## This will delete all resources created in the lab
Use with caution

In [None]:
import boto3
import time
import botocore

# Initialize AWS clients
ec2 = boto3.client('ec2')
lambda_client = boto3.client('lambda')
apigateway = boto3.client('apigateway')
iam = boto3.client('iam')

def wait_for_deletion(resource_type, resource_id, check_function):
    print(f"Confirming deletion of {resource_type} {resource_id}...")
    max_attempts = 30
    for _ in range(max_attempts):
        try:
            if not check_function(resource_id):
                print(f"{resource_type} {resource_id} has been deleted.")
                return True
        except botocore.exceptions.ClientError as e:
            if e.response['Error']['Code'] == 'InvalidVpcID.NotFound':
                print(f"{resource_type} {resource_id} has been deleted.")
                return True
        print(f"{resource_type} {resource_id} is still being deleted. Waiting...")
        time.sleep(10)
    print(f"Timeout waiting for {resource_type} {resource_id} to be deleted.")
    return False


def delete_ec2_instances():
    print("Deleting EC2 instances...")
    response = ec2.describe_instances(
        Filters=[{'Name': 'instance-state-name', 'Values': ['pending', 'running', 'stopping', 'stopped']}]
    )
    instance_ids = [instance['InstanceId'] for reservation in response['Reservations'] for instance in reservation['Instances']]
    if instance_ids:
        ec2.terminate_instances(InstanceIds=instance_ids)
        waiter = ec2.get_waiter('instance_terminated')
        waiter.wait(InstanceIds=instance_ids)
    print("EC2 instances deleted.")

def delete_security_groups():
    print("Deleting security groups...")
    response = ec2.describe_security_groups()
    for sg in response['SecurityGroups']:
        if sg['GroupName'] != 'default':
            try:
                ec2.delete_security_group(GroupId=sg['GroupId'])
                print(f"Security group {sg['GroupId']} deleted.")
            except botocore.exceptions.ClientError as e:
                print(f"Error deleting security group {sg['GroupId']}: {e}")
    print("Security group deletion attempted.")

def delete_nat_gateway():
    print("Deleting NAT Gateways...")
    response = ec2.describe_nat_gateways()
    for nat_gateway in response['NatGateways']:
        ec2.delete_nat_gateway(NatGatewayId=nat_gateway['NatGatewayId'])
        wait_for_deletion('NAT Gateway', nat_gateway['NatGatewayId'], 
                          lambda id: ec2.describe_nat_gateways(NatGatewayIds=[id])['NatGateways'][0]['State'] != 'deleted')
    
    # Release Elastic IPs
    response = ec2.describe_addresses()
    for eip in response['Addresses']:
        if 'AssociationId' not in eip:
            ec2.release_address(AllocationId=eip['AllocationId'])
    print("NAT Gateways deleted and Elastic IPs released.")

def delete_internet_gateway():
    print("Deleting Internet Gateways...")
    response = ec2.describe_internet_gateways()
    for igw in response['InternetGateways']:
        if igw['Attachments']:
            ec2.detach_internet_gateway(InternetGatewayId=igw['InternetGatewayId'], VpcId=igw['Attachments'][0]['VpcId'])
        ec2.delete_internet_gateway(InternetGatewayId=igw['InternetGatewayId'])
    print("Internet Gateways deleted.")

def delete_subnets():
    print("Deleting subnets...")
    response = ec2.describe_subnets()
    for subnet in response['Subnets']:
        if not subnet['DefaultForAz']:
            ec2.delete_subnet(SubnetId=subnet['SubnetId'])
    print("Subnets deleted.")

def delete_route_tables():
    print("Deleting route tables...")
    response = ec2.describe_route_tables()
    for rt in response['RouteTables']:
        if not rt.get('Associations') or not any(assoc.get('Main') for assoc in rt.get('Associations')):
            ec2.delete_route_table(RouteTableId=rt['RouteTableId'])
    print("Route tables deleted.")

def delete_vpc():
    print("Deleting VPCs...")
    response = ec2.describe_vpcs()
    for vpc in response['Vpcs']:
        if not vpc['IsDefault']:
            try:
                print(f"Attempting to delete VPC {vpc['VpcId']}...")
                ec2.delete_vpc(VpcId=vpc['VpcId'])
                wait_for_deletion('VPC', vpc['VpcId'], 
                                  lambda id: bool(ec2.describe_vpcs(VpcIds=[id])['Vpcs']))
            except botocore.exceptions.ClientError as e:
                if e.response['Error']['Code'] == 'InvalidVpcID.NotFound':
                    print(f"VPC {vpc['VpcId']} has already been deleted.")
                else:
                    print(f"Error deleting VPC {vpc['VpcId']}: {e}")
                    print("Please check and manually delete any remaining resources in this VPC.")
    print("VPC deletion completed.")
    

def delete_lambda_function():
    print("Deleting Lambda functions...")
    lambda_functions = lambda_client.list_functions()
    for function in lambda_functions['Functions']:
        if function['FunctionName'].startswith('IdentityProviderFunction-'):
            lambda_client.delete_function(FunctionName=function['FunctionName'])
    print("Lambda functions deleted.")

def delete_api_gateway():
    print("Deleting API Gateway...")
    apis = apigateway.get_rest_apis()
    for api in apis['items']:
        if api['name'] == 'IdentityProviderApi':
            apigateway.delete_rest_api(restApiId=api['id'])
    print("API Gateway deleted.")

def delete_iam_role():
    print("Deleting IAM roles...")
    roles = iam.list_roles()
    for role in roles['Roles']:
        if role['RoleName'].startswith('LabLambdaExecutionRole-'):
            attached_policies = iam.list_attached_role_policies(RoleName=role['RoleName'])
            for policy in attached_policies['AttachedPolicies']:
                iam.detach_role_policy(RoleName=role['RoleName'], PolicyArn=policy['PolicyArn'])
            iam.delete_role(RoleName=role['RoleName'])
    print("IAM roles deleted.")

def cleanup():
    delete_ec2_instances()
    delete_nat_gateway()
    delete_internet_gateway()
    delete_subnets()
    delete_route_tables()
    delete_security_groups()
    delete_vpc()
    delete_lambda_function()
    delete_api_gateway()
    delete_iam_role()
    print("Cleanup completed.")

# Run the cleanup
cleanup()
