-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathprovision.py
155 lines (128 loc) · 6.12 KB
/
provision.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
import boto3
import aws_config
session = boto3.Session(
aws_access_key_id=aws_config.AWS_ACCESS_KEY_ID,
aws_secret_access_key=aws_config.AWS_SECRET_ACCESS_KEY,
region_name=aws_config.AWS_REGION_NAME,
)
cf_client = session.client('cloudformation')
# enum
GLOBAL = 0
TEAM = 1
stack_suffixes = {
GLOBAL: 'global',
TEAM: 'team',
}
COMMA = ','
GOOD_STATES = ('CREATE_COMPLETE,UPDATE_COMPLETE,UPDATE_ROLLBACK_COMPLETE').split(COMMA)
BUSY_STATES = ('CREATE_IN_PROGRESS,ROLLBACK_IN_PROGRESS,DELETE_IN_PROGRESS,UPDATE_IN_PROGRESS,UPDATE_COMPLETE_CLEANUP_IN_PROGRESS,UPDATE_ROLLBACK_IN_PROGRESS,UPDATE_ROLLBACK_COMPLETE_CLEANUP_IN_PROGRESS,REVIEW_IN_PROGRESS').split(COMMA)
BAD_STATES = ('CREATE_FAILED,ROLLBACK_FAILED,DELETE_FAILED,UPDATE_ROLLBACK_FAILED,DELETE_COMPLETE,ROLLBACK_COMPLETE').split(COMMA)
def get_stack_name(stack_type, suffix=''):
if suffix != '':
return '%s-%s-%s' % (aws_config.ENVIRONMENT_NAME, stack_suffixes[stack_type], suffix)
return '%s-%s' % (aws_config.ENVIRONMENT_NAME, stack_suffixes[stack_type])
def deploy(stack_name, template_body, params):
parameters = [{'ParameterKey': x, 'ParameterValue': params[x]} for x in params.keys()]
print('Deploying stack %s' % stack_name)
stack_exists = False
try:
stack = cf_client.describe_stacks(StackName=stack_name)
print(stack['Stacks'][0]['StackStatus'])
if stack['Stacks'][0]['StackStatus'] in GOOD_STATES:
stack_exists = True
elif stack['Stacks'][0]['StackStatus'] in BUSY_STATES:
print('Stack is already building... Cannot continue.')
exit()
else:
print('Stack is in a bad state... Will perform stack deletion.')
cf_client.delete_stack(StackName=stack_name)
print('Waiting until stack %s is deleted...' % stack_name)
cf_client.get_waiter('stack_delete_complete').wait(StackName=stack_name)
except cf_client.exceptions.ClientError as e:
stack_exists = False
try:
if stack_exists:
print('Stack exists, updating...')
response = cf_client.update_stack(
StackName=stack_name,
TemplateBody=template_body,
Capabilities=['CAPABILITY_AUTO_EXPAND', 'CAPABILITY_IAM', 'CAPABILITY_NAMED_IAM'],
Parameters=parameters,
)
print('Waiting until stack %s is deployed...' % stack_name)
cf_client.get_waiter('stack_update_complete').wait(StackName=stack_name)
stack_info = cf_client.describe_stacks(StackName=stack_name)
if stack_info['Stacks'][0]['StackStatus'] == 'UPDATE_COMPLETE':
print(f'Stack {stack_name} updated successfully!')
return stack_info['Stacks'][0]['Outputs']
else:
print(f'Stack update failed. Status: {stack_info["Stacks"][0]["StackStatus"]}')
else:
print('Stack not exists, creating...')
response = cf_client.create_stack(
StackName=stack_name,
TemplateBody=template_body,
Capabilities=['CAPABILITY_AUTO_EXPAND', 'CAPABILITY_IAM', 'CAPABILITY_NAMED_IAM'],
Parameters=parameters,
)
print('Waiting until stack %s deployed...' % stack_name)
cf_client.get_waiter('stack_create_complete').wait(StackName=stack_name)
stack_info = cf_client.describe_stacks(StackName=stack_name)
if stack_info['Stacks'][0]['StackStatus'] == 'CREATE_COMPLETE':
print(f'Stack {stack_name} created successfully!')
return stack_info['Stacks'][0]['Outputs']
else:
print(f'Stack creation failed. Status: {stack_info["Stacks"][0]["StackStatus"]}')
return None
except Exception as e:
print(f'Stack creation failed. Status: %s' % e)
return None
def delete_stack(stack_name):
try:
cf_client.delete_stack(StackName=stack_name)
print(f'Stack {stack_name} deletion initiated.')
except cf_client.exceptions.ClientError as e:
if 'does not exist' in str(e):
print(f'Stack {stack_name} does not exist.')
return
print('Waiting until stack %s deleted...' % stack_name)
cf_client.get_waiter('stack_delete_complete').wait(StackName=stack_name)
try:
stack_info = cf_client.describe_stacks(StackName=stack_name)
if stack_info['Stacks'][0]['StackStatus'] == 'DELETE_COMPLETE':
print(f'Stack {stack_name} deleted successfully!')
else:
print(f'Stack deletion failed. Status: {stack_info["Stacks"][0]["StackStatus"]}')
except cf_client.exceptions.ClientError as e:
if 'does not exist' in str(e):
print(f'Stack {stack_name} deleted successfully!')
else:
print('Stack deletion failed.')
if __name__ == '__main__':
DEPLOY = 1 # change this
if DEPLOY:
f = open(aws_config.GLOBAL_TEMPLATE_FILE)
template = f.read()
f.close()
template = template.replace('__GATEFLAG__', aws_config.ENVIRONMENT_NAME)
template = template.replace('__GATEFLAG_SECRET__', aws_config.GATEFLAG_SECRET)
outputs = deploy(get_stack_name(GLOBAL), template, aws_config.GLOBAL_TEMPLATE_PARAMETERS)
print(outputs)
print()
team_parameters = aws_config.TEAM_TEMPLATE_PARAMETERS
for output in outputs:
team_parameters[output['OutputKey']] = output['OutputValue']
for team in aws_config.TEAMS:
f = open(aws_config.TEAM_TEMPLATE_FILE)
template = f.read()
f.close()
template = template.replace('__GATEFLAG__', aws_config.ENVIRONMENT_NAME)
template = template.replace('__TEAM__', team['name'])
team_parameters['PrivateIpAddress'] = team['ip']
outputs = deploy(get_stack_name(TEAM, team['name']), template, team_parameters)
print(outputs)
print()
else:
for team in aws_config.TEAMS:
delete_stack(get_stack_name(TEAM, team['name']))
delete_stack(get_stack_name(GLOBAL))