb2317c76bc7a0b71d6a5772d01d2505b08015228ae73ae3d9402892bf3ad5b209cd29d01

data/bin/aws_manager.rb CHANGED

@@ -1,6 +1,6 @@
 #!/usr/bin/env ruby
-require 'aws-sdk-core'
+require 'aws-sdk'
 require 'yaml'
 require 'optparse'
 require 'erb'
@@ -96,6 +96,7 @@ def syntax
   puts "Syntax:"
   puts "   EC2 Instance commands:"
   puts "        aws_manager.rb --region region run_instance <instance template file> "
+  puts "        aws_manager.rb --region region [--mount volume:device] run_instance <instance template file> "
   puts "        aws_manager.rb --region region [--environment environment] [--purpose purpose] [--choose first|oldest|newest] connect [id]"
   puts "        aws_manager.rb --region region [--environment environment] [--purpose purpose] [--choose first|oldest|newest] start [id]"
   puts "        aws_manager.rb --region region [--environment environment] [--purpose purpose] [--choose first|oldest|newest] [--keep-one] stop [id]"
@@ -129,13 +130,14 @@ def syntax
 end
 def main
   syntax if ARGV.length <= 0
-  params = ARGV.getopts("hr:e:p:fkc:", "choose:", "keep-one", "help", "region:", "environment:", "purpose:")
+  params = ARGV.getopts("hr:e:p:fkc:m:", "choose:", "mount:", "keep-one", "help", "region:", "environment:", "purpose:")
   syntax if params['h'] or params['help']
   purpose = params['p'] || params['purpose']
   environment = params['e'] || params['environment']
   region = params['r'] || params['region']
   keep_one = params['k'] || params['keep-one']
   selection_criteria = params['c'] || params['choose']
+  mount = params['m'] || params['mount']
   selection_criteria = selection_criteria.downcase.to_sym if selection_criteria
   syntax if selection_criteria and !([:first,:oldest, :newest].include?(selection_criteria))
   syntax if ARGV.length <= 0
@@ -204,6 +206,10 @@ def main
     end
     image_options = YAML.load(ERB.new(File.read(instance_template)).result)
     instance = region.create_instance(image_options)
+    if mount
+      (vol,dev) = mount.split(":")
+      instance.mount(vol, dev)
+    end
   elsif command == 'terminate_instance'
     if keep_one and filter_instances(region.find_instances({environment: environment, purpose: purpose  }), ['running']).length < 2
       puts "There are less than 2 instances, and keep_one flag set.  Exiting."

data/lib/aws_region.rb CHANGED

@@ -1,755 +1,756 @@
-require 'aws-sdk-core'
-require 'yaml'
-require 'json'
-class AwsBase
-  def log(msg)
-    @logger.write("#{Time.now.strftime("%b %D, %Y %H:%S:%M:")} #{msg}\n") if @logger
-  end
-end
-# AwsRegion is a simplified wrapper on top of a few of the Aws core objects
-# The main goal is to expose a extremely simple interface for some our most
-# frequently used Aws facilities.
-class AwsRegion < AwsBase
-  attr_accessor :ec2, :region, :rds, :account_id, :elb, :cw, :s3, :sns
-  REGIONS = {'or' => "us-west-2", 'ca' => "us-west-1", 'va' => 'us-east-1'}
-  # @param region [String] must be one of the keys of the {AwsRegion::REGIONS REGIONS} static hash
-  # @param account_id [String] Aws account id
-  # @param access_key_id [String] Aws access key id
-  # @param secret_access_key [String] Aws secret access key
-  def initialize(region, account_id, access_key_id, secret_access_key, logger = nil)
-    @logger = logger
-    @region = REGIONS[region]
-    @account_id = account_id
-    Aws.config = {:access_key_id => access_key_id,
-                  :secret_access_key => secret_access_key}
-    @ec2 = Aws::EC2.new({:region => @region})
-    @rds = Aws::RDS.new({:region => @region})
-    @elb = Aws::ElasticLoadBalancing.new({:region => @region})
-    @cw = Aws::CloudWatch.new({:region => @region})
-    @s3 = Aws::S3.new({:region => @region})
-    @sns = Aws::SNS.new({:region => @region})
-  end
-  # Simple EC2 Instance finder.  Can find using instance_id, or using
-  # :environment and :purpose instance tags which must both match.
-  #
-  # @param options [Hash] containing search criteria.  Values can be:
-  #   * :instance_id - identifies an exact instance
-  #   * :environment - instance tag
-  #   * :purpose     - instance tag
-  # @return [Array<AwsInstance>] instances found to match criteria
-  def find_instances(options={})
-    instances = []
-    @ec2.describe_instances[:reservations].each do |i|
-      i.instances.each do |y|
-        instance = AwsInstance.new(self, {:instance => y})
-        if instance.state != 'terminated'
-          if options.has_key?(:environment) and options.has_key?(:purpose)
-            instances << instance if  instance.tags[:environment] == options[:environment] and instance.tags[:purpose] == options[:purpose]
-          elsif options.has_key?(:instance_id)
-            instances << instance if instance.id == options[:instance_id]
-          end
-        end
-      end
-    end
-    return instances
-  end
-  # Simple DB Instance finder.  Can find using instance_id, or using
-  # :environment and :purpose instance tags which must both match.
-  #
-  # @param options [Hash] containing search criteria.  Values can be:
-  #   * :instance_id - identifies an exact instance
-  #   * :environment - instance tag
-  #   * :purpose     - instance tag
-  # @return [Array<AwsDbInstance>] instances found to match criteria
-  def find_db_instances(options={})
-    instances = []
-    @rds.describe_db_instances[:db_instances].each do |i|
-      instance = AwsDbInstance.new(self, {:instance => i})
-      if options.has_key?(:instance_id)
-        instance.id == options[:instance_id]
-        instances << instance
-      elsif instance.tags[:environment] == options[:environment] and
-          instance.tags[:purpose] == options[:purpose]
-        instances << instance
-      end
-    end
-    instances
-  end
-  # Search region for a bucket by name
-  #
-  # @param options [Hash] containing search criteria.  Values can be:
-  #   * :bucket  -  Bucket name
-  # @return [Array<AwsBucket>] instances found to match criteria
-  def find_buckets(options={})
-    buckets = []
-    _buckets = @s3.list_buckets()
-    _buckets[:buckets].each do |b|
-      buckets << AwsBucket.new(self, {id: b[:name]}) if b[:name] == options[:bucket]
-    end
-    buckets
-  end
-  # Construct new EC2 instance
-  #
-  # @param options [Hash] containing initialization parameters.  See {AwsInstance#initialize}
-  # @return [AwsInstance]
-  def create_instance(options={})
-    AwsInstance.new(self, options)
-  end
-  # Construct new DB instance
-  #
-  # @param options [Hash] containing initialization parameters.  See {AwsDbInstance#initialize}
-  # @return [AwsDbInstance]
-  def create_db_instance(options={})
-    AwsDbInstance.new(self, options)
-  end
-  # Construct new CloudWatch instance
-  #
-  # @param options [Hash] containing initialization parameters.  See {AwsCw#initialize}
-  # @return [AwsCw]
-  def create_cw_instance(options={})
-    AwsCw.new(self, options)
-  end
-  # Construct new AwsBucket instance
-  #
-  # @param options [Hash] containing initialization parameters.  See {AwsBucket#initialize}
-  # @return [AwsBucket]
-  def create_bucket(options={})
-    AwsBucket.new(self, options)
-  end
-  def create_sns_instance
-    AwsSns.new(self)
-  end
-  class AwsSns
-    attr_accessor :region
-    def initialize(region)
-      @region = region
-    end
-    def publish(topic_arn, subject) #, message)
-      @region.sns.publish(topic_arn: topic_arn, message: "unused for texts", subject: subject)
-    end
-  end
-# Methods for dealing with CloudWatch
-  class AwsCw  < AwsBase
-    attr_accessor :region
-    # @param region [String] - Value from REGION static hash
-    def initialize(region, options={})
-      @region = region
-    end
-    # Put a cw metric
-    # @param arg_csv [String] - CSV row: "namespace,name,value,dims"
-    # * Note that dims is formatted as an arbitrary semicolon separated list of name:value dimensions.  For example:
-    #   * "activeservers,count,10,env:prod;purp:test"
-    # @return [Aws::PageableResponse]
-    def put_metric(arg_csv)
-      (namespace, name, value, dims) = arg_csv.split(",")
-      dimensions = []
-      dims.split(";").each do |d|
-        (n, v) = d.split(":")
-        dimensions << {:name => n, :value => v}
-      end
-      args = {:namespace => namespace}
-      metric ={:metric_name => name, :value => value.to_f, :timestamp => Time.now, :dimensions => dimensions}
-      args[:metric_data] = [metric]
-      @region.cw.put_metric_data(args)
-    end
-  end
-  # Methods for dealing with S3 buckets
-  class AwsBucket  < AwsBase
-    attr_accessor :region
-    # Constructs a bucket instance from an existing bucket, or creates a new one with the name
-    # @param region [String]  - Value from REGION static hash
-    # @param options [Hash] - Possible values:
-    # * :id - id of existing bucket
-    # * :bucket - Name of bucket to find or create
-    def initialize(region, options={})
-      @region = region
-      if options.has_key?(:id)
-        @id = options[:id]
-      elsif options.has_key?(:bucket)
-        bucket = options[:bucket]
-        if @region.find_buckets({bucket: bucket}).length <= 0
-          @region.s3.create_bucket({:bucket => bucket,
-                                    :create_bucket_configuration => {:location_constraint => @region.region}})
-          if @region.find_buckets({bucket: bucket}).length <= 0
-            raise "Error creating bucket: #{bucket} in region: #{@region.region}"
-          end
-        end
-        @id = bucket
-      end
-    end
-    # Delete this bucket instance
-    # @return [AwsPageableResponse]]
-    def delete
-      @region.s3.delete_bucket({bucket: @id})
-    end
-    # Put a local file to this bucket
-    # @param filename [String]  - local file name
-    # @param file_identity [String] - S3 file path
-    # @return [AwsPageableResponse]
-    def put_file(filename, file_identity)
-      File.open(filename, 'r') do |reading_file|
-        resp = @region.s3.put_object(
-            acl: "bucket-owner-full-control",
-            body: reading_file,
-            bucket: @id,
-            key: file_identity
-        )
-      end
-    end
-    # puts a local file to an s3 object in bucket on path
-    # example: put_local_file(:bucket=>"bucket", :local_file_path=>"/tmp/bar/foo.txt", :aws_path=>"b")
-    # would make an s3 object named foo.txt in bucket/b
-    # @param local_file_path [String] - Location of file to put
-    # @param aws_path [String] - S3 path to put the file
-    # @param options [Hash] - Can contain any valid S3 bucket options see [docs](http://docs.aws.amazon.com/sdkforruby/api/frames.html)
-    def put(local_file_path, aws_path, options={})
-      aws_path = aws_path[0..-2] if aws_path[-1..-1] == '/'
-      s3_path = "#{aws_path}/#{File.basename(local_file_path)}"
-      log "s3 writing #{local_file_path} to bucket #{@id} path: #{aws_path} s3 path: #{s3_path}"
-      f = File.open local_file_path, 'rb'
-      options[:bucket] = @id
-      options[:key] = s3_path
-      options[:body] = f
-      options[:storage_class] = 'REDUCED_REDUNDANCY'
-      result = @region.s3.put_object(params=options)
-      f.close
-      result
-    end
-    # prefix is something like: hchd-A-A-Items
-    # This will return in an array of strings the names of all objects in s3 in
-    # the :aws_path under :bucket starting with passed-in prefix
-    # example: :aws_path=>'development', :prefix=>'broadhead'
-    #           would return array of names of objects in said bucket
-    #           matching (in regex terms) development/broadhead.*
-    # @param options [Hash] - Can contain:
-    # * :aws_path - first part of S3 path to search
-    # * :prefix - Actually suffix of path to search.
-    # @return [Array<Hash>] - 0 or more objects
-    def find(options={})
-      aws_path = options[:aws_path]
-      prefix = options[:prefix]
-      aws_path = '' if aws_path.nil?
-      aws_path = aws_path[0..-2] if aws_path[-1..-1] == '/'
-      log "s3 searching bucket:#{@id} for #{aws_path}/#{prefix}"
-      objects = @region.s3.list_objects(:bucket => @id,
-                                        :prefix => "#{aws_path}/#{prefix}")
-      f = objects.contents.collect(&:key)
-      log "s3 searched  got: #{f.inspect}"
-      f
-    end
-    # writes contents of S3 object to local file
-    # example: get( :s3_path_to_object=>development/myfile.txt',
-    #               :dest_file_path=>'/tmp/foo.txt')
-    #          would write to local /tmp/foo.txt a file retrieved from s3
-    #          at development/myfile.txt
-    # @param options [Hash] - Can contain:
-    # * :s3_path_to_object - S3 object path
-    # * :dest_file_path - local file were file will be written
-    # @return [Boolean]
-    def get(options={})
-      begin
-        s3_path_to_object = options[:s3_path_to_object]
-        dest_file_path = options[:dest_file_path]
-        File.delete dest_file_path if File.exists?(dest_file_path)
-        log "s3 get bucket:#{@id} path:#{s3_path_to_object} dest:#{dest_file_path}"
-        response = @region.s3.get_object(:bucket => @id,
-                                         :key => s3_path_to_object)
-        response.body.rewind
-        File.open(dest_file_path, 'wb') do |file|
-          response.body.each { |chunk| file.write chunk }
-        end
-      rescue Exception => e
-        return false
-      end
-      true
-    end
-    # deletes from s3 an object at :s3_path_to_object
-    # @param options [Hash] - Can be:
-    # * :s3_path_to_object
-    # @return [Boolean]
-    def delete_object(options={})
-      begin
-        s3_path_to_object = options[:s3_path_to_object]
-        log "s3 delete  #{s3_path_to_object}"
-        @region.s3.delete_object(:bucket => @id,
-                                 :key => s3_path_to_object)
-      rescue Exception => e
-        return false
-      end
-      true
-    end
-    # delete all objects in a bucket
-    # @return [Boolean]
-    def delete_all_objects
-      begin
-        response = @region.s3.list_objects({:bucket => @id})
-        response[:contents].each do |obj|
-          @region.s3.delete_object(:bucket => @id,
-                                   :key => obj[:key])
-        end
-      rescue Exception => e
-        return false
-      end
-      true
-    end
-  end
-  # Class to handle RDS Db instances
-  class AwsDbInstance  < AwsBase
-    attr_accessor :id, :tags, :region, :endpoint
-    # Creates an AwsDbInstance for an existing instance or creates a new database
-    # @param region [String] - - Value from REGION static hash
-    # @param options [Hash] - Can contain:
-    # * :instance - If specified, create an instance of this class using this RDS instance.
-    # * :opts - [Hash] - Includes parameters for constructing the database.  The format is:
-    #   * :db_instance_identifier - RDS instance identifier
-    #   * :db_subnet_group_name - DB Subgroup name
-    #   * :publicly_accessible - [true|false]
-    #   * :db_instance_class - RDS db instance class
-    #   * :availability_zone - RDS/Aws availability zone
-    #   * :multi_az - [true|false]
-    #   * :engine - RDS engine (Only tested with Mysql at this point)
-    # * :tags - Tags to be applied to RDS instance. The follow are required.  Arbitrary tags may also be added.
-    #   * :environment - Environment  designation - can be anything.  Used to locate instance with other aws-tools
-    #   * :purpose - Purpose  designation - can be anything.  Used to locate instance with other aws-tools
-    #   * :name - Name will appear in the Aws web page if you set this
-    #   * :snapshot_name - Name of the snapshot that will be used to construct the new instance.  This name will be matched with the  RDS db_instance_identifier.  The latest snapshot will be used.
-    #   * :vpc_security_group_ids: - Comma separated list of security groups that will be applied to this instance
-    def initialize(region, options = {})
-      @region = region
-      opts = options[:opts]
-      if !options.has_key?(:instance)
-        @id = opts[:db_instance_identifier]
-        snapshot_name = options[:snapshot_name]
-        if 0 < @region.find_db_instances({:instance_id => @id}).length
-          log "Error, instance: #{@id} already exists"
-          return
-        end
-        last = self.get_latest_db_snapshot({:snapshot_name => snapshot_name})
-        log "Restoring: #{last.db_instance_identifier}, snapshot: #{last.db_instance_identifier} from : #{last.snapshot_create_time}"
-        opts[:db_snapshot_identifier] = last.db_snapshot_identifier
-        response = @region.rds.restore_db_instance_from_db_snapshot(opts)
-        @_instance = response[:db_instance]
-        @region.rds.add_tags_to_resource({:resource_name => "arn:aws:rds:#{@region.region}:#{@region.account_id}:db:#{@id}",
-                                          :tags => [{:key => "environment", :value => options[:environment]},
-                                                    {:key => "purpose", :value => options[:purpose]}]})
-        self.wait
-        opts = {:db_instance_identifier => @id,
-                :vpc_security_group_ids => options[:vpc_security_group_ids]}
-        @region.rds.modify_db_instance(opts)
-      else
-        @_instance = options[:instance]
-        @id = @_instance[:db_instance_identifier]
-      end
-      @tags = {}
-      _tags = @region.rds.list_tags_for_resource({:resource_name => "arn:aws:rds:#{@region.region}:#{@region.account_id}:db:#{@id}"})
-      _tags[:tag_list].each do |t|
-        @tags[t[:key].to_sym] = t[:value]
-      end
-      @endpoint = @_instance.endpoint[:address]
-    end
-    # Delete a database and be sure to capture a final stapshot
-    # @return [Boolean] - A return value of true only means that the command was issued.  The caller should follow up later with a call to determine status in order to know when the delete has been completed
-    def delete(options={})
-      log "Deleting database: #{@id}"
-      opts = {:db_instance_identifier => @id,
-              :skip_final_snapshot => false,
-              :final_db_snapshot_identifier => "#{@id}-#{Time.now.strftime("%Y-%m-%d-%H-%M-%S")}"}
-      begin
-        i = @region.rds.delete_db_instance(opts)
-      rescue  Exception => e
-        return false
-      end
-      true
-    end
-    # Purge db snapshots, keep just one - the latest
-    # @return [Boolean]
-    def purge_db_snapshots
-      latest = 0
-      @region.rds.describe_db_snapshots[:db_snapshots].each do |i|
-        if i.snapshot_type == "manual" and i.db_instance_identifier == @id
-          if i.snapshot_create_time.to_i > latest
-            latest = i.snapshot_create_time.to_i
-          end
-        end
-      end
-      @region.rds.describe_db_snapshots[:db_snapshots].each do |i|
-        if i.snapshot_type == "manual" and i.db_instance_identifier == @id
-          if i.snapshot_create_time.to_i != latest
-            log "Removing snapshot: #{i.db_snapshot_identifier}/#{i.snapshot_create_time.to_s}"
-            begin
-              @region.rds.delete_db_snapshot({:db_snapshot_identifier => i.db_snapshot_identifier})
-            rescue
-              log "Error removing snapshot: #{i.db_snapshot_identifier}/#{i.snapshot_create_time.to_s}"
-              return false
-            end
-          else
-            log "Keeping snapshot: #{i.db_snapshot_identifier}/#{i.snapshot_create_time.to_s}"
-          end
-        end
-      end
-      true
-    end
-    # Wait for the database to get to a state - we are usually waiting for it to be "available"
-    # @param options [Hash] - Can be:
-    # * :desired_status - Default: "available" - The RDS Status that is sought
-    # * :timeout - Default: 600 seconds. - The time to wait for the status before returning failure
-    # @return [Boolean]
-    def wait(options = {:desired_status => "available",
-                        :timeout => 600})
-      inst = @region.find_db_instances({:instance_id => @id})[0]
-      if !inst
-        log "Error, instance: #{@id} not found"
-        return false
-      end
-      t0 = Time.now.to_i
-      while inst.status != options[:desired_status]
-        inst = @region.find_db_instances({:instance_id => @id})[0]
-        log "Database: #{@id} at #{@endpoint}.  Current status: #{inst.status}"
-        if Time.now.to_i - t0 > options[:timeout]
-          log "Timed out waiting for database: #{@id} at #{@endpoint} to move into status: #{options[:desired_status]}.  Current status: #{inst.status}"
-          return false
-        end
-        sleep 20
-      end
-      return true
-    end
-    # Get the status of a database
-    # @return [String] - Current status of this database
-    def status
-      @_instance.db_instance_status
-    end
-    # Get the name of the latest snapshot
-    # @return [Hash] - Hash describing RDS Snapshot.  See [RDS Tech Docs](http://docs.aws.amazon.com/sdkforruby/api/Aws/RDS/V20130909.html)
-    def get_latest_db_snapshot(options={})
-      snapshot_name = options.has_key?(:snapshot_name) ? options[:snapshot_name] : @id
-      last = nil
-      last_t = 0
-      @region.rds.describe_db_snapshots[:db_snapshots].each do |i|
-        if i.db_instance_identifier == snapshot_name and (last.nil? or i.snapshot_create_time > last_t)
-          last = i
-          last_t = i.snapshot_create_time
-        end
-      end
-      last
-    end
-  end
-  # Class to handle EC2 Instances
-  class AwsInstance  < AwsBase
-    attr_accessor :id, :tags, :region, :private_ip, :public_ip, :_instance
-    def initialize(region, options = {})
-      @tags = {}
-      @region = region
-      if options.has_key?(:instance)
-        @_instance = options[:instance]
-        @id = @_instance[:instance_id]
-        @public_ip = @_instance[:public_ip_address]
-        @private_ip = @_instance[:private_ip_address]
-      else
-        resp = @region.ec2.run_instances(options[:template])
-        raise "Error creating instance using options" if resp.nil? or resp[:instances].length <= 0
-        @_instance = resp[:instances][0]
-        @id = @_instance[:instance_id]
-        @tags = options[:tags]
-        self.add_tags(@tags)
-        self.wait
-        instance = @region.ec2.describe_instances(:instance_ids => [@id])[0][0].instances[0]
-        @public_ip = instance[:public_ip_address]
-        @private_ip = instance[:private_ip_address]
-        raise "could not get ip address" if @public_ip.nil? && @private_ip.nil?
-        self.inject_into_environment
-      end
-      @_instance.tags.each do |t|
-        @tags[t[:key].to_sym] = t[:value]
-      end
-    end
-    # Determine the state of an ec2 instance
-    # @param use_cached_state [Boolean] - When true will use a cached version of the state rather than querying EC2 directly
-    def state(use_cached_state=true)
-      if !use_cached_state
-        response = @region.ec2.describe_instances({instance_ids: [@id]})
-        response[:reservations].each do |res|
-          res[:instances].each do |inst|
-            if inst[:instance_id] == @id
-              return inst[:state][:name].strip()
-            end
-          end
-        end
-        return ""
-      else
-        @_instance.state[:name].strip()
-      end
-    end
-    # Start an EC2 instance
-    # @param wait [Boolean] - When true, will wait for instance to move into "running" state before returning
-    def start(wait=false)
-      if self.state(use_cached_state = false) != "stopped"
-        log "Instance cannot be started - #{@region.region}://#{@id} is in the state: #{self.state}"
-        return
-      end
-      log "Starting instance: #{@region.region}://#{@id}"
-      @region.ec2.start_instances({:instance_ids => [@id]})
-      if wait
-        begin
-          sleep 10
-          log "Starting instance: #{@region.region}://#{@id} - state: #{self.state}"
-        end while self.state(use_cached_state = false) != "running"
-      end
-      if @tags.has_key?("elastic_ip")
-        @region.ec2.associate_address({:instance_id => @id, :public_ip => @tags['elastic_ip']})
-        log "Associated ip: #{@tags['elastic_ip']} with instance: #{@id}"
-      elsif @tags.has_key?("elastic_ip_allocation_id")
-        @region.ec2.associate_address({:instance_id => @id, :allocation_id => @tags['elastic_ip_allocation_id']})
-        log "Associated allocation id: #{@tags['elastic_ip_allocation_id']} with instance: #{@id}"
-      end
-      if @tags.has_key?("elastic_lb")
-        self.add_to_lb(@tags["elastic_lb"])
-        log "Adding instance: #{@id} to '#{@tags['elastic_lb']}' load balancer"
-      end
-    end
-    # Add tags to an instance
-    # @param h_tags [Hash] - Hash of tags to add to instance
-    def add_tags(h_tags)
-      tags = []
-      h_tags.each do |k, v|
-        tags << {:key => k.to_s, :value => v}
-      end
-      resp = @region.ec2.create_tags({:resources => [@id],
-                                      :tags => tags})
-    end
-    # Add an instance to an elastic lb
-    # @param lb_name [String] - Name of elastic load balancer
-    def add_to_lb(lb_name)
-      @region.elb.register_instances_with_load_balancer({:load_balancer_name => lb_name,
-                                                         :instances => [{:instance_id => @id}]})
-    end
-    # Remove instance from elastic lb
-    # @param instance [AwsInstance] Instance to remove from lb
-    # @param lb_name [String] Lb name from which the instance is to be removed
-    # @return [Aws::PageableResponse]
-    def remove_from_lb(lb_name)
-      lb = @region.elb.describe_load_balancers({:load_balancer_names => [lb_name]})
-      if lb and lb[:load_balancer_descriptions].length > 0
-        lb[:load_balancer_descriptions][0][:instances].each do |lb_i|
-          if lb_i[:instance_id] == @id
-            @elb.deregister_instances_from_load_balancer({:load_balancer_name => lb_name,
-                                                          :instances => [{:instance_id => @id}]})
-            sleep 30
-          end
-        end
-      end
-    end
-    # Terminates ec2 instance
-    def terminate()
-      eject_from_environment
-      @region.ec2.terminate_instances({:instance_ids => [@id]})
-    end
-    # Stops an ec2 instance
-    # @param wait [Boolean] - When true, will wait for the instance to be completely stopped before returning
-    def stop(wait=false)
-      if self.state(use_cached_state = false) != "running"
-        log "Instance cannot be stopped - #{@region.region}://#{@id} is in the state: #{self.state}"
-        return
-      end
-      self.eject_from_environment
-      if @tags.has_key?("elastic_lb")
-        log "Removing instance: #{@id} from '#{@tags['elastic_lb']}' load balancer"
-        remove_from_lb(tags["elastic_lb"])
-      end
-      log "Stopping instance: #{@region.region}://#{@id}"
-      @region.ec2.stop_instances({:instance_ids => [@id]})
-      while self.state(use_cached_state = false) != "stopped"
-        sleep 10
-        log "Stopping instance: #{@region.region}://#{@id} - state: #{self.state}"
-      end if wait
-      if self.state(use_cached_state = false) == "stopped"
-        log "Instance stopped: #{@region.region}://#{@id}"
-      end
-    end
-    # Connects using ssh to an ec2 instance
-    def connect
-      if self.state(use_cached_state = false) != "running"
-        log "Cannot connect, instance: #{@region.region}://#{@id} due to its state: #{self.state}"
-        return
-      end
-      ip = self.public_ip != "" ? self.public_ip : self.private_ip
-      log "Connecting: ssh #{@tags[:user]}@#{ip}"
-      exec "ssh #{@tags[:user]}@#{ip}"
-    end
-    def eject_from_environment
-      if @tags.has_key?(:elastic_lb)
-        log "Removing instance: #{@id} from '#{@tags[:elastic_lb]}' load balancer"
-        self.remove_from_lb(tags[:elastic_lb])
-      end
-      if @tags.has_key?(:security_groups_foreign)
-        self.revoke_sg_ingress(@tags[:security_groups_foreign].split(","))
-      end
-    end
-    def inject_into_environment
-      if @tags.has_key?(:elastic_ip)
-        @region.ec2.associate_address({:instance_id => @id, :public_ip => @tags[:elastic_ip]})
-        log "Associated ip: #{@tags[:elastic_ip]} with instance: #{@id}"
-      elsif @tags.has_key?(:elastic_ip_allocation_id)
-        @region.ec2.associate_address({:instance_id => @id, :allocation_id => @tags[:elastic_ip_allocation_id]})
-        log "Associated allocation id: #{@tags[:elastic_ip_allocation_id]} with instance: #{@id}"
-      end
-      if @tags.has_key?(:mount_points)
-        mounts = @tags[:mount_points].split(";")
-        mounts.each do |mnt|
-          (volume_id,device) = mnt.split(",")
-          log "Mounting volume: #{volume_id} on #{device}"
-          self.mount(volume_id, device)
-        end
-      end
-      if @tags.has_key?(:security_group_ids)
-        self.set_security_groups(@tags[:security_group_ids].split(","))
-      end
-      if @tags.has_key?(:security_groups_foreign)
-        self.authorize_sg_ingress(@tags[:security_groups_foreign].split(","))
-      end
-      # if any of the above fails, we probably do not want it in the lb
-      if @tags.has_key?(:elastic_lb)
-        self.add_to_lb(@tags[:elastic_lb])
-        log "Adding instance: #{@id} to '#{@tags[:elastic_lb]}' load balancer"
-      end
-    end
-    def wait(options = {:timeout => 300, :desired_status => "running"})
-      t0 = Time.now.to_i
-      begin
-        sleep 10
-        log "Waiting on instance: #{@region.region}://#{@id} - current state: #{self.state}"
-        return if Time.now.to_i - t0 > options[:timeout]
-      end while self.state(use_cached_state = false) != options[:desired_status]
-    end
-    def set_security_groups(groups)
-      # only works on instances in a vpc
-      @region.ec2.modify_instance_attribute({:instance_id => @id, :groups => groups})
-    end
-    # Does a security group allow ingress on a port for the public IP of this instance
-    # @param group_port [String] - security_group:port  like "sg_xxxxxx:8080"
-    # @return [Boolean] true if the security group allows ingress for the public IP of this instance on a certain port
-    def has_sg_rule?(group_port)
-      options = get_simple_sg_options(group_port)
-      options_cidr_ip = options[:ip_permissions][0][:ip_ranges][0][:cidr_ip]
-      group_id = options[:group_id]
-      raise "missing security group_id" if group_id.nil?
-      sg = @region.ec2.describe_security_groups(:group_ids => [group_id]).data.security_groups[0]
-      sg.ip_permissions.each do |p|
-        if p.ip_protocol == "tcp" &&
-            p.from_port == options[:ip_permissions][0][:from_port] &&
-            p.to_port == options[:ip_permissions][0][:to_port]
-          p[:ip_ranges].each do |ipr|
-            return true if ipr.cidr_ip == options_cidr_ip
-          end
-        end
-      end
-      false
-    end
-    # authorize security group ingress for public ip of this instance on port
-    # @param groups [Array] - each element is String: "security_group_id:port". For example: ["sg-0xxxxx:80", "sg-0xxxxx:8443", "sg-0yyyyy:3000"]
-    def authorize_sg_ingress(groups)
-      raise "no public ip" unless @public_ip.to_s.match /^(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$/
-      groups.each do |gp|
-        options = get_simple_sg_options(gp)
-        if has_sg_rule?(gp)
-          log "security group rule #{gp} for #{self.public_ip} already exists"
-        else
-          @region.ec2.authorize_security_group_ingress options
-          log "added #{self.public_ip} to security group for :port #{gp}"
-        end
-      end
-    end
-    # revoke security group ingress for public ip of this instance on port
-    # @param groups [Array] - each element is String: "security_group_id:port". For example: ["sg-0xxxxx:80", "sg-0xxxxx:8443", "sg-0yyyyy:3000"]
-    def revoke_sg_ingress(groups)
-      # revoke the public ip of this instance for ingress on port for security group
-      # groups is array of strings: security_group_id:port
-      raise "no public ip" unless @public_ip.to_s.match /^(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$/
-      groups.each do |gp|
-        options = get_simple_sg_options(gp)
-        if has_sg_rule?(gp)
-          @region.ec2.revoke_security_group_ingress options
-          log "removed #{self.public_ip} from security group for :port #{gp}"
-        else
-          log "not removing #{self.public_ip} rule #{gp} because it does not exist"
-        end
-      end
-    end
-    def mount(volume_id, device)
-      @region.ec2.attach_volume({:instance_id => @id,
-                                 :volume_id => volume_id,
-                                 :device => device})
-    end
-    # construct hash for authorize/revoke ingress and has_sg_rule?
-    # @param group_id_port [String] - security_group:port  like "sg_xxxxxx:8080"
-    # @return [Hash] - Hash for ec2 call for security group management
-    def get_simple_sg_options(group_id_port)
-      security_group_id, port = group_id_port.split(':')
-      port = port.to_s.to_i
-      raise "no security group id" unless security_group_id.to_s.length > 0
-      raise "no, or invalid port" unless port.to_s.to_i > 0
-      {:group_id => security_group_id,
-       :ip_permissions => [ :ip_protocol => "tcp",
-                            :from_port => port,
-                            :to_port => port,
-                            :ip_ranges => [:cidr_ip => "#{self.public_ip}/32"]
-                          ]
-      }
-    end
-  end
-end
+require 'aws-sdk'
+require 'yaml'
+require 'json'
+class AwsBase
+  def log(msg)
+    @logger.write("#{Time.now.strftime("%b %D, %Y %H:%S:%M:")} #{msg}\n") if @logger
+    puts "#{Time.now.strftime("%b %D, %Y %H:%S:%M:")} #{msg}\n"
+  end
+end
+# AwsRegion is a simplified wrapper on top of a few of the Aws core objects
+# The main goal is to expose a extremely simple interface for some our most
+# frequently used Aws facilities.
+class AwsRegion < AwsBase
+  attr_accessor :ec2, :region, :rds, :account_id, :elb, :cw, :s3, :sns
+  REGIONS = {'or' => "us-west-2", 'ca' => "us-west-1", 'va' => 'us-east-1'}
+  # @param region [String] must be one of the keys of the {AwsRegion::REGIONS REGIONS} static hash
+  # @param account_id [String] Aws account id
+  # @param access_key_id [String] Aws access key id
+  # @param secret_access_key [String] Aws secret access key
+  def initialize(region, account_id, access_key_id, secret_access_key, logger = nil)
+    @logger = logger
+    @region = REGIONS[region]
+    @account_id = account_id
+    Aws.config = {:access_key_id => access_key_id,
+                  :secret_access_key => secret_access_key}
+    @ec2 = Aws::EC2::Client.new(region: @region)
+    @rds = Aws::RDS::Client.new(region: @region)
+    @elb = Aws::ElasticLoadBalancing::Client.new(region: @region)
+    @cw = Aws::CloudWatch::Client.new(region: @region)
+    @s3 = Aws::S3::Client.new(region: @region)
+    @sns = Aws::SNS::Client.new(region: @region)
+  end
+  # Simple EC2 Instance finder.  Can find using instance_id, or using
+  # :environment and :purpose instance tags which must both match.
+  #
+  # @param options [Hash] containing search criteria.  Values can be:
+  #   * :instance_id - identifies an exact instance
+  #   * :environment - instance tag
+  #   * :purpose     - instance tag
+  # @return [Array<AwsInstance>] instances found to match criteria
+  def find_instances(options={})
+    instances = []
+    @ec2.describe_instances[:reservations].each do |i|
+      i.instances.each do |y|
+        instance = AwsInstance.new(self, {:instance => y})
+        if instance.state != 'terminated'
+          if options.has_key?(:environment) and options.has_key?(:purpose)
+            instances << instance if  instance.tags[:environment] == options[:environment] and instance.tags[:purpose] == options[:purpose]
+          elsif options.has_key?(:instance_id)
+            instances << instance if instance.id == options[:instance_id]
+          end
+        end
+      end
+    end
+    return instances
+  end
+  # Simple DB Instance finder.  Can find using instance_id, or using
+  # :environment and :purpose instance tags which must both match.
+  #
+  # @param options [Hash] containing search criteria.  Values can be:
+  #   * :instance_id - identifies an exact instance
+  #   * :environment - instance tag
+  #   * :purpose     - instance tag
+  # @return [Array<AwsDbInstance>] instances found to match criteria
+  def find_db_instances(options={})
+    instances = []
+    @rds.describe_db_instances[:db_instances].each do |i|
+      instance = AwsDbInstance.new(self, {:instance => i})
+      if options.has_key?(:instance_id)
+        instance.id == options[:instance_id]
+        instances << instance
+      elsif instance.tags[:environment] == options[:environment] and
+          instance.tags[:purpose] == options[:purpose]
+        instances << instance
+      end
+    end
+    instances
+  end
+  # Search region for a bucket by name
+  #
+  # @param options [Hash] containing search criteria.  Values can be:
+  #   * :bucket  -  Bucket name
+  # @return [Array<AwsBucket>] instances found to match criteria
+  def find_buckets(options={})
+    buckets = []
+    _buckets = @s3.list_buckets()
+    _buckets[:buckets].each do |b|
+      buckets << AwsBucket.new(self, {id: b[:name]}) if b[:name] == options[:bucket]
+    end
+    buckets
+  end
+  # Construct new EC2 instance
+  #
+  # @param options [Hash] containing initialization parameters.  See {AwsInstance#initialize}
+  # @return [AwsInstance]
+  def create_instance(options={})
+    AwsInstance.new(self, options)
+  end
+  # Construct new DB instance
+  #
+  # @param options [Hash] containing initialization parameters.  See {AwsDbInstance#initialize}
+  # @return [AwsDbInstance]
+  def create_db_instance(options={})
+    AwsDbInstance.new(self, options)
+  end
+  # Construct new CloudWatch instance
+  #
+  # @param options [Hash] containing initialization parameters.  See {AwsCw#initialize}
+  # @return [AwsCw]
+  def create_cw_instance(options={})
+    AwsCw.new(self, options)
+  end
+  # Construct new AwsBucket instance
+  #
+  # @param options [Hash] containing initialization parameters.  See {AwsBucket#initialize}
+  # @return [AwsBucket]
+  def create_bucket(options={})
+    AwsBucket.new(self, options)
+  end
+  def create_sns_instance
+    AwsSns.new(self)
+  end
+  class AwsSns
+    attr_accessor :region
+    def initialize(region)
+      @region = region
+    end
+    def publish(topic_arn, subject) #, message)
+      @region.sns.publish(topic_arn: topic_arn, message: "unused for texts", subject: subject)
+    end
+  end
+# Methods for dealing with CloudWatch
+  class AwsCw  < AwsBase
+    attr_accessor :region
+    # @param region [String] - Value from REGION static hash
+    def initialize(region, options={})
+      @region = region
+    end
+    # Put a cw metric
+    # @param arg_csv [String] - CSV row: "namespace,name,value,dims"
+    # * Note that dims is formatted as an arbitrary semicolon separated list of name:value dimensions.  For example:
+    #   * "activeservers,count,10,env:prod;purp:test"
+    # @return [Aws::PageableResponse]
+    def put_metric(arg_csv)
+      (namespace, name, value, dims) = arg_csv.split(",")
+      dimensions = []
+      dims.split(";").each do |d|
+        (n, v) = d.split(":")
+        dimensions << {:name => n, :value => v}
+      end
+      args = {:namespace => namespace}
+      metric ={:metric_name => name, :value => value.to_f, :timestamp => Time.now, :dimensions => dimensions}
+      args[:metric_data] = [metric]
+      @region.cw.put_metric_data(args)
+    end
+  end
+  # Methods for dealing with S3 buckets
+  class AwsBucket  < AwsBase
+    attr_accessor :region
+    # Constructs a bucket instance from an existing bucket, or creates a new one with the name
+    # @param region [String]  - Value from REGION static hash
+    # @param options [Hash] - Possible values:
+    # * :id - id of existing bucket
+    # * :bucket - Name of bucket to find or create
+    def initialize(region, options={})
+      @region = region
+      if options.has_key?(:id)
+        @id = options[:id]
+      elsif options.has_key?(:bucket)
+        bucket = options[:bucket]
+        if @region.find_buckets({bucket: bucket}).length <= 0
+          @region.s3.create_bucket({:bucket => bucket,
+                                    :create_bucket_configuration => {:location_constraint => @region.region}})
+          if @region.find_buckets({bucket: bucket}).length <= 0
+            raise "Error creating bucket: #{bucket} in region: #{@region.region}"
+          end
+        end
+        @id = bucket
+      end
+    end
+    # Delete this bucket instance
+    # @return [AwsPageableResponse]]
+    def delete
+      @region.s3.delete_bucket({bucket: @id})
+    end
+    # Put a local file to this bucket
+    # @param filename [String]  - local file name
+    # @param file_identity [String] - S3 file path
+    # @return [AwsPageableResponse]
+    def put_file(filename, file_identity)
+      File.open(filename, 'r') do |reading_file|
+        resp = @region.s3.put_object(
+            acl: "bucket-owner-full-control",
+            body: reading_file,
+            bucket: @id,
+            key: file_identity
+        )
+      end
+    end
+    # puts a local file to an s3 object in bucket on path
+    # example: put_local_file(:bucket=>"bucket", :local_file_path=>"/tmp/bar/foo.txt", :aws_path=>"b")
+    # would make an s3 object named foo.txt in bucket/b
+    # @param local_file_path [String] - Location of file to put
+    # @param aws_path [String] - S3 path to put the file
+    # @param options [Hash] - Can contain any valid S3 bucket options see [docs](http://docs.aws.amazon.com/sdkforruby/api/frames.html)
+    def put(local_file_path, aws_path, options={})
+      aws_path = aws_path[0..-2] if aws_path[-1..-1] == '/'
+      s3_path = "#{aws_path}/#{File.basename(local_file_path)}"
+      log "s3 writing #{local_file_path} to bucket #{@id} path: #{aws_path} s3 path: #{s3_path}"
+      f = File.open local_file_path, 'rb'
+      options[:bucket] = @id
+      options[:key] = s3_path
+      options[:body] = f
+      options[:storage_class] = 'REDUCED_REDUNDANCY'
+      result = @region.s3.put_object(params=options)
+      f.close
+      result
+    end
+    # prefix is something like: hchd-A-A-Items
+    # This will return in an array of strings the names of all objects in s3 in
+    # the :aws_path under :bucket starting with passed-in prefix
+    # example: :aws_path=>'development', :prefix=>'broadhead'
+    #           would return array of names of objects in said bucket
+    #           matching (in regex terms) development/broadhead.*
+    # @param options [Hash] - Can contain:
+    # * :aws_path - first part of S3 path to search
+    # * :prefix - Actually suffix of path to search.
+    # @return [Array<Hash>] - 0 or more objects
+    def find(options={})
+      aws_path = options[:aws_path]
+      prefix = options[:prefix]
+      aws_path = '' if aws_path.nil?
+      aws_path = aws_path[0..-2] if aws_path[-1..-1] == '/'
+      log "s3 searching bucket:#{@id} for #{aws_path}/#{prefix}"
+      objects = @region.s3.list_objects(:bucket => @id,
+                                        :prefix => "#{aws_path}/#{prefix}")
+      f = objects.contents.collect(&:key)
+      log "s3 searched  got: #{f.inspect}"
+      f
+    end
+    # writes contents of S3 object to local file
+    # example: get( :s3_path_to_object=>development/myfile.txt',
+    #               :dest_file_path=>'/tmp/foo.txt')
+    #          would write to local /tmp/foo.txt a file retrieved from s3
+    #          at development/myfile.txt
+    # @param options [Hash] - Can contain:
+    # * :s3_path_to_object - S3 object path
+    # * :dest_file_path - local file were file will be written
+    # @return [Boolean]
+    def get(options={})
+      begin
+        s3_path_to_object = options[:s3_path_to_object]
+        dest_file_path = options[:dest_file_path]
+        File.delete dest_file_path if File.exists?(dest_file_path)
+        log "s3 get bucket:#{@id} path:#{s3_path_to_object} dest:#{dest_file_path}"
+        response = @region.s3.get_object(:bucket => @id,
+                                         :key => s3_path_to_object)
+        response.body.rewind
+        File.open(dest_file_path, 'wb') do |file|
+          response.body.each { |chunk| file.write chunk }
+        end
+      rescue Exception => e
+        return false
+      end
+      true
+    end
+    # deletes from s3 an object at :s3_path_to_object
+    # @param options [Hash] - Can be:
+    # * :s3_path_to_object
+    # @return [Boolean]
+    def delete_object(options={})
+      begin
+        s3_path_to_object = options[:s3_path_to_object]
+        log "s3 delete  #{s3_path_to_object}"
+        @region.s3.delete_object(:bucket => @id,
+                                 :key => s3_path_to_object)
+      rescue Exception => e
+        return false
+      end
+      true
+    end
+    # delete all objects in a bucket
+    # @return [Boolean]
+    def delete_all_objects
+      begin
+        response = @region.s3.list_objects({:bucket => @id})
+        response[:contents].each do |obj|
+          @region.s3.delete_object(:bucket => @id,
+                                   :key => obj[:key])
+        end
+      rescue Exception => e
+        return false
+      end
+      true
+    end
+  end
+  # Class to handle RDS Db instances
+  class AwsDbInstance  < AwsBase
+    attr_accessor :id, :tags, :region, :endpoint
+    # Creates an AwsDbInstance for an existing instance or creates a new database
+    # @param region [String] - - Value from REGION static hash
+    # @param options [Hash] - Can contain:
+    # * :instance - If specified, create an instance of this class using this RDS instance.
+    # * :opts - [Hash] - Includes parameters for constructing the database.  The format is:
+    #   * :db_instance_identifier - RDS instance identifier
+    #   * :db_subnet_group_name - DB Subgroup name
+    #   * :publicly_accessible - [true|false]
+    #   * :db_instance_class - RDS db instance class
+    #   * :availability_zone - RDS/Aws availability zone
+    #   * :multi_az - [true|false]
+    #   * :engine - RDS engine (Only tested with Mysql at this point)
+    # * :tags - Tags to be applied to RDS instance. The follow are required.  Arbitrary tags may also be added.
+    #   * :environment - Environment  designation - can be anything.  Used to locate instance with other aws-tools
+    #   * :purpose - Purpose  designation - can be anything.  Used to locate instance with other aws-tools
+    #   * :name - Name will appear in the Aws web page if you set this
+    #   * :snapshot_name - Name of the snapshot that will be used to construct the new instance.  This name will be matched with the  RDS db_instance_identifier.  The latest snapshot will be used.
+    #   * :vpc_security_group_ids: - Comma separated list of security groups that will be applied to this instance
+    def initialize(region, options = {})
+      @region = region
+      opts = options[:opts]
+      if !options.has_key?(:instance)
+        @id = opts[:db_instance_identifier]
+        snapshot_name = options[:snapshot_name]
+        if 0 < @region.find_db_instances({:instance_id => @id}).length
+          log "Error, instance: #{@id} already exists"
+          return
+        end
+        last = self.get_latest_db_snapshot({:snapshot_name => snapshot_name})
+        log "Restoring: #{last.db_instance_identifier}, snapshot: #{last.db_instance_identifier} from : #{last.snapshot_create_time}"
+        opts[:db_snapshot_identifier] = last.db_snapshot_identifier
+        response = @region.rds.restore_db_instance_from_db_snapshot(opts)
+        @_instance = response[:db_instance]
+        @region.rds.add_tags_to_resource({:resource_name => "arn:aws:rds:#{@region.region}:#{@region.account_id}:db:#{@id}",
+                                          :tags => [{:key => "environment", :value => options[:environment]},
+                                                    {:key => "purpose", :value => options[:purpose]}]})
+        self.wait
+        opts = {:db_instance_identifier => @id,
+                :vpc_security_group_ids => options[:vpc_security_group_ids]}
+        @region.rds.modify_db_instance(opts)
+      else
+        @_instance = options[:instance]
+        @id = @_instance[:db_instance_identifier]
+      end
+      @tags = {}
+      _tags = @region.rds.list_tags_for_resource({:resource_name => "arn:aws:rds:#{@region.region}:#{@region.account_id}:db:#{@id}"})
+      _tags[:tag_list].each do |t|
+        @tags[t[:key].to_sym] = t[:value]
+      end
+      @endpoint = @_instance.endpoint[:address]
+    end
+    # Delete a database and be sure to capture a final stapshot
+    # @return [Boolean] - A return value of true only means that the command was issued.  The caller should follow up later with a call to determine status in order to know when the delete has been completed
+    def delete(options={})
+      log "Deleting database: #{@id}"
+      opts = {:db_instance_identifier => @id,
+              :skip_final_snapshot => false,
+              :final_db_snapshot_identifier => "#{@id}-#{Time.now.strftime("%Y-%m-%d-%H-%M-%S")}"}
+      begin
+        i = @region.rds.delete_db_instance(opts)
+      rescue  Exception => e
+        return false
+      end
+      true
+    end
+    # Purge db snapshots, keep just one - the latest
+    # @return [Boolean]
+    def purge_db_snapshots
+      latest = 0
+      @region.rds.describe_db_snapshots[:db_snapshots].each do |i|
+        if i.snapshot_type == "manual" and i.db_instance_identifier == @id
+          if i.snapshot_create_time.to_i > latest
+            latest = i.snapshot_create_time.to_i
+          end
+        end
+      end
+      @region.rds.describe_db_snapshots[:db_snapshots].each do |i|
+        if i.snapshot_type == "manual" and i.db_instance_identifier == @id
+          if i.snapshot_create_time.to_i != latest
+            log "Removing snapshot: #{i.db_snapshot_identifier}/#{i.snapshot_create_time.to_s}"
+            begin
+              @region.rds.delete_db_snapshot({:db_snapshot_identifier => i.db_snapshot_identifier})
+            rescue
+              log "Error removing snapshot: #{i.db_snapshot_identifier}/#{i.snapshot_create_time.to_s}"
+              return false
+            end
+          else
+            log "Keeping snapshot: #{i.db_snapshot_identifier}/#{i.snapshot_create_time.to_s}"
+          end
+        end
+      end
+      true
+    end
+    # Wait for the database to get to a state - we are usually waiting for it to be "available"
+    # @param options [Hash] - Can be:
+    # * :desired_status - Default: "available" - The RDS Status that is sought
+    # * :timeout - Default: 600 seconds. - The time to wait for the status before returning failure
+    # @return [Boolean]
+    def wait(options = {:desired_status => "available",
+                        :timeout => 600})
+      inst = @region.find_db_instances({:instance_id => @id})[0]
+      if !inst
+        log "Error, instance: #{@id} not found"
+        return false
+      end
+      t0 = Time.now.to_i
+      while inst.status != options[:desired_status]
+        inst = @region.find_db_instances({:instance_id => @id})[0]
+        log "Database: #{@id} at #{@endpoint}.  Current status: #{inst.status}"
+        if Time.now.to_i - t0 > options[:timeout]
+          log "Timed out waiting for database: #{@id} at #{@endpoint} to move into status: #{options[:desired_status]}.  Current status: #{inst.status}"
+          return false
+        end
+        sleep 20
+      end
+      return true
+    end
+    # Get the status of a database
+    # @return [String] - Current status of this database
+    def status
+      @_instance.db_instance_status
+    end
+    # Get the name of the latest snapshot
+    # @return [Hash] - Hash describing RDS Snapshot.  See [RDS Tech Docs](http://docs.aws.amazon.com/sdkforruby/api/Aws/RDS/V20130909.html)
+    def get_latest_db_snapshot(options={})
+      snapshot_name = options.has_key?(:snapshot_name) ? options[:snapshot_name] : @id
+      last = nil
+      last_t = 0
+      @region.rds.describe_db_snapshots[:db_snapshots].each do |i|
+        if i.db_instance_identifier == snapshot_name and (last.nil? or i.snapshot_create_time > last_t)
+          last = i
+          last_t = i.snapshot_create_time
+        end
+      end
+      last
+    end
+  end
+  # Class to handle EC2 Instances
+  class AwsInstance  < AwsBase
+    attr_accessor :id, :tags, :region, :private_ip, :public_ip, :_instance
+    def initialize(region, options = {})
+      @tags = {}
+      @region = region
+      if options.has_key?(:instance)
+        @_instance = options[:instance]
+        @id = @_instance[:instance_id]
+        @public_ip = @_instance[:public_ip_address]
+        @private_ip = @_instance[:private_ip_address]
+      else
+        resp = @region.ec2.run_instances(options[:template])
+        raise "Error creating instance using options" if resp.nil? or resp[:instances].length <= 0
+        @_instance = resp[:instances][0]
+        @id = @_instance[:instance_id]
+        @tags = options[:tags]
+        self.add_tags(@tags)
+        self.wait
+        instance = @region.ec2.describe_instances(:instance_ids => [@id])[0][0].instances[0]
+        @public_ip = instance[:public_ip_address]
+        @private_ip = instance[:private_ip_address]
+        raise "could not get ip address" if @public_ip.nil? && @private_ip.nil?
+        self.inject_into_environment
+      end
+      @_instance.tags.each do |t|
+        @tags[t[:key].to_sym] = t[:value]
+      end
+    end
+    # Determine the state of an ec2 instance
+    # @param use_cached_state [Boolean] - When true will use a cached version of the state rather than querying EC2 directly
+    def state(use_cached_state=true)
+      if !use_cached_state
+        response = @region.ec2.describe_instances({instance_ids: [@id]})
+        response[:reservations].each do |res|
+          res[:instances].each do |inst|
+            if inst[:instance_id] == @id
+              return inst[:state][:name].strip()
+            end
+          end
+        end
+        return ""
+      else
+        @_instance.state[:name].strip()
+      end
+    end
+    # Start an EC2 instance
+    # @param wait [Boolean] - When true, will wait for instance to move into "running" state before returning
+    def start(wait=false)
+      if self.state(use_cached_state = false) != "stopped"
+        log "Instance cannot be started - #{@region.region}://#{@id} is in the state: #{self.state}"
+        return
+      end
+      log "Starting instance: #{@region.region}://#{@id}"
+      @region.ec2.start_instances({:instance_ids => [@id]})
+      if wait
+        begin
+          sleep 10
+          log "Starting instance: #{@region.region}://#{@id} - state: #{self.state}"
+        end while self.state(use_cached_state = false) != "running"
+      end
+      if @tags.has_key?("elastic_ip")
+        @region.ec2.associate_address({:instance_id => @id, :public_ip => @tags['elastic_ip']})
+        log "Associated ip: #{@tags['elastic_ip']} with instance: #{@id}"
+      elsif @tags.has_key?("elastic_ip_allocation_id")
+        @region.ec2.associate_address({:instance_id => @id, :allocation_id => @tags['elastic_ip_allocation_id']})
+        log "Associated allocation id: #{@tags['elastic_ip_allocation_id']} with instance: #{@id}"
+      end
+      if @tags.has_key?("elastic_lb")
+        self.add_to_lb(@tags["elastic_lb"])
+        log "Adding instance: #{@id} to '#{@tags['elastic_lb']}' load balancer"
+      end
+    end
+    # Add tags to an instance
+    # @param h_tags [Hash] - Hash of tags to add to instance
+    def add_tags(h_tags)
+      tags = []
+      h_tags.each do |k, v|
+        tags << {:key => k.to_s, :value => v}
+      end
+      resp = @region.ec2.create_tags({:resources => [@id],
+                                      :tags => tags})
+    end
+    # Add an instance to an elastic lb
+    # @param lb_name [String] - Name of elastic load balancer
+    def add_to_lb(lb_name)
+      @region.elb.register_instances_with_load_balancer({:load_balancer_name => lb_name,
+                                                         :instances => [{:instance_id => @id}]})
+    end
+    # Remove instance from elastic lb
+    # @param instance [AwsInstance] Instance to remove from lb
+    # @param lb_name [String] Lb name from which the instance is to be removed
+    # @return [Aws::PageableResponse]
+    def remove_from_lb(lb_name)
+      lb = @region.elb.describe_load_balancers({:load_balancer_names => [lb_name]})
+      if lb and lb[:load_balancer_descriptions].length > 0
+        lb[:load_balancer_descriptions][0][:instances].each do |lb_i|
+          if lb_i[:instance_id] == @id
+            @elb.deregister_instances_from_load_balancer({:load_balancer_name => lb_name,
+                                                          :instances => [{:instance_id => @id}]})
+            sleep 30
+          end
+        end
+      end
+    end
+    # Terminates ec2 instance
+    def terminate()
+      eject_from_environment
+      @region.ec2.terminate_instances({:instance_ids => [@id]})
+    end
+    # Stops an ec2 instance
+    # @param wait [Boolean] - When true, will wait for the instance to be completely stopped before returning
+    def stop(wait=false)
+      if self.state(use_cached_state = false) != "running"
+        log "Instance cannot be stopped - #{@region.region}://#{@id} is in the state: #{self.state}"
+        return
+      end
+      self.eject_from_environment
+      if @tags.has_key?("elastic_lb")
+        log "Removing instance: #{@id} from '#{@tags['elastic_lb']}' load balancer"
+        remove_from_lb(tags["elastic_lb"])
+      end
+      log "Stopping instance: #{@region.region}://#{@id}"
+      @region.ec2.stop_instances({:instance_ids => [@id]})
+      while self.state(use_cached_state = false) != "stopped"
+        sleep 10
+        log "Stopping instance: #{@region.region}://#{@id} - state: #{self.state}"
+      end if wait
+      if self.state(use_cached_state = false) == "stopped"
+        log "Instance stopped: #{@region.region}://#{@id}"
+      end
+    end
+    # Connects using ssh to an ec2 instance
+    def connect
+      if self.state(use_cached_state = false) != "running"
+        log "Cannot connect, instance: #{@region.region}://#{@id} due to its state: #{self.state}"
+        return
+      end
+      ip = (self.public_ip && self.public_ip.strip() != "") ? self.public_ip : self.private_ip
+      log "Connecting: ssh -i ~/.ssh/aws/#{@tags[:key]} #{@tags[:user]}@#{ip}"
+      exec "ssh -i ~/.ssh/aws/#{@tags[:key]} #{@tags[:user]}@#{ip}"
+    end
+    def eject_from_environment
+      if @tags.has_key?(:elastic_lb)
+        log "Removing instance: #{@id} from '#{@tags[:elastic_lb]}' load balancer"
+        self.remove_from_lb(tags[:elastic_lb])
+      end
+      if @tags.has_key?(:security_groups_foreign)
+        self.revoke_sg_ingress(@tags[:security_groups_foreign].split(","))
+      end
+    end
+    def inject_into_environment
+      if @tags.has_key?(:elastic_ip)
+        @region.ec2.associate_address({:instance_id => @id, :public_ip => @tags[:elastic_ip]})
+        log "Associated ip: #{@tags[:elastic_ip]} with instance: #{@id}"
+      elsif @tags.has_key?(:elastic_ip_allocation_id)
+        @region.ec2.associate_address({:instance_id => @id, :allocation_id => @tags[:elastic_ip_allocation_id]})
+        log "Associated allocation id: #{@tags[:elastic_ip_allocation_id]} with instance: #{@id}"
+      end
+      if @tags.has_key?(:mount_points)
+        mounts = @tags[:mount_points].split(";")
+        mounts.each do |mnt|
+          (volume_id,device) = mnt.split(",")
+          log "Mounting volume: #{volume_id} on #{device}"
+          self.mount(volume_id, device)
+        end
+      end
+      if @tags.has_key?(:security_group_ids)
+        self.set_security_groups(@tags[:security_group_ids].split(","))
+      end
+      if @tags.has_key?(:security_groups_foreign)
+        self.authorize_sg_ingress(@tags[:security_groups_foreign].split(","))
+      end
+      # if any of the above fails, we probably do not want it in the lb
+      if @tags.has_key?(:elastic_lb)
+        self.add_to_lb(@tags[:elastic_lb])
+        log "Adding instance: #{@id} to '#{@tags[:elastic_lb]}' load balancer"
+      end
+    end
+    def wait(options = {:timeout => 300, :desired_status => "running"})
+      t0 = Time.now.to_i
+      begin
+        sleep 10
+        log "Waiting on instance: #{@region.region}://#{@id} - current state: #{self.state}"
+        return if Time.now.to_i - t0 > options[:timeout]
+      end while self.state(use_cached_state = false) != options[:desired_status]
+    end
+    def set_security_groups(groups)
+      # only works on instances in a vpc
+      @region.ec2.modify_instance_attribute({:instance_id => @id, :groups => groups})
+    end
+    # Does a security group allow ingress on a port for the public IP of this instance
+    # @param group_port [String] - security_group:port  like "sg_xxxxxx:8080"
+    # @return [Boolean] true if the security group allows ingress for the public IP of this instance on a certain port
+    def has_sg_rule?(group_port)
+      options = get_simple_sg_options(group_port)
+      options_cidr_ip = options[:ip_permissions][0][:ip_ranges][0][:cidr_ip]
+      group_id = options[:group_id]
+      raise "missing security group_id" if group_id.nil?
+      sg = @region.ec2.describe_security_groups(:group_ids => [group_id]).data.security_groups[0]
+      sg.ip_permissions.each do |p|
+        if p.ip_protocol == "tcp" &&
+            p.from_port == options[:ip_permissions][0][:from_port] &&
+            p.to_port == options[:ip_permissions][0][:to_port]
+          p[:ip_ranges].each do |ipr|
+            return true if ipr.cidr_ip == options_cidr_ip
+          end
+        end
+      end
+      false
+    end
+    # authorize security group ingress for public ip of this instance on port
+    # @param groups [Array] - each element is String: "security_group_id:port". For example: ["sg-0xxxxx:80", "sg-0xxxxx:8443", "sg-0yyyyy:3000"]
+    def authorize_sg_ingress(groups)
+      raise "no public ip" unless @public_ip.to_s.match /^(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$/
+      groups.each do |gp|
+        options = get_simple_sg_options(gp)
+        if has_sg_rule?(gp)
+          log "security group rule #{gp} for #{self.public_ip} already exists"
+        else
+          @region.ec2.authorize_security_group_ingress options
+          log "added #{self.public_ip} to security group for :port #{gp}"
+        end
+      end
+    end
+    # revoke security group ingress for public ip of this instance on port
+    # @param groups [Array] - each element is String: "security_group_id:port". For example: ["sg-0xxxxx:80", "sg-0xxxxx:8443", "sg-0yyyyy:3000"]
+    def revoke_sg_ingress(groups)
+      # revoke the public ip of this instance for ingress on port for security group
+      # groups is array of strings: security_group_id:port
+      raise "no public ip" unless @public_ip.to_s.match /^(?:(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)\.){3}(?:25[0-5]|2[0-4][0-9]|[01]?[0-9][0-9]?)$/
+      groups.each do |gp|
+        options = get_simple_sg_options(gp)
+        if has_sg_rule?(gp)
+          @region.ec2.revoke_security_group_ingress options
+          log "removed #{self.public_ip} from security group for :port #{gp}"
+        else
+          log "not removing #{self.public_ip} rule #{gp} because it does not exist"
+        end
+      end
+    end
+    def mount(volume_id, device)
+      @region.ec2.attach_volume({:instance_id => @id,
+                                 :volume_id => volume_id,
+                                 :device => device})
+    end
+    # construct hash for authorize/revoke ingress and has_sg_rule?
+    # @param group_id_port [String] - security_group:port  like "sg_xxxxxx:8080"
+    # @return [Hash] - Hash for ec2 call for security group management
+    def get_simple_sg_options(group_id_port)
+      security_group_id, port = group_id_port.split(':')
+      port = port.to_s.to_i
+      raise "no security group id" unless security_group_id.to_s.length > 0
+      raise "no, or invalid port" unless port.to_s.to_i > 0
+      {:group_id => security_group_id,
+       :ip_permissions => [ :ip_protocol => "tcp",
+                            :from_port => port,
+                            :to_port => port,
+                            :ip_ranges => [:cidr_ip => "#{self.public_ip}/32"]
+                          ]
+      }
+    end
+  end
+end