Automate Cloud Development Kit (CDK) bootstrapping into an AWS Organization using Single Sign-On.
Project description
aqueduct
Permissions
I recommend using an AWS Account with Delegated Administration from Firewall Manager, Guard Duty, Stack Sets, etc., to access the required Organization permission.
- ec2:DescribeRegions
- organizations:ListAccounts
Requirements
curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
unzip awscliv2.zip
sudo ./aws/install
aws --version
pip3 install aws-sso-util
Installation
pip3 install aqueduct-utility
Initial Configuration
$ aqueduct
SSO Start URL [ ]: https://portal.awsapps.com/start
SSO Region [ ]: us-east-2
SSO Role [AWSAdministratorAccess]:
CLI Region [ ]: us-east-2
CLI Output [json]:
CDK Qualifier [ ]: 4n6ir
Aqueduct Menu
--------------------------------
AQUEDUCT v0.8.1
--------------------------------
Bootstrap
Command
Configure
Deploy
Destroy
> Micropipeline
Presets
Quit
Conduit Micropipeline
Permissions
- lambda:InvokeFunction
- s3:PutObject
Local Development
$ python setup.py install --user
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
aqueduct-utility-0.8.1.tar.gz
(11.0 kB
view hashes)
Built Distribution
Close
Hashes for aqueduct_utility-0.8.1-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 5f2bae49a84e3cd2e0174add935edbf8d10f2a03b4c3e4fcc93886bf996c1fcf |
|
MD5 | 409251e9afb70aa3b65ebae61bf9e3fc |
|
BLAKE2b-256 | 2555eb0d23cf79c35291b5d32045914ce81d7a8a6f10fbcc4aa1d46cc1e3281f |