- Add an SSL cipher list policy pindown: implicitly (no YAML entry needed) or explicitly (with YAML entry)
- Improve message content when cfn_create raises an exception and fails.
- Cleanup SSL certificates when cfn_create raises an exception and fails.
- Make default S3 permissions more restrictive. Everyone can get object.
- Deprecate the ec2.tags.Env tag and warn about its use
- Fix bug where certificates were not being deleted on calls to upload or delete due to a broken method call to get_remote_certificates
- Make it possible to create multiple stacks with the same app and env.
- Enable connection draining on ELBs
- Add IAM permissions so an instance can register/deregister itself from ELB.
- Add custom ELB healthchecks so you can point an ELB at a URL (not just a port)
- Replace internals with Troposphere - no more JSON loading and deep dict munging. This should be a transparent change to consumers of this module
-
Fix dist to not include tests/ folder
This would cause problems for downstream modules (i.e. bootstrap-salt) as they would then try to run our tests, but wouldn't have half the needed test modules.
First release to PyPi
- Add RDS encryption support
- Bump release version (broken release)
- Fixed the internal ELB bug
- Fixed the RDS storage-type bug
- Extract all the salt specific code into bootstrap-salt which lives in a seperate repo. We have tested this but it might break a few things for some projects. Sry BREAKING CHANGE
- Add include functionality for including extra cloudformation json files.
- Add ability to use cross account IAM roles when authenticating to AWS.
- Fix rsync missing passwords yaml from salt-pillar
- Make bootstrap process pull the bootstrap-cfn repo
- Document salt config variables.
- Move timeout logic from fabric file into utility decorator.
- Add wait_for_ssh function to the bootstrap commands. This ensures ssh is up before we bootstrap.
- Rename fabfile to fab_tasks to make it easier to import in other projects.
- Move bootstrap script execution to fabric tasks.
- Fix bug in wait_for_ssh when no instances are running.
- Add conditional statement in fabfile to check for ssl cert on roll back before trying to delete it.
- Refactor fab_tasks get_config method to not return every config item. Also PEP8 fixes and removing unused functions.
- Change security group input to dictionary so we can create multiple groups that reference each other.
- Include cloudformation config in salt pillar.
- Add SGs for ELBs and default open on 80/443
- Build CloudFormation stack for a simple Web Application with a single ELB, EC2 instances and RDS