Commit 0636f40

committed

Merge branch 'dle_cft_add_ssm' into 'master'

Add session manager to DLE CFT See merge request postgres-ai/database-lab!560

2 parents b940732 + 175f794 commit 0636f40Copy full SHA for 0636f40

File tree

1 file changed

+35

-0

lines changed

cloudformation
- dle_cf_template.yaml

1 file changed

+35

-0

lines changed

`‎cloudformation/dle_cf_template.yaml‎`

Lines changed: 35 additions & 0 deletions

Original file line number	Diff line number	Diff line change
`@@ -288,6 +288,28 @@ Conditions:`
`288`	`288`	`!Not [Condition: CreateSubDomain]`
`289`	`289`
`290`	`290`	`Resources:`
	`291`	`+ IamSSMRole:`
	`292`	`+ Type: "AWS::IAM::Role"`
	`293`	`+ Properties:`
	`294`	`+ RoleName: "EC2RoleForSSM"`
	`295`	`+ Description: "EC2 IAM role for SSM access"`
	`296`	`+ AssumeRolePolicyDocument:`
	`297`	`+ Version: "2012年10月17日"`
	`298`	`+ Statement:`
	`299`	`+ - Effect: "Allow"`
	`300`	`+ Principal:`
	`301`	`+ Service:`
	`302`	`+ - "ec2.amazonaws.com"`
	`303`	`+ Action:`
	`304`	`+ - "sts:AssumeRole"`
	`305`	`+ ManagedPolicyArns:`
	`306`	`+ - "arn:aws:iam::aws:policy/AmazonSSMManagedInstanceCore"`
	`307`	`+ EC2SSMInstanceProfile:`
	`308`	`+ Type: "AWS::IAM::InstanceProfile"`
	`309`	`+ Properties:`
	`310`	`+ InstanceProfileName: "EC2RoleForSSM"`
	`311`	`+ Roles:`
	`312`	`+ - Ref: "IamSSMRole"`
`291`	`313`	`LambdaExecutionRole:`
`292`	`314`	`Type: AWS::IAM::Role`
`293`	`315`	`Properties:`
`@@ -344,6 +366,7 @@ Resources:`
`344`	`366`	`- !Ref InstanceType`
`345`	`367`	`- Arch`
`346`	`368`	`InstanceType: !Ref InstanceType`
	`369`	`+ IamInstanceProfile: !Ref EC2SSMInstanceProfile`
`347`	`370`	`SecurityGroupIds: !If`
`348`	`371`	`- CreateSubDomain`
`349`	`372`	`- - !GetAtt DLESecurityGroup.GroupId`
`@@ -451,6 +474,18 @@ Resources:`
`451`	`474`	`sudo systemctl enable envoy`
`452`	`475`	`sudo systemctl start envoy`
`453`	`476`	`fi`
	`477`	`+`
	`478`	`+ # upgrade ssm agent version`
	`479`	`+ wget https://s3.us-east-1.amazonaws.com/amazon-ssm-us-east-1/amazon-ssm-agent/3.1.1575.0/amazon-ssm-agent-ubuntu-amd64.tar.gz`
	`480`	`+ tar -xf amazon-ssm-agent-ubuntu-amd64.tar.gz`
	`481`	`+ bash snap-install.sh`
	`482`	`+`
	`483`	`+ # Initialize CLI configuration`
	`484`	`+ su ubuntu -c '/usr/local/bin/dblab init \`
	`485`	`+ --environment-id=test \`
	`486`	`+ --url=http://localhost:2345 \`
	`487`	`+ --token=${DLEVerificationToken} \`
	`488`	`+ --insecure'`
`454`	`489`
`455`	`490`	`while ! echo "UI started" \| nc localhost 2346; do sleep 10; done`
`456`	`491`	`/opt/aws/bin/cfn-signal -e $? -d "DLE UI is available" -r "DLE Deploy Process Complete" '${WaitHandle}'`

0 commit comments

Comments

(0)

Navigation Menu

Search code, repositories, users, issues, pull requests...

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Commit 0636f40

File tree

1 file changed

1 file changed

`‎cloudformation/dle_cf_template.yaml‎`

0 commit comments