Skip to main content

CLI for rendering configuration templates with SSM Parameter Store as a data source

Project description

SSM Parameter Store Template

Command line application to render templates with data from SSM Parameter Store

codecov

Installation

The ssm-ps-template application is available via the Python Package Index and can be installed with pip:

pip install ssm-ps-template

Templating

The application uses Jinja2 for the templating engine. All functionality available to Jinja2 templates by default are exposed in the application.

Using Prefixes

The application has a default prefix of / that is prepended to parameter names that do not start with a leading slash (/).

This functionality allows you to group your variables under a path prefix like /my-application/settings and then only refer to the individual key values like password instead of referencing the full path of /my-application/settings/password.

If you reference a parameter name with a leading slash it will not prepend the prefix to the parameter name.

Getting Parameter Store Values

The application exposes get_parameter(name: str, default: typing.Optional[str] = None) in templates to access the values in SSM Parameter Store.

In the following example we assume there are Parameter Store values for the keys /my-application/foo and /my-application/bar and that the application is called with a prefix of /my-appliction:

foo: {{ get_parameter('/my-application/foo'}}
bar: {{ get_parameter('/my-application/bar'}}

Will render as:

foo: bar
baz: qux

Additionally, there is another function exposed get_parameters_by_path(path: str, default: typing.Optional[dict] = None) which will return a dictionary for the specified path.

The following example will iterate over the results:

{% for key, value in get_parameters_by_path('settings/', {}).items() %}
  {{ key }}: {{ value }}
{% endfor %}

Or you can use Jinja filters to convert them to YAML:

{{ get_parameters_by_path('settings/') | path_to_dict | toyaml | indent(2, first=True) }}

For values in ParameterStore that are stored as StringList, they are automatically transformed as a list of strings. Given the following value:

Key Value
/my-application/connections amqp://server1, amqp://server2

And the following template:

Connections:
{% for connection in get_parameter('/my-application/connections', []) %}
  - {{ connection }}

The following would be rendered:

Connections:
  - amqp://server1
  - amqp://server2

Performance Considerations

The parameter names are gathered in a pre-processing step to minimize calls to SSM Parameter Store.

Configuration

The configuration file provides the ability to specify multiple templates, override AWS configuration, and change logging levels:

Top-Level Configuration Directives

Directive Description
templates An array of template directives as detailed in the next table.
endpoint_url Specify an endpoint URL to use to override the default URL used to contact SSM Parameter Store
profile Specify the AWS profile to use. If unspecified will default to the AWS_DEFAULT_PROFILE environment variable or is unspecified
region Specify the AWS region to use. If unspecified it will default to the AWS_DEFAULT_REGION environment variable or is unspecified
replace_underscores Replace underscores with dashes when asking for values from SSM Parameter Store
verbose Turn debug logging on. Possible values are true and false

Template Configuration Directives

The templates directive in the configuration is an array of objects, defined by a source and destination.

Directive Description
source The source file of the template
destination The destination path to write the rendered template to
prefix The prefix to prepend variables with if they do not start with a forward-slash (/)

Extended Templating Functionality

In addition to the base functionality exposed by Jinja2, the following Python functions have been added:

Function Definition
get_parameter Get a string value from SSM Parameter Store
get_parameters_by_path Get a dictionary value from SSM Parameter Store
urlparse The urllib.parse.urlparse function from the Python standard library.
parse_qs The urllib.parse.parse_qs function from the Python standard library.
unquote The urllib.parse.unquote function from the Python standard library.

The following filters are added:

Filter Description
dashes_to_underscores Recursively replaces dashes with underscores in keys in data structures returned by get_parameters_by_path
path_to_dict Converts a dict with forward-slash delimited keys (/) to a nested dict using the / as the key delimiter
toyaml Converts a dictionary value to YAML

The following variables are exposed:

Variable Definition
environ The os.environ dictionary for accessing environment variables

Configuration File Format

The application supports JSON, TOML, or YAML for configuration. The following example is in YAML:

Example Configuration File

templates:
  - source: /etc/ssm-templates/nginx-example
    destination: /etc/nginx/sites-available/example
    prefix: /namespaced/application/nginx/
  - source: /etc/ssm-templates/postgres-example
    destination: /etc/postgresql/14/main/postgresql.conf
    prefix: /namespaced/application/postgres/
profile: default
region: us-east-1
verbose: false

Command Line Usage

usage: ssm-ps-template [-h] [--aws-profile AWS_PROFILE] [--aws-region AWS_REGION] [--endpoint-url ENDPOINT_URL] [--prefix PREFIX] [--replace-underscores]
                       [--verbose] [--version]
                       config

Command line application to render templates with data from SSM Parameter Store

positional arguments:
  config

optional arguments:
  -h, --help            show this help message and exit
  --aws-profile AWS_PROFILE
                        AWS Profile (default: None)
  --aws-region AWS_REGION
                        AWS Region (default: None)
  --endpoint-url ENDPOINT_URL
                        Specify an endpoint URL to use when contacting SSM Parameter Store. (default: None)
  --prefix PREFIX       Default SSM Key Prefix (default: /)
  --replace-underscores
                        Replace underscores in variable names to dashes when looking for values in SSM (default: False)
  --verbose
  --version             show program's version number and exit

Note that the default SSM prefix can also be set with the PARAMS_PREFIX environment variable and the endpoint URL setting cn be set with the SSM_ENDPOINT_URL environment variable.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

ssm-ps-template-2.2.0.tar.gz (15.1 kB view details)

Uploaded Source

Built Distribution

ssm_ps_template-2.2.0-py3-none-any.whl (12.0 kB view details)

Uploaded Python 3

File details

Details for the file ssm-ps-template-2.2.0.tar.gz.

File metadata

  • Download URL: ssm-ps-template-2.2.0.tar.gz
  • Upload date:
  • Size: 15.1 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.1 CPython/3.11.3

File hashes

Hashes for ssm-ps-template-2.2.0.tar.gz
Algorithm Hash digest
SHA256 7a0105d80284e31396b5933a3fcde550466f7c9f6e59141c0565ce2b733f778b
MD5 8fc4838558361655e6ad962e5fd7b7bf
BLAKE2b-256 81eb1e1f84e2dab1728be8b9f6b37e17f1b4f66dc055827d777bb794121c34ea

See more details on using hashes here.

File details

Details for the file ssm_ps_template-2.2.0-py3-none-any.whl.

File metadata

File hashes

Hashes for ssm_ps_template-2.2.0-py3-none-any.whl
Algorithm Hash digest
SHA256 a3ae8f439e116ab2e7c4c3d0d8389725178adfc3abe70bff4c3a5e3cd640f7e8
MD5 bf937a8bc7129244cdb55a02a0d5a2cf
BLAKE2b-256 902b232cd67d3ad4ef0cf3d1c84468a4828cb2310198a562fb6ccdb7d250f89f

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page