Command line launch and management tool for AWS CloudFormation
Project description
AWS CFN Control 
AWS-CFN-Control provides an interface to quickly deploy and redeploy AWS CloudFormation stacks. The cfnctl command provides the core functionality, with several other commands that will find AMI info, get stack status, build CloudFormation mappings, and other features. AWS-CFN-Control is very useful for CloudFormation templates that have parameters, and you want to create stacks with the same parameters in multiple regions, or you want to change just a few parameters values for a new stack.
License
This library is licensed under the Apache 2.0 License.
Prerequisites
It is assumed that you have an AWS account (preferably with admin privileges) and experience with CloudFormation. You will also need to be familiar with either AWS Cloud Development Kit (CDK) or writing your own CloudFormation templates. Either JSON or YAML formatted templates can be used.
Installation
pip install aws-cfn-control
TL;DR
- Build cfnctl parameters file
- Fill in values in the parameters file (located in dir ~/.cfnparam)
- Launch the stack
- Check stack status and outputs
Usage overview
Build the parameters file for a CloudFormation template:
This command builds a default parameters file:
cfnctl build -t <template_file>
Create a stack using the template or a parameters file:
This first create command (using -t) first checks if there is an existing parameters file, and prompts if it should be used. Otherwise, a parameters file is created using the stack name (-n) appended to the template file name. You are then prompted for the stack parameters (similar to build action), and then the stack is created.
cfnctl create -n stack001 -t <template_file>
This second command (using -f) uses an existing parameters file, which has the template location, to create a stack. You will not be prompted for any parameters:
cfnctl create -n stack001 -f <parameters_file>
List all existing stacks
cfnctl list
Delete a stack
cfnctl delete -n <stack_name>
More detailed information
Command help
usage: cfnctl [-h] [-r REGION] [-n STACK_NAME] [-t TEMPLATE] [-f PARAM_FILE] [-d] [-b BUCKET] [-nr] [-p AWS_PROFILE] [-y] [-v] cfn_action
Launch and manage CloudFormation templates from the command line
positional arguments:
cfn_action REQUIRED: Action: build|create|list|delete
build Builds the CFN parameter file (-t required)
create Creates a new stack (-n and [-t|-f] required)
list List all stacks (-d provides extra detail)
delete Deletes a stack (-n is required)
arguments:
-h, --help show this help message and exit
-r REGION Region name
-n STACK_NAME Stack name
-t TEMPLATE CFN Template from local file or S3 URL
-f PARAM_FILE Template parameter file
-d List details on all stacks
-b BUCKET Bucket to upload template to
-nr Do not rollback
-p AWS_PROFILE AWS Profile
-y On interactive question, force yes
-v Verbose config file
Using the defaults from CloudFormation templates and seeing existing resources
When using the build or create actions, as you are prompted for each parameter you will be given the choice of choosing the default value specified in the template. For example, if your template has this:
"MyInstanceType": {
"Default": "m5.24xlarge",
"Description": "Instance type",
"Type": "String"
},
Your prompt will have the default value included, and you just hit entire to accept the default:
MyInstanceType [m5.24xlarge]:
Existing resources
Additionally, resources that are frequently used, will list the existing values. For example, here is what the list of subnets look like, with the default set to subnet-abc22221:
Getting subnets for vpc-1234acde ...
subnet-aaa111bbb222ccc33 | us-west-2-lax-1a | Local Zone Subnet
subnet-abcd1111 | us-west-2b
subnet-abcd2222 | us-west-2a
subnet-abc33333 | us-west-2c
subnet-abc44444 | us-west-2d
Select subnet: [subnet-abcd2222]:
Required parameters
If a parameter is defined as required in the template, you will see a message similar to this:
Optional (but recommended) - Build cfnctl parameters file (stored in ~/.cfnparam)
The build process accounts for default values, built-in lists, and will prompted on any Parameter that is using "ConstraintDescription" and does not have a value. It will be saved in the ~/.cfnparam directory with .default appended to the template name. For example, the default parameter file for the template named stack1.json, is ~/.cfnparam/stack1.json.default.
Here is an example of running the cfnctl build command:
$ cfnctl build -t stack1.json
Creating config file /Users/joeuser/.cfnparam/stack1.json.default
Using config file /Users/joeuser/.cfnparam/stack1.json.default
EC2 keys found in us-east-1:
Jouser_IAD
Select EC2 Key: Jouser_IAD
SSHBucketName: jouser-cfn-templates
Getting security groups...
sg-1234asdf | default
sg-2345aslf | My-IPs
sg-12823fas | aws-cloud9-Dev1-IAD-
Select security group: sg-1234asdf
Getting VPC info...
vpc-5u5u235u | 10.0.0.0/16 | False | Private VPC 1
vpc-214u4u33 | 172.31.0.0/16 | True | Default VPC
Select VPC: vpc-5u5u235u
Getting subnets from vpc-5u5u235u...
subnet-123ljias | us-east-1a | Default 1a
subnet-a2939jis | us-east-1d | Default 1d
subnet-er395948 | us-east-1f | Default 1f
subnet-1243jjsa | us-east-1b | Default 1b
subnet-jasdfj23 | us-east-1e | Default 1e
subnet-asdfeirj | us-east-1c | Default 1c
Select subnet: subnet-123ljias
...
Edit the parameters file, and fill in values as needed
In your home directory under ~/.cfnparam, you will find a parameters file. Edit the parameters file as needed, if you see "<VALUE_NEEDED>", those values can not be null for successful stack luanch.
Example parameters file:
[AWS-Config]
TemplateUrl = /Users/joeuser/stack1.json
[Paramters]
ASG01ClusterSize = 2
ASG01InstanceType = c4.8xlarge
ASG01MaxClusterSize = 2
ASG01MinClusterSize = 0
AdditionalBucketName =
CreateElasticIP = True
EC2KeyName = Joeuser_IAD
EfsId =
OperatingSystem = alinux
SSHBucketName = jouser-keys
SSHClusterKeyPriv = id_rsa
SSHClusterKeyPub = id_rsa.pub
SecurityGroups = sg-1234asdf
Subnet = subnet-123ljias
UsePublicIp = True
VPCId = vpc-5u5u235u
Create the stack
If you already created the parameters file (steps above), when you run the create command you will be prompted to choose from either the existing (default) parameters file, or continue the create while answering the parameters questions one at a time.
For example, if the default parameters file exists you will see this:
$ cfnctl create -n teststack1 -t stack1.json
Using AWS credentials profile "default"
Lools like we're in us-east-1
Default parameters file /Users/joeuser/.cfnparam/stack1.json.default exists, use this file [Y/n]:
Answering "y" will create the stack using the values from the previously created default parameters file. Otherwise, you will be prompted for each parameter, and the parameters will be saved in the ~/.cfnparam directory with values used to create the stack with the stack name appended to the template name.
For example, the parameter file for the template stack1.json using the stack name "teststack1", will be ~/.cfnparam/stack1.json.teststack1:
$ cfnctl create -n teststack1 -t stack1.json
Using AWS credentials profile "default"
Lools like we're in us-east-1
Default parameters file /Users/joeuser/.cfnparam/stack1.json.default exists, use this file [Y/n]: n
Stack config file does not exists, continuing...
Creating parameters file /Users/joeuser/.cfnparam/stack1.json.teststack1
...
You can use any parameters file (using -f) to create a stack, as it has the template location and paramters in the file.
For example, to create a new stack (teststack2) using the parameters from the stack named "teststack1", you run this:
$ cfnctl create -n teststack2 -f ~/.cfnparam/stack1.json.teststack1
Here is example output from a create, using a previously created default parameters file:
$ cfnctl create -n teststack1 -t stack1.json
Using AWS credentials profile "default"
Lools like we're in us-east-1
Default parameters file /Users/joeuser/.cfnparam/stack1.json.default exists, use this file [Y/n]: y
Using parameters file: /Users/jouser/.cfnparam/stack1.json.default
teststack1 : CREATE_IN_PROGRESS
RootRole : CREATE_IN_PROGRESS
PlacementGroup : CREATE_IN_PROGRESS
EIPAddress : CREATE_COMPLETE
RootRole : CREATE_COMPLETE
RootInstanceProfile : CREATE_IN_PROGRESS
RootInstanceProfile : CREATE_COMPLETE
ASG01LaunchConfiguration : CREATE_IN_PROGRESS
ASG01LaunchConfiguration : CREATE_COMPLETE
AutoScalingGroup01 : CREATE_IN_PROGRESS
AutoScalingGroup01 : CREATE_IN_PROGRESS
AutoScalingGroup01 : CREATE_COMPLETE
teststack1 : CREATE_COMPLETE
Check stack status and outputs
After the creation is finished, the parameters and outputs are printed out:
[Parameters]
OperatingSystem = alinux
SSHClusterKeyPriv = id_rsa
ASG01InstanceType = c4.8xlarge
SSHClusterKeyPub = id_rsa.pub
SecurityGroups = sg-1234asdf
ASG01ClusterSize = 2
VPCId = vpc-5u5u235u
CreateElasticIP = True
ASG01MaxClusterSize = 2
AdditionalBucketName =
EfsId =
SSHBucketName = jouser-keys
ASG01MinClusterSize = 0
UsePublicIp = True
EC2KeyName = Jouser_IAD
Subnet = subnet-123ljias
[Outputs]
ElasticIP = 109.234.22.45
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
