RubyGems - sensu-plugins-aws - Versions diffs - 1.2.0 → 2.0.0 - Mend

sensu-plugins-aws 1.2.0 → 2.0.0

Files changed (26) hide show

checksums.yaml +4 -4
checksums.yaml.gz.sig +1 -2
data.tar.gz.sig +0 -0
data/CHANGELOG.md +22 -0
data/README.md +17 -1
data/bin/check-cloudwatch-alarm.rb +104 -0
data/bin/check-dynamodb-capacity.rb +1 -1
data/bin/check-ec2-filter.rb +1 -1
data/bin/check-elb-certs.rb +3 -3
data/bin/check-elb-latency.rb +6 -6
data/bin/check-elb-nodes.rb +1 -1
data/bin/check-elb-sum-requests.rb +7 -7
data/bin/check-emr-cluster.rb +147 -0
data/bin/check-instance-events.rb +1 -1
data/bin/check-rds-events.rb +1 -1
data/bin/check-rds.rb +22 -11
data/bin/check-s3-bucket.rb +89 -0
data/bin/check-s3-object.rb +130 -0
data/bin/check-vpc-vpn.rb +105 -0
data/bin/handler-ec2_node.rb +1 -1
data/bin/metrics-elb.rb +1 -1
data/bin/metrics-sqs.rb +1 -1
data/lib/sensu-plugins-aws/filter.rb +1 -1
data/lib/sensu-plugins-aws/version.rb +2 -2
metadata +18 -3
metadata.gz.sig +0 -0

checksums.yaml CHANGED

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: d8e18850d95e6ba9318753d772c1e47a27a869ea
-  data.tar.gz: 7183226959ec68b20c3d10b6c389a657ed5673bc
+  metadata.gz: c473f07fdfd3b231afb1ee7a16efaf19d144e9dc
+  data.tar.gz: fde2609d9d3484ed097f308a8887b33ff321f669
 SHA512:
-  metadata.gz: 001e818b18007dd33efbee3c123b04963803dd4d2906065c638107ac5fc6ea73cd533bf680d61c6a946ee9e2f25f9d9f12344683e9c8ad87586c4df60ba7c1f6
-  data.tar.gz: 8c61028e2fe855c90d9c9c6106822e1ae3045ed4f67bc953444cc9ec777f24b5579681d625a27e20877c5dce962792deee88aa538659f7003bf76c3a28939e5b
+  metadata.gz: 3519003d61b1ae11cfc6826fd41ae5e1f98af4f252f1f837086e07628b270f1fec262c21fe0d3ccbd175e70fc92526073339c8cee7399ce8339a9ffcfa68abbc
+  data.tar.gz: 921cfa3c2502d94e4b7a1318d7d2be15579be041b85cc15ea90b27939a30bf625b0063db9dfa46a14e3d8020f23faf3dc36d482c4b1fa1ab5fa06821d4be82b9

checksums.yaml.gz.sig CHANGED

@@ -1,2 +1 @@
-^�Lt8�7��(l\/sB�����>(-�<.�#�����O��D�%�>���E.rL�TL��>�����gy�d;D;�t��ޱs�5čH���O�߁�
-��j8���?A���tN�\�U�ӫvo�Rw*ƚ��M�'�kU<������j�Q�=���$ ���穏�}�g��F�I���+�k�w�;���e��`���+~_�����&�������,�6Bۣ>�^�������}���,X��`�)D��
+�1V����M�u>��Mo���]ƃ�b'32�����A`�4%>e��bO��ʢ*�'���/�09�+dX�j�}?7[�sd����eW�31嗁v'�U�C���}�6^�um�_�+�}�_MHȇ����O`,/�x!v�0rY�5�r�ڻ����-MӔD_���=V�9`5O�S9�[F=�#��Va�����e�w��m�&q-"���5��9�(}�M�CM��!����&��x0у̙С�+0t����

data.tar.gz.sig CHANGED

Binary file

data/CHANGELOG.md CHANGED

@@ -3,6 +3,28 @@ This project adheres to [Semantic Versioning](http://semver.org/).
 This CHANGELOG follows the format listed at [Keep A Changelog](http://keepachangelog.com/)
+## Unreleased
+## [2.0.0] - 2015-11-02
+WARNING: This release drops support for Ruby 1.9.3, which is EOL as of 2015-02.
+### Added
+- Added check-cloudwatch-alarm to get alarm status
+- Added connection metric for check-rds.rb
+- Added check-s3-bucket that checks S3 bucket existence
+- Added check-s3-object that checks S3 object existence
+- Added check-emr-cluster that checks EMR cluster existence
+- Added check-vpc-vpn that checks the health of VPC VPN connections
+### Fixed
+- handler-ec2_node checks for state_reason being nil prior to code access
+- Cosmetic fixes to metrics-elb, check-rds, and check-rds-events
+- Return correct metrics values in check-elb-sum-requests
+### Removed
+- Removed Ruby 1.9.3 support
 ## [1.2.0] - 2015-08-04
 ### Added
 - Added check-ec2-filter to compare filter results to given thresholds

data/README.md CHANGED

@@ -11,6 +11,8 @@
 **check-autoscaling-cpucredits.rb**
+**check-cloudwatch-alarm**
 **check-dynamodb-capacity.rb**
 **check-dynamodb-throttle.rb**
@@ -37,6 +39,8 @@
 **check-elb-sum-requests.rb**
+**check-emr-cluster.rb**
 **check-instance-events.rb**
 **check-rds-events.rb**
@@ -45,6 +49,10 @@
 **check-redshift-events.rb**
+**check-s3-bucket.rb**
+**check-s3-object.rb**
 **check-ses-limit.rb**
 **check-sqs-messages.rb**
@@ -53,6 +61,8 @@
 **check_vpc_vpn.py**
+**check-vpc-vpn.rb**
 **handler-ec2_node.rb**
 **handler-ses.rb**
@@ -77,6 +87,7 @@
 ## Files
 * /bin/check-autoscaling-cpucredits.rb
+* /bin/check-cloudwatch-alarm.rb
 * /bin/check-dynamodb-capacity.rb
 * /bin/check-dynamodb-throttle.rb
 * /bin/check-ebs-snapshots.rb
@@ -89,14 +100,17 @@
 * /bin/check-elb-latency.rb
 * /bin/check-elb-nodes.rb
 * /bin/check-elb-sum-requests.rb
+* /bin/check-emr-cluster.rb
 * /bin/check-instance-events.rb
 * /bin/check-rds-events.rb
 * /bin/check-rds.rb
 * /bin/check-redshift-events.rb
+* /bin/check-s3-object.rb
 * /bin/check-ses-limit.rb
 * /bin/check-sqs-messages.rb
 * /bin/check-vpc-nameservers.rb
 * /bin/check_vpc_vpn.py
+* /bin/check_vpc_vpn.rb
 * /bin/handler-ec2_node.rb
 * /bin/handler-ses.rb
 * /bin/handler-sns.rb
@@ -142,4 +156,6 @@
 ```
 ## Installation
-[Installation and Setup](https://github.com/sensu-plugins/documentation/blob/master/user_docs/installation_instructions.md)
+[Installation and Setup](http://sensu-plugins.io/docs/installation_instructions.html)
+Note:  In addition to the standard installation requirements the installation of this gem will require compiling the nokogiri gem.  Due to this you'll need certain developmemnt packages on your system.  On Ubuntu systems install build-essential, libxml2-dev and zlib1g-dev.  On CentOS install gcc and zlib-devel.

data/bin/check-cloudwatch-alarm.rb ADDED

@@ -0,0 +1,104 @@
+#! /usr/bin/env ruby
+#
+# check-cloudwatch-alarm
+#
+# DESCRIPTION:
+#   This plugin retrieves the state of a CloudWatch alarm. Can be configured
+#   to trigger a warning or critical based on the result. Defaults to OK unless
+#   alarm is missing
+#
+# OUTPUT:
+#   plain-text
+#
+# PLATFORMS:
+#   Linux
+#
+# DEPENDENCIES:
+#   gem: aws-sdk
+#   gem: sensu-plugin
+#
+# USAGE:
+#   ./check-cloudwatch-alarm -n TestAlarm
+#   ./check-cloudwatch-alarm -c Alarm,INSUFFICIENT_DATA -n TestAlarm
+#   ./check-cloudwatch-alarm -c Alarm -w INSUFFICIENT_DATA -n TestAlarm
+#
+# NOTES:
+#
+# LICENSE:
+#   Justin McCarty
+#   Released under the same terms as Sensu (the MIT license); see LICENSE
+#   for details.
+#
+require 'sensu-plugin/check/cli'
+require 'aws-sdk'
+class CloudWatchCheck < Sensu::Plugin::Check::CLI
+  option :aws_access_key,
+         short: '-a AWS_ACCESS_KEY',
+         long: '--aws-access-key AWS_ACCESS_KEY',
+         description: "AWS Access Key. Either set ENV['AWS_ACCESS_KEY'] or provide it as an option",
+         default: ENV['AWS_ACCESS_KEY']
+  option :aws_secret_access_key,
+         short: '-k AWS_SECRET_KEY',
+         long: '--aws-secret-access-key AWS_SECRET_KEY',
+         description: "AWS Secret Access Key. Either set ENV['AWS_SECRET_KEY'] or provide it as an option",
+         default: ENV['AWS_SECRET_KEY']
+  option :aws_region,
+         short: '-r AWS_REGION',
+         long: '--aws-region REGION',
+         description: 'AWS Region (defaults to us-east-1).',
+         default: 'us-east-1'
+  option :name,
+         description: 'Alarm name',
+         short: '-n NAME',
+         long: '--name NAME',
+         default: ''
+  option :critical,
+         description: 'Critical List',
+         short: '-c Criticals',
+         long: '--critical',
+         default: ''
+  option :warning,
+         description: 'Warning state threshold',
+         short: '-w THRESHOLD',
+         long: '--warning THRESHOLD',
+         default: ''
+  def aws_config
+    { access_key_id: config[:aws_access_key],
+      secret_access_key: config[:aws_secret_access_key],
+      region: config[:aws_region]
+    }
+  end
+  def run
+    client = Aws::CloudWatch::Client.new aws_config
+    options = { alarm_names: [config[:name]] }
+    data = client.describe_alarms(options)
+    if data.metric_alarms.empty?
+      unknown 'Unable to find alarm'
+    end
+    message = "Alarm State: #{data.metric_alarms[0].state_value}"
+    if config[:critical].upcase.split(',').include? data.metric_alarms[0].state_value
+      critical message
+    elsif config[:warning].upcase.split(',').include? data.metric_alarms[0].state_value
+      warning message
+    end
+    ok message
+  rescue => e
+    puts "Error: exception: #{e}"
+    critical
+  end
+end

data/bin/check-dynamodb-capacity.rb CHANGED

@@ -155,7 +155,7 @@ class CheckDynamoDB < Sensu::Plugin::Check::CLI
         threshold = config[:"#{severity}_over"]
         next unless threshold
         next if percentage < threshold
-        flag_alert severity, "; On table #{table.name} consumed #{r_or_w} capacity is #{sprintf '%.2f', percentage}% (expected_lower_than #{threshold})" # rubocop:disable all
+        flag_alert severity, "; On table #{table.name} consumed #{r_or_w} capacity is #{sprintf '%.2f', percentage}% (expected_lower_than #{threshold})"
         break
       end
     end

data/bin/check-ec2-filter.rb CHANGED

@@ -89,7 +89,7 @@ class EC2Filter < Sensu::Plugin::Check::CLI
   end
   def convert_operator
-    op =  ->(c, t) { c == t }
+    op = ->(c, t) { c == t }
     if config[:compare] == 'greater'
       op = ->(c, t) { c > t }

data/bin/check-elb-certs.rb CHANGED

@@ -86,7 +86,7 @@ class CheckELBCerts < Sensu::Plugin::Check::CLI
     }
   end
-  def run # rubocop:disable all
+  def run
     ok_message = []
     warning_message = []
     critical_message = []
@@ -97,7 +97,7 @@ class CheckELBCerts < Sensu::Plugin::Check::CLI
     begin
       elb.load_balancers.each do |lb|
-        lb.listeners.each do |listener| # rubocop:disable Style/Next
+        lb.listeners.each do |listener|
           if listener.protocol.to_s == 'https'
             url = URI.parse("https://#{lb.dns_name}:#{listener.port}")
             http = Net::HTTP.new(url.host, url.port)
@@ -112,7 +112,7 @@ class CheckELBCerts < Sensu::Plugin::Check::CLI
             end
             cert_days_remaining = ((cert.not_after - Time.now) / 86_400).to_i
-            message = sprintf '%s(%d)', lb.name, cert_days_remaining # rubocop:disable all
+            message = sprintf '%s(%d)', lb.name, cert_days_remaining
             if config[:crit_under] > 0 && config[:crit_under] >= cert_days_remaining
               critical_message << message

data/bin/check-elb-latency.rb CHANGED

@@ -144,17 +144,17 @@ class CheckELBLatency < Sensu::Plugin::Check::CLI
       next unless threshold
       next if metric_value < threshold
       flag_alert severity,
-                 "; #{elbs.size == 1 ? nil : "#{elb.inspect}'s"} Latency is #{sprintf '%.3f', metric_value} seconds. (expected lower than #{sprintf '%.3f', threshold})" # rubocop:disable all
+                 "; #{elbs.size == 1 ? nil : "#{elb.inspect}'s"} Latency is #{sprintf '%.3f', metric_value} seconds. (expected lower than #{sprintf '%.3f', threshold})"
       break
     end
   end
   def run
-    @message  = if elbs.size == 1
-                  elbs.first.inspect
-                else
-                  "#{elbs.size} load balancers total"
-                end
+    @message = if elbs.size == 1
+                 elbs.first.inspect
+               else
+                 "#{elbs.size} load balancers total"
+               end
     @severities = {
       critical: false,

data/bin/check-elb-nodes.rb CHANGED

@@ -94,7 +94,7 @@ class CheckELBNodes < Sensu::Plugin::Check::CLI
     }
   end
-  def run # rubocop:disable all
+  def run
     AWS.start_memoizing
     elb = AWS::ELB.new aws_config

data/bin/check-elb-sum-requests.rb CHANGED

@@ -126,14 +126,14 @@ class CheckELBSumRequests < Sensu::Plugin::Check::CLI
   def check_sum_requests(elb)
     metric        = latency_metric elb.name
     metric_value  = begin
-                      value = latest_value metric
-                      puts value
+                      latest_value metric
                     rescue
                       0
                     end
     @severities.keys.each do |severity|
       threshold = config[:"#{severity}_over"]
+      puts metric_value
       next unless threshold
       next if metric_value < threshold
       flag_alert severity,
@@ -143,11 +143,11 @@ class CheckELBSumRequests < Sensu::Plugin::Check::CLI
   end
   def run
-    @message  = if elbs.size == 1
-                  elbs.first.inspect
-                else
-                  "#{elbs.size} load balancers total"
-                end
+    @message = if elbs.size == 1
+                 elbs.first.inspect
+               else
+                 "#{elbs.size} load balancers total"
+               end
     @severities = {
       critical: false,

data/bin/check-emr-cluster.rb ADDED

@@ -0,0 +1,147 @@
+#! /usr/bin/env ruby
+#
+# check-emr-cluster
+#
+# DESCRIPTION:
+#   This plugin checks if a cluster exists.
+#
+# OUTPUT:
+#   plain-text
+#
+# PLATFORMS:
+#   Linux
+#
+# DEPENDENCIES:
+#   gem: aws-sdk
+#   gem: sensu-plugin
+#
+# USAGE:
+#   ./check-emr-cluster.rb --cluster-name MyCluster --aws-region eu-west-1 --use-iam --warning-over 14400 --critical-over 21600
+#
+# NOTES:
+#
+# LICENSE:
+#   Copyright (c) 2015, Olivier Bazoud, olivier.bazoud@gmail.com
+#   Released under the same terms as Sensu (the MIT license); see LICENSE
+#   for details.
+#
+require 'sensu-plugin/check/cli'
+require 'aws-sdk'
+class CheckEMRCluster < Sensu::Plugin::Check::CLI
+  option :aws_access_key,
+         short: '-a AWS_ACCESS_KEY',
+         long: '--aws-access-key AWS_ACCESS_KEY',
+         description: "AWS Access Key. Either set ENV['AWS_ACCESS_KEY'] or provide it as an option",
+         default: ENV['AWS_ACCESS_KEY']
+  option :aws_secret_access_key,
+         short: '-k AWS_SECRET_KEY',
+         long: '--aws-secret-access-key AWS_SECRET_KEY',
+         description: "AWS Secret Access Key. Either set ENV['AWS_SECRET_KEY'] or provide it as an option",
+         default: ENV['AWS_SECRET_KEY']
+  option :aws_region,
+         short: '-r AWS_REGION',
+         long: '--aws-region REGION',
+         description: 'AWS Region (defaults to us-east-1).',
+         default: 'us-east-1'
+  option :use_iam_role,
+         short: '-u',
+         long: '--use-iam',
+         description: 'Use IAM role authenticiation. Instance must have IAM role assigned for this to work'
+  option :cluster_name,
+         short: '-b CLUSTER_NAME',
+         long: '--cluster-name',
+         description: 'The name of the EMR cluster',
+         required: true
+  option :warning_over,
+         description: 'Warn if cluster\'s age is greater than provided age in seconds',
+         short: '-w SECONDS',
+         long: '--warning-over SECONDS',
+         default: -1,
+         proc: proc(&:to_i)
+  option :critical_over,
+         description: 'Critical if cluster\'s age is greater than provided age in seconds',
+         short: '-c SECONDS',
+         long: '--critical-over SECONDS',
+         default: -1,
+         proc: proc(&:to_i)
+  option :warning_under,
+         description: 'Warn if cluster\'s age is lower than provided age in seconds',
+         short: '-w SECONDS',
+         long: '--warning-under SECONDS',
+         default: -1,
+         proc: proc(&:to_i)
+  option :critical_under,
+         description: 'Critical if cluster\'s age is lower than provided age in seconds',
+         short: '-C SECONDS',
+         long: '--critical-under SECONDS',
+         default: -1,
+         proc: proc(&:to_i)
+  def aws_config
+    { access_key_id: config[:aws_access_key],
+      secret_access_key: config[:aws_secret_access_key],
+      region: config[:aws_region]
+    }
+  end
+  def humanize(secs)
+    [[60, :seconds], [60, :minutes], [24, :hours], [1000, :days]].map do |count, name|
+      if secs > 0
+        secs, n = secs.divmod(count)
+        "#{n.to_i} #{name}"
+      end
+    end.compact.reverse.join(' ')
+  end
+  def run
+    aws_config = {}
+    if config[:use_iam_role].nil?
+      aws_config.merge!(
+        access_key_id: config[:aws_access_key],
+        secret_access_key: config[:aws_secret_access_key]
+      )
+    end
+    emr = Aws::EMR::Client.new(aws_config.merge!(region: config[:aws_region]))
+    begin
+      emr_clusters = emr.list_clusters(created_after: Time.now - 24 * 60 * 60, created_before: Time.now).clusters
+      clusters = emr_clusters.select { |c| c.name == config[:cluster_name] }
+      critical "EMR cluster #{config[:cluster_name]} appears #{clusters.size} times" if clusters.size > 1
+      critical "EMR cluster #{config[:cluster_name]} not found" if clusters.size == 0
+      cluster = clusters.first
+      state = cluster.status.state
+      if state == 'TERMINATED_WITH_ERRORS'
+        critical "EMR cluster #{config[:cluster_name]} state is '#{state}'"
+      else
+        creation_date_time = cluster.status.timeline.creation_date_time
+        end_date_time = cluster.status.timeline.end_date_time || Time.now
+        age = end_date_time.to_i - creation_date_time.to_i
+        if age >= config[:critical_over]
+          critical "EMR cluster #{config[:cluster_name]} - #{humanize(age)} vs. #{humanize(config[:critical_over])}"
+        elsif age >= config[:warning_over]
+          warning "EMR cluster #{config[:cluster_name]} - #{humanize(age)} vs. #{humanize(config[:warning_over])}"
+        elsif age <= config[:critical_under] && state == 'TERMINATED'
+          critical "EMR cluster #{config[:cluster_name]} - #{humanize(age)} vs. #{humanize(config[:critical_under])}"
+        elsif age <= config[:warning_under] && state == 'TERMINATED'
+          warning "EMR cluster #{config[:cluster_name]} - #{humanize(age)} vs. #{humanize(config[:warning_under])}"
+        else
+          ok "EMR cluster #{config[:cluster_name]} - #{humanize(age)}"
+        end
+      end
+    rescue => e
+      critical "EMR cluster #{config[:cluster_name]} - #{e.message}"
+    end
+  end
+end

data/bin/check-instance-events.rb CHANGED

@@ -69,7 +69,7 @@ class CheckInstanceEvents < Sensu::Plugin::Check::CLI
   def run
     event_instances = []
-    aws_config =   {}
+    aws_config = {}
     if config[:use_iam_role].nil?
       aws_config.merge!(

data/bin/check-rds-events.rb CHANGED

@@ -20,7 +20,7 @@
 #   gem: sensu-plugin
 #
 # USAGE:
-#  ./check-rds-events.rb -r ${you_region} -s ${your_aws_secret_access_key} -a ${your_aws_access_key}
+#  ./check-rds-events.rb -r ${your_region} -k ${your_aws_secret_access_key} -a ${your_aws_access_key}
 #
 # NOTES:
 #

data/bin/check-rds.rb CHANGED

@@ -25,6 +25,9 @@
 #   Critical if CPUUtilization is over 90%, maximum of last one hour
 #   check-rds -i sensu-admin-db --cpu-critical-over 90 --statistics maximum --period 3600
 #
+#   Warning if DatabaseConnections are over 100, critical over 120
+#   check-rds -i sensu-admin-db --connections-critical-over 120 --connections-warning-over 100 --statistics maximum --period 3600
+#
 #   Warning if memory usage is over 80%, maximum of last 2 hour
 #   specifying "minimum" is intended actually since memory usage is calculated from CloudWatch "FreeableMemory" metric.
 #   check-rds -i sensu-admin-db --memory-warning-over 80 --statistics minimum --period 7200
@@ -37,7 +40,7 @@
 #
 #   You can ignore accept nil values returned for a time periods from Cloudwatch as being an OK.  Amazon falls behind in their
 #   metrics from time to time and this prevents false positives
-#   check-rds -i sensu-admin-db --cpu-critical-over 90 -a
+#   check-rds -i sensu-admin-db --cpu-critical-over 90 -n
 #
 # NOTES:
 #
@@ -107,7 +110,7 @@ class CheckRDS < Sensu::Plugin::Check::CLI
            long:        "--availability-zone-#{severity} AZ",
            description: "Trigger a #{severity} if availability zone is different than given argument"
-    %w(cpu memory disk).each do |item|
+    %w(cpu memory disk connections).each do |item|
       option :"#{item}_#{severity}_over",
              long:        "--#{item}-#{severity}-over N",
              proc:        proc(&:to_f),
@@ -156,7 +159,7 @@ class CheckRDS < Sensu::Plugin::Check::CLI
     # handle time periods that are too small to return usable values.  # this is a cozy addition that wouldn't port upstream.
     if values.empty?
-      config[:accept_nil] ? ok('Cloudwatch returned no results for time period. Accept nil passed so OK') : unknown('Requested time period did not return values from Cloudwatch. Try increasing your time period.') # rubocop:disable all
+      config[:accept_nil] ? ok('Cloudwatch returned no results for time period. Accept nil passed so OK') : unknown('Requested time period did not return values from Cloudwatch. Try increasing your time period.')
     else
       values.last[config[:statistics]]
     end
@@ -187,9 +190,10 @@ class CheckRDS < Sensu::Plugin::Check::CLI
       'db.m1.medium'   => 3.75,
       'db.m1.large'    => 7.5,
       'db.m1.xlarge'   => 15.0,
-      'db.t2.micro' => 1,
-      'db.t2.small' => 2,
-      'db.t2.medium' => 4
+      'db.t2.micro'    => 1,
+      'db.t2.small'    => 2,
+      'db.t2.medium'   => 4,
+      'db.t2.large'    => 8
     }
     memory_total_gigabytes.fetch(instance_class) * 1024**3
@@ -204,7 +208,7 @@ class CheckRDS < Sensu::Plugin::Check::CLI
     @cpu_metric ||= cloud_watch_metric 'CPUUtilization'
     @cpu_metric_value ||= latest_value @cpu_metric, 'Percent'
     return if @cpu_metric_value < expected_lower_than
-    flag_alert severity, "; CPUUtilization is #{sprintf '%.2f', @cpu_metric_value}% (expected lower than #{expected_lower_than}%)" # rubocop:disable all
+    flag_alert severity, "; CPUUtilization is #{sprintf '%.2f', @cpu_metric_value}% (expected lower than #{expected_lower_than}%)"
   end
   def check_memory(severity, expected_lower_than)
@@ -214,7 +218,7 @@ class CheckRDS < Sensu::Plugin::Check::CLI
     @memory_usage_bytes ||= @memory_total_bytes - @memory_metric_value
     @memory_usage_percentage ||= @memory_usage_bytes / @memory_total_bytes * 100
     return if @memory_usage_percentage < expected_lower_than
-    flag_alert severity, "; Memory usage is #{sprintf '%.2f', @memory_usage_percentage}% (expected lower than #{expected_lower_than}%)" # rubocop:disable all
+    flag_alert severity, "; Memory usage is #{sprintf '%.2f', @memory_usage_percentage}% (expected lower than #{expected_lower_than}%)"
   end
   def check_disk(severity, expected_lower_than)
@@ -224,7 +228,14 @@ class CheckRDS < Sensu::Plugin::Check::CLI
     @disk_usage_bytes ||= @disk_total_bytes - @disk_metric_value
     @disk_usage_percentage ||= @disk_usage_bytes / @disk_total_bytes * 100
     return if @disk_usage_percentage < expected_lower_than
-    flag_alert severity, "; Disk usage is #{sprintf '%.2f', @disk_usage_percentage}% (expected lower than #{expected_lower_than}%)" # rubocop:disable all
+    flag_alert severity, "; Disk usage is #{sprintf '%.2f', @disk_usage_percentage}% (expected lower than #{expected_lower_than}%)"
+  end
+  def check_connections(severity, expected_lower_than)
+    @connections_metric ||= cloud_watch_metric 'DatabaseConnections'
+    @connections_metric_value ||= latest_value @connections_metric, 'Count'
+    return if @connections_metric_value < expected_lower_than
+    flag_alert severity, "; DatabaseConnections are #{sprintf '%d', @connections_metric_value} (expected lower than #{expected_lower_than})"
   end
   def run
@@ -242,12 +253,12 @@ class CheckRDS < Sensu::Plugin::Check::CLI
     @severities.keys.each do |severity|
       check_az severity, config[:"availability_zone_#{severity}"] if config[:"availability_zone_#{severity}"]
-      %w(cpu memory disk).each do |item|
+      %w(cpu memory disk connections).each do |item|
         send "check_#{item}", severity, config[:"#{item}_#{severity}_over"] if config[:"#{item}_#{severity}_over"]
       end
     end
-    if %w(cpu memory disk).any? { |item| %w(warning critical).any? { |severity| config[:"#{item}_#{severity}_over"] } }
+    if %w(cpu memory disk connections).any? { |item| %w(warning critical).any? { |severity| config[:"#{item}_#{severity}_over"] } }
       @message += "(#{config[:statistics].to_s.capitalize} within #{config[:period]}s "
       @message += "between #{config[:end_time] - config[:period]} to #{config[:end_time]})"
     end

data/bin/check-s3-bucket.rb ADDED

@@ -0,0 +1,89 @@
+#! /usr/bin/env ruby
+#
+# check-s3-bucket
+#
+# DESCRIPTION:
+#   This plugin checks a bucket and alerts if not exists
+#
+# OUTPUT:
+#   plain-text
+#
+# PLATFORMS:
+#   Linux
+#
+# DEPENDENCIES:
+#   gem: aws-sdk
+#   gem: sensu-plugin
+#
+# USAGE:
+#   ./check-s3-bucket.rb --bucket-name mybucket --aws-region eu-west-1
+#
+# NOTES:
+#
+# LICENSE:
+#   Copyright (c) 2015, Olivier Bazoud, olivier.bazoud@gmail.com
+#   Released under the same terms as Sensu (the MIT license); see LICENSE
+#   for details.
+#
+require 'sensu-plugin/check/cli'
+require 'aws-sdk'
+class CheckS3Bucket < Sensu::Plugin::Check::CLI
+  option :aws_access_key,
+         short: '-a AWS_ACCESS_KEY',
+         long: '--aws-access-key AWS_ACCESS_KEY',
+         description: "AWS Access Key. Either set ENV['AWS_ACCESS_KEY'] or provide it as an option",
+         default: ENV['AWS_ACCESS_KEY']
+  option :aws_secret_access_key,
+         short: '-k AWS_SECRET_KEY',
+         long: '--aws-secret-access-key AWS_SECRET_KEY',
+         description: "AWS Secret Access Key. Either set ENV['AWS_SECRET_KEY'] or provide it as an option",
+         default: ENV['AWS_SECRET_KEY']
+  option :aws_region,
+         short: '-r AWS_REGION',
+         long: '--aws-region REGION',
+         description: 'AWS Region (defaults to us-east-1).',
+         default: 'us-east-1'
+  option :bucket_name,
+         short: '-b BUCKET_NAME',
+         long: '--bucket-name',
+         description: 'The name of the S3 bucket to check',
+         required: true
+  option :use_iam_role,
+         short: '-u',
+         long: '--use-iam',
+         description: 'Use IAM role authenticiation. Instance must have IAM role assigned for this to work'
+  def aws_config
+    { access_key_id: config[:aws_access_key],
+      secret_access_key: config[:aws_secret_access_key],
+      region: config[:aws_region]
+    }
+  end
+  def run
+    aws_config = {}
+    if config[:use_iam_role].nil?
+      aws_config.merge!(
+        access_key_id: config[:aws_access_key],
+        secret_access_key: config[:aws_secret_access_key]
+      )
+    end
+    s3 = Aws::S3::Client.new(aws_config.merge!(region: config[:aws_region]))
+    begin
+      s3.head_bucket(bucket: config[:bucket_name])
+      ok "Bucket #{config[:bucket_name]} found"
+    rescue Aws::S3::Errors::NotFound => _
+      critical "Bucket #{config[:bucket_name]} not found"
+    rescue => e
+      critical "Bucket #{config[:bucket_name]} - #{e.message}"
+    end
+  end
+end

data/bin/check-s3-object.rb ADDED

@@ -0,0 +1,130 @@
+#! /usr/bin/env ruby
+#
+# check-s3-bucket
+#
+# DESCRIPTION:
+#   This plugin checks if a file exists in a bucket and/or is not too old.
+#
+# OUTPUT:
+#   plain-text
+#
+# PLATFORMS:
+#   Linux
+#
+# DEPENDENCIES:
+#   gem: aws-sdk
+#   gem: sensu-plugin
+#
+# USAGE:
+#   ./check-s3-object.rb --bucket-name mybucket --aws-region eu-west-1 --use-iam --key-name "path/to/myfile.txt"
+#   ./check-s3-object.rb --bucket-name mybucket --aws-region eu-west-1 --use-iam --key-name "path/to/myfile.txt" --warning 90000 --critical 126000
+#   ./check-s3-object.rb --bucket-name mybucket --aws-region eu-west-1 --use-iam --key-name "path/to/myfile.txt" --warning 90000 --critical 126000 --ok-zero-size
+#
+# NOTES:
+#
+# LICENSE:
+#   Copyright (c) 2015, Olivier Bazoud, olivier.bazoud@gmail.com
+#   Released under the same terms as Sensu (the MIT license); see LICENSE
+#   for details.
+#
+require 'sensu-plugin/check/cli'
+require 'aws-sdk'
+class CheckS3Bucket < Sensu::Plugin::Check::CLI
+  option :aws_access_key,
+         short: '-a AWS_ACCESS_KEY',
+         long: '--aws-access-key AWS_ACCESS_KEY',
+         description: "AWS Access Key. Either set ENV['AWS_ACCESS_KEY'] or provide it as an option",
+         default: ENV['AWS_ACCESS_KEY']
+  option :aws_secret_access_key,
+         short: '-k AWS_SECRET_KEY',
+         long: '--aws-secret-access-key AWS_SECRET_KEY',
+         description: "AWS Secret Access Key. Either set ENV['AWS_SECRET_KEY'] or provide it as an option",
+         default: ENV['AWS_SECRET_KEY']
+  option :aws_region,
+         short: '-r AWS_REGION',
+         long: '--aws-region REGION',
+         description: 'AWS Region (defaults to us-east-1).',
+         default: 'us-east-1'
+  option :use_iam_role,
+         short: '-u',
+         long: '--use-iam',
+         description: 'Use IAM role authenticiation. Instance must have IAM role assigned for this to work'
+  option :bucket_name,
+         short: '-b BUCKET_NAME',
+         long: '--bucket-name',
+         description: 'The name of the S3 bucket where object lives',
+         required: true
+  option :key_name,
+         short: '-b KEY_NAME',
+         long: '--key-name',
+         description: 'The name of key in the bucket',
+         required: true
+  option :ok_zero_size,
+         description: 'OK if file has zero size',
+         short: '-z',
+         long: '--ok-zero-size',
+         boolean: true,
+         default: false
+  option :warning_age,
+         description: 'Warn if mtime greater than provided age in seconds',
+         short: '-w SECONDS',
+         long: '--warning SECONDS'
+  option :critical_age,
+         description: 'Critical if mtime greater than provided age in seconds',
+         short: '-c SECONDS',
+         long: '--critical SECONDS'
+  def aws_config
+    { access_key_id: config[:aws_access_key],
+      secret_access_key: config[:aws_secret_access_key],
+      region: config[:aws_region]
+    }
+  end
+  def run_check(type, age)
+    to_check = config["#{type}_age".to_sym].to_i
+    if to_check > 0 && age >= to_check # rubocop:disable GuardClause
+      send(type, "S3 object #{config[:key_name]} is #{age - to_check} seconds past (bucket #{config[:bucket_name]})")
+    end
+  end
+  def run
+    aws_config = {}
+    if config[:use_iam_role].nil?
+      aws_config.merge!(
+        access_key_id: config[:aws_access_key],
+        secret_access_key: config[:aws_secret_access_key]
+      )
+    end
+    s3 = Aws::S3::Client.new(aws_config.merge!(region: config[:aws_region]))
+    begin
+      output = s3.head_object(bucket: config[:bucket_name], key: config[:key_name])
+      if output[:content_length] == 0 && !config[:ok_zero_size]
+        critical "S3 object #{config[:key_name]} has zero size (bucket #{config[:bucket_name]})"
+      end
+      if config[:warning_age] || config[:critical_age]
+        age = Time.now.to_i - output[:last_modified].to_i
+        run_check(:critical, age) || run_check(:warning, age) || ok("S3 object #{config[:key_name]} is #{age} seconds old (bucket #{config[:bucket_name]})")
+      else
+        ok("S3 object #{config[:key_name]} exists (bucket #{config[:bucket_name]})")
+      end
+    rescue Aws::S3::Errors::NotFound => _
+      critical "S3 object #{config[:key_name]} not found in bucket #{config[:bucket_name]}"
+    rescue => e
+      critical "S3 object #{config[:key_name]} in bucket #{config[:bucket_name]} - #{e.message}"
+    end
+  end
+end

data/bin/check-vpc-vpn.rb ADDED

@@ -0,0 +1,105 @@
+#! /usr/bin/env ruby
+#
+#   check-vpc-vpn.rb
+#
+# DESCRIPTION:
+#   This plugin checks VPC VPN connections to ensure they are up
+#
+# OUTPUT:
+#   plain text
+#
+# PLATFORMS:
+#   all
+#
+# DEPENDENCIES:
+#   gem: sensu-plugin
+#   gem: aws-sdk
+#
+# USAGE:
+#  ./check-vpc-vpn.rb --aws-region us-east-1 --vpn-connection-id vpn-abc1234
+#
+# NOTES:
+#   Supports inline credentials or IAM roles
+#
+# LICENSE:
+#   John Dyer johntdyer@gmail.com
+#   Released under the same terms as Sensu (the MIT license); see LICENSE
+#   for details.
+#
+require 'sensu-plugin/check/cli'
+require 'aws-sdk'
+class CheckAwsVpcVpnConnections < Sensu::Plugin::Check::CLI
+  @aws_config = {}
+  # rubocop:disable Style/AlignParameters
+  option :access_key,
+    short: '-a AWS_ACCESS_KEY',
+    long: '--aws-access-key AWS_ACCESS_KEY',
+    description: 'AWS Access Key',
+    default: ENV['AWS_ACCESS_KEY_ID']
+  option :secret_key,
+    short: '-s AWS_SECRET_ACCESS_KEY',
+    long: '--aws-secret-access-key AWS_SECRET_ACCESS_KEY',
+    description: 'AWS Secret Access Key.',
+    default: ENV['AWS_SECRET_ACCESS_KEY']
+  option :use_iam_role,
+    short: '-u',
+    long: '--use-iam',
+    description: 'Use IAM authentication'
+  option :vpn_id,
+    short: '-v VPN_ID',
+    long: '--vpn-connection-id VPN_ID',
+    required: true,
+    description: 'VPN connection ID'
+  option :aws_region,
+    short: '-r AWS_REGION',
+    long: '--aws-region REGION',
+    description: 'AWS Region (such as eu-west-1).',
+    default: 'us-east-1'
+  def aws_config
+    aws_connection_config = { region: config[:aws_region] }
+    if config[:use_iam_role].nil?
+      aws_connection_config.merge!(
+        access_key_id: config[:access_key],
+        secret_access_key: config[:secret_key]
+      )
+    end
+    aws_connection_config
+  end
+  def fetch_connection_data
+    begin
+      ec2 = AWS::EC2::Client.new(aws_config)
+      vpn_info = ec2.describe_vpn_connections(vpn_connection_ids: [config[:vpn_id]]).vpn_connection_set
+      down_connections = vpn_info.first.vgw_telemetry.select { |x| x.status != 'UP' }
+      results = { down_count: down_connections.count }
+      results[:down_connection_status] = down_connections.map { |x| "#{x.outside_ip_address} => #{x.status_message.nil? ? 'none' : x.status_message}" }
+      results[:connection_name] = vpn_info[0].tag_set.find { |x| x.key == 'Name' }.value
+    rescue AWS::EC2::Errors::InvalidVpnConnectionID::NotFound
+      warning "The vpnConnection ID '#{config[:vpn_id]}' does not exist"
+    rescue => e
+      warning e.backtrace.join(' ')
+    end
+    results
+  end
+  def run
+    data = fetch_connection_data
+    msg = data[:down_connection_status].join(' | ')
+    name = data[:connection_name]
+    case data[:down_count]
+    when 2 then critical "'#{name}' shows both tunnels as DOWN - [ #{msg} ]"
+    when 1 then warning "'#{name}' shows 1 of 2 tunnels as DOWN - [ #{msg} ]"
+    when 0 then ok "'#{name}' shows 2 of 2 tunnels as UP"
+    else
+      # Not sure this could ever happen
+      unknown "Unknown connection count - #{data[:down_count]}"
+    end
+  end
+end

data/bin/handler-ec2_node.rb CHANGED

@@ -136,7 +136,7 @@ class Ec2Node < Sensu::Handler
         true
       else
         instance = instances.instances[0]
-        state_reason = instance.state_reason.code
+        state_reason = instance.state_reason.nil? ? nil : instance.state_reason.code
         state = instance.state.name
         states.include?(state) && state_reasons.any? { |reason| Regexp.new(reason) =~ state_reason }
       end

data/bin/metrics-elb.rb CHANGED

@@ -63,7 +63,7 @@ class ELBMetrics < Sensu::Plugin::Metric::CLI::Graphite
          default: 'Latency'
   option :statistic,
-         rescription: 'Statistics type',
+         description: 'Statistics type',
          short: '-t STATISTIC',
          long: '--statistic',
          default: ''

data/bin/metrics-sqs.rb CHANGED

@@ -69,7 +69,7 @@ class SQSMetrics < Sensu::Plugin::Metric::CLI::Graphite
   def run
     if config[:scheme] == ''
-      scheme = "aws.sqs.queue.#{config[:queue].gsub('-', '_')}.message_count"
+      scheme = "aws.sqs.queue.#{config[:queue].tr('-', '_')}.message_count"
     else
       scheme = config[:scheme]
     end

data/lib/sensu-plugins-aws/filter.rb CHANGED

@@ -1,6 +1,6 @@
 #
 # DESCRIPTION:
-#   Filter methods for aws quieries
+#   Filter methods for aws queries
 #
 # DEPENDENCIES:
 #

data/lib/sensu-plugins-aws/version.rb CHANGED

@@ -4,8 +4,8 @@ require 'json'
 module SensuPluginsAWS
   # This defines the version of the gem
   module Version
-    MAJOR = 1
-    MINOR = 2
+    MAJOR = 2
+    MINOR = 0
     PATCH = 0
     VER_STRING = [MAJOR, MINOR, PATCH].compact.join('.')

metadata CHANGED

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: sensu-plugins-aws
 version: !ruby/object:Gem::Version
-  version: 1.2.0
+  version: 2.0.0
 platform: ruby
 authors:
 - Sensu-Plugins and contributors
@@ -30,7 +30,7 @@ cert_chain:
   8sHuVruarogxxKPBzlL2is4EUb6oN/RdpGx2l4254+nyR+abg//Ed27Ym0PkB4lk
   HP0m8WSjZmFr109pE/sVsM5jtOCvogyujQOjNVGN4gz1wwPr
   -----END CERTIFICATE-----
-date: 2015-08-04 00:00:00.000000000 Z
+date: 2015-11-03 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: sensu-plugin
@@ -228,7 +228,12 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '0.10'
-description: Sensu plugins for working with an AWS environment
+description: |-
+  This plugin provides native AWS instrumentation
+                                for monitoring and metrics collection, including:
+                                health and metrics for various AWS services, such
+                                as EC2, RDS, ELB, and more, as well as handlers
+                                for EC2, SES, and SNS
 email: "<sensu-users@googlegroups.com>"
 executables:
 - metrics-sqs.rb
@@ -242,13 +247,17 @@ executables:
 - handler-ses.rb
 - handler-ec2_node.rb
 - check_vpc_vpn.py
+- check-vpc-vpn.rb
 - check-vpc-nameservers.rb
 - check-sqs-messages.rb
 - check-ses-limit.rb
+- check-s3-object.rb
+- check-s3-bucket.rb
 - check-redshift-events.rb
 - check-rds.rb
 - check-rds-events.rb
 - check-instance-events.rb
+- check-emr-cluster.rb
 - check-elb-sum-requests.rb
 - check-elb-nodes.rb
 - check-elb-latency.rb
@@ -262,6 +271,7 @@ executables:
 - check-ebs-snapshots.rb
 - check-dynamodb-throttle.rb
 - check-dynamodb-capacity.rb
+- check-cloudwatch-alarm.rb
 - check-autoscaling-cpucredits.rb
 extensions: []
 extra_rdoc_files: []
@@ -270,6 +280,7 @@ files:
 - LICENSE
 - README.md
 - bin/check-autoscaling-cpucredits.rb
+- bin/check-cloudwatch-alarm.rb
 - bin/check-dynamodb-capacity.rb
 - bin/check-dynamodb-throttle.rb
 - bin/check-ebs-snapshots.rb
@@ -283,13 +294,17 @@ files:
 - bin/check-elb-latency.rb
 - bin/check-elb-nodes.rb
 - bin/check-elb-sum-requests.rb
+- bin/check-emr-cluster.rb
 - bin/check-instance-events.rb
 - bin/check-rds-events.rb
 - bin/check-rds.rb
 - bin/check-redshift-events.rb
+- bin/check-s3-bucket.rb
+- bin/check-s3-object.rb
 - bin/check-ses-limit.rb
 - bin/check-sqs-messages.rb
 - bin/check-vpc-nameservers.rb
+- bin/check-vpc-vpn.rb
 - bin/check_vpc_vpn.py
 - bin/handler-ec2_node.rb
 - bin/handler-ses.rb

metadata.gz.sig CHANGED

Binary file