# Hello, Fargate

## VPC

For fargate, we build a vpc that provides the networking context used to tie together the compute
resources used for the Fargate cluster, as well as to security context around network access and flows,
load balancer presence, etc.

For this project, we want to run containers that do not have a public address tied to them, with their images
pulled from docker hub. The combination of these two factors means they need to run in private subnets that can
access the external internet via a NAT gateway.

We also want a load balancer that can distribute requests from the outside to container ports. This means
we need a load balancer associated with our public subnets.

In [None]:
stack_prefix = 'fg1-'

In [None]:
cf_bucket = 'ds-deploy-us-east-1'
template_name = 'vpc.yml'
vpc_stack = stack_prefix + 'vpc'

In [None]:
%%bash -s "$template_name" "$cf_bucket"
echo $2
ls $1
aws s3 cp ./$1 s3://$2

In [None]:
import boto3

client = boto3.client('cloudformation')

In [None]:
def form_s3_url_prefix(region):
    prefix = ''
    if region == 'us-east-1':
        prefix = 'https://s3.amazonaws.com'
    else:
        prefix = 'https://s3-' + region + '.amazonaws.com'
    return prefix

In [None]:
import os
region = os.environ['AWS_DEFAULT_REGION']
bucketRoot = form_s3_url_prefix(region) + '/' + cf_bucket
print bucketRoot

In [None]:
response = client.create_stack(
    StackName=vpc_stack,
    TemplateURL=bucketRoot + '/' + template_name
)

print response

In [None]:
# Wait for it...
waiter = client.get_waiter('stack_create_complete')
waiter.wait(
    StackName=vpc_stack
)

print 'stack created'

In [None]:
# Extract outputs needed for the next stack component
response = client.describe_stacks(
    StackName=vpc_stack
)

outputs = response['Stacks'][0]['Outputs']
print outputs

private_subnet_1 = [o for o in outputs if o['OutputKey'] == 'PrivateSubnet1'][0]['OutputValue']
private_subnet_2 = [o for o in outputs if o['OutputKey'] == 'PrivateSubnet2'][0]['OutputValue']
lb_ingress_sg = [o for o in outputs if o['OutputKey'] == 'LBIngressSecurityGroup'][0]['OutputValue']
web_ingress_sg = [o for o in outputs if o['OutputKey'] == 'WebIngressSecurityGroup'][0]['OutputValue']
vpc_id = [o for o in outputs if o['OutputKey'] == 'VpcId'][0]['OutputValue']

print private_subnet_1
print private_subnet_2
print lb_ingress_sg
print web_ingress_sg
print vpc_id