FarrOut
diff --git a/‎.gitallowed‎
Lines changed: 1 addition & 0 deletions b/‎.gitallowed‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎.gitignore‎
Lines changed: 3 additions & 0 deletions b/‎.gitignore‎
Lines changed: 3 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 60 additions & 1 deletion b/‎README.md‎
Lines changed: 60 additions & 1 deletion
diff --git a/‎app.py‎
Lines changed: 68 additions & 0 deletions b/‎app.py‎
Lines changed: 68 additions & 0 deletions
diff --git a/‎cdk.json‎
Lines changed: 19 additions & 0 deletions b/‎cdk.json‎
Lines changed: 19 additions & 0 deletions
diff --git a/‎cloud_virtual_machine/instance_stack.py‎
Lines changed: 218 additions & 0 deletions b/‎cloud_virtual_machine/instance_stack.py‎
Lines changed: 218 additions & 0 deletions
@@ -0,0 +1 @@
+123456789012
@@ -2,6 +2,8 @@ notes.txt
 
 .idea/
 
+venv/
+
 *.swp
 package-lock.json
 __pycache__
@@ -11,6 +13,7 @@ __pycache__
 *.egg-info
 
 # CDK asset staging directory
+cdk.context.json
 .cdk.staging
 cdk.out
 =======
 
@@ -1,2 +1,61 @@
+# Welcome to your CDK Python project!
+
+This is a blank project for Python development with CDK.
+
+The `cdk.json` file tells the CDK Toolkit how to execute your app.
+
+This project is set up like a standard Python project.  The initialization
+process also creates a virtualenv within this project, stored under the `.venv`
+directory.  To create the virtualenv it assumes that there is a `python3`
+(or `python` for Windows) executable in your path with access to the `venv`
+package. If for any reason the automatic creation of the virtualenv fails,
+you can create the virtualenv manually.
+
+To manually create a virtualenv on MacOS and Linux:
+
+```
+$ python -m venv .venv
+```
+
+After the init process completes and the virtualenv is created, you can use the following
+step to activate your virtualenv.
+
+```
+$ source .venv/bin/activate
+```
+
+If you are a Windows platform, you would activate the virtualenv like this:
+
+```
+% .venv\Scripts\activate.bat
+```
+
+Once the virtualenv is activated, you can install the required dependencies.
+
+```
+$ pip install -r requirements.txt
+```
+
+At this point you can now synthesize the CloudFormation template for this code.
+
+```
+$ cdk synth
+```
+
+To add additional dependencies, for example other CDK libraries, just add
+them to your `setup.py` file and rerun the `pip install -r requirements.txt`
+command.
+
+## Useful commands
+
+ * `cdk ls`          list all stacks in the app
+ * `cdk synth`       emits the synthesized CloudFormation template
+ * `cdk deploy`      deploy this stack to your default AWS account/region
+ * `cdk diff`        compare deployed stack with current state
+ * `cdk docs`        open CDK documentation
+
+Enjoy!
+=======
 # CloudVirtualMachine
-A VirtualMachine deployed on the AWS Cloud.
+
+https://github.com/FarrOut/CloudVirtualMachine
@@ -0,0 +1,68 @@
+#!/usr/bin/env python3
+import os
+
+from aws_cdk import core as cdk
+
+# For consistency with TypeScript code, `cdk` is the preferred import name for
+# the CDK's core module.  The following line also imports it as `core` for use
+# with examples from the CDK Developer's Guide, which are in the process of
+# being updated to use `cdk`.  You may delete this import if you don't need it.
+from aws_cdk import core
+
+from cloud_virtual_machine.pipeline_stack import PipelineStack
+from cloud_virtual_machine.instance_stack import InstanceStack
+from cloud_virtual_machine.logging_stack import LoggingStack
+
+app = core.App()
+
+default_env = core.Environment(account=os.getenv('CDK_DEFAULT_ACCOUNT'), region=os.getenv('CDK_DEFAULT_REGION'))
+rsa_env = core.Environment(account=os.getenv('CDK_DEFAULT_ACCOUNT'), region='af-south-1')
+euro_env = core.Environment(account=os.getenv('CDK_DEFAULT_ACCOUNT'), region='eu-central-1')
+
+PipelineStack(app, "PipelineStack", env=default_env)
+InstanceStack(app, "InstanceStack", env=euro_env)
+LoggingStack(app, "LoggingStack", env=euro_env)
+
+# PipelineStack(app, "PipelineStack",
+#     # If you don't specify 'env', this stack will be environment-agnostic.
+#     # Account/Region-dependent features and context lookups will not work,
+#     # but a single synthesized template can be deployed anywhere.
+#
+#     # Uncomment the next line to specialize this stack for the AWS Account
+#     # and Region that are implied by the current CLI configuration.
+#
+#     env=core.Environment(account=os.getenv('CDK_DEFAULT_ACCOUNT'), region=os.getenv('CDK_DEFAULT_REGION')),
+#     # env=core.Environment(account=os.getenv('CDK_DEFAULT_ACCOUNT'), region='af-south-1'),
+#
+#     # Uncomment the next line if you know exactly what Account and Region you
+#     # want to deploy the stack to. */
+#
+#     #env=core.Environment(account='123456789012', region='us-east-1'),
+#
+#     # For more information, see https://docs.aws.amazon.com/cdk/latest/guide/environments.html
+#     )
+#
+# InstanceStack(app, "InstanceStack",
+#     # If you don't specify 'env', this stack will be environment-agnostic.
+#     # Account/Region-dependent features and context lookups will not work,
+#     # but a single synthesized template can be deployed anywhere.
+#
+#     # Uncomment the next line to specialize this stack for the AWS Account
+#     # and Region that are implied by the current CLI configuration.
+#
+#     env=core.Environment(account=os.getenv('CDK_DEFAULT_ACCOUNT'), region=os.getenv('CDK_DEFAULT_REGION')),
+#     # env=core.Environment(account=os.getenv('CDK_DEFAULT_ACCOUNT'), region='af-south-1'),
+#
+#     # Uncomment the next line if you know exactly what Account and Region you
+#     # want to deploy the stack to. */
+#
+#     #env=core.Environment(account='123456789012', region='us-east-1'),
+#
+#     # For more information, see https://docs.aws.amazon.com/cdk/latest/guide/environments.html
+#     )
+#
+# LoggingStack(app, "LoggingStack",
+#     env=core.Environment(account=os.getenv('CDK_DEFAULT_ACCOUNT'), region='eu-west-1'),
+#     )
+
+app.synth()
@@ -0,0 +1,19 @@
+{
+  "app": "python app.py",
+  "context": {
+    "@aws-cdk/aws-apigateway:usagePlanKeyOrderInsensitiveId": true,
+    "@aws-cdk/core:enableStackNameDuplicates": "true",
+    "aws-cdk:enableDiffNoFail": "true",
+    "@aws-cdk/core:stackRelativeExports": "true",
+    "@aws-cdk/aws-ecr-assets:dockerIgnoreSupport": true,
+    "@aws-cdk/aws-secretsmanager:parseOwnedSecretName": true,
+    "@aws-cdk/aws-kms:defaultKeyPolicies": true,
+    "@aws-cdk/aws-s3:grantWriteWithoutAcl": true,
+    "@aws-cdk/aws-ecs-patterns:removeDefaultDesiredCount": true,
+    "@aws-cdk/aws-rds:lowercaseDbIdentifier": true,
+    "@aws-cdk/aws-efs:defaultEncryptionAtRest": true,
+    "@aws-cdk/aws-lambda:recognizeVersionProps": true,
+    "@aws-cdk/aws-cloudfront:defaultSecurityPolicyTLSv1.2_2021": true,
+    "@aws-cdk/core:newStyleStackSynthesis": true
+  }
+}
@@ -0,0 +1,218 @@
+from aws_cdk import (core as cdk,
+                     aws_ec2 as ec2,
+                     aws_secretsmanager as secretsmanager,
+                     aws_s3_assets as assets,
+                     aws_autoscaling as autoscaling,
+                     aws_logs as logs,
+                     )
+
+# For consistency with other languages, `cdk` is the preferred import name for
+# the CDK's core module.  The following line also imports it as `core` for use
+# with examples from the CDK Developer's Guide, which are in the process of
+# being updated to use `cdk`.  You may delete this import if you don't need it.
+from aws_cdk import core
+# from pipeline_stage import WorkshopPipelineStage
+import os
+
+from aws_cdk.core import Duration
+
+
+class InstanceStack(cdk.Stack):
+
+    def __init__(self, scope: cdk.Construct, construct_id: str, **kwargs) -> None:
+        super().__init__(scope, construct_id, **kwargs)
+
+        debug_mode = True  # TODO debugging
+
+        # =====================
+        # NETWORKING
+        # =====================
+        vpc = ec2.Vpc(self, "VPC",
+                      max_azs=1,
+                      )
+
+        # =====================
+        # SECURITY
+        # =====================
+        key_name = 'masterkey-frankfurt'
+        outer_perimeter_security_group = ec2.SecurityGroup(self, "SecurityGroup",
+                                                           vpc=vpc,
+                                                           description="Allow ssh access to ec2 instances",
+                                                           allow_all_outbound=True
+                                                           )
+        outer_perimeter_security_group.add_ingress_rule(ec2.Peer.any_ipv4(), ec2.Port.tcp(22),
+                                                        "allow ssh access from the world")
+
+        # =====================
+        # STORAGE
+        # =====================
+
+        # =====================
+        # COMPUTING
+        # =====================
+
+        # CentOS
+        # centos_bootstrapping = ec2.UserData.for_linux()
+        # centos_bootstrapping.add_commands()
+        # amalin_image = ec2.MachineImage.latest_amazon_linux(user_data=centos_bootstrapping)
+
+        # Ubuntu
+        ubuntu_bootstrapping = ec2.UserData.for_linux()
+
+        # # https://aws.amazon.com/premiumsupport/knowledge-center/install-cloudformation-scripts/
+        # # https://gist.github.com/mmasko/66d34b651642525c63cd39251e0c2a8b#gistcomment-3931793
+        ubuntu_bootstrapping.add_commands(
+            'sudo apt-get -y update',
+            'sudo apt-get -y upgrade',
+            'sudo apt-get -y install python3 python3-pip unzip',
+
+            # Download Cloudformation Helper Scripts
+            # https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/cfn-helper-scripts-reference.html
+            'wget https://s3.amazonaws.com/cloudformation-examples/aws-cfn-bootstrap-py3-latest.zip',
+            'python3 -m easy_install --script-dir /opt/aws/bin aws-cfn-bootstrap-py3-latest.zip',
+        )
+
+        # Look up the most recent image matching a set of AMI filters.
+        # In this case, look up the Ubuntu instance AMI
+        # in the 'name' field:
+        ubuntu_image = ec2.LookupMachineImage(
+            # Canonical, Ubuntu, 20.04 LTS, amd64 focal image build on 2021-04-30
+            # ubuntu/images/hvm-ssd/ubuntu-focal-20.04-amd64-server-20210430
+            name="ubuntu/images/*ubuntu-focal-20.04-*-20210430",
+            owners=["099720109477"],
+            filters={'architecture': ['x86_64']},
+            user_data=ubuntu_bootstrapping,
+        )
+
+        image = ubuntu_image
+
+        cdk.CfnOutput(self, 'MachineImageOutput',
+                      value=str(image.get_image(self).image_id),
+                      description='MachineImageId',
+                      )
+        cdk.CfnOutput(self, 'MachineImageUserDataOutput',
+                      value=str(image.get_image(self).user_data.render()),
+                      description='MachineImage UserData',
+                      )
+
+        # View instance Logs in the Console
+        # https: // docs.aws.amazon.com / systems - manager / latest / userguide / monitoring - cloudwatch - agent.html
+        # https: // docs.aws.amazon.com / AmazonCloudWatch / latest / monitoring / Install - CloudWatch - Agent - New - Instances - CloudFormation.html
+        # https://aws.amazon.com/blogs/devops/view-cloudformation-logs-in-the-console/
+        # https://s3.amazonaws.com/cloudformation-templates-us-east-1/CloudWatch_Logs.template
+        instance_log_group = logs.LogGroup.from_log_group_name(self, 'InstanceLogGroup',
+                                                               log_group_name='InstanceLogGroup')
+
+        working_dir = '/home/ubuntu/cfn-init/'
+        # https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/aws-resource-init.html
+        init_ubuntu = ec2.CloudFormationInit.from_config_sets(
+            config_sets={
+                # Applies the configs below in this order
+                "logging": ['install_cw_agent'],
+                "testing": ['proof-of-life'],
+                'connectivity': ['mosh'],
+            },
+            configs={
+                '': ec2.InitConfig([
+                    ec2.InitPackage.apt(
+                        package_name='mosh',
+                    ),
+                    # TODO Allow MOSH traffic
+                    #     https://linuxhandbook.com/mosh/
+                    #     https://mosh.org/#getting
+                ]),
+                'proof-of-life': ec2.InitConfig([
+                    ec2.InitFile.from_string("~/ifyouseethisitsworking",
+                                             "This got written during instance startup"),
+                ]),
+                'install_cw_agent': ec2.InitConfig([
+
+                    # Manually create or edit the CloudWatch agent configuration file
+                    # https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/CloudWatch-Agent-Configuration-File-Details.html
+
+                    # Installing and running the CloudWatch agent on your servers
+                    # https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/install-CloudWatch-Agent-commandline-fleet.html
+
+                    ec2.InitFile.from_url(
+                        file_name=working_dir + '/amazon-cloudwatch-agent.deb',
+                        url='https://s3.amazonaws.com/amazoncloudwatch-agent/debian/amd64/latest/amazon-cloudwatch'
+                            '-agent.deb'),
+                    ec2.InitCommand.shell_command(
+                        shell_command='dpkg -i -E ./amazon-cloudwatch-agent.deb',
+                        cwd=working_dir)
+
+                    # TODO Design config file and start CloudWatch agent service
+                    # Installing the CloudWatch agent on new instances using AWS CloudFormation
+                    # https://docs.aws.amazon.com/AmazonCloudWatch/latest/monitoring/Install-CloudWatch-Agent-New-Instances-CloudFormation.html
+                ])
+            }
+        )
+
+        init = init_ubuntu
+        instance = ec2.Instance(self, "Instance",
+                                user_data_causes_replacement=True,
+                                vpc=vpc,
+                                instance_type=ec2.InstanceType.of(
+                                    ec2.InstanceClass.BURSTABLE3, ec2.InstanceSize.SMALL),
+                                machine_image=image,
+                                key_name=key_name,
+                                security_group=outer_perimeter_security_group,
+                                init=init,
+
+                                # https://docs.aws.amazon.com/cdk/api/latest/python/aws_cdk.aws_ec2/ApplyCloudFormationInitOptions.html
+                                init_options=ec2.ApplyCloudFormationInitOptions(
+                                    # Optional, which configsets to activate (['default'] by default)
+                                    config_sets=["connectivity"],
+
+                                    # Don’t fail the instance creation when cfn-init fails. You can use this to
+                                    # prevent CloudFormation from rolling back when instances fail to start up,
+                                    # to help in debugging. Default: false
+                                    ignore_failures=debug_mode,
+
+                                    # Optional, how long the installation is expected to take (5 minutes by default)
+                                    timeout=Duration.minutes(5),
+
+                                    # Optional, whether to include the --url argument when running cfn-init and cfn-signal commands (false by default)
+                                    include_url=False,
+
+                                    # Optional, whether to include the --role argument when running cfn-init and cfn-signal commands (false by default)
+                                    include_role=False
+                                ),
+                                vpc_subnets=ec2.SubnetSelection(subnet_type=ec2.SubnetType.PUBLIC),
+                                )
+
+        # asg = autoscaling.AutoScalingGroup(self, "ASG",
+        #                                    vpc=vpc,
+        #                                    instance_type=ec2.InstanceType.of(ec2.InstanceClass.BURSTABLE3,
+        #                                                                      ec2.InstanceSize.MICRO),
+        #                                    machine_image=image,
+        #                                    security_group=outer_perimeter_security_group,
+        #                                    key_name=key_name,
+        #                                    init=init,
+        #                                    signals=autoscaling.Signals.wait_for_all(
+        #                                        timeout=cdk.Duration.minutes(2)
+        #                                    ),
+        #                                    update_policy=autoscaling.UpdatePolicy.replacing_update(),
+        #                                    # Be aware this will reset the size of your AutoScalingGroup on every deployment.
+        #                                    # See https://github.com/aws/aws-cdk/issues/5215
+        #                                    desired_capacity=1,
+        #                                    min_capacity=0,
+        #                                    max_capacity=5,
+        #                                    )
+
+        # cdk.CfnOutput(self, 'InstanceUserData',
+        #               value=asg.user_data.render(),
+        #               description='UserData for the instances.',
+        #               )
+
+        cdk.CfnOutput(self, 'InstancePublicDNSname',
+                      value=instance.instance_public_dns_name,
+                      description='Publicly-routable DNS name for this instance.',
+                      )
+
+        user = 'ubuntu'
+        ssh_command = 'ssh' + ' -i ' + key_name + '.pem ' + user + '@' + instance.instance_public_dns_name
+        cdk.CfnOutput(self, 'InstanceSSHcommand',
+                      value=ssh_command,
+                      description='Command to SSH into instance.',
+                      )