Automate Cloud Development Kit (CDK) bootstrapping into an AWS Organization using Single Sign-On.
Project description
aqueduct
Permissions
I recommend using an AWS Account with Delegated Administration from Firewall Manager, Guard Duty, Stack Sets, etc., to access the required Organization permission.
- ec2:DescribeRegions
- organizations:ListAccounts
Requirements
curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
unzip awscliv2.zip
sudo ./aws/install
aws --version
pip3 install aws-sso-util
Installation
pip3 install aqueduct-utility
Initial Configuration
$ aqueduct
SSO Start URL [ ]: https://portal.awsapps.com/start
SSO Region [ ]: us-east-2
SSO Role [AWSAdministratorAccess]:
CLI Region [ ]: us-east-2
CLI Output [json]:
CDK Qualifier [ ]: 4n6ir
Aqueduct Menu
--------------------------------
AQUEDUCT v0.8.0
--------------------------------
Bootstrap
Command
Configure
Deploy
Destroy
> Micropipeline
Presets
Quit
Conduit Micropipeline
Permissions
- lambda:InvokeFunction
- s3:PutObject
Local Development
$ python setup.py install --user
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
aqueduct-utility-0.8.0.tar.gz
(10.9 kB
view hashes)
Built Distribution
Close
Hashes for aqueduct_utility-0.8.0-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 827ae3615c1a699b172b9a80900a9f3a9e5dcdd58724b9242f6fc53e4b414da2 |
|
MD5 | c51352d29f4c687821225721d0ce50f2 |
|
BLAKE2b-256 | d55fff91ef9dba0d76b0fbaf14d4ae29fbabbf0ada762119dbbe5b740ba2393e |