I created these scripts to automate some AWS components that we use. Mostly, these scripts interact with Elastic Beanstalk and S3 and were written to be launched from Jenkins jobs, but they can be launched from anywhere.
We are running a Jenkins service on an EC2 instance with an IAM role. Because of this, we use AWS STS retrieve a temporary access key, secret access key, and session token in order to make boto3 connections to other AWS accounts. You can easily remove this code if that is not needed in your environment. If STS is not needed, you can either modify the code to pass in your own API access keys, or use your aws saved profiles on your machine.
- boto
- boto3
- Python 3
- DeployBeanstalkEnv.py
- This is an older script written in boto instead of boto3. It also depends on certain environment variables to be set instead of looking for passed in arguments. This should be re-written at some point, but it does work. It makes a connection to S3, uploads an application version to a bucket, makes another connection to EB (using Layer1), creates a new application version using the uploaded file, and finally, creates a new EB environment using the newly created application version.
- Example usage:
python DeployBeanstalkEnv.py- BeanstalkHealthBoto.py - Takes in an ARN, beanstalk application name, and beanstalk environment name.
- This script is intended to be used after a new environment has been created. It is recommended to wait 10 minutes after invoking the creation of a new environment before launching this script to allow AWS to do its thing. After making a connection to EB, this will run the describe_environments boto command using the passed in application and environment names. It will specifically look for 'Health' and 'Status' to be 'Green' and 'Ready' respectively. If either of these are not what we are looking for, we will sleep for 20 seconds and try again. If after 10 attempts the environment is not ready, it will exit with an error.
- Example usage:
python BeanstalkHealthBoto.py -a My_EB_App -e test-env-33 -r arn:aws:iam::775678901234:role/MyARN- BeanstalkEnvSwapBoto.py - Takes in an ARN, beanstalk application name, the CNAME for the live website, and the environment name you want to swap with the current live environment.
- This script is intended to be run after BeanstalkHealthBoto.py has been run successfully for an environment so you know that your new environment is green and ready to go. It will call the boto describe_environments command and loop through each active environment in your application looking at each one's CNAME. If the CNAME matches the CNAME that you pass in to the script, then it knows that this is your current live environment. Next, it will run the boto swap_environment_cnames command to swap the live CNAME with the CNAME of the environment that you passed in. If the swap was successful (the response code is checked), then it will exit without an error.
- Example usage:
python BeanstalkEnvSwapBoto.py --cname_search your-eb-url.elasticbeanstalk.com --role_arn arn:aws:iam::775678901234:role/MyARN --swap_dest test-env-33 --app_name My_EB_App- S3Sync.py
- This is one of the first python scripts I wrote and should be re-written at some point, but it does work. It uses boto instead of boto3. It also mixes synching files to a S3 bucket with invalidating a CloudFront cache. These should probably be separated. Also, all of the parameters need to be set as environment variables. This should be changed to be passed in arguments instead - in our use case, Jenkins sets the environment variables needed. The real world usage of this script is to sync files to a S3 bucket that is setup to host a website. It then invalidates the CloudFront cache. Because the boto calls are low level, I couldn't find a single command that does a 'sync' to a bucket, so instead, the script removes the contents of the bucket first and then uploads all files from a given directory. This is to prevents files from remaining if they were deleted from the source directory, but a better way to do this would be to loop through the files in the S3 bucket and check to see if they exist in the same location as the source. If not, it should be deleted, otherwise, it should be replaced. The way this script is written is a bit riskier - if the process fails between emptying the bucket of it's contents and uploading new contents, there is a possibility for downtime or, worse, lost files. As such, this script should be used as an example only to get you started.
- Example usage:
python S3Sync.py