anhtv08 · August 25, 2019 13:57 · anhtv08 · Aug 25, 2019
diff --git a/cost_controller_handlers.py b/cost_controller_handlers.py
 from typing import Sequence
 import logging as log
 import boto3
 from typing import List
 from botocore.exceptions import ClientError
 from typing import Dict

 ec2_client = boto3.client('ec2')
 sns_client = boto3.client('sns')

 '''
 my test notificaiton topic ARN, you need to update this accordingly in your aws environment
 '''
 SNS_ARN='arn:aws:sns:us-east-2:674028589551:dynamodb'

 def get_tag_for_instance_id(ec2_client, instance_id):
    tag_list: List[str] = []
    InstanceIds = [
        instance_id
    ]
    try:
        ec2_instance_details = ec2_client.describe_instances(
            InstanceIds=InstanceIds
        )
        if ec2_instance_details:
            log.info(ec2_instance_details)
            try:
                tags = ec2_instance_details['Reservations'][0]['Instances'][0]['Tags']
                log.info(tags)
                '''
                 if not tags then terminate the instance
                 mandatory tags names are not provided then shutdown also
                '''
                if not tags:
                    return tag_list
                else:
                    for item in tags:
                        tag_list.append(item['Key'])
            except Exception as ex:
                log.debug(ex)
                return tag_list

    except Exception as e:
        log.error(e)
    return tag_list


 def send_notification(sns_client, topic_arn, instance_id):
    try:
        sns_client.publish(
            TopicArn=topic_arn,
            Message='Terminate EC2 instances due to missing required tags, instane_id : ' + instance_id,
            Subject='Terminate EC2 instances due to missing required tags'

        )
    except ClientError as ex:
        log.error("Failed to send notification to topic name : " + topic_arn)


 def evaluate_ec2_instance(ec2_client, event):
    instance_id = event['detail']['instance-id']
    instance_state = event['detail']['state']

    '''
        only perform this evaluation rule when starting an new instance
        check if instance state is pending then try to perfrom evaluation 
    '''
    if instance_state != 'pending':
        log.info('current state : ' + instance_state)
        return

    tag_list = get_tag_for_instance_id(ec2_client, instance_id)

    if not tag_list:
        shutdown_ec2_instance(ec2_client, instance_id)
    else:
        if not validate_tag_name(tag_list):
            shutdown_ec2_instance(ec2_client, instance_id)
        else:
            log.info("Instance has been tagged properly")


 def shutdown_ec2_instance(ec2_client, instanceId):
    log.info("shutting down instance-id :" + instanceId)
    ec2_client.terminate_instances(
        InstanceIds=[
            instanceId
        ]
    )
    send_notification(sns_client, SNS_ARN, instanceId)


 def validate_tag_name(tags: List[str]):
    required_tag_names: Sequence[str] = ['environment', 'owner', 'projectName', 'costCentre']
    is_valid = True

    for required_tag in required_tag_names:
        if required_tag not in tags:
            is_valid = False
            break

    return is_valid


 def lambda_handler(event, context):
    log.info(" evaluating tags of ec2 instance")
    if not event:
        log.info("event is not valid")
    else:
        evaluate_ec2_instance(ec2_client, event)
	from typing import Sequence
	import logging as log
	import boto3
	from typing import List
	from botocore.exceptions import ClientError
	from typing import Dict

	ec2_client = boto3.client('ec2')
	sns_client = boto3.client('sns')

	'''
	my test notificaiton topic ARN, you need to update this accordingly in your aws environment
	'''
	SNS_ARN='arn:aws:sns:us-east-2:674028589551:dynamodb'

	def get_tag_for_instance_id(ec2_client, instance_id):
	tag_list: List[str] = []
	InstanceIds = [
	instance_id
	]
	try:
	ec2_instance_details = ec2_client.describe_instances(
	InstanceIds=InstanceIds
	)
	if ec2_instance_details:
	log.info(ec2_instance_details)
	try:
	tags = ec2_instance_details['Reservations'][0]['Instances'][0]['Tags']
	log.info(tags)
	'''
	if not tags then terminate the instance
	mandatory tags names are not provided then shutdown also
	'''
	if not tags:
	return tag_list
	else:
	for item in tags:
	tag_list.append(item['Key'])
	except Exception as ex:
	log.debug(ex)
	return tag_list

	except Exception as e:
	log.error(e)
	return tag_list


	def send_notification(sns_client, topic_arn, instance_id):
	try:
	sns_client.publish(
	TopicArn=topic_arn,
	Message='Terminate EC2 instances due to missing required tags, instane_id : ' + instance_id,
	Subject='Terminate EC2 instances due to missing required tags'

	)
	except ClientError as ex:
	log.error("Failed to send notification to topic name : " + topic_arn)


	def evaluate_ec2_instance(ec2_client, event):
	instance_id = event['detail']['instance-id']
	instance_state = event['detail']['state']

	'''
	only perform this evaluation rule when starting an new instance
	check if instance state is pending then try to perfrom evaluation
	'''
	if instance_state != 'pending':
	log.info('current state : ' + instance_state)
	return

	tag_list = get_tag_for_instance_id(ec2_client, instance_id)

	if not tag_list:
	shutdown_ec2_instance(ec2_client, instance_id)
	else:
	if not validate_tag_name(tag_list):
	shutdown_ec2_instance(ec2_client, instance_id)
	else:
	log.info("Instance has been tagged properly")


	def shutdown_ec2_instance(ec2_client, instanceId):
	log.info("shutting down instance-id :" + instanceId)
	ec2_client.terminate_instances(
	InstanceIds=[
	instanceId
	]
	)
	send_notification(sns_client, SNS_ARN, instanceId)


	def validate_tag_name(tags: List[str]):
	required_tag_names: Sequence[str] = ['environment', 'owner', 'projectName', 'costCentre']
	is_valid = True

	for required_tag in required_tag_names:
	if required_tag not in tags:
	is_valid = False
	break

	return is_valid


	def lambda_handler(event, context):
	log.info(" evaluating tags of ec2 instance")
	if not event:
	log.info("event is not valid")
	else:
	evaluate_ec2_instance(ec2_client, event)