RubyGems - rubycfn - Versions diffs - 0.5.2 → 0.5.3 - Mend

rubycfn 0.5.2 → 0.5.3

Files changed (27) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +5 -1
data/Gemfile.lock +2 -2
data/README.md +5 -6
data/lib/rubycfn/version.rb +1 -1
data/templates/.gitignore +4 -0
data/templates/.rubocop.yml +3 -0
data/templates/README.md +1 -1
data/templates/Rakefile +3 -4
data/templates/config.yaml +3 -0
data/templates/lib/aws_helper/compiler.rb +1 -1
data/templates/lib/aws_helper/dependencies.rb +11 -3
data/templates/lib/aws_helper/upload_stack.rb +3 -10
data/templates/lib/core/applications.rb +117 -28
data/templates/lib/core/dependencies.rb +3 -3
data/templates/lib/core/deploy.rb +2 -2
data/templates/lib/core/init.rb +60 -12
data/templates/lib/main.rb +1 -1
data/templates/lib/shared_concerns/global_variables.rb +1 -1
data/templates/lib/shared_concerns/shared_methods.rb +2 -2
data/templates/lib/stacks/ecs_stack/ecs_cluster.rb +276 -276
data/templates/lib/stacks/ecs_stack/lifecycle_hook.rb +162 -160
data/templates/lib/stacks/ecs_stack/load_balancer.rb +52 -50
data/templates/lib/stacks/ecs_stack/main.rb +2 -0
data/templates/lib/stacks/ecs_stack/rollback.rb +77 -0
metadata +4 -3
data/templates/bootstrap/dependency_stack.rb +0 -49

data/templates/lib/stacks/ecs_stack/lifecycle_hook.rb CHANGED

@@ -3,185 +3,187 @@ module EcsStack
     extend ActiveSupport::Concern
     ## Drains instances on termination
     included do
-      resource :ecs_lifecycle_notification_topic,
-               depends_on: :lifecycle_handler_function,
-               type: "AWS::SNS::Topic" do |r|
-        r.property(:subscription) do
-          [
-            {
-              "Endpoint": :lifecycle_handler_function.ref(:arn),
-              "Protocol": "lambda"
-            }
-          ]
-        end
-      end
-      resource :instance_terminating_hook,
-               depends_on: :ecs_lifecycle_notification_topic,
-               type: "AWS::AutoScaling::LifecycleHook" do |r|
-        r.property(:auto_scaling_group_name) { :ecs_auto_scaling_group.ref }
-        r.property(:default_result) { "ABANDON" }
-        r.property(:heartbeat_timeout) { 900 }
-        r.property(:lifecycle_transition) { "autoscaling:EC2_INSTANCE_TERMINATING" }
-        r.property(:notification_target_arn) { :ecs_lifecycle_notification_topic.ref }
-        r.property(:role_arn) { :autoscaling_notification_role.ref(:arn) }
-      end
-      resource :autoscaling_notification_role,
-               type: "AWS::IAM::Role" do |r|
-        r.property(:assume_role_policy_document) do
-          {
-            "Version": "2012-10-17",
-            "Statement": [
+      unless infra_config["environments"][environment]["cluster_size"].nil? || infra_config["environments"][environment]["cluster_size"].to_i.zero?
+        resource :ecs_lifecycle_notification_topic,
+                 depends_on: :lifecycle_handler_function,
+                 type: "AWS::SNS::Topic" do |r|
+          r.property(:subscription) do
+            [
               {
-                "Effect": "Allow",
-                "Principal": {
-                  "Service": [
-                    "autoscaling.amazonaws.com"
-                  ]
-                },
-                "Action": [
-                  "sts:AssumeRole"
-                ]
+                "Endpoint": :lifecycle_handler_function.ref(:arn),
+                "Protocol": "lambda"
               }
             ]
-          }
+          end
+        end
+        resource :instance_terminating_hook,
+                 depends_on: :ecs_lifecycle_notification_topic,
+                 type: "AWS::AutoScaling::LifecycleHook" do |r|
+          r.property(:auto_scaling_group_name) { :ecs_auto_scaling_group.ref }
+          r.property(:default_result) { "ABANDON" }
+          r.property(:heartbeat_timeout) { 900 }
+          r.property(:lifecycle_transition) { "autoscaling:EC2_INSTANCE_TERMINATING" }
+          r.property(:notification_target_arn) { :ecs_lifecycle_notification_topic.ref }
+          r.property(:role_arn) { :autoscaling_notification_role.ref(:arn) }
         end
-        r.property(:managed_policy_arns) { ["arn:aws:iam::aws:policy/service-role/AutoScalingNotificationAccessRole"] }
-      end
-      resource :lambda_execution_role,
-               type: "AWS::IAM::Role" do |r|
-        r.property(:policies) do
-          [
+        resource :autoscaling_notification_role,
+                 type: "AWS::IAM::Role" do |r|
+          r.property(:assume_role_policy_document) do
             {
-              "PolicyName": "lambda-inline",
-              "PolicyDocument": {
-                "Version": "2012-10-17",
-                "Statement": [
-                  {
-                    "Effect": "Allow",
-                    "Action": [
-                      "autoscaling:CompleteLifecycleAction",
-                      "logs:CreateLogGroup",
-                      "logs:CreateLogStream",
-                      "logs:PutLogEvents",
-                      "ec2:DescribeInstances",
-                      "ec2:DescribeInstanceAttribute",
-                      "ec2:DescribeInstanceStatus",
-                      "ec2:DescribeHosts",
-                      "ecs:ListContainerInstances",
-                      "ecs:SubmitContainerStateChange",
-                      "ecs:SubmitTaskStateChange",
-                      "ecs:DescribeContainerInstances",
-                      "ecs:UpdateContainerInstancesState",
-                      "ecs:ListTasks",
-                      "ecs:DescribeTasks",
-                      "sns:Publish",
-                      "sns:ListSubscriptions"
-                    ],
-                    "Resource": "*"
-                  }
-                ]
-              }
+              "Version": "2012-10-17",
+              "Statement": [
+                {
+                  "Effect": "Allow",
+                  "Principal": {
+                    "Service": [
+                      "autoscaling.amazonaws.com"
+                    ]
+                  },
+                  "Action": [
+                    "sts:AssumeRole"
+                  ]
+                }
+              ]
             }
-          ]
+          end
+          r.property(:managed_policy_arns) { ["arn:aws:iam::aws:policy/service-role/AutoScalingNotificationAccessRole"] }
         end
-        r.property(:assume_role_policy_document) do
-          {
-            "Version": "2012-10-17",
-            "Statement": [
+        resource :lambda_execution_role,
+                 type: "AWS::IAM::Role" do |r|
+          r.property(:policies) do
+            [
               {
-                "Effect": "Allow",
-                "Principal": {
-                  "Service": [
-                    "lambda.amazonaws.com"
+                "PolicyName": "lambda-inline",
+                "PolicyDocument": {
+                  "Version": "2012-10-17",
+                  "Statement": [
+                    {
+                      "Effect": "Allow",
+                      "Action": [
+                        "autoscaling:CompleteLifecycleAction",
+                        "logs:CreateLogGroup",
+                        "logs:CreateLogStream",
+                        "logs:PutLogEvents",
+                        "ec2:DescribeInstances",
+                        "ec2:DescribeInstanceAttribute",
+                        "ec2:DescribeInstanceStatus",
+                        "ec2:DescribeHosts",
+                        "ecs:ListContainerInstances",
+                        "ecs:SubmitContainerStateChange",
+                        "ecs:SubmitTaskStateChange",
+                        "ecs:DescribeContainerInstances",
+                        "ecs:UpdateContainerInstancesState",
+                        "ecs:ListTasks",
+                        "ecs:DescribeTasks",
+                        "sns:Publish",
+                        "sns:ListSubscriptions"
+                      ],
+                      "Resource": "*"
+                    }
                   ]
-                },
-                "Action": [
-                  "sts:AssumeRole"
-                ]
+                }
               }
             ]
-          }
-        end
-        r.property(:managed_policy_arns) do
-          [
-            "arn:aws:iam::aws:policy/service-role/AutoScalingNotificationAccessRole"
-          ]
+          end
+          r.property(:assume_role_policy_document) do
+            {
+              "Version": "2012-10-17",
+              "Statement": [
+                {
+                  "Effect": "Allow",
+                  "Principal": {
+                    "Service": [
+                      "lambda.amazonaws.com"
+                    ]
+                  },
+                  "Action": [
+                    "sts:AssumeRole"
+                  ]
+                }
+              ]
+            }
+          end
+          r.property(:managed_policy_arns) do
+            [
+              "arn:aws:iam::aws:policy/service-role/AutoScalingNotificationAccessRole"
+            ]
+          end
         end
-      end
-      resource :lambda_invoke_permission,
-               type: "AWS::Lambda::Permission" do |r|
-        r.property(:function_name) { :lifecycle_handler_function.ref }
-        r.property(:action) { "lambda:InvokeFunction" }
-        r.property(:principal) { "sns.amazonaws.com" }
-        r.property(:source_arn) { :ecs_lifecycle_notification_topic.ref }
-      end
+        resource :lambda_invoke_permission,
+                 type: "AWS::Lambda::Permission" do |r|
+          r.property(:function_name) { :lifecycle_handler_function.ref }
+          r.property(:action) { "lambda:InvokeFunction" }
+          r.property(:principal) { "sns.amazonaws.com" }
+          r.property(:source_arn) { :ecs_lifecycle_notification_topic.ref }
+        end
-      resource :lifecycle_handler_function,
-               type: "AWS::Lambda::Function" do |r|
-        r.property(:environment) do
-          {
-            "Variables": {
-              "CLUSTER": :sfs_ecs_cluster.ref
+        resource :lifecycle_handler_function,
+                 type: "AWS::Lambda::Function" do |r|
+          r.property(:environment) do
+            {
+              "Variables": {
+                "CLUSTER": :ecs_cluster.ref
+              }
             }
-          }
-        end
-        r.property(:code) do
-          {
-            "ZipFile": {
-              "Fn::Join": [
-                "\n",
-                [
-                  "import boto3,json,os,time",
-                  "ec2Client = boto3.client('ec2')",
-                  "ecsClient = boto3.client('ecs')",
-                  "autoscalingClient = boto3.client('autoscaling')",
-                  "snsClient = boto3.client('sns')",
-                  "lambdaClient = boto3.client('lambda')",
-                  "def publishSNSMessage(snsMessage,snsTopicArn):",
-                  "    response = snsClient.publish(TopicArn=snsTopicArn,Message=json.dumps(snsMessage),Subject='reinvoking')",
-                  "def setContainerInstanceStatusToDraining(ecsClusterName,containerInstanceArn):",
-                  "    response = ecsClient.update_container_instances_state(cluster=ecsClusterName,containerInstances=[containerInstanceArn],status='DRAINING')",
-                  "def tasksRunning(ecsClusterName,ec2InstanceId):",
-                  "    ecsContainerInstances = ecsClient.describe_container_instances(cluster=ecsClusterName,containerInstances=ecsClient.list_container_instances(cluster=ecsClusterName)['containerInstanceArns'])['containerInstances']",
-                  "    for i in ecsContainerInstances:",
-                  "        if i['ec2InstanceId'] == ec2InstanceId:",
-                  "            if i['status'] == 'ACTIVE':",
-                  "                setContainerInstanceStatusToDraining(ecsClusterName,i['containerInstanceArn'])",
-                  "                return 1",
-                  "            if (i['runningTasksCount']>0) or (i['pendingTasksCount']>0):",
-                  "                return 1",
-                  "            return 0",
-                  "    return 2",
-                  "def lambda_handler(event, context):",
-                  "    ecsClusterName=os.environ['CLUSTER']",
-                  "    snsTopicArn=event['Records'][0]['Sns']['TopicArn']",
-                  "    snsMessage=json.loads(event['Records'][0]['Sns']['Message'])",
-                  "    lifecycleHookName=snsMessage['LifecycleHookName']",
-                  "    lifecycleActionToken=snsMessage['LifecycleActionToken']",
-                  "    asgName=snsMessage['AutoScalingGroupName']",
-                  "    ec2InstanceId=snsMessage['EC2InstanceId']",
-                  "    checkTasks=tasksRunning(ecsClusterName,ec2InstanceId)",
-                  "    if checkTasks==0:",
-                  "        try:",
-                  "            response = autoscalingClient.complete_lifecycle_action(LifecycleHookName=lifecycleHookName,AutoScalingGroupName=asgName,LifecycleActionToken=lifecycleActionToken,LifecycleActionResult='CONTINUE')",
-                  "        except BaseException as e:",
-                  "            print(str(e))",
-                  "    elif checkTasks==1:",
-                  "        time.sleep(5)",
-                  "        publishSNSMessage(snsMessage,snsTopicArn)"
+          end
+          r.property(:code) do
+            {
+              "ZipFile": {
+                "Fn::Join": [
+                  "\n",
+                  [
+                    "import boto3,json,os,time",
+                    "ec2Client = boto3.client('ec2')",
+                    "ecsClient = boto3.client('ecs')",
+                    "autoscalingClient = boto3.client('autoscaling')",
+                    "snsClient = boto3.client('sns')",
+                    "lambdaClient = boto3.client('lambda')",
+                    "def publishSNSMessage(snsMessage,snsTopicArn):",
+                    "    response = snsClient.publish(TopicArn=snsTopicArn,Message=json.dumps(snsMessage),Subject='reinvoking')",
+                    "def setContainerInstanceStatusToDraining(ecsClusterName,containerInstanceArn):",
+                    "    response = ecsClient.update_container_instances_state(cluster=ecsClusterName,containerInstances=[containerInstanceArn],status='DRAINING')",
+                    "def tasksRunning(ecsClusterName,ec2InstanceId):",
+                    "    ecsContainerInstances = ecsClient.describe_container_instances(cluster=ecsClusterName,containerInstances=ecsClient.list_container_instances(cluster=ecsClusterName)['containerInstanceArns'])['containerInstances']",
+                    "    for i in ecsContainerInstances:",
+                    "        if i['ec2InstanceId'] == ec2InstanceId:",
+                    "            if i['status'] == 'ACTIVE':",
+                    "                setContainerInstanceStatusToDraining(ecsClusterName,i['containerInstanceArn'])",
+                    "                return 1",
+                    "            if (i['runningTasksCount']>0) or (i['pendingTasksCount']>0):",
+                    "                return 1",
+                    "            return 0",
+                    "    return 2",
+                    "def lambda_handler(event, context):",
+                    "    ecsClusterName=os.environ['CLUSTER']",
+                    "    snsTopicArn=event['Records'][0]['Sns']['TopicArn']",
+                    "    snsMessage=json.loads(event['Records'][0]['Sns']['Message'])",
+                    "    lifecycleHookName=snsMessage['LifecycleHookName']",
+                    "    lifecycleActionToken=snsMessage['LifecycleActionToken']",
+                    "    asgName=snsMessage['AutoScalingGroupName']",
+                    "    ec2InstanceId=snsMessage['EC2InstanceId']",
+                    "    checkTasks=tasksRunning(ecsClusterName,ec2InstanceId)",
+                    "    if checkTasks==0:",
+                    "        try:",
+                    "            response = autoscalingClient.complete_lifecycle_action(LifecycleHookName=lifecycleHookName,AutoScalingGroupName=asgName,LifecycleActionToken=lifecycleActionToken,LifecycleActionResult='CONTINUE')",
+                    "        except BaseException as e:",
+                    "            print(str(e))",
+                    "    elif checkTasks==1:",
+                    "        time.sleep(5)",
+                    "        publishSNSMessage(snsMessage,snsTopicArn)"
+                  ]
                 ]
-              ]
+              }
             }
-          }
+          end
+          r.property(:handler) { "index.lambda_handler" }
+          r.property(:role) { :lambda_execution_role.ref(:arn) }
+          r.property(:runtime) { "python3.6" }
+          r.property(:timeout) { 10 }
         end
-        r.property(:handler) { "index.lambda_handler" }
-        r.property(:role) { :lambda_execution_role.ref(:arn) }
-        r.property(:runtime) { "python3.6" }
-        r.property(:timeout) { 10 }
       end
     end
   end

data/templates/lib/stacks/ecs_stack/load_balancer.rb CHANGED

@@ -5,64 +5,66 @@ module EcsStack
       parameter :public_subnets,
                 description: "List of Public EC2 Subnets for the ALB"
-      resource :ecs_load_balancer,
-               type: "AWS::ElasticLoadBalancingV2::LoadBalancer" do |r|
-        r.property(:name) { environment }
-        r.property(:subnets) { :public_subnets.ref.fnsplit(",") }
-        r.property(:security_groups) do
-          [
-            :ecs_host_security_group.ref,
-            :load_balancer_security_group.ref # Not sure if necessary
-          ]
+      unless infra_config["environments"][environment]["cluster_size"].nil? || infra_config["environments"][environment]["cluster_size"].to_i.zero?
+        resource :ecs_load_balancer,
+                 type: "AWS::ElasticLoadBalancingV2::LoadBalancer" do |r|
+          r.property(:name) { environment }
+          r.property(:subnets) { :public_subnets.ref.fnsplit(",") }
+          r.property(:security_groups) do
+            [
+              :ecs_host_security_group.ref,
+              :load_balancer_security_group.ref # Not sure if necessary
+            ]
+          end
+          r.property(:tags) do
+            [
+              {
+                "Key": "Name",
+                "Value": "#{environment}_ecs_loadbalancer"
+              }
+            ]
+          end
         end
-        r.property(:tags) do
-          [
-            {
-              "Key": "Name",
-              "Value": "#{environment}_ecs_loadbalancer"
-            }
-          ]
-        end
-      end
-      resource :load_balancer_listener,
-               type: "AWS::ElasticLoadBalancingV2::Listener" do |r|
-        r.property(:load_balancer_arn) { :ecs_load_balancer.ref }
-        r.property(:port) { 80 }
-        r.property(:protocol) { "HTTP" }
-        r.property(:default_actions) do
-          [
-            {
-              "Type": "forward",
-              "TargetGroupArn": :default_target_group.ref
-            }
-          ]
+        resource :load_balancer_listener,
+                 type: "AWS::ElasticLoadBalancingV2::Listener" do |r|
+          r.property(:load_balancer_arn) { :ecs_load_balancer.ref }
+          r.property(:port) { 80 }
+          r.property(:protocol) { "HTTP" }
+          r.property(:default_actions) do
+            [
+              {
+                "Type": "forward",
+                "TargetGroupArn": :default_target_group.ref
+              }
+            ]
+          end
         end
-      end
-      resource :default_target_group,
-               type: "AWS::ElasticLoadBalancingV2::TargetGroup" do |r|
-        r.property(:name) { "#{environment}-default" }
-        r.property(:vpc_id) { :vpc.ref }
-        r.property(:port) { 80 }
-        r.property(:protocol) { "HTTP" }
-      end
+        resource :default_target_group,
+                 type: "AWS::ElasticLoadBalancingV2::TargetGroup" do |r|
+          r.property(:name) { "#{environment}-default" }
+          r.property(:vpc_id) { :vpc.ref }
+          r.property(:port) { 80 }
+          r.property(:protocol) { "HTTP" }
+        end
-      output :ecs_load_balancer,
-             description: "ECS Application Load Balancer",
-             value: :ecs_load_balancer.ref
+        output :ecs_load_balancer,
+               description: "ECS Application Load Balancer",
+               value: :ecs_load_balancer.ref
-      output :ecs_load_balancer_url,
-             description: "URL of the ECS ALB",
-             value: :ecs_load_balancer.ref("DNSName")
+        output :ecs_load_balancer_url,
+               description: "URL of the ECS ALB",
+               value: :ecs_load_balancer.ref("DNSName")
-      output :ecs_load_balancer_listener,
-             description: "ECS Port 80 listener",
-             value: :load_balancer_listener.ref
+        output :ecs_load_balancer_listener,
+               description: "ECS Port 80 listener",
+               value: :load_balancer_listener.ref
-      output :ecs_load_balancer_hosted_zone_id,
-             description: "Canonical Hosted Zone ID of the ALB",
-             value: :ecs_load_balancer.ref("CanonicalHostedZoneID")
+        output :ecs_load_balancer_hosted_zone_id,
+               description: "Canonical Hosted Zone ID of the ALB",
+               value: :ecs_load_balancer.ref("CanonicalHostedZoneID")
+      end
     end
   end
 end