kennethlynne · January 9, 2016 19:06
diff --git a/aws-cloudformer-cloudformation-template.json b/aws-cloudformer-cloudformation-template.json
 {
  "AWSTemplateFormatVersion" : "2010-09-09",

  "Description" : "AWS CloudFormer Beta - template creation prototype application. This tool allows you to create an AWS CloudFormation template from the AWS resources in your AWS account. **Warning** This template creates a single EC2 instance in your account to run the application - you will be billed for the instance at normal AWS EC2 rates.",

  "Parameters" : {

    "Username" : {
      "Description" : "Username to log in to CloudFormer",
      "Type" : "String"
    },
    "Password" : {
      "Description" : "Password to log in to CloudFormer",
      "Type" : "String",
      "NoEcho" : "true"
    }
  },

  "Mappings" : {
    "Region2Examples" : {
      "us-east-1"      : { "Examples" : "https://s3.amazonaws.com/cloudformation-examples-us-east-1" },
      "us-west-2"      : { "Examples" : "https://s3-us-west-2.amazonaws.com/cloudformation-examples-us-west-2" },
      "us-west-1"      : { "Examples" : "https://s3-us-west-1.amazonaws.com/cloudformation-examples-us-west-1" },
      "eu-west-1"      : { "Examples" : "https://s3-eu-west-1.amazonaws.com/cloudformation-examples-eu-west-1" },
      "eu-central-1"   : { "Examples" : "https://s3-eu-central-1.amazonaws.com/cloudformation-examples-eu-central-1" },
      "ap-southeast-1" : { "Examples" : "https://s3-ap-southeast-1.amazonaws.com/cloudformation-examples-ap-southeast-1" },
      "ap-northeast-1" : { "Examples" : "https://s3-ap-northeast-1.amazonaws.com/cloudformation-examples-ap-northeast-1" },
      "ap-southeast-2" : { "Examples" : "https://s3-ap-southeast-2.amazonaws.com/cloudformation-examples-ap-southeast-2" },
      "sa-east-1"      : { "Examples" : "https://s3-sa-east-1.amazonaws.com/cloudformation-examples-sa-east-1" },
      "cn-north-1"     : { "Examples" : "https://s3.cn-north-1.amazonaws.com.cn/cloudformation-examples-cn-north-1" }
    }
 ,
    "Region2Principal" : {
      "us-east-1"      : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
      "us-west-2"      : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
      "us-west-1"      : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
      "eu-west-1"      : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
      "ap-southeast-1" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
      "ap-northeast-1" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
      "ap-southeast-2" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
      "sa-east-1"      : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
      "cn-north-1"     : { "EC2Principal" : "ec2.amazonaws.com.cn", "OpsWorksPrincipal" : "opsworks.amazonaws.com.cn" },
      "eu-central-1"   : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" }
    }
 ,
    "AWSInstanceType2Arch" : {
      "t1.micro"    : { "Arch" : "PV64"   },
      "t2.micro"    : { "Arch" : "HVM64"  },
      "t2.small"    : { "Arch" : "HVM64"  },
      "t2.medium"   : { "Arch" : "HVM64"  },
      "m1.small"    : { "Arch" : "PV64"   },
      "m1.medium"   : { "Arch" : "PV64"   },
      "m1.large"    : { "Arch" : "PV64"   },
      "m1.xlarge"   : { "Arch" : "PV64"   },
      "m2.xlarge"   : { "Arch" : "PV64"   },
      "m2.2xlarge"  : { "Arch" : "PV64"   },
      "m2.4xlarge"  : { "Arch" : "PV64"   },
      "m3.medium"   : { "Arch" : "HVM64"  },
      "m3.large"    : { "Arch" : "HVM64"  },
      "m3.xlarge"   : { "Arch" : "HVM64"  },
      "m3.2xlarge"  : { "Arch" : "HVM64"  },
      "c1.medium"   : { "Arch" : "PV64"   },
      "c1.xlarge"   : { "Arch" : "PV64"   },
      "c3.large"    : { "Arch" : "HVM64"  },
      "c3.xlarge"   : { "Arch" : "HVM64"  },
      "c3.2xlarge"  : { "Arch" : "HVM64"  },
      "c3.4xlarge"  : { "Arch" : "HVM64"  },
      "c3.8xlarge"  : { "Arch" : "HVM64"  },
      "g2.2xlarge"  : { "Arch" : "HVMG2"  },
      "r3.large"    : { "Arch" : "HVM64"  },
      "r3.xlarge"   : { "Arch" : "HVM64"  },
      "r3.2xlarge"  : { "Arch" : "HVM64"  },
      "r3.4xlarge"  : { "Arch" : "HVM64"  },
      "r3.8xlarge"  : { "Arch" : "HVM64"  },
      "i2.xlarge"   : { "Arch" : "HVM64"  },
      "i2.2xlarge"  : { "Arch" : "HVM64"  },
      "i2.4xlarge"  : { "Arch" : "HVM64"  },
      "i2.8xlarge"  : { "Arch" : "HVM64"  },
      "hi1.4xlarge" : { "Arch" : "HVM64"  },
      "hs1.8xlarge" : { "Arch" : "HVM64"  },
      "cr1.8xlarge" : { "Arch" : "HVM64"  },
      "cc2.8xlarge" : { "Arch" : "HVM64"  }
    }
 ,
    "AWSRegionArch2AMI" : {
      "us-east-1"        : {"PV64" : "ami-cf1066aa", "HVM64" : "ami-d71066b2", "HVMG2" : "ami-8ba3d3ee"},
      "us-west-2"        : {"PV64" : "ami-81f7e8b1", "HVM64" : "ami-83f7e8b3", "HVMG2" : "ami-99352ba9"},
      "us-west-1"        : {"PV64" : "ami-d53aff91", "HVM64" : "ami-cb3aff8f", "HVMG2" : "ami-17985c53"},
      "eu-west-1"        : {"PV64" : "ami-a3be93d4", "HVM64" : "ami-a1be93d6", "HVMG2" : "ami-358ca042"},
      "eu-central-1"     : {"PV64" : "ami-a6aeaebb", "HVM64" : "ami-d6aeaecb", "HVMG2" : "ami-ba6467a7"},
      "ap-northeast-1"   : {"PV64" : "ami-9c2fb89c", "HVM64" : "ami-9e2fb89e", "HVMG2" : "ami-7c50c17c"},
      "ap-southeast-1"   : {"PV64" : "ami-50978202", "HVM64" : "ami-56978204", "HVMG2" : "ami-4e7e6a1c"},
      "ap-southeast-2"   : {"PV64" : "ami-c71856fd", "HVM64" : "ami-c51856ff", "HVMG2" : "ami-156f212f"},
      "sa-east-1"        : {"PV64" : "ami-370c992a", "HVM64" : "ami-310c992c", "HVMG2" : "NOT_SUPPORTED"},
      "cn-north-1"       : {"PV64" : "ami-54b22e6d", "HVM64" : "ami-64b22e5d", "HVMG2" : "NOT_SUPPORTED"}
    }

  },

  "Resources" : {

    "CFNRole": {
      "Type": "AWS::IAM::Role",
      "Properties": {
        "AssumeRolePolicyDocument": {
          "Statement": [{
            "Effect": "Allow",
            "Principal": { "Service": { "Fn::FindInMap" : [ "Region2Principal", {"Ref" : "AWS::Region"}, "EC2Principal"]}},
            "Action": [ "sts:AssumeRole" ]
          }]
        },
        "Path": "/"
      }
    },

    "CFNRolePolicy": {
      "Type": "AWS::IAM::Policy",
      "Properties": {
        "PolicyName": "CloudFormerPolicy",
        "PolicyDocument": {
          "Statement": [ {
            "Effect": "Allow",
            "Action"   : [
              "autoscaling:Describe*",
              "cloudformation:Describe*",
              "cloudformation:List*",
              "cloudfront:List*",
              "cloudFront:Get*",
              "cloudtrail:Describe*",
              "cloudtrail:Get*",
              "cloudwatch:Describe*",
              "dynamodb:List*",
              "dynamodb:Describe*",
              "elasticbeanstalk:Describe*",
              "ec2:Describe*",
              "elasticloadbalancing:Describe*",
              "elasticache:Describe*",
              "rds:Describe*",
              "rds:List*",
              "route53:List*",
              "route53:Get*",
              "s3:List*",
              "s3:Get*",
              "s3:PutObject",
              "sdb:Get*",
              "sdb:List*",
              "sns:Get*",
              "sns:List*",
              "sqs:Get*",
              "sqs:List*",
              "opsworks:Describe*",
              "redshift:Describe*",
              "kinesis:Describe*",
              "kinesis:List*"
            ],
            "Resource": "*"
          } ]
        },
        "Roles": [ { "Ref": "CFNRole" } ]
      }
    },

    "CFNInstanceProfile": {
      "Type": "AWS::IAM::InstanceProfile",
      "Properties": {
        "Path": "/",
        "Roles": [ { "Ref": "CFNRole" } ]
      }
    },

    "WebServer": {
      "Type": "AWS::EC2::Instance",
      "Metadata" : {
        "AWS::CloudFormation::Init" : {
          "configSets" : {
            "full_install" : ["base", "cloudformer"]
          },
          "base" : {
            "packages" : {
              "yum" : {
                "gcc"              : [],
                "gcc-c++"          : [],
                "make"             : [],
                "libxml2-devel"    : [],
                "libxslt-devel"    : [],
                "sqlite-devel"     : [],
                "patch"            : [],
                "readline"         : [],
                "readline-devel"   : [],
                "zlib"             : [],
                "zlib-devel"       : [],
                "libyaml-devel"    : [],
                "libffi-devel"     : [],
                "openssl-devel"    : [],
                "bzip2"            : [],
                "autoconf"         : [],
                "automake"         : [],
                "libtool"          : [],
                "bison"            : [],
                "ruby-devel"       : []
              }
            }
          },
          "cloudformer" : {
            "sources" : {
              "/home/ec2-user/cloudformer" : {"Fn::Join" : ["/", [
                                              {"Fn::FindInMap" : ["Region2Examples", {"Ref" : "AWS::Region"}, "Examples"]},
                                              "AWSCloudFormer040.zip" ]]}
            },
            "files" : {
              "/home/ec2-user/setup_cloudformer" : {
                "content" : { "Fn::Join" : ["", [
                  "#!/usr/bin/env bash\n",
                  "cd /home/ec2-user/cloudformer\n",
                  "# Setup the CloudFormer service\n",
                  "mkdir -p vendor/bundle\n",
                  "gem install --local /home/ec2-user/cloudformer/vendor/cache/rake-10.4.2.gem\n",
                  "gem install --local /home/ec2-user/cloudformer/vendor/cache/bundler-1.7.11.gem\n",
                  "gem install --local /home/ec2-user/cloudformer/vendor/cache/bundle-0.0.1.gem\n",
                  "/usr/local/bin/bundle install --local --path /home/ec2-user/cloudformer/vendor/bundle\n",
                  "/usr/local/bin/rake RAILS_ENV=production db:migrate\n",
                  "gem install --local /home/ec2-user/cloudformer/vendor/cache/rack-1.6.0.gem\n",
                  "gem install --local /home/ec2-user/cloudformer/vendor/cache/eventmachine-1.0.4.gem\n",
                  "gem install --local /home/ec2-user/cloudformer/vendor/cache/daemons-1.1.9.gem\n",
                  "gem install --local /home/ec2-user/cloudformer/vendor/cache/thin-1.6.3.gem\n",
                  "# Create certificate and private key for SSL\n",
                  "mkdir -p /home/ec2-user/cloudformer/.ssl\n",
                  "cd /home/ec2-user/cloudformer/.ssl\n",
                  "openssl genrsa -des3 -passout pass:\"" , { "Ref" : "Password" }, "\" -out server.pass.key 1024\n",
                  "openssl rsa -passin pass:\"", { "Ref" : "Password" }, "\" -in server.pass.key -out server.key\n",
                  "openssl req -new -key server.key -out server.csr -subj \"/C=US/ST=Washington/L=Seattle/O=Amazon Web Services/OU=CloudFormer\"\n",
                  "openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt\n",
                  "rm server.pass.key server.csr\n"
                ]]},
                "mode"  : "000755",
                "owner" : "root",
                "group" : "root"
              },
              "/home/ec2-user/cloudformer/config/initializers/user.rb" : {
                "content" : { "Fn::Join" : ["", [
                  "USER_NAME = \"", { "Ref" : "Username" }, "\"\n",
                  "PASSWORD = \"", { "Ref" : "Password" }, "\"\n"
                ]]},
                "mode"  : "000400",
                "owner" : "root",
                "group" : "root"
              },
              "/usr/bin/cloudformer" : {
                "content" : { "Fn::Join" : ["", [
                  "#!/usr/bin/env bash\n",
                  "cd /home/ec2-user/cloudformer\n",
                  "/usr/local/bin/thin start -p 443 -e production -d --ssl --ssl-key-file /home/ec2-user/cloudformer/.ssl/server.key --ssl-cert-file /home/ec2-user/cloudformer/.ssl/server.crt\n"
                ]]},
                "mode"  : "000755",
                "owner" : "root",
                "group" : "root"
              }
            },
            "commands" : {
              "01_install_cloudformer" : {
                "command" : "/home/ec2-user/setup_cloudformer &> /var/log/setup_cloudformer.log",
                "cwd" : "/home/ec2-user/cloudformer"
              },
              "02_setup_boot" : {
                "command" : "echo '/usr/bin/cloudformer' >> /etc/rc.local",
                "cwd" : "/"
              }
            }
          }
        }
      },
      "Properties": {
        "ImageId" : { "Fn::FindInMap" : [ "AWSRegionArch2AMI", { "Ref" : "AWS::Region" },
                          { "Fn::FindInMap" : [ "AWSInstanceType2Arch", "t1.micro", "Arch" ] } ] },
        "InstanceType"       : "t1.micro",
        "SecurityGroups"     : [ {"Ref" : "WebServerSecurityGroup"} ],
        "IamInstanceProfile" : { "Ref" : "CFNInstanceProfile" },
        "UserData"           : { "Fn::Base64" : { "Fn::Join" : ["", [
          "#!/bin/bash -xe\n",
          "yum update -y aws-cfn-bootstrap\n",

          "/opt/aws/bin/cfn-init -v ",
          "         --stack ", { "Ref" : "AWS::StackId" },
          "         --resource WebServer ",
          "         --configsets full_install ",
          "         --region ", { "Ref" : "AWS::Region" }, "\n",

          "/opt/aws/bin/cfn-signal -e $? ",
          "         --stack ", { "Ref" : "AWS::StackId" },
          "         --resource WebServer ",
          "         --region ", { "Ref" : "AWS::Region" }, "\n"
        ]]}}
      },
      "CreationPolicy" : {
        "ResourceSignal" : {
          "Timeout" : "PT30M"
        }
      }
    },

    "WebServerSecurityGroup" : {
      "Type" : "AWS::EC2::SecurityGroup",
      "Properties" : {
        "GroupDescription" : "Enable HTTPS access via port 443",
        "SecurityGroupIngress" : [
          {"IpProtocol" : "tcp", "FromPort" : "443", "ToPort" : "443", "CidrIp" : "0.0.0.0/0"}
        ]
      }
    }
  },

  "Outputs" : {
    "WebsiteURL" : {
      "Value" : { "Fn::Join" : ["", ["https://", { "Fn::GetAtt" : [ "WebServer", "PublicDnsName" ]} ]] },
      "Description" : "URL for CloudFormer"
    }
  }
 }
	{
	"AWSTemplateFormatVersion" : "2010-09-09",

	"Description" : "AWS CloudFormer Beta - template creation prototype application. This tool allows you to create an AWS CloudFormation template from the AWS resources in your AWS account. Warning This template creates a single EC2 instance in your account to run the application - you will be billed for the instance at normal AWS EC2 rates.",

	"Parameters" : {

	"Username" : {
	"Description" : "Username to log in to CloudFormer",
	"Type" : "String"
	},
	"Password" : {
	"Description" : "Password to log in to CloudFormer",
	"Type" : "String",
	"NoEcho" : "true"
	}
	},

	"Mappings" : {
	"Region2Examples" : {
	"us-east-1" : { "Examples" : "https://s3.amazonaws.com/cloudformation-examples-us-east-1" },
	"us-west-2" : { "Examples" : "https://s3-us-west-2.amazonaws.com/cloudformation-examples-us-west-2" },
	"us-west-1" : { "Examples" : "https://s3-us-west-1.amazonaws.com/cloudformation-examples-us-west-1" },
	"eu-west-1" : { "Examples" : "https://s3-eu-west-1.amazonaws.com/cloudformation-examples-eu-west-1" },
	"eu-central-1" : { "Examples" : "https://s3-eu-central-1.amazonaws.com/cloudformation-examples-eu-central-1" },
	"ap-southeast-1" : { "Examples" : "https://s3-ap-southeast-1.amazonaws.com/cloudformation-examples-ap-southeast-1" },
	"ap-northeast-1" : { "Examples" : "https://s3-ap-northeast-1.amazonaws.com/cloudformation-examples-ap-northeast-1" },
	"ap-southeast-2" : { "Examples" : "https://s3-ap-southeast-2.amazonaws.com/cloudformation-examples-ap-southeast-2" },
	"sa-east-1" : { "Examples" : "https://s3-sa-east-1.amazonaws.com/cloudformation-examples-sa-east-1" },
	"cn-north-1" : { "Examples" : "https://s3.cn-north-1.amazonaws.com.cn/cloudformation-examples-cn-north-1" }
	}
	,
	"Region2Principal" : {
	"us-east-1" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
	"us-west-2" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
	"us-west-1" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
	"eu-west-1" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
	"ap-southeast-1" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
	"ap-northeast-1" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
	"ap-southeast-2" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
	"sa-east-1" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" },
	"cn-north-1" : { "EC2Principal" : "ec2.amazonaws.com.cn", "OpsWorksPrincipal" : "opsworks.amazonaws.com.cn" },
	"eu-central-1" : { "EC2Principal" : "ec2.amazonaws.com", "OpsWorksPrincipal" : "opsworks.amazonaws.com" }
	}
	,
	"AWSInstanceType2Arch" : {
	"t1.micro" : { "Arch" : "PV64" },
	"t2.micro" : { "Arch" : "HVM64" },
	"t2.small" : { "Arch" : "HVM64" },
	"t2.medium" : { "Arch" : "HVM64" },
	"m1.small" : { "Arch" : "PV64" },
	"m1.medium" : { "Arch" : "PV64" },
	"m1.large" : { "Arch" : "PV64" },
	"m1.xlarge" : { "Arch" : "PV64" },
	"m2.xlarge" : { "Arch" : "PV64" },
	"m2.2xlarge" : { "Arch" : "PV64" },
	"m2.4xlarge" : { "Arch" : "PV64" },
	"m3.medium" : { "Arch" : "HVM64" },
	"m3.large" : { "Arch" : "HVM64" },
	"m3.xlarge" : { "Arch" : "HVM64" },
	"m3.2xlarge" : { "Arch" : "HVM64" },
	"c1.medium" : { "Arch" : "PV64" },
	"c1.xlarge" : { "Arch" : "PV64" },
	"c3.large" : { "Arch" : "HVM64" },
	"c3.xlarge" : { "Arch" : "HVM64" },
	"c3.2xlarge" : { "Arch" : "HVM64" },
	"c3.4xlarge" : { "Arch" : "HVM64" },
	"c3.8xlarge" : { "Arch" : "HVM64" },
	"g2.2xlarge" : { "Arch" : "HVMG2" },
	"r3.large" : { "Arch" : "HVM64" },
	"r3.xlarge" : { "Arch" : "HVM64" },
	"r3.2xlarge" : { "Arch" : "HVM64" },
	"r3.4xlarge" : { "Arch" : "HVM64" },
	"r3.8xlarge" : { "Arch" : "HVM64" },
	"i2.xlarge" : { "Arch" : "HVM64" },
	"i2.2xlarge" : { "Arch" : "HVM64" },
	"i2.4xlarge" : { "Arch" : "HVM64" },
	"i2.8xlarge" : { "Arch" : "HVM64" },
	"hi1.4xlarge" : { "Arch" : "HVM64" },
	"hs1.8xlarge" : { "Arch" : "HVM64" },
	"cr1.8xlarge" : { "Arch" : "HVM64" },
	"cc2.8xlarge" : { "Arch" : "HVM64" }
	}
	,
	"AWSRegionArch2AMI" : {
	"us-east-1" : {"PV64" : "ami-cf1066aa", "HVM64" : "ami-d71066b2", "HVMG2" : "ami-8ba3d3ee"},
	"us-west-2" : {"PV64" : "ami-81f7e8b1", "HVM64" : "ami-83f7e8b3", "HVMG2" : "ami-99352ba9"},
	"us-west-1" : {"PV64" : "ami-d53aff91", "HVM64" : "ami-cb3aff8f", "HVMG2" : "ami-17985c53"},
	"eu-west-1" : {"PV64" : "ami-a3be93d4", "HVM64" : "ami-a1be93d6", "HVMG2" : "ami-358ca042"},
	"eu-central-1" : {"PV64" : "ami-a6aeaebb", "HVM64" : "ami-d6aeaecb", "HVMG2" : "ami-ba6467a7"},
	"ap-northeast-1" : {"PV64" : "ami-9c2fb89c", "HVM64" : "ami-9e2fb89e", "HVMG2" : "ami-7c50c17c"},
	"ap-southeast-1" : {"PV64" : "ami-50978202", "HVM64" : "ami-56978204", "HVMG2" : "ami-4e7e6a1c"},
	"ap-southeast-2" : {"PV64" : "ami-c71856fd", "HVM64" : "ami-c51856ff", "HVMG2" : "ami-156f212f"},
	"sa-east-1" : {"PV64" : "ami-370c992a", "HVM64" : "ami-310c992c", "HVMG2" : "NOT_SUPPORTED"},
	"cn-north-1" : {"PV64" : "ami-54b22e6d", "HVM64" : "ami-64b22e5d", "HVMG2" : "NOT_SUPPORTED"}
	}

	},

	"Resources" : {

	"CFNRole": {
	"Type": "AWS::IAM::Role",
	"Properties": {
	"AssumeRolePolicyDocument": {
	"Statement": [{
	"Effect": "Allow",
	"Principal": { "Service": { "Fn::FindInMap" : [ "Region2Principal", {"Ref" : "AWS::Region"}, "EC2Principal"]}},
	"Action": [ "sts:AssumeRole" ]
	}]
	},
	"Path": "/"
	}
	},

	"CFNRolePolicy": {
	"Type": "AWS::IAM::Policy",
	"Properties": {
	"PolicyName": "CloudFormerPolicy",
	"PolicyDocument": {
	"Statement": [ {
	"Effect": "Allow",
	"Action" : [
	"autoscaling:Describe*",
	"cloudformation:Describe*",
	"cloudformation:List*",
	"cloudfront:List*",
	"cloudFront:Get*",
	"cloudtrail:Describe*",
	"cloudtrail:Get*",
	"cloudwatch:Describe*",
	"dynamodb:List*",
	"dynamodb:Describe*",
	"elasticbeanstalk:Describe*",
	"ec2:Describe*",
	"elasticloadbalancing:Describe*",
	"elasticache:Describe*",
	"rds:Describe*",
	"rds:List*",
	"route53:List*",
	"route53:Get*",
	"s3:List*",
	"s3:Get*",
	"s3:PutObject",
	"sdb:Get*",
	"sdb:List*",
	"sns:Get*",
	"sns:List*",
	"sqs:Get*",
	"sqs:List*",
	"opsworks:Describe*",
	"redshift:Describe*",
	"kinesis:Describe*",
	"kinesis:List*"
	],
	"Resource": "*"
	} ]
	},
	"Roles": [ { "Ref": "CFNRole" } ]
	}
	},

	"CFNInstanceProfile": {
	"Type": "AWS::IAM::InstanceProfile",
	"Properties": {
	"Path": "/",
	"Roles": [ { "Ref": "CFNRole" } ]
	}
	},

	"WebServer": {
	"Type": "AWS::EC2::Instance",
	"Metadata" : {
	"AWS::CloudFormation::Init" : {
	"configSets" : {
	"full_install" : ["base", "cloudformer"]
	},
	"base" : {
	"packages" : {
	"yum" : {
	"gcc" : [],
	"gcc-c++" : [],
	"make" : [],
	"libxml2-devel" : [],
	"libxslt-devel" : [],
	"sqlite-devel" : [],
	"patch" : [],
	"readline" : [],
	"readline-devel" : [],
	"zlib" : [],
	"zlib-devel" : [],
	"libyaml-devel" : [],
	"libffi-devel" : [],
	"openssl-devel" : [],
	"bzip2" : [],
	"autoconf" : [],
	"automake" : [],
	"libtool" : [],
	"bison" : [],
	"ruby-devel" : []
	}
	}
	},
	"cloudformer" : {
	"sources" : {
	"/home/ec2-user/cloudformer" : {"Fn::Join" : ["/", [
	{"Fn::FindInMap" : ["Region2Examples", {"Ref" : "AWS::Region"}, "Examples"]},
	"AWSCloudFormer040.zip" ]]}
	},
	"files" : {
	"/home/ec2-user/setup_cloudformer" : {
	"content" : { "Fn::Join" : ["", [
	"#!/usr/bin/env bash\n",
	"cd /home/ec2-user/cloudformer\n",
	"# Setup the CloudFormer service\n",
	"mkdir -p vendor/bundle\n",
	"gem install --local /home/ec2-user/cloudformer/vendor/cache/rake-10.4.2.gem\n",
	"gem install --local /home/ec2-user/cloudformer/vendor/cache/bundler-1.7.11.gem\n",
	"gem install --local /home/ec2-user/cloudformer/vendor/cache/bundle-0.0.1.gem\n",
	"/usr/local/bin/bundle install --local --path /home/ec2-user/cloudformer/vendor/bundle\n",
	"/usr/local/bin/rake RAILS_ENV=production db:migrate\n",
	"gem install --local /home/ec2-user/cloudformer/vendor/cache/rack-1.6.0.gem\n",
	"gem install --local /home/ec2-user/cloudformer/vendor/cache/eventmachine-1.0.4.gem\n",
	"gem install --local /home/ec2-user/cloudformer/vendor/cache/daemons-1.1.9.gem\n",
	"gem install --local /home/ec2-user/cloudformer/vendor/cache/thin-1.6.3.gem\n",
	"# Create certificate and private key for SSL\n",
	"mkdir -p /home/ec2-user/cloudformer/.ssl\n",
	"cd /home/ec2-user/cloudformer/.ssl\n",
	"openssl genrsa -des3 -passout pass:\"" , { "Ref" : "Password" }, "\" -out server.pass.key 1024\n",
	"openssl rsa -passin pass:\"", { "Ref" : "Password" }, "\" -in server.pass.key -out server.key\n",
	"openssl req -new -key server.key -out server.csr -subj \"/C=US/ST=Washington/L=Seattle/O=Amazon Web Services/OU=CloudFormer\"\n",
	"openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt\n",
	"rm server.pass.key server.csr\n"
	]]},
	"mode" : "000755",
	"owner" : "root",
	"group" : "root"
	},
	"/home/ec2-user/cloudformer/config/initializers/user.rb" : {
	"content" : { "Fn::Join" : ["", [
	"USER_NAME = \"", { "Ref" : "Username" }, "\"\n",
	"PASSWORD = \"", { "Ref" : "Password" }, "\"\n"
	]]},
	"mode" : "000400",
	"owner" : "root",
	"group" : "root"
	},
	"/usr/bin/cloudformer" : {
	"content" : { "Fn::Join" : ["", [
	"#!/usr/bin/env bash\n",
	"cd /home/ec2-user/cloudformer\n",
	"/usr/local/bin/thin start -p 443 -e production -d --ssl --ssl-key-file /home/ec2-user/cloudformer/.ssl/server.key --ssl-cert-file /home/ec2-user/cloudformer/.ssl/server.crt\n"
	]]},
	"mode" : "000755",
	"owner" : "root",
	"group" : "root"
	}
	},
	"commands" : {
	"01_install_cloudformer" : {
	"command" : "/home/ec2-user/setup_cloudformer &> /var/log/setup_cloudformer.log",
	"cwd" : "/home/ec2-user/cloudformer"
	},
	"02_setup_boot" : {
	"command" : "echo '/usr/bin/cloudformer' >> /etc/rc.local",
	"cwd" : "/"
	}
	}
	}
	}
	},
	"Properties": {
	"ImageId" : { "Fn::FindInMap" : [ "AWSRegionArch2AMI", { "Ref" : "AWS::Region" },
	{ "Fn::FindInMap" : [ "AWSInstanceType2Arch", "t1.micro", "Arch" ] } ] },
	"InstanceType" : "t1.micro",
	"SecurityGroups" : [ {"Ref" : "WebServerSecurityGroup"} ],
	"IamInstanceProfile" : { "Ref" : "CFNInstanceProfile" },
	"UserData" : { "Fn::Base64" : { "Fn::Join" : ["", [
	"#!/bin/bash -xe\n",
	"yum update -y aws-cfn-bootstrap\n",

	"/opt/aws/bin/cfn-init -v ",
	" --stack ", { "Ref" : "AWS::StackId" },
	" --resource WebServer ",
	" --configsets full_install ",
	" --region ", { "Ref" : "AWS::Region" }, "\n",

	"/opt/aws/bin/cfn-signal -e $? ",
	" --stack ", { "Ref" : "AWS::StackId" },
	" --resource WebServer ",
	" --region ", { "Ref" : "AWS::Region" }, "\n"
	]]}}
	},
	"CreationPolicy" : {
	"ResourceSignal" : {
	"Timeout" : "PT30M"
	}
	}
	},

	"WebServerSecurityGroup" : {
	"Type" : "AWS::EC2::SecurityGroup",
	"Properties" : {
	"GroupDescription" : "Enable HTTPS access via port 443",
	"SecurityGroupIngress" : [
	{"IpProtocol" : "tcp", "FromPort" : "443", "ToPort" : "443", "CidrIp" : "0.0.0.0/0"}
	]
	}
	}
	},

	"Outputs" : {
	"WebsiteURL" : {
	"Value" : { "Fn::Join" : ["", ["https://", { "Fn::GetAtt" : [ "WebServer", "PublicDnsName" ]} ]] },
	"Description" : "URL for CloudFormer"
	}
	}
	}