Automate Cloud Development Kit (CDK) bootstrapping into an AWS Organization using Single Sign-On.
Project description
aqueduct
Permissions
I recommend using an AWS Account with Delegated Administration from Firewall Manager, Guard Duty, Stack Sets, etc., to access the required Organization permission.
- ec2:DescribeRegions
- organizations:ListAccounts
Requirements
curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
unzip awscliv2.zip
sudo ./aws/install
aws --version
pip3 install aws-sso-util
Installation
pip3 install aqueduct-utility
Initial Configuration
$ aqueduct
SSO Start URL [ ]: https://portal.awsapps.com/start
SSO Region [ ]: us-east-2
SSO Role [AWSAdministratorAccess]:
CLI Region [ ]: us-east-2
CLI Output [json]:
CDK Qualifier [ ]: 4n6ir
Aqueduct Menu
--------------------------------
AQUEDUCT v0.8.3
--------------------------------
Bootstrap
Command
Configure
Deploy
Destroy
> Nanopipeline
Presets
Quit
Conduit Nanopipeline
Permissions
- lambda:InvokeFunction
- s3:PutObject
Local Development
$ python setup.py install --user
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
aqueduct-utility-0.8.3.tar.gz
(11.0 kB
view hashes)
Built Distribution
Close
Hashes for aqueduct_utility-0.8.3-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 4b8304f633e09860045edf1c2a3dac47ee656a1f16467031222af49165e5c840 |
|
MD5 | 416646b5e7775572a37a426a4d246b1d |
|
BLAKE2b-256 | 7b829837219d191ef1cf39450ddd93b85570567acc00ce64bcdc8689a143a67c |