Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/yousafkhamza/ec2-infrastructure-creation-through-pyscript
Here it's a python script for creating AWS infrastructure through a python script and this is only for educational purposes also, we can do anything via python.
https://github.com/yousafkhamza/ec2-infrastructure-creation-through-pyscript
aws infrastructure infrastructure-as-code pip python3 script
Last synced: 7 days ago
JSON representation
Here it's a python script for creating AWS infrastructure through a python script and this is only for educational purposes also, we can do anything via python.
- Host: GitHub
- URL: https://github.com/yousafkhamza/ec2-infrastructure-creation-through-pyscript
- Owner: yousafkhamza
- Created: 2022-03-19T14:52:05.000Z (over 2 years ago)
- Default Branch: main
- Last Pushed: 2022-03-20T04:45:27.000Z (over 2 years ago)
- Last Synced: 2023-09-20T19:52:42.339Z (about 1 year ago)
- Topics: aws, infrastructure, infrastructure-as-code, pip, python3, script
- Language: Python
- Homepage:
- Size: 14.6 KB
- Stars: 0
- Watchers: 2
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
Awesome Lists containing this project
README
# AWS Infrastructure Creation (Pyscript)
[](https://travis-ci.org/joemccann/dillinger)
---
## Description
Here it's a python script for creating AWS infrastructure through a python script and this is only for educational purposes also, we can do anything via python.
----
## Feature
- Easy to configure for anyone
- EC2 instance with root privilege
- Security Group for 80 & 22 (once we created other instances are using the same one)
- Variables and Configurations are passing through as a module
---
## Architecture
---
## Modules used
- [boto3](https://boto3.amazonaws.com/v1/documentation/api/latest/index.html)
- [os](https://docs.python.org/3/library/os.html)
- [datetime](https://docs.python.org/3/library/datetime.html)
----
## Pre-Requests
- Basic Knowledge of python
- Basic Knowledge of AWS IAM, EC2 service
- Need to change your IAM user creds and bucket name at config.py (region, access key, secret key)
- EC2 details are stored into var.py (password, size, type, sg name)
### IAM User Creation steps (_with screenshot_)
1. _log into your AWS account as a root user and go to IAM user_
2. _goto Access Managment >> Users_
3. _Click Add User_ (_top right corner_)
4. _Enter any username as you like and Choose "Programmatic access" >> Click Next Permissions_
5. _Set Permissions >> Select "Attach existing policies directly" >> Choose "AmazonEC2FullAccess" >> Click Next Tags_
6. _Add Tags(Optional)_ >> _Enter a key and value as you like either you can leave as blank_
7. _Review your user details and click "Create User"_
8. _Store your credentials to your local_
_Reference URL_:: _IAM User creation [article](https://docs.aws.amazon.com/IAM/latest/UserGuide/id_users_create.html)_
----
### Pre-Requested (Dependency packages)
```sh
yum install -y git
yum install -y python3
yum install -y python3-pip
```
### How to get
```sh
git clone https://github.com/yousafkhamza/EC2-Infrastructure-creation-through-pyscript.git
cd EC2-Infrastructure-creation-through-pyscript
pip3 install -r requirements.txt
```
> Change your creds and bucket name in at config.py and ec2 details under var.py file
Command to run the script::
```
python3 ec2_creation.py
```
----
## Output be like
```sh
$ python3 ec2_creation.py
Security Group Created sg-0f13a431524032168 in vpc vpc-00c2ae623614d9504.
Instance Created Successfully and Details are given below:
----------------------------------------------------------
ID=i-02e1cbf5a1f54b6c2 PrivateIP=172.31.85.87
```
## Terminal Output
_Screenshot_
## Console output
_Screenshot_
----
## Behind the code
_vim ec2_creation.py_
```sh
import boto3
import datetime
import os
from botocore.exceptions import ClientError
import config
import var
ec2_client = boto3.client('ec2',
aws_access_key_id=config.AWS_ACCESS_KEY_ID,
aws_secret_access_key=config.AWS_SECRET_ACCESS_KEY,
region_name=config.REGION
)
ec2 = boto3.resource('ec2',
aws_access_key_id=config.AWS_ACCESS_KEY_ID,
aws_secret_access_key=config.AWS_SECRET_ACCESS_KEY,
region_name=config.REGION
)
password = var.PASSWORD
USERDATA_SCRIPT = f'''
#!/bin/bash
echo "ClientAliveInterval 60" >> /etc/ssh/sshd_config
echo "LANG=en_US.utf-8" >> /etc/environment
echo "LC_ALL=en_US.utf-8" >> /etc/environment
echo "{password}" | passwd root --stdin
sed -i 's/#PermitRootLogin yes/PermitRootLogin yes/' /etc/ssh/sshd_config
sed -i 's/PasswordAuthentication no/PasswordAuthentication yes/' /etc/ssh/sshd_config
service sshd restart
'''
def instance_creation():
# AMI Finding
year = datetime.datetime.now().year
ami_img = []
ami = ec2_client.describe_images(Owners=['137112412989'])['Images']
for item in ami:
if item['ImageOwnerAlias'] == "amazon" and item["Name"].startswith('amzn2-ami-hvm') and item['CreationDate'].startswith(str(year)):
ami_img.append(item['ImageId'])
# Security Group Creation
group_id = []
sg_group = ec2_client.describe_security_groups()['SecurityGroups']
for item in sg_group:
if item['GroupName'] == var.SG_NAME:
print ('The Security Group "%s" is already created in amazon, So, we are using the same into this instance' % (var.SG_NAME))
group_id.append(item['GroupId'])
else:
response = ec2_client.describe_vpcs()
vpc_id = response.get('Vpcs', [{}])[0].get('VpcId', '')
try:
response = ec2_client.create_security_group(GroupName=var.SG_NAME,
Description='DESCRIPTION',
VpcId=vpc_id)
security_group_id = response['GroupId']
print('Security Group Created %s in vpc %s.' % (security_group_id, vpc_id))
group_id.append(security_group_id)
data = ec2_client.authorize_security_group_ingress(
GroupId=security_group_id,
IpPermissions=[
{'IpProtocol': 'tcp',
'FromPort': 80,
'ToPort': 80,
'IpRanges': [{'CidrIp': '0.0.0.0/0'}]},
{'IpProtocol': 'tcp',
'FromPort': 22,
'ToPort': 22,
'IpRanges': [{'CidrIp': '0.0.0.0/0'}]}
])
except ClientError as e:
continue
# Instance Creation
instances = ec2.create_instances(
BlockDeviceMappings=[
{
'DeviceName': '/dev/xvda',
'Ebs': {
'DeleteOnTermination': True,
'VolumeSize': int(var.IN_SIZE),
'VolumeType': 'gp2'
},
},
],
ImageId=ami_img[0],
MinCount=1,
MaxCount=1,
InstanceType=var.IN_TYPE,
SecurityGroupIds=[ group_id[0] ],
UserData=USERDATA_SCRIPT,
TagSpecifications=[
{
'ResourceType': 'instance',
'Tags': [
{
'Key': 'Name',
'Value': 'EC2-From-Python'
},
]
},
]
)
print('\nInstance Created Successfully and Details are given below:')
print('----------------------------------------------------------')
print("ID="+instances[0].id, "PrivateIP="+instances[0].private_ip_address)
instance_creation()
```
_vim config.py_
```sh
AWS_ACCESS_KEY_ID = 'YOUR ACCESS KEY HERE'
AWS_SECRET_ACCESS_KEY = 'YOUR PRIVATE KEY HERE'
REGION = 'REGION HERE'
```
_vim var.py_
```sh
PASSWORD = 'P@55W06D@12y' # You can modify your instance password here
SG_NAME = 'FOREC2' # You can modify your Security Group Name here
IN_TYPE = 't2.micro' # You can modify your instance type here
IN_SIZE = '10' # You can modify your instance size here
```
----
## Conclusion
It's a simple python script to create AWS infrastructure like ansible/terraform but we don't use this we can able to create the same through python and it's an educational purpose. I hope you all understood the same and let me know your thoughts and comments.
### ⚙️ Connect with Me
