# **AWS DATA WAREHOUSE INTERFACE**

User will run code cells in this notebook to set the state of the data warehouse
- PREREQUISITE: IMPORT LIBRARIES
- COLLECT CLUSTER CONFIGURATION
- CONFIGURE ROLE AND POLICY
- CREATE REDSHIFT CLUSTER
- CONFIGURE REDSHIFT CLUSTER
- GET CLUSTER DESCRIPTION
- DELETE REDSHIFT CLUSTER

### **PREREQUISITE: IMPORT LIBRARIES**

In [2]:
import boto3
import configparser
import inspect
import json
import pandas as pd
import os
import sys

#currentdir = os.path.dirname(
#    os.path.abspath(
#        inspect.getfile(
#            inspect.currentframe()
#        )
#    )
#)
#parentdir = os.path.dirname(currentdir)
#sys.path.insert(0, parentdir)
#print(currentdir)

Reusable Functions:

In [3]:
def prettyRedshiftProps(props):
    pd.set_option('display.max_colwidth', -1)
    keysToShow = ["ClusterIdentifier", "NodeType", "ClusterStatus", "MasterUsername", "DBName", "Endpoint", "NumberOfNodes", 'VpcId']
    x = [(k, v) for k,v in props.items() if k in keysToShow]
    return pd.DataFrame(data=x, columns=["Key", "Value"])

### **COLLECT CLUSTER CONFIGURATION**

In [4]:
config = configparser.ConfigParser()
config.read('dwh.cfg')

REGION = config.get('AWS', 'REGION')
KEY = config.get('AWS', 'KEY')
SECRET = config.get('AWS', 'SECRET')
CLUSTER_TYPE = config.get('REDSHIFT', 'DWH_CLUSTER_TYPE')
NUM_NODES = config.get('REDSHIFT', 'DWH_NUM_NODES')
NODE_TYPE = config.get('REDSHIFT', 'DWH_NODE_TYPE')
CLUSTER_ID = config.get('REDSHIFT', 'DWH_CLUSTER_IDENTIFIER')
DB_NAME = config.get('REDSHIFT', 'DWH_DB')
USER = config.get('REDSHIFT', 'DWH_DB_USER')
PW = config.get('REDSHIFT', 'DWH_DB_PASSWORD')
PORT = config.get('REDSHIFT', 'DWH_PORT')
IAM_ROLE = config.get('REDSHIFT', 'DWH_IAM_ROLE_NAME')
IAM_ROLE_ARN = config.get('IAM_ROLE', 'ARN')

### **CONFIGURE ROLE AND POLICY**

In [4]:
iam = boto3.client(
    'iam',
    aws_access_key_id=KEY,
    aws_secret_access_key=SECRET,
    region_name=REGION
)

try:
    print("1.1 Creating a new IAM Role") 
    dwhRole = iam.create_role(
        Path='/',
        RoleName=IAM_ROLE,
        Description = "Allows Redshift clusters to call AWS services on your behalf.",
        AssumeRolePolicyDocument=json.dumps(
            {
                'Statement': [
                    {
                        'Action': 'sts:AssumeRole',
                        'Effect': 'Allow',
                        'Principal': 
                        {
                            'Service': 'redshift.amazonaws.com'
                        }
                    }
                ],
                'Version': '2012-10-17'
            }
        )
    )    
except Exception as e:
    print(e)

iam.attach_role_policy(
    RoleName=IAM_ROLE,
    PolicyArn="arn:aws:iam::aws:policy/AmazonS3ReadOnlyAccess"
)['ResponseMetadata']['HTTPStatusCode']

#s3 list bucket
#iam.attach_role_policy(
#    RoleName=IAM_ROLE,
#    PolicyArn=""
#)['ResponseMetadata']['HTTPStatusCode']

#s3 get object
#iam.attach_role_policy(
#    RoleName=IAM_ROLE,
#    PolicyArn=""
#)['ResponseMetadata']['HTTPStatusCode']

roleArn = iam.get_role(RoleName=IAM_ROLE)['Role']['Arn']

1.1 Creating a new IAM Role
An error occurred (EntityAlreadyExists) when calling the CreateRole operation: Role with name dwhRole already exists.


### **CREATE REDSHIFT CLUSTER**

In [5]:
redshift_client = boto3.client(
    'redshift',
    region_name=REGION,
    aws_access_key_id=KEY,
    aws_secret_access_key=SECRET
)

try:
    redshift_client.create_cluster(
        ClusterType=CLUSTER_TYPE,
        NodeType=NODE_TYPE,
        NumberOfNodes=int(NUM_NODES),
        DBName=DB_NAME,
        ClusterIdentifier=CLUSTER_ID,
        MasterUsername=USER,
        MasterUserPassword=PW,
        IamRoles=[roleArn]
    )
    print(redshift_client.describe_clusters(ClusterIdentifier=CLUSTER_ID)['Clusters'][0])
except Exception as error:
    print(error)

{'ClusterIdentifier': 'dwhcluster', 'NodeType': 'dc2.large', 'ClusterStatus': 'creating', 'ClusterAvailabilityStatus': 'Modifying', 'MasterUsername': 'dwhuser', 'DBName': 'dwh', 'AutomatedSnapshotRetentionPeriod': 1, 'ManualSnapshotRetentionPeriod': -1, 'ClusterSecurityGroups': [], 'VpcSecurityGroups': [{'VpcSecurityGroupId': 'sg-043cfe2da1c6f0e98', 'Status': 'active'}], 'ClusterParameterGroups': [{'ParameterGroupName': 'default.redshift-1.0', 'ParameterApplyStatus': 'in-sync'}], 'ClusterSubnetGroupName': 'default', 'VpcId': 'vpc-016855a57d3714a79', 'PreferredMaintenanceWindow': 'mon:07:30-mon:08:00', 'PendingModifiedValues': {'MasterUserPassword': '****'}, 'ClusterVersion': '1.0', 'AllowVersionUpgrade': True, 'NumberOfNodes': 4, 'PubliclyAccessible': True, 'Encrypted': False, 'ClusterNodes': [], 'Tags': [], 'EnhancedVpcRouting': False, 'IamRoles': [{'IamRoleArn': 'arn:aws:iam::946841798065:role/dwhRole', 'ApplyStatus': 'adding'}], 'MaintenanceTrackName': 'current', 'DeferredMaintenanc

In [None]:
#session = boto3.Session()
#rs_client = session.client('redshift')
#cluster_list = redshift_client.describe_clusters()

### **GET CLUSTER DESCRIPTION**

This will be called repeatedly in this notebook. It should be idempotent.

In [6]:
myClusterProps = redshift_client.describe_clusters(ClusterIdentifier=CLUSTER_ID)['Clusters'][0]
prettyRedshiftProps(myClusterProps)

ClusterNotFoundFault: An error occurred (ClusterNotFound) when calling the DescribeClusters operation: Cluster dwhcluster not found.

In [9]:
DWH_ENDPOINT = myClusterProps['Endpoint']['Address']
DWH_ROLE_ARN = myClusterProps['IamRoles'][0]['IamRoleArn']
print("DWH_ENDPOINT :: ", DWH_ENDPOINT)
print("DWH_ROLE_ARN :: ", DWH_ROLE_ARN)

DWH_ENDPOINT ::  dwhcluster.c80q3obhfigh.us-west-2.redshift.amazonaws.com
DWH_ROLE_ARN ::  arn:aws:iam::946841798065:role/dwhRole


In [10]:
config.set('IAM_ROLE', 'ARN', DWH_ROLE_ARN)
print(config.get('IAM_ROLE', 'ARN'))
with open('dwh.cfg', 'w') as configfile:
    config.write(configfile)

arn:aws:iam::946841798065:role/dwhRole


### **CONFIGURE REDSHIFT CLUSTER**

In [11]:
ec2 = boto3.resource(
    'ec2',
    region_name=REGION,
    aws_access_key_id=KEY,
    aws_secret_access_key=SECRET
)

cluster_props = redshift_client.describe_clusters(ClusterIdentifier=CLUSTER_ID)['Clusters'][0]
vpc = ec2.Vpc(id=cluster_props['VpcId'])
defaultSg = list(vpc.security_groups.all())[0]
defaultSg.authorize_ingress(
    GroupName=defaultSg.group_name,
    CidrIp='0.0.0.0/0',
    IpProtocol='TCP',
    FromPort=int(PORT),
    ToPort=int(PORT)
)

ClientError: An error occurred (InvalidPermission.Duplicate) when calling the AuthorizeSecurityGroupIngress operation: the specified rule "peer: 0.0.0.0/0, TCP, from port: 5439, to port: 5439, ALLOW" already exists

### **INSPECT REDSHIFT DATABASE**

In [13]:
import psycopg2

HOST = redshift_client.describe_clusters(ClusterIdentifier=CLUSTER_ID)[
        'Clusters'][0]['Endpoint']['Address']
conn = psycopg2.connect(f"host={HOST} dbname={DB_NAME} user={USER} password={PW} port={PORT}")
cur = conn.cursor()
q = """
SELECT DISTINCT tablename
FROM PG_TABLE_DEF
WHERE schemaname='public';
"""
cur.execute(q)
print(cur.fetchall())
#pd.DataFrame(data = cur.fetchall)
conn.close()

[('artists',), ('songplays',), ('songs',), ('staging_events',), ('staging_songs',), ('time',), ('users',)]


In [14]:
%load_ext sql

In [15]:
conn_string="postgresql://{}:{}@{}:{}/{}".format(USER, PW, DWH_ENDPOINT, PORT, DB_NAME)
%sql $conn_string

In [18]:
%sql SELECT * FROM staging_events LIMIT 5

 * postgresql://dwhuser:***@dwhcluster.c80q3obhfigh.us-west-2.redshift.amazonaws.com:5439/dwh
5 rows affected.


artist,auth,firstname,gender,iteminsession,lastname,lenth,level,location,method,page,registration,sessionid,song,status,ts,useragent,userid
A Fine Frenzy,Logged In,Anabelle,F,0,Simpson,267,free,"Philadelphia-Camden-Wilmington, PA-NJ-DE-MD",PUT,NextSong,1541044398796,256,Almost Lover (Album Version),200,1541377992796,"""Mozilla/5.0 (Macintosh; Intel Mac OS X 10_9_4) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/36.0.1985.125 Safari/537.36""",69
Nirvana,Logged In,Aleena,F,0,Kirby,214,paid,"Waterloo-Cedar Falls, IA",PUT,NextSong,1541022995796,237,Serve The Servants,200,1541381242796,Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:31.0) Gecko/20100101 Firefox/31.0,44
Television,Logged In,Aleena,F,1,Kirby,238,paid,"Waterloo-Cedar Falls, IA",PUT,NextSong,1541022995796,237,See No Evil (Remastered LP Version),200,1541381456796,Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:31.0) Gecko/20100101 Firefox/31.0,44
JOHN COLTRANE,Logged In,Aleena,F,2,Kirby,346,paid,"Waterloo-Cedar Falls, IA",PUT,NextSong,1541022995796,237,Blues To Bechet (LP Version),200,1541381694796,Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:31.0) Gecko/20100101 Firefox/31.0,44
NOFX,Logged In,Aleena,F,3,Kirby,80,paid,"Waterloo-Cedar Falls, IA",PUT,NextSong,1541022995796,237,It's My Job To Keep Punk Rock Elite,200,1541382040796,Mozilla/5.0 (Macintosh; Intel Mac OS X 10.9; rv:31.0) Gecko/20100101 Firefox/31.0,44


In [19]:
%sql SELECT * FROM staging_songs LIMIT 5

 * postgresql://dwhuser:***@dwhcluster.c80q3obhfigh.us-west-2.redshift.amazonaws.com:5439/dwh
5 rows affected.


num_songs,artist_id,artist_latitude,artist_longitude,artist_location,artist_name,song_id,title,duration,year
1,AR73AIO1187B9AD57B,37.0,-122.0,"San Francisco, CA",Western Addiction,SOQPWCR12A6D4FB2A3,A Poor Recipe For Civic Cohesion,118,2005
1,AR1Y2PT1187FB5B9CE,27.0,-82.0,Brandon,John Wesley,SOLLHMX12AB01846DC,The Emperor Falls,484,0
1,ARR6LWJ1187FB44C8B,,,"Athens, GA",R.E.M.,SOLJCCO12A6701F987,Fall On Me (Live),203,1995
1,ARBVASN1187B9890CB,,,"Chicago, IL",Lucky Boys Confusion,SOZQOSV12AB018CDFC,Do You Miss Me (Killians) (LP Version),169,2001
1,ARCVOFZ1187FB58074,,,,Arisen Flame,SOUBASN12AC468DB23,Income,443,0


In [None]:
%sql SELECT * FROM stl_load_errors

### **DELETE REDSHIFT CLUSTER**

The next cell will delete the cluster. Make sure to run the cell to get cluster description after deleting the cluster to confirm its deletion.

In [20]:
try:
    redshift_client.delete_cluster(ClusterIdentifier=CLUSTER_ID, SkipFinalClusterSnapshot=True)
except Exception as error:
    print(error)

Clean up resources

In [None]:
iam.detach_role_policy(RoleName=IAM_ROLE, PolicyArn="arn:aws:iam::aws:policy/AmazonS3ReadOnlyAccess")
iam.delete_role(RoleName=IAM_ROLE)