https://github.com/ydataai/aws-asg-tags-lambda
A lambda that extracts the auto scaling groups from the k8s node pools provided by the user and adds the specified tags to those nodes
https://github.com/ydataai/aws-asg-tags-lambda
autoscaling-groups aws aws-lambda cloudformation k8s kubernetes lambda nodepool swift
Last synced: 4 months ago
JSON representation
A lambda that extracts the auto scaling groups from the k8s node pools provided by the user and adds the specified tags to those nodes
- Host: GitHub
- URL: https://github.com/ydataai/aws-asg-tags-lambda
- Owner: ydataai
- License: mit
- Created: 2022-06-15T16:08:41.000Z (over 3 years ago)
- Default Branch: main
- Last Pushed: 2025-06-13T23:56:06.000Z (4 months ago)
- Last Synced: 2025-06-14T00:28:38.879Z (4 months ago)
- Topics: autoscaling-groups, aws, aws-lambda, cloudformation, k8s, kubernetes, lambda, nodepool, swift
- Language: Swift
- Homepage:
- Size: 120 KB
- Stars: 5
- Watchers: 5
- Forks: 0
- Open Issues: 10
-
Metadata Files:
- Readme: README.md
- Changelog: CHANGELOG.md
- License: LICENSE
- Code of conduct: CODE_OF_CONDUCT.md
Awesome Lists containing this project
README
[](https://github.com/ydataai/aws-asg-tags-lambda/actions/workflows/released.yml)
[](https://github.com/ydataai/aws-asg-tags-lambda/actions/workflows/prereleased.yml)
[](https://github.com/ydataai/aws-asg-tags-lambda/actions/workflows/merge-main.yml)
[](https://github.com/ydataai/aws-asg-tags-lambda/blob/main/LICENSE)
[](https://developer.apple.com/swift/)
# AWS Auto Scaling Groups Tag lambda
A lambda that add tags to the auto scaling groups of each k8s node.
You have to specify the cluster, the pools and the tags for each pool, or specify them in the common tags if you want the same tag for each node you want to process.
## How to use
### Push to AWS ECR
Our pipelines publish every new release to the docker hub, but in order to call it from a lambda, you have to push it to your AWS account private ECR.
Example (take into account that you can tag it with the name you want):
```bash
docker pull ydata/aws-asg-tags-lambda:1.0.0
docker tag ydata/aws-asg-tags-lambda:1.0.0 /aws-asg-tags-lambda:1.0.0
docker push /aws-asg-tags-lambda:1.0.0
```
### CloudFormation
The execution role is necessary to connect to the EKS and EC2 for the auto scaling groups
```yaml
ASGTagLambdaExecutionRole:
Type: AWS::IAM::Role
Properties:
RoleName: !Join
- '-'
- 'role'
AssumeRolePolicyDocument:
Version: '2012-10-17'
Statement:
- Effect: Allow
Principal:
Service:
- lambda.amazonaws.com
Action:
- sts:AssumeRole
ManagedPolicyArns:
- arn:aws:iam::aws:policy/service-role/AWSLambdaVPCAccessExecutionRole
Policies:
- PolicyName: !Join
- '-'
- 'lambda-asg-tag'
PolicyDocument:
Version: '2012-10-17'
Statement:
- Effect: Allow
Action:
- eks:*
- autoscaling:CreateOrUpdateTags
Resource: '*'
```
The declaration of the lambda function, which will be used by the invoke
```yaml
ASGTagLambdaFunction:
Type: AWS::Lambda::Function
Properties:
Role: !GetAtt ASGTagLambdaExecutionRole.Arn
PackageType: Image
Code:
ImageUri: !Ref EcrImageUri
Architectures:
- x86_64
MemorySize: 1024
Timeout: 300
```
The lambda invokation
```yaml
ASGTagLambdaInvoke:
Type: AWS::CloudFormation::CustomResource
DependsOn: ASGTagLambdaFunction
Version: "1.0"
Properties:
ServiceToken: !GetAtt ASGTagLambdaFunction.Arn
StackID: !Ref AWS::StackId
AccountID: !Ref AWS::AccountId
Region: !Ref AWS::Region
ClusterName: "the EKS cluster name" #!Ref EKSCluster
CommonTags:
- Name: "ENVIRONMENT"
Value: "dev"
PropagateAtLaunch: true
NodePools:
- Name: "system-nodepool" #!GetAtt YourNodeGroup.NodegroupName
Tags:
- Name: 'k8s.io/cluster-autoscaler/node-template/taint/TAINT'
Value: 'TAINT_VALUE:TAINT_EFFECT'
PropagateAtLaunch: true
- Name: 'k8s.io/cluster-autoscaler/node-template/label/LABEL'
Value: 'LABEL_VALUE'
PropagateAtLaunch: true
- Name: "another-pool"
```
Both `CommonTags` and `Tags` of each NodePool are optional, but if you don't specify `CommonTags` neither `Tags` for each NodePool, it will not do anything.
Check the following examples for other valid combinations
An example with only `CommonTags`
```yaml
EKSASGTagLambdaInvoke:
Type: AWS::CloudFormation::CustomResource
DependsOn: EKSASGTagLambdaFunction
Version: "1.0"
Properties:
ServiceToken: !GetAtt EKSASGTagLambdaFunction.Arn
StackID: !Ref AWS::StackId
AccountID: !Ref AWS::AccountId
Region: !Ref AWS::Region
ClusterName: "the EKS cluster name"
CommonTags:
- Name: "ENVIRONMENT"
Value: "prod"
PropagateAtLaunch: true
NodePools:
- Name: "system-nodepool"
- Name: "applications-nodepool"
```
An example with only `Tags` for the NodePool
```yaml
EKSASGTagLambdaInvoke:
Type: AWS::CloudFormation::CustomResource
DependsOn: EKSASGTagLambdaFunction
Version: "1.0"
Properties:
ServiceToken: !GetAtt EKSASGTagLambdaFunction.Arn
StackID: !Ref AWS::StackId
AccountID: !Ref AWS::AccountId
Region: !Ref AWS::Region
ClusterName: "the EKS cluster name"
NodePools:
- Name: "system-nodepool"
Tags:
- Name: 'k8s.io/cluster-autoscaler/node-template/taint/TAINT'
Value: 'TAINT_VALUE:NoSchedule'
PropagateAtLaunch: true
- Name: 'k8s.io/cluster-autoscaler/node-template/label/LABEL'
Value: 'LABEL_VALUE'
PropagateAtLaunch: true
- Name: "application-nodepool"
Tags:
- Name: 'k8s.io/cluster-autoscaler/node-template/taint/TAINT'
Value: 'TAINT_VALUE:NoSchedule'
PropagateAtLaunch: true
- Name: 'k8s.io/cluster-autoscaler/node-template/label/LABEL'
Value: 'LABEL_VALUE'
PropagateAtLaunch: true
```
## TODO
- [ ] Add generic context
- [ ] Tests
- [x] Better Documentation
- [ ] Support other methods of invocation
## About 👯♂️
With ❤️ from [YData](https://ydata.ai) [Development team](mailto://developers@ydata.ai)