# Accessing AWS

* ARN = Amazon Resource Name
* IAM = Identity and Access Management
  - https://docs.aws.amazon.com/IAM/latest/UserGuide/introduction.html
  - IAM policies grant users or groups permissions. 
* Command Line Interface (CLI) installation:
  - https://docs.aws.amazon.com/cli/latest/userguide/getting-started-install.html
  - Once installed, generate an *access key* on the Management Console (web interface) under Users > Security Credentials > Create Access Key.
  - On the command line, run `aws configure`. Enter the *Access Key ID* and *Secret Access Key*.  
* IAM *roles* grant permissions to AWS services, such as ec2.

# Elastic cloud compute (ec2)
* https://docs.aws.amazon.com/ec2/index.html
* An ec2 instance is a *virtual machine* run by Amazon's hypervisor.
* Resources for comparing instance types: 
  - Overview: https://aws.amazon.com/ec2/instance-types/
  - Compare instances: https://instances.vantage.sh/
* *Security groups* determine who can access an ec2 instance.
* An *IAM* role can be assigned to an ec2 instance. 

* AMI = Amazon Machine Image.
  - https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AMIs.html
  - The AMI includes the operating system, software, and additional customization.
  - Procedure:
    1. Create an ec2 instance. 
    2. Customize the instance.
    3. Create an AMI from the instance (Actions > Images and Templates > Create Image).

    The AMI can now be used as a template to launch new instances. 


* Elastic block storage (EBS) is a storage drive that attaches to an instance and can store data after the instance is terminated.
  - https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AmazonEBS.html
  - An EBS volume must be created in the same availability zone (AZ) as the ec2 instance.
  - By default, the EBS attached to an instance is deleted upon termination.
  - Snapshots provide a backup of an instance at a particular point in time
  - Snapshots can be used to transfer a volume across AZs or Regions.

* An Elastic File System (EFS) is a *shared file system* that can be simultaneously mounted by multiple ec2 instances within and across AZs.
  - https://docs.aws.amazon.com/efs/latest/ug/whatisefs.html
  - An EFS contrasts with an EBS, which attaches to a single ec2 instance. 

# Scalability vs Elasticity
* **Vertical scalability** refers to increasing an instances size or performance.
* **Horizontal scalability** refers to increasing the number of instances.
* **Elasticity** is the ability to automatically scale based on the load. 

* An Elastic Load Balancer is a server that forwards internet traffic to multiple backend ec2 instances. 
* An Auto Scaling Group can add and remove ec2 instances in response to load. 

# Simple Storage Service (s3)

* https://docs.aws.amazon.com/AmazonS3/latest/userguide/Welcome.html
* s3 provides "infinitely scaling storage". 
* The *key* of an s3 *object* is the full object path.
* All objects are stored in *buckets*, which are specific to a region. 
* Object versioning is enabled under a bucket's "Properties". 
* To dynamically replicate the contents of a bucket, including across regions, enable versioning in both the source and target buckets, then define a "Replication Rule" under "Management".
* A "Lifecycle Rule" can be used to automatically change the storage class of s3 objects over time.

# Other Services

* The Elastic Container Registry (ERR) is a private docker image repository.
  - https://docs.aws.amazon.com/AmazonECS/latest/developerguide/Welcome.html
  - The Elastic Container Service (ECS) is used to launch docker containers on instances provisioned by the user. 
  - Fargate is used to automatically provision resources for a docker container based on the required compute and memory. 

* Lambda is a service that runs functions on demand without requiring server management.
  - https://docs.aws.amazon.com/lambda/latest/dg/welcome.html
  - Lambda jobs are time-limited. 

* A "batch" job is one with a definite start and end.
  - https://docs.aws.amazon.com/batch/latest/userguide/what-is-batch.html
  - AWS Batch allows for efficient batch computation.
  - Batch jobs are defined using docker images. 
  - The user submits a batch job. AWS Batch provisions and launches ec2 instances as appropriate. 
  - Batch jobs are not time-limited. 

* CloudFormation allocates resources are specified by a programatic template.
  - https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/Welcome.html
  - The Cloud Developer Kit (CDK) can be used to generate CloudFormation templates using familiar languages, such as Python. 