In [27]:
import boto3
import configparser
import json
import pandas as pd

###    Load DWH params from config file

In [28]:
config= configparser.ConfigParser()
config.read_file(open('dwh.cfg'))

KEY                    = config.get('AWS','KEY')
SECRET                 = config.get('AWS','SECRET')
DWH_IAM_ROLE_NAME      = config.get('DWH','DWH_IAM_ROLE_NAME')
DWH_CLUSTER_TYPE       = config.get("DWH","DWH_CLUSTER_TYPE")
DWH_NUM_NODES          = config.get("DWH","DWH_NUM_NODES")
DWH_NODE_TYPE          = config.get("DWH","DWH_NODE_TYPE")
DWH_CLUSTER_IDENTIFIER = config.get("DWH","DWH_CLUSTER_IDENTIFIER")
DWH_DB                 = config.get("DWH","DWH_DB")
DWH_DB_USER            = config.get("DWH","DWH_DB_USER")
DWH_DB_PASSWORD        = config.get("DWH","DWH_DB_PASSWORD")
DWH_PORT               = config.get("DWH","DWH_DB_PORT")

###  Create clients for IAM, EC2, S3 and Redshift

In [29]:
ec2 = boto3.resource('ec2',
                       region_name="us-east-1",
                       aws_access_key_id=KEY,
                       aws_secret_access_key=SECRET
                    )

iam = boto3.client('iam',aws_access_key_id=KEY,
                     aws_secret_access_key=SECRET,
                     region_name='us-east-1'
                  )

redshift = boto3.client('redshift',
                       region_name='us-east-1',
                       aws_access_key_id=KEY,
                       aws_secret_access_key=SECRET
                       )

### Step 1: Create IAM role

In [30]:
    try:
        print("1.1 Creating a new IAM Role") 
        dwhRole = iam.create_role(
           Path='/',
           RoleName=DWH_IAM_ROLE_NAME,
           Description = "Allows Redshift clusters to call AWS services on your behalf.",
           AssumeRolePolicyDocument=json.dumps(
              {'Statement': [{'Action': 'sts:AssumeRole',
               'Effect': 'Allow',
               'Principal': {'Service': 'redshift.amazonaws.com'}}],
             'Version': '2012-10-17'})
        )    
    except Exception as e:
        print(e)
        
    print("1.2 Attaching Policy")

    iam.attach_role_policy(RoleName=DWH_IAM_ROLE_NAME,
                       PolicyArn="arn:aws:iam::aws:policy/AmazonS3ReadOnlyAccess"
                      )['ResponseMetadata']['HTTPStatusCode']

    print("1.3 Get the IAM role ARN")
    roleArn = iam.get_role(RoleName=DWH_IAM_ROLE_NAME)['Role']['Arn']
    print(roleArn)

1.1 Creating a new IAM Role
1.2 Attaching Policy
1.3 Get the IAM role ARN
arn:aws:iam::395323141793:role/dwhRole


### Step  2: Create Redshift cluster

In [31]:
    roleArn = iam.get_role(RoleName=DWH_IAM_ROLE_NAME)['Role']['Arn']
    try:
        response = redshift.create_cluster(        
            #HW
            ClusterType=DWH_CLUSTER_TYPE,
            NodeType=DWH_NODE_TYPE,
            NumberOfNodes=int(DWH_NUM_NODES),
            #Identifiers & Credentials
            DBName=DWH_DB,
            ClusterIdentifier=DWH_CLUSTER_IDENTIFIER,
            MasterUsername=DWH_DB_USER,
            MasterUserPassword=DWH_DB_PASSWORD,
            #Roles (for s3 access)
            IamRoles=[roleArn]  
        )
    except Exception as e:
        print(e)
        

 ### Step 3: Check the status of the cluster

 Run the below cell several times untill the cluster status is available.

In [34]:
def prettyRedshiftProps(props):
    pd.set_option('display.max_colwidth',100)
    keysToShow = ["ClusterIdentifier", "NodeType", "ClusterStatus", "MasterUsername", "DBName", "Endpoint", "NumberOfNodes", 'VpcId']
    x = [(k, v) for k,v in props.items() if k in keysToShow]
    return pd.DataFrame(data=x, columns=["Key", "Value"])

myClusterProps = redshift.describe_clusters(ClusterIdentifier=DWH_CLUSTER_IDENTIFIER)['Clusters'][0]
prettyRedshiftProps(myClusterProps)

Unnamed: 0,Key,Value
0,ClusterIdentifier,dwhcluster
1,NodeType,dc2.large
2,ClusterStatus,available
3,MasterUsername,dwhuser
4,DBName,dwh
5,Endpoint,"{'Address': 'dwhcluster.cw9n54dgqhi2.us-east-1.redshift.amazonaws.com', 'Port': 5439}"
6,VpcId,vpc-07b7111158de6d9fd
7,NumberOfNodes,8


#### Step 3.1 : Extract the cluster endpoint 

In [35]:
DWH_ENDPOINT = myClusterProps['Endpoint']['Address']
print("DWH_ENDPOINT :: ", DWH_ENDPOINT)

DWH_ENDPOINT ::  dwhcluster.cw9n54dgqhi2.us-east-1.redshift.amazonaws.com


### Step 4: Make sure cluster can be connected

In [16]:
%load_ext sql

In [17]:
conn_string="postgresql://{}:{}@{}:{}/{}".format(DWH_DB_USER, DWH_DB_PASSWORD, DWH_ENDPOINT, DWH_PORT,DWH_DB)
print(conn_string)
%sql $conn_string

postgresql://dwhuser:Passw0rd@dwhcluster.cw9n54dgqhi2.us-east-1.redshift.amazonaws.com:5439/dwh


'Connected: dwhuser@dwh'

### Step 5: Cleanup the AWS resources

#### Step 5.1: Delete the Redshift cluster

In [36]:
# run to delete the created resources
redshift.delete_cluster( ClusterIdentifier=DWH_CLUSTER_IDENTIFIER,  SkipFinalClusterSnapshot=True)


{'Cluster': {'ClusterIdentifier': 'dwhcluster',
  'NodeType': 'dc2.large',
  'ClusterStatus': 'deleting',
  'ClusterAvailabilityStatus': 'Modifying',
  'MasterUsername': 'dwhuser',
  'DBName': 'dwh',
  'Endpoint': {'Address': 'dwhcluster.cw9n54dgqhi2.us-east-1.redshift.amazonaws.com',
   'Port': 5439},
  'ClusterCreateTime': datetime.datetime(2023, 10, 25, 15, 22, 55, 141000, tzinfo=tzutc()),
  'AutomatedSnapshotRetentionPeriod': 1,
  'ManualSnapshotRetentionPeriod': -1,
  'ClusterSecurityGroups': [],
  'VpcSecurityGroups': [{'VpcSecurityGroupId': 'sg-0a6826c9bd4920520',
    'Status': 'active'}],
  'ClusterParameterGroups': [{'ParameterGroupName': 'default.redshift-1.0',
    'ParameterApplyStatus': 'in-sync'}],
  'ClusterSubnetGroupName': 'default',
  'VpcId': 'vpc-07b7111158de6d9fd',
  'AvailabilityZone': 'us-east-1e',
  'PreferredMaintenanceWindow': 'tue:06:30-tue:07:00',
  'PendingModifiedValues': {},
  'ClusterVersion': '1.0',
  'AllowVersionUpgrade': True,
  'NumberOfNodes': 8,
  

#### Step 5.2: Execute the below cell several times to check if the cluster status is deleted

In [37]:
myClusterProps = redshift.describe_clusters(ClusterIdentifier=DWH_CLUSTER_IDENTIFIER)['Clusters'][0]
prettyRedshiftProps(myClusterProps)

Unnamed: 0,Key,Value
0,ClusterIdentifier,dwhcluster
1,NodeType,dc2.large
2,ClusterStatus,deleting
3,MasterUsername,dwhuser
4,DBName,dwh
5,Endpoint,"{'Address': 'dwhcluster.cw9n54dgqhi2.us-east-1.redshift.amazonaws.com', 'Port': 5439}"
6,VpcId,vpc-07b7111158de6d9fd
7,NumberOfNodes,8


#### Step 5.3: Delete the IAM Role 

In [38]:
iam.detach_role_policy(RoleName=DWH_IAM_ROLE_NAME, PolicyArn="arn:aws:iam::aws:policy/AmazonS3ReadOnlyAccess")
iam.delete_role(RoleName=DWH_IAM_ROLE_NAME)

{'ResponseMetadata': {'RequestId': '400ffe2d-0350-424c-ba64-d4db765c0320',
  'HTTPStatusCode': 200,
  'HTTPHeaders': {'x-amzn-requestid': '400ffe2d-0350-424c-ba64-d4db765c0320',
   'content-type': 'text/xml',
   'content-length': '200',
   'date': 'Wed, 25 Oct 2023 15:23:45 GMT'},
  'RetryAttempts': 0}}