Automate Cloud Development Kit (CDK) bootstrapping into an AWS Organization using Single Sign-On (SSO).
Project description
aqueduct
Permissions
I recommend using an AWS Account with Delegated Administration from Firewall Manager, Guard Duty, Stack Sets, etc., to access the required Organization permission.
- ec2:DescribeRegions
- organizations:ListAccounts
Requirements
curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
unzip awscliv2.zip
sudo ./aws/install
aws --version
pip3 install aws-sso-util
Installation
pip3 install aqueduct-utility
Initial Configuration
$ aqueduct
SSO Start URL [ ]: https://portal.awsapps.com/start
SSO Region [ ]: us-east-2
SSO Role [AWSAdministratorAccess]:
CLI Region [ ]: us-east-2
CLI Output [json]:
CDK Qualifier [ ]: 4n6ir
Aqueduct Menu
--------------------------------
AQUEDUCT v0.7.0
--------------------------------
Bootstrap
Command
Configure
Deploy
Destroy
> Micropipeline
Presets
Quit
Conduit Micropipeline
Permissions
- lambda:InvokeFunction
- s3:PutObject
Local Development
$ python setup.py install --user
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
aqueduct-utility-0.7.11.tar.gz
(10.9 kB
view hashes)
Built Distribution
Close
Hashes for aqueduct_utility-0.7.11-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | b1062320bae3f74930b1a89212b47e22b96671dd70594b49fafebca3d10cb339 |
|
MD5 | 76bc9e171441d6c67b15538e73eeb745 |
|
BLAKE2b-256 | dc82cbd7dce2cf8b45f0be1da2360a1fbdb4b07e44266d250b19e5854a00667a |