Provisioning AWS Infrastructure for Security and Continuous Delivery with Terraform and Elastic Beanstalk
Mac OSX (preferable) or Linux. If you have a Windows machine, please set up a Linux virtual machine. You can use Vagrant for this.
If you have trouble contact me at [email protected]
Go to: https://aws.amazon.com/free and sign up for a free account.
Tip: If you already have an account and use gmail and want to make a new account for this workshop you can add + before the @ in your email-address. Example: [email protected]
- Go to: https://console.aws.amazon.com/iam/
Users|Add user - Check
Programmatic accessandAWS Management Console access - Attach
Administrator Accessto the user - Sign out of root account and sign in with the newly created user
Go to: https://console.aws.amazon.com/iam/home?region=eu-west-2#/users
- Click on your newly created user
- Go to
Security Credentialsand upload your SSH public key underSSH keys for AWS CodeCommit
cat ~/.ssh/id_rsa.pub
# need to create one? https://help.github.com/articles/generating-a-new-ssh-key-and-adding-it-to-the-ssh-agent/
Go to: https://console.aws.amazon.com/iam/home?region=eu-west-2#/users
- Click on your newly created user
- Go to
Security Credentialsand pressCreate access key - Copy your credentials to a file or download the .csv file (NB! You will only see your secret key once)
/usr/bin/ruby -e "$(curl -fsSL https://raw.githubusercontent.com/Homebrew/install/master/install)"
brew update
brew install envchain
envchain --set aws AWS_ACCESS_KEY_ID AWS_SECRET_ACCESS_KEY AWS_DEFAULT_REGION
Note: AWS_DEFAULT_REGION = eu-west-2
https://github.com/sorah/envchain
# OSX. Others see: https://gnupg.org/download/
brew install gpg
https://www.passwordstore.org/
echo 'export PASSWORD_STORE_DIR=~/.password-store' >> ~/.bashrc
. ~/.bashrc
# OSX. Others see: https://www.passwordstore.org/
brew install pass
echo ". /usr/local/etc/bash_completion.d/pass" >> ~/.bashrc
gpg --full-generate-key # Accept all defaults
gpg --list-secret-keys --keyid-format LONG
From the list of GPG keys, copy the GPG key ID you'd like to use. In this example, the GPG key ID is 3AA5C34371567BD2:
gpg --list-secret-keys --keyid-format LONG
sec 4096R/3AA5C34371567BD2 2016-03-10 [expires: 2017-03-10]
uid Hubot
ssb 4096R/42B317FD4BA89E7A 2016-03-10
Paste the text below, substituting in the GPG key ID you'd like to use. In this example, the GPG key ID is 3AA5C34371567BD2:
pass init 3AA5C34371567BD2
pass add AWS_ACCESS_KEY_ID
pass add AWS_SECRET_ACCESS_KEY
pass add AWS_DEFAULT_REGION
pass show AWS_DEFAULT_REGION
https://www.terraform.io/intro/getting-started/install.html
# OSX. Others see: https://www.terraform.io/intro/getting-started/install.html
brew install terraform
https://github.com/nsbno/cloud-tools
# OSX. Others see: https://golang.org/doc/install#install
brew install go
Add the following to your .bashrc
export GOPATH=<path-to-your-sourcecode>/go
export GOBIN=$GOPATH/bin
PATH=$GOBIN:$PATH
export PATH
Note:
path-to-your-sourcecode/goshould point to an empty folder you create to store your go code in.
. ~/.bashrc
mkdir -p $GOPATH/{bin,pkg,src/github.com/nsbno,vendor}
go get github.com/nsbno/cloud-tools # Ignore the warning message
cd $GOPATH/src/github.com/nsbno/cloud-tools
./deps.sh
./make.sh
brew install s3cmd # OSX. Others see: https://tecadmin.net/install-s3cmd-manage-amazon-s3-buckets/
sudo easy_install pip # You may have to install Python, easy_install and pip
pip install awscli awsebcli