Skip to content

Commit

Permalink
codedeploy
Browse files Browse the repository at this point in the history
  • Loading branch information
@JamesWoolfenden
JamesWoolfenden committed Sep 27, 2022
1 parent 6e605cb commit 978afa6
Show file tree
Hide file tree
Showing 10 changed files with 121 additions and 20 deletions.
3 changes: 3 additions & 0 deletions src/aws.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -292,6 +292,9 @@ func GetAWSResourcePermissions(result ResourceV2) ([]string, error) {
"aws_fsx_openzfs_volume": awsFsxOpenzfsVolume,
"aws_fsx_openzfs_snapshot": awsFsxOpenzfsSnaphot,
"aws_fsx_openzfs_file_system": awsFsxOpenzfsFileSystem,
"aws_codedeploy_app": awsCodedeployApp,
"aws_codedeploy_deployment_config": awsCodedeployDeploymentConfig,
"aws_codedeploy_deployment_group": awsCodedeployDeploymentGroup,
}

var Permissions []string
Expand Down
9 changes: 9 additions & 0 deletions src/files.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -726,3 +726,12 @@ var awsFsxOpenzfsVolume []byte

//go:embed mapping/aws/resource/fsx/aws_fsx_openzfs_snapshot.json
var awsFsxOpenzfsSnaphot []byte

//go:embed mapping/aws/resource/codedeploy/aws_codedeploy_app.json
var awsCodedeployApp []byte

//go:embed mapping/aws/resource/codedeploy/aws_codedeploy_deployment_config.json
var awsCodedeployDeploymentConfig []byte

//go:embed mapping/aws/resource/codedeploy/aws_codedeploy_deployment_group.json
var awsCodedeployDeploymentGroup []byte
22 changes: 22 additions & 0 deletions src/mapping/aws/resource/codedeploy/aws_codedeploy_app.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,22 @@
[
{
"apply": [
"ec2:DescribeAccountAttributes",
"codedeploy:CreateApplication",
"codedeploy:GetApplication",
"codedeploy:ListTagsForResource",
"codedeploy:DeleteApplication"
],
"attributes": {
"tags": [
"codedeploy:TagResource",
"codedeploy:UntagResource"
]
},
"destroy": [
"codedeploy:DeleteApplication"
],
"modify": [],
"plan": []
}
]
18 changes: 18 additions & 0 deletions src/mapping/aws/resource/codedeploy/aws_codedeploy_deployment_config.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,18 @@
[
{
"apply": [
"ec2:DescribeAccountAttributes",
"codedeploy:CreateDeploymentConfig",
"codedeploy:GetDeploymentConfig",
"codedeploy:DeleteDeploymentConfig"
],
"attributes": {
"tags": []
},
"destroy": [
"codedeploy:DeleteDeploymentConfig"
],
"modify": [],
"plan": []
}
]
19 changes: 19 additions & 0 deletions src/mapping/aws/resource/codedeploy/aws_codedeploy_deployment_group.json
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,19 @@
[
{
"apply": [
"ec2:DescribeAccountAttributes",
"codedeploy:CreateDeploymentGroup",
"codedeploy:GetDeploymentGroup",
"codedeploy:DeleteDeploymentGroup",
"iam:PassRole"
],
"attributes": {
"tags": []
},
"destroy": [
"codedeploy:DeleteDeploymentGroup"
],
"modify": [],
"plan": []
}
]
7 changes: 7 additions & 0 deletions terraform/aws/backup/aws_codedeploy_app.tf
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,7 @@
resource "aws_codedeploy_app" "pike" {
name = "pike"
compute_platform = "Server"
tags = {
pike = "permissions"
}
}
16 changes: 16 additions & 0 deletions terraform/aws/backup/aws_codedeploy_deployment_config.tf
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,16 @@
resource "aws_codedeploy_deployment_config" "pike" {
deployment_config_name = "test-deployment-config"
compute_platform = "Server"
minimum_healthy_hosts {
type = "HOST_COUNT"
value = 2
}
# traffic_routing_config {
# type = "TimeBasedLinear"
#
# time_based_linear {
# interval = 11
# percentage = 10
# }
# }
}
12 changes: 12 additions & 0 deletions terraform/aws/backup/aws_codedeploy_deployment_group.tf
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,12 @@
resource "aws_codedeploy_deployment_group" "pike" {
app_name = "pike"
deployment_group_name = "pike"
service_role_arn = "arn:aws:iam::680235478471:role/codedeployservice"
deployment_config_name = aws_codedeploy_deployment_config.pike.id

trigger_configuration {
trigger_events = ["DeploymentFailure"]
trigger_name = "example-trigger"
trigger_target_arn = "arn:aws:sns:eu-west-2:680235478471:pike"
}
}
28 changes: 15 additions & 13 deletions terraform/aws/role/aws_iam_policy.basic.tf
View file
Original file line number Diff line number Diff line change
Expand Up @@ -8,21 +8,23 @@ resource "aws_iam_policy" "basic" {
"Effect" : "Allow",
"Action" : [
"ec2:DescribeAccountAttributes",
"fsx:TagResource",
"fsx:UntagResource",
"fsx:CreateSnapshot",
"fsx:DescribeSnapshots",
"fsx:ListTagsForResource",
"fsx:DeleteSnapshot",
"fsx:UpdateSnapshot",
"codedeploy:CreateApplication",
"codedeploy:GetApplication",
"codedeploy:ListTagsForResource",
"codedeploy:DeleteApplication",
"codedeploy:TagResource",
"codedeploy:UntagResource",

"ec2:DescribeAccountAttributes",
"fsx:TagResource",
"fsx:UntagResource",
"fsx:CreateVolume",
"fsx:ListTagsForResource",
"fsx:DeleteVolume",
"fsx:UpdateVolume",
"codedeploy:CreateDeploymentConfig",
"codedeploy:GetDeploymentConfig",
"codedeploy:DeleteDeploymentConfig",

"ec2:DescribeAccountAttributes",
"codedeploy:CreateDeploymentGroup",
"codedeploy:GetDeploymentGroup",
"codedeploy:DeleteDeploymentGroup",
"iam:PassRole"
]
"Resource" : "*"
}
Expand Down
7 changes: 0 additions & 7 deletions todo.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -90,13 +90,6 @@
./resource.ps1 aws_cloudwatch_event_permission
./resource.ps1 aws_cloudwatch_metric_stream

./resource.ps1 aws_codecommit_approval_rule_template
./resource.ps1 aws_codecommit_approval_rule_template_association
./resource.ps1 aws_codedeploy_app
./resource.ps1 aws_codedeploy_deployment_group

./resource.ps1 aws_customer_gateway

./resource.ps1 aws_dax_cluster
./resource.ps1 aws_db_event_subscription
./resource.ps1 aws_db_instance_automated_backups_replication
Expand Down

0 comments on commit 978afa6

Please sign in to comment.