| { | |
| "AWSTemplateFormatVersion" : "2010-09-09", | |
| "Description" : "This template is testing aws cloudformation transformation example", | |
| "Parameters" : { | |
| "s3name": { | |
| "Type": "String", | |
| "Default": "s3://rshetty-xxx" | |
| }, | |
| "objectname": { | |
| "Type": "String", |
I often get asked which tools are good to use for securing your AWS infrastructure so I figured I'd write a short listof some useful Security Tools for the AWS Cloud Infrastructure.
This list is not intended be something completely exhaustive, more so provide a good launching pad for someone as they dig into AWS and want to make it secure from the start.
This section focuses on tools and services provided by the community and released as open-source.
| Title | Description
This snippet is a sample showing how to implement CloudWatch Logs streaming to ElasticSearch using terraform.
I wrote this gist because I didn't found a clear, end-to-end example on how to achieve this task. In particular,
I understood the resource "aws_lambda_permission" "cloudwatch_allow" part by reading a couple of bug reports plus
this stackoverflow post.
The js file is actually the Lambda function automatically created by AWS when creating this pipeline through the
web console. I only added a endpoint variable handling so it is configurable from terraform.
This cheat sheet provides a detailed overview of the exposed lifecycle events and available commands (and entrypoints) of the Serverless framework, that can be hooked by plugins (internal and external ones). The document is structured by the commands invoked by the user.
Lifecycle events are shown as the globally available outer events (all providers) and sub lifecycle events that are provider specific in the called order. Currently only the AWS provider is shown. If you have information about the other provider,
| import boto3 | |
| import uuid | |
| class CognitoUserFileUploader(object): | |
| def __init__(self, *args, **kwargs): | |
| self.__dict__.update(kwargs) | |
| self.id_token = self.get_cognito_id_token( | |
| self.username, self.refresh_token, | |
| self.device_key, self.client_id |
| import asyncio | |
| loop = asyncio.get_event_loop() | |
| async def hello(): | |
| await asyncio.sleep(3) | |
| print('Hello!') | |
| if __name__ == '__main__': | |
| loop.run_until_complete(hello()) | |
| import boto3 | |
| import datetime | |
| import json | |
| from requests_aws4auth import AWS4Auth | |
| import requests | |
| boto3.setup_default_session(region_name='us-east-1') | |
| identity = boto3.client('cognito-identity', region_name='us-east-1') | |
| account_id='XXXXXXXXXXXXXXX' |
| #!/usr/bin/env python | |
| import os | |
| import time | |
| import json | |
| import base64 | |
| import requests | |
| import argparse | |
| from base64 import urlsafe_b64decode, b64decode | |
| from Crypto.Hash import SHA256, SHA512 |
