zaws 0.0.1

data/feature/route_table/view.feature

@@ -0,0 +1,25 @@
+Feature: Route Table 
+  Route Tables control network traffic in AWS between subnets and gateways. 
+    
+  Scenario: Get route table in a human readable table. 
+    Given I double `aws --output table --region us-west-1 ec2 describe-route-tables` with "AWS Route Table Output" 
+    When I run `bundle exec zaws route_table view --region us-west-1 --viewtype table`
+    Then the stdout should contain "AWS Route Table Output\n" 
+
+  Scenario: Get route table in a human readable table form by default 
+    Given I double `aws --output table --region us-west-1 ec2 describe-route-tables` with "AWS Route Table Output" 
+    When I run `bundle exec zaws route_table view --region us-west-1`
+    Then the stdout should contain "AWS Route Table Output\n" 
+
+  Scenario: Get route table in JSON form 
+    Given I double `aws --output json --region us-west-1 ec2 describe-route-tables` with "AWS Route Table JSON Output" 
+    When I run `bundle exec zaws route_table view --region us-west-1 --viewtype json`
+    Then the stdout should contain "AWS Route Table JSON Output\n" 
+
+  Scenario: Get route table from specified vpcid
+    Given I double `aws --output table --region us-west-1 ec2 describe-route-tables --filter 'Name=vpc-id,Values=my_vpc_id'` with "AWS Route Table Output" 
+    When I run `bundle exec zaws route_table view --region us-west-1 --vpcid my_vpc_id`
+    Then the stdout should contain "AWS Route Table Output\n" 
+	  
+
+

data/feature/security_group/ingress.feature

@@ -0,0 +1,184 @@
+Feature: Security Group 
+  Security Group(s) are viewable
+    
+   Scenario: Determine a vpc securiry group ingress group rule identified by source and target has NOT been created
+	Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=target_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "target_group_name","GroupId": "X_target_group_name" } ] }
+     """
+	And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=source_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "source_group_name","GroupId": "X_source_group_name" } ] }
+     """
+    And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=group-id,Values=X_target_group_name' 'Name=ip-permission.group-id,Values=X_source_group_name' 'Name=ip-permission.protocol,Values=tcp' 'Name=ip-permission.to-port,Values=443'` with stdout:
+     """
+      {	"SecurityGroups": [] }
+     """
+    When I run `bundle exec zaws security_group ingress_group_exists target_group_name source_group_name tcp 443 --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "false\n" 
+
+   Scenario: Determine a vpc security group ingress group rule identified by source and target has been created
+	Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=target_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "target_group_name","GroupId": "X_target_group_name" } ] }
+     """
+	And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=source_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "source_group_name","GroupId": "X_source_group_name" } ] }
+     """
+    And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=group-id,Values=X_target_group_name' 'Name=ip-permission.group-id,Values=X_source_group_name' 'Name=ip-permission.protocol,Values=tcp' 'Name=ip-permission.to-port,Values=443'` with stdout:
+     """
+	 {	"SecurityGroups": [ { 
+	        "GroupName": "target_group_name",
+			"GroupId": "X_target_group_name",
+			"IpPermissions": [ {
+				  "ToPort": 443,
+				  "IpProtocol": "tcp",
+				  "IpRanges": [],
+				  "UserIdGroupPairs": [ {
+					 "UserId": "958601521864",
+					 "GroupId": "X_source_group_name" } ],
+			      "FromPort": 443 } ] } ] }
+     """
+    When I run `bundle exec zaws security_group ingress_group_exists target_group_name source_group_name tcp 443 --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "true\n" 
+
+   Scenario: Declare a new vpc security group ingress group rule identified by source and target. Create it cause it doesn't exist. Also, should append the command to remove the security group to file.
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=target_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "target_group_name","GroupId": "X_target_group_name" } ] }
+     """
+	And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=source_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "source_group_name","GroupId": "X_source_group_name" } ] }
+	 """
+    And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=group-id,Values=X_target_group_name' 'Name=ip-permission.group-id,Values=X_source_group_name' 'Name=ip-permission.protocol,Values=tcp' 'Name=ip-permission.to-port,Values=443'` with stdout:
+     """
+      {	"SecurityGroups": [] }
+     """
+    And I double `aws --region us-west-1 ec2 authorize-security-group-ingress --group-id X_target_group_name --source-security-group-owner-id X_source_group_name --protocol tcp --port 443` with stdout:
+     """
+      {	"return": "true" }
+     """
+    When I run `bundle exec zaws security_group declare_ingress_group target_group_name source_group_name tcp 443 --region us-west-1 --vpcid my_vpc_id`
+	Then the output should contain "Ingress group rule created.\n"
+
+   Scenario: Declare a new vpc security group ingress group rule identified by source and target. Do not create it because it does exist.
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=target_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "target_group_name","GroupId": "X_target_group_name" } ] }
+     """
+	And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=source_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "source_group_name","GroupId": "X_source_group_name" } ] }
+	 """
+    And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=group-id,Values=X_target_group_name' 'Name=ip-permission.group-id,Values=X_source_group_name' 'Name=ip-permission.protocol,Values=tcp' 'Name=ip-permission.to-port,Values=443'` with stdout:
+     """
+	 {	"SecurityGroups": [ { 
+	        "GroupName": "target_group_name",
+			"GroupId": "X_target_group_name",
+			"IpPermissions": [ {
+				  "ToPort": 443,
+				  "IpProtocol": "tcp",
+				  "IpRanges": [],
+				  "UserIdGroupPairs": [ {
+					 "UserId": "958601521864",
+					 "GroupId": "X_source_group_name" } ],
+			      "FromPort": 443 } ] } ] }
+     """
+    Given an empty file named "undo.sh.1" 
+    When I run `bundle exec zaws security_group declare_ingress_group target_group_name source_group_name tcp 443 --region us-west-1 --vpcid my_vpc_id --undofile undo.sh.1`
+	Then the output should contain "Ingress group rule not created. Exists already.\n"
+    And the file "undo.sh.1" should contain "zaws security_group delete_ingress_group target_group_name source_group_name tcp 443 --region us-west-1 --vpcid my_vpc_id $XTRA_OPTS"
+
+   Scenario: Perform a nagios check, with the result indicatin OK (exit 0), indicating declaring a vpc security group ingress group requires no action because it exists.
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=target_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "target_group_name","GroupId": "X_target_group_name" } ] }
+     """
+	And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=source_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "source_group_name","GroupId": "X_source_group_name" } ] }
+	 """
+    And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=group-id,Values=X_target_group_name' 'Name=ip-permission.group-id,Values=X_source_group_name' 'Name=ip-permission.protocol,Values=tcp' 'Name=ip-permission.to-port,Values=443'` with stdout:
+     """
+	 {	"SecurityGroups": [ { 
+	        "GroupName": "target_group_name",
+			"GroupId": "X_target_group_name",
+			"IpPermissions": [ {
+				  "ToPort": 443,
+				  "IpProtocol": "tcp",
+				  "IpRanges": [],
+				  "UserIdGroupPairs": [ {
+					 "UserId": "958601521864",
+					 "GroupId": "X_source_group_name" } ],
+			      "FromPort": 443 } ] } ] }
+     """
+    When I run `bundle exec zaws security_group declare_ingress_group target_group_name source_group_name tcp 443 --region us-west-1 --vpcid my_vpc_id --nagios`
+	Then the output should contain "OK: Security group ingress group rule exists.\n"
+    And the exit status should be 0
+		
+   Scenario: Perform a nagios check, with the result indicatin CRITICAL (exit 2), indicating declaring a security group ingress group requires action because it does not exist.
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=target_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "target_group_name","GroupId": "X_target_group_name" } ] }
+     """
+	And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=source_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "source_group_name","GroupId": "X_source_group_name" } ] }
+	 """
+    And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=group-id,Values=X_target_group_name' 'Name=ip-permission.group-id,Values=X_source_group_name' 'Name=ip-permission.protocol,Values=tcp' 'Name=ip-permission.to-port,Values=443'` with stdout:
+     """
+      {	"SecurityGroups": [] }
+     """
+    When I run `bundle exec zaws security_group declare_ingress_group target_group_name source_group_name tcp 443 --region us-west-1 --vpcid my_vpc_id --nagios`
+	Then the output should contain "CRITICAL: Security group ingress group rule does not exist.\n"
+    And the exit status should be 2
+
+   Scenario: Delete a vpc security group ingress group rule, but skip it cause it does not exist
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=target_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "target_group_name","GroupId": "X_target_group_name" } ] }
+     """
+	And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=source_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "source_group_name","GroupId": "X_source_group_name" } ] }
+	 """
+    And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=group-id,Values=X_target_group_name' 'Name=ip-permission.group-id,Values=X_source_group_name' 'Name=ip-permission.protocol,Values=tcp' 'Name=ip-permission.to-port,Values=443'` with stdout:
+     """
+      {	"SecurityGroups": [] }
+     """
+    When I run `bundle exec zaws security_group delete_ingress_group target_group_name source_group_name tcp 443 --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "Security group ingress group rule does not exist. Skipping deletion.\n" 
+
+   Scenario: Delete a vpc security group ingress group rule
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=target_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "target_group_name","GroupId": "X_target_group_name" } ] }
+     """
+	And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=source_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "source_group_name","GroupId": "X_source_group_name" } ] }
+	 """
+    And I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=group-id,Values=X_target_group_name' 'Name=ip-permission.group-id,Values=X_source_group_name' 'Name=ip-permission.protocol,Values=tcp' 'Name=ip-permission.to-port,Values=443'` with stdout:
+     """
+	 {	"SecurityGroups": [ { 
+	        "GroupName": "target_group_name",
+			"GroupId": "X_target_group_name",
+			"IpPermissions": [ {
+				  "ToPort": 443,
+				  "IpProtocol": "tcp",
+				  "IpRanges": [],
+				  "UserIdGroupPairs": [ {
+					 "UserId": "958601521864",
+					 "GroupId": "X_source_group_name" } ],
+			      "FromPort": 443 } ] } ] }
+     """
+    And I double `aws --region us-west-1 ec2 revoke-security-group-ingress --group-id X_target_group_name --source-security-group-owner-id X_source_group_name --protocol tcp --port 443` with stdout:
+     """
+       { "return": "true" }         
+     """
+    When I run `bundle exec zaws security_group delete_ingress_group target_group_name source_group_name tcp 443 --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "Security group ingress group rule deleted.\n" 
+
+

data/feature/security_group/security_group.feature

@@ -0,0 +1,107 @@
+Feature: Security Group 
+  Security Group(s) are viewable
+	 
+   Scenario: Determine a security group identified by name and vpc has NOT been created
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=my_security_group_name'` with stdout:
+     """
+      {	"SecurityGroups": [] }
+     """
+    When I run `bundle exec zaws security_group exists_by_name my_security_group_name --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "false\n" 
+
+   Scenario: Determine a security group identified by name and vpc has been created
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=my_security_group_name'` with stdout:
+     """
+      {	"SecurityGroups": [ { "GroupName": "my_security_group_name" } ] }
+     """
+    When I run `bundle exec zaws security_group exists_by_name my_security_group_name --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "true\n" 
+
+   Scenario: Determine a security group identified by name has NOT been created
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=group-name,Values=my_security_group_name'` with stdout:
+     """
+      {	"SecurityGroups": [] }
+     """
+    When I run `bundle exec zaws security_group exists_by_name my_security_group_name --region us-west-1`
+    Then the output should contain "false\n" 
+
+   Scenario: Determine a security group identified by name has been created
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter 'Name=group-name,Values=my_security_group_name'` with stdout:
+     """
+      {	"SecurityGroups": [ { "GroupName": "my_security_group_name" } ] }
+     """
+    When I run `bundle exec zaws security_group exists_by_name my_security_group_name --region us-west-1`
+    Then the output should contain "true\n" 
+
+   Scenario: Delete a security group in a vpc, but skip it cause it does not exist
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=my_security_group_name'` with stdout:
+     """
+      {	"SecurityGroups": [] }
+     """
+    When I run `bundle exec zaws security_group delete my_security_group_name --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "Security Group does not exist. Skipping deletion.\n" 
+
+   Scenario: Delete a security group in a vpc
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=my_security_group_name'` with stdout:
+     """
+	 {	"SecurityGroups": [ { "GroupName": "my_security_group_name","GroupId": "sg-abcd1234" } ] }
+     """
+    And I double `aws --region us-west-1 ec2 delete-security-group --group-ids sg-abcd1234` with stdout:
+     """
+       { "return": "true" }         
+     """
+    When I run `bundle exec zaws security_group delete my_security_group_name --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "Security Group deleted.\n" 
+
+   Scenario: Declare a new security group in vpc, but don't create it cause it exists
+     Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=my_security_group_name'` with stdout:
+      """
+     {        "SecurityGroups": [ { "GroupName": "my_security_group_name" } ] }
+      """
+    When I run `bundle exec zaws security_group declare my_security_group_name 'My security gorup' --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "Security Group Exists Already. Skipping Creation.\n"
+
+   Scenario: Declare a new security group in vpc
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=my_security_group_name'` with stdout:
+      """
+      {        "SecurityGroups": [] }
+      """
+    And I double `aws --output json --region us-west-1 ec2 create-security-group --vpc-id my_vpc_id --group-name my_security_group_name --description 'My security group'` with stdout:
+      """
+        { "return": "true" }
+      """
+    When I run `bundle exec zaws security_group declare my_security_group_name 'My security group' --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "Security Group Created.\n"
+
+   Scenario: Perform a nagios check, with the result indicatin OK (exit 0), indicating declaring a security group requires no action because it exists.
+	Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=my_security_group_name'` with stdout:
+      """
+     {        "SecurityGroups": [ { "GroupName": "my_security_group_name" } ] }
+      """
+    When I run `bundle exec zaws security_group declare my_security_group_name 'My security gorup' --region us-west-1 --vpcid my_vpc_id --nagios`
+	Then the output should contain "OK: Security Group Exists.\n"
+    And the exit status should be 0
+		
+   Scenario: Perform a nagios check, with the result indicatin CRITICAL (exit 2), indicating declaring a security group requires action because it does not exist.
+     Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=my_security_group_name'` with stdout:
+      """
+      {        "SecurityGroups": [] }
+      """
+    When I run `bundle exec zaws security_group declare my_security_group_name 'My security group' --region us-west-1 --vpcid my_vpc_id --nagios`
+	Then the output should contain "CRITICAL: Security Group Does Not Exist.\n"
+    And the exit status should be 2
+
+   Scenario: Declaring a security group, should append the command to remove the security group to file.
+	Given I double `aws --output json --region us-west-1 ec2 describe-security-groups --filter  'Name=vpc-id,Values=my_vpc_id' 'Name=group-name,Values=my_security_group_name'` with stdout:
+      """
+      {        "SecurityGroups": [] }
+      """
+    And I double `aws --output json --region us-west-1 ec2 create-security-group --vpc-id my_vpc_id --group-name my_security_group_name --description 'My security group'` with stdout:
+      """
+        { "return": "true" }
+      """
+	Given an empty file named "undo.sh.1" 
+    When I run `bundle exec zaws security_group declare my_security_group_name 'My security group' --region us-west-1 --vpcid my_vpc_id --undofile undo.sh.1`
+	Then the output should contain "Security Group Created.\n"
+	And the file "undo.sh.1" should contain "zaws security_group delete my_security_group_name --region us-west-1 --vpcid my_vpc_id $XTRA_OPTS"
+

data/feature/security_group/view.feature

@@ -0,0 +1,23 @@
+Feature: Security Group 
+  Security Group(s) are viewable
+    
+  Scenario: Get security groups in a human readable table. 
+    Given I double `aws --output table --region us-west-1 ec2 describe-security-groups` with "AWS Security Group Table Output" 
+    When I run `bundle exec zaws security_group view --region us-west-1 --viewtype table`
+    Then the stdout should contain "AWS Security Group Table Output\n" 
+
+  Scenario: Get security groups in a human readable table form by default 
+    Given I double `aws --output table --region us-west-1 ec2 describe-security-groups` with "AWS Security Group Table Output" 
+    When I run `bundle exec zaws security_group view --region us-west-1`
+    Then the stdout should contain "AWS Security Group Table Output\n" 
+
+  Scenario: Get security groups in JSON form 
+    Given I double `aws --output json --region us-west-1 ec2 describe-security-groups` with "AWS Security Group JSON Output" 
+    When I run `bundle exec zaws security_group view --region us-west-1 --viewtype json`
+    Then the stdout should contain "AWS Security Group JSON Output\n" 
+
+  Scenario: Get security groups from specified vpcid
+    Given I double `aws --output table --region us-west-1 ec2 describe-security-groups --filter 'Name=vpc-id,Values=my_vpc_id'` with "AWS Security Group Table Output" 
+    When I run `bundle exec zaws security_group view --region us-west-1 --vpcid my_vpc_id`
+    Then the stdout should contain "AWS Security Group Table Output\n" 
+   

data/feature/subnet/subnet.feature

@@ -0,0 +1,92 @@
+Feature: Subnet
+  Subnets should be createable once in a specific availability zone.
+	 
+  Scenario: Determine a subnet has NOT been created in vpc
+    Given I double `aws --output json --region us-west-1 ec2 describe-subnets --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=cidr,Values=my_cidr_block'` with stdout:
+     """
+      {	"Subnets": [] }
+     """
+    When I run `bundle exec zaws subnet exists --region us-west-1 --cidrblock my_cidr_block --vpcid my_vpc_id`
+    Then the output should contain "false\n" 
+
+  Scenario: Determine a subnet has been created in vpc
+    Given I double `aws --output json --region us-west-1 ec2 describe-subnets --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=cidr,Values=my_cidr_block'` with stdout: 
+     """
+		{ "Subnets": [ { "SubnetId" : "X" } ] }
+     """
+    When I run `bundle exec zaws subnet exists --region us-west-1 --cidrblock my_cidr_block --vpcid my_vpc_id`
+    Then the output should contain "true\n" 
+
+  Scenario: Declare a subnet but do not create it if it exists
+    Given I double `aws --output json --region us-west-1 ec2 describe-subnets --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=cidr,Values=my_cidr_block'` with stdout: 
+     """
+		{ "Subnets": [ { "SubnetId" : "X" } ] }
+     """
+    When I run `bundle exec zaws subnet declare --region us-west-1 --cidrblock my_cidr_block --vpcid my_vpc_id --availabilityzone us-west-1a`
+    Then the output should contain "No action needed. Subnet exists already.\n" 
+
+  Scenario: Declare a subnet and create it 
+    Given I double `aws --output json --region us-west-1 ec2 describe-subnets --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=cidr,Values=my_cidr_block'` with stdout: 
+     """
+		{ "Subnets": [] }
+     """
+    And I double `aws --output json --region us-west-1 ec2 create-subnet --vpc-id my_vpc_id --cidr-block my_cidr_block --availability-zone us-west-1a` with stdout:
+     """
+       { "Subnet": { "State": "available" } }        
+     """
+    When I run `bundle exec zaws subnet declare --region us-west-1 --cidrblock my_cidr_block --vpcid my_vpc_id --availabilityzone us-west-1a`
+    Then the output should contain "Subnet created.\n" 
+
+   Scenario: Delete a subnet, but skip it cause it does not exist
+    Given I double `aws --output json --region us-west-1 ec2 describe-subnets --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=cidr,Values=my_cidr_block'` with stdout: 
+     """
+		{ "Subnets": [] }
+     """
+    When I run `bundle exec zaws subnet delete  --region us-west-1 --cidrblock my_cidr_block --vpcid my_vpc_id`
+    Then the output should contain "Subnet does not exist. Skipping deletion.\n" 
+
+   Scenario: Delete a subnet
+    Given I double `aws --output json --region us-west-1 ec2 describe-subnets --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=cidr,Values=my_cidr_block'` with stdout: 
+     """
+		{ "Subnets": [ { "SubnetId" : "X" } ] }
+     """
+    And I double `aws --region us-west-1 ec2 delete-subnet --subnet-id X` with stdout:
+     """
+       { "return": "true" }         
+     """
+    When I run `bundle exec zaws subnet delete --region us-west-1 --cidrblock my_cidr_block --vpcid my_vpc_id`
+    Then the output should contain "Subnet deleted.\n" 
+
+   Scenario: Perform a nagios check, with the result indicatin OK (exit 0), indicating declaring a subnet requires no action because it exists.
+    Given I double `aws --output json --region us-west-1 ec2 describe-subnets --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=cidr,Values=my_cidr_block'` with stdout: 
+     """
+		{ "Subnets": [ { "SubnetId" : "X" } ] }
+     """
+    When I run `bundle exec zaws subnet declare --region us-west-1 --cidrblock my_cidr_block --vpcid my_vpc_id --availabilityzone us-west-1a --nagios`
+	Then the output should contain "OK: Subnet Exists.\n"
+    And the exit status should be 0
+		
+   Scenario: Perform a nagios check, with the result indicatin CRITICAL (exit 2), indicating declaring a subnet requires action because it does not exist.
+    Given I double `aws --output json --region us-west-1 ec2 describe-subnets --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=cidr,Values=my_cidr_block'` with stdout: 
+     """
+		{ "Subnets": [] }
+     """
+    When I run `bundle exec zaws subnet declare --region us-west-1 --cidrblock my_cidr_block --vpcid my_vpc_id --availabilityzone us-west-1a --nagios`
+	Then the output should contain "CRITICAL: Subnet Does Not Exist.\n"
+    And the exit status should be 2
+
+   Scenario: Declaring a subnet, should append the command to remove the subnet to file.
+    Given I double `aws --output json --region us-west-1 ec2 describe-subnets --filter 'Name=vpc-id,Values=my_vpc_id' 'Name=cidr,Values=my_cidr_block'` with stdout: 
+     """
+		{ "Subnets": [] }
+     """
+    And I double `aws --output json --region us-west-1 ec2 create-subnet --vpc-id my_vpc_id --cidr-block my_cidr_block --availability-zone us-west-1a` with stdout:
+     """
+       { "Subnet": { "State": "available" } }        
+     """
+	Given an empty file named "undo.sh.1" 
+    When I run `bundle exec zaws subnet declare --region us-west-1 --cidrblock my_cidr_block --vpcid my_vpc_id --availabilityzone us-west-1a --undofile undo.sh.1`
+    Then the output should contain "Subnet created.\n" 
+	And the file "undo.sh.1" should contain "zaws subnet delete --region us-west-1 --cidrblock my_cidr_block --vpcid my_vpc_id $XTRA_OPTS"
+
+

data/feature/subnet/view.feature

@@ -0,0 +1,24 @@
+Feature: Subnet
+  Subnets should be createable once in a specific availability zone.
+    
+  Scenario: Get subnets in json 
+    Given I double `aws --output json --region us-west-1 ec2 describe-subnets` with "< AWS Subnet Json Output >" 
+    When I run `bundle exec zaws subnet view --region us-west-1 --viewtype json`
+    Then the stdout should contain "< AWS Subnet Json Output >\n" 
+
+  Scenario: Get subnets in table form by default 
+    Given I double `aws --output table --region us-west-1 ec2 describe-subnets` with "< AWS Subnet Table Output >" 
+    When I run `bundle exec zaws subnet view --region us-west-1`
+    Then the stdout should contain "< AWS Subnet Table Output >\n" 
+
+  Scenario: Get subnets in table form when specified 
+    Given I double `aws --output table --region us-west-1 ec2 describe-subnets` with "< AWS Subnet Table Output >" 
+    When I run `bundle exec zaws subnet view --region us-west-1 --viewtype table`
+    Then the output should contain "< AWS Subnet Table Output >\n" 
+
+  Scenario: Get subnets from specified vpcid
+    Given I double `aws --output table --region us-west-1 ec2 describe-subnets --filter 'Name=vpc-id,Values=my_vpc_id'` with "< AWS Subnet Table Output >" 
+    When I run `bundle exec zaws subnet view --region us-west-1 --vpcid my_vpc_id`
+    Then the output should contain "< AWS Subnet Table Output >\n" 
+
+

data/feature/support/env.rb

@@ -0,0 +1,14 @@
+require 'coveralls'
+Coveralls.wear_merged!
+SimpleCov.merge_timeout 3600
+
+require 'aruba/cucumber'
+require 'aruba-doubles/cucumber'
+
+Before do
+  @aruba_timeout_seconds = 8
+  # This is using the aruba helper, 
+  # cf. https://github.com/cucumber/aruba/blob/master/lib/aruba/api.rb
+  set_env('COVERAGE', 'true')
+  # This could also be accomplished with the "I set the environment variables to:" step
+end

data/feature/version.feature

@@ -0,0 +1,6 @@
+Feature: Version 
+  Should allow for getting the version of zaws.
+    
+  Scenario: Get zaws version  
+    When I run `bundle exec zaws version`
+    Then the output should contain "zaws version 0.0.1"

data/lib/zaws/aws.rb

@@ -0,0 +1,26 @@
+
+module ZAWS
+  class AWS 
+
+	def initialize(shellout)
+	  @shellout=shellout
+	end
+
+	def ec2
+	  @_ec2 ||= (ZAWS::EC2.new(@shellout,self))
+	  return @_ec2
+	end
+	
+	def elb 
+	  @_elb ||= (ZAWS::ELB.new(@shellout,self))
+	  return @_elb
+	end
+	
+	def route53
+	  @_route53 ||= (ZAWS::Route53.new(@shellout,self))
+	  return @_route53
+	end
+
+  end
+end
+

data/lib/zaws/command/compute.rb

@@ -0,0 +1,100 @@
+require 'thor'
+
+module ZAWS
+  module Command
+	class Compute < Thor 
+	  class_option :region, :type => :string, :desc => "AWS Region", :banner => "<region>",  :aliases => :r, :required => true
+	  class_option :verbose, :type => :boolean, :desc => "Verbose outout", :aliases => :d, :default => false
+
+	  desc "view","View compute instances."
+	  option :viewtype, :type => :string, :desc => "View type, json or table", :banner => "<viewtype>", :aliases => :w, :default => "table"
+	  option :vpcid, :type => :string, :desc => "AWS VPC id", :banner => "<vpcid>",  :aliases => :v, :default => nil
+	  def view
+		aws=(ZAWS::AWS.new(ZAWS::Helper::Shell.new))
+		aws.ec2.compute.view(options[:region],options[:viewtype],$stdout,(options[:verbose]?$stdout:nil),options[:vpcid])
+	  end
+
+	  desc "view_images","View images, by default the images are owned by self (your account))."
+	  option :viewtype, :type => :string, :desc => "View type, json or table", :banner => "<viewtype>", :aliases => :w, :default => "table"
+      option :owner, :type => :string, :desc => "filter by owner of the images", :banner => "<owner>", :aliases => :o, :default => "self"
+      option :imageid, :type => :string, :desc => "filter by owner of the images", :banner => "<imageid>", :aliases => :i, :default => nil 
+	  def view_images
+		aws=(ZAWS::AWS.new(ZAWS::Helper::Shell.new))
+		aws.ec2.compute.view_images(options[:region],options[:viewtype],options[:owner],options[:imageid],$stdout,(options[:verbose]?$stdout:nil))
+	  end
+
+      desc "exists_by_external_id EXTERNAL_ID","Determine if an instance exists by the instance's EXTERNAL_ID."
+	  option :vpcid, :type => :string, :desc => "AWS VPC id", :banner => "<vpcid>",  :aliases => :v, :default => nil
+	  def exists_by_external_id(externalid) 
+		aws=(ZAWS::AWS.new(ZAWS::Helper::Shell.new))
+		val,instance_id,sgroups=aws.ec2.compute.exists(options[:region],$stdout,(options[:verbose]?$stdout:nil),options[:vpcid],externalid)
+		return val
+	  end
+
+      desc "declare EXTERNAL_ID IMAGE TYPE ROOT_SIZE ZONE KEY SECURITY_GROUP","Declare a compute instance."
+      option :vpcid, :type => :string, :desc => "AWS VPC id", :banner => "<vpcid>",  :aliases => :v, :default => nil
+      option :privateip, :type => :array, :desc => "array of private ip addresses, in vpc, each given a network interface", :banner => "<privateip>", :aliases => :p, :default => nil
+      option :optimized, :type => :string, :desc => "ebs optimized", :banner => "<optimized>", :aliases => :i, :default => false
+	  option :apiterminate, :type => :string, :desc => "ebs optimized", :banner => "<apiterminate>", :aliases => :a, :default => false
+      option :clienttoken, :type => :string, :desc => "AWS VPC id", :banner => "<clienttoken>",  :aliases => :c, :default => nil
+      option :nagios, :type => :boolean, :desc => "Returns a nagios check result",  :aliases => :n, :default => false
+	  option :undofile, :type => :string, :desc => "File for undo commands", :banner => "<undofile>", :aliases => :f, :default => nil
+      option :nosdcheck, :type => :boolean, :desc => "No source dest check (primarily needed for NAT instances)", :banner => "<nosdcheck>", :aliases => :s, :default => false
+      option :skipruncheck, :type => :boolean, :desc => "Flag to skip the running check during testing.", :banner => "<skipruncheck>", :aliases => :r, :default => false
+      option :volume, :type => :string, :desc => "volume (ex: --volume /dev/sdf)", :banner => "<volume>", :default => false
+      option :volsize, :type => :string, :desc => "volsize", :banner => "<volsize>", :default => false
+	  def declare(externalid,image,owner,type,root,zone,key,sgroup) 
+		aws=(ZAWS::AWS.new(ZAWS::Helper::Shell.new))
+		val=aws.ec2.compute.declare(externalid,image,owner,type,root,zone,key,sgroup,options[:privateip],options[:optimized],options[:apiterminate],options[:clienttoken],options[:region],$stdout,(options[:verbose]?$stdout:nil),options[:vpcid],options[:nagios],options[:undofile],options[:nosdcheck],options[:skipruncheck],options[:volsize],options[:volume])
+		return val
+	  end
+    
+	  desc "delete EXTERNAL_ID","Delete the instance's an instance by EXTERNAL_ID, this only works if api termination is enabled."
+	  option :vpcid, :type => :string, :desc => "AWS VPC id", :banner => "<vpcid>",  :aliases => :v, :default => nil
+	  def delete(externalid) 
+		aws=(ZAWS::AWS.new(ZAWS::Helper::Shell.new))
+		aws.ec2.compute.delete(options[:region],$stdout,(options[:verbose]?$stdout:nil),options[:vpcid],externalid)
+	  end
+
+      desc "exists_security_group_assoc EXTERNAL_ID SECURITY_GROUP","Determine if an instance with an EXTERNAL_ID is associated to a named SECURITY_GROUP."
+	  option :vpcid, :type => :string, :desc => "AWS VPC id", :banner => "<vpcid>",  :aliases => :v, :default => nil
+	  def exists_security_group_assoc(externalid,security_group) 
+		aws=(ZAWS::AWS.new(ZAWS::Helper::Shell.new))
+		val,instancid,sgroupid=aws.ec2.compute.exists_security_group_assoc(options[:region],$stdout,(options[:verbose]?$stdout:nil),options[:vpcid],externalid,security_group)
+	  end
+
+	  desc "assoc_security_group EXTERNAL_ID SECURITY_GROUP","Associate a named SECURITY_GROUP to an instance by the instance's EXTERNAL_ID."
+	  option :vpcid, :type => :string, :desc => "AWS VPC id", :banner => "<vpcid>",  :aliases => :v, :default => nil
+	  def assoc_security_group(externalid,security_group) 
+		aws=(ZAWS::AWS.new(ZAWS::Helper::Shell.new))
+		aws.ec2.compute.assoc_security_group(options[:region],$stdout,(options[:verbose]?$stdout:nil),options[:vpcid],externalid,security_group)
+	  end
+
+      desc "exists_secondary_ip EXTERNAL_ID IP","Determine if a secondary IP exists by the instance's EXTERNAL_ID."
+	  option :vpcid, :type => :string, :desc => "AWS VPC id", :banner => "<vpcid>",  :aliases => :v, :default => nil
+	  def exists_secondary_ip(externalid,ip) 
+		aws=(ZAWS::AWS.new(ZAWS::Helper::Shell.new))
+		val,compute_exists,netid=aws.ec2.compute.exists_secondary_ip(options[:region],ip,$stdout,(options[:verbose]?$stdout:nil),options[:vpcid],externalid)
+	  end
+
+	  desc "declare_secondary_ip EXTERNAL_ID IP","Declare secondary IP for instance by the instance's EXTERNAL_ID."
+	  option :vpcid, :type => :string, :desc => "AWS VPC id", :banner => "<vpcid>",  :aliases => :v, :default => nil
+      option :nagios, :type => :boolean, :desc => "Returns a nagios check result",  :aliases => :n, :default => false
+	  option :undofile, :type => :string, :desc => "File for undo commands", :banner => "<undofile>", :aliases => :f, :default => nil
+	  def declare_secondary_ip(externalid,ip) 
+		aws=(ZAWS::AWS.new(ZAWS::Helper::Shell.new))
+		aws.ec2.compute.declare_secondary_ip(options[:region],ip,$stdout,(options[:verbose]?$stdout:nil),options[:vpcid],externalid,options[:nagios],options[:undofile])
+	  end
+
+	  desc "delete_secondary_ip EXTERNAL_ID IP","Delete secondary IP for instance by the instance's EXTERNAL_ID."
+	  option :vpcid, :type => :string, :desc => "AWS VPC id", :banner => "<vpcid>",  :aliases => :v, :default => nil
+	  def delete_secondary_ip(externalid,ip) 
+		aws=(ZAWS::AWS.new(ZAWS::Helper::Shell.new))
+		aws.ec2.compute.delete_secondary_ip(options[:region],ip,$stdout,(options[:verbose]?$stdout:nil),options[:vpcid],externalid)
+	  end
+
+	end
+  end
+end
+
+