-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
12 changed files
with
263 additions
and
1 deletion.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,10 @@ | ||
| *.swp | ||
| package-lock.json | ||
| __pycache__ | ||
| .pytest_cache | ||
| .venv | ||
| *.egg-info | ||
|
|
||
| # CDK asset staging directory | ||
| .cdk.staging | ||
| cdk.out |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1 +1,58 @@ | ||
| # cdp-cdk-python | ||
|
|
||
| # Welcome to your CDK Python project! | ||
|
|
||
| This is a blank project for CDK development with Python. | ||
|
|
||
| The `cdk.json` file tells the CDK Toolkit how to execute your app. | ||
|
|
||
| This project is set up like a standard Python project. The initialization | ||
| process also creates a virtualenv within this project, stored under the `.venv` | ||
| directory. To create the virtualenv it assumes that there is a `python3` | ||
| (or `python` for Windows) executable in your path with access to the `venv` | ||
| package. If for any reason the automatic creation of the virtualenv fails, | ||
| you can create the virtualenv manually. | ||
|
|
||
| To manually create a virtualenv on MacOS and Linux: | ||
|
|
||
| ``` | ||
| $ python3 -m venv .venv | ||
| ``` | ||
|
|
||
| After the init process completes and the virtualenv is created, you can use the following | ||
| step to activate your virtualenv. | ||
|
|
||
| ``` | ||
| $ source .venv/bin/activate | ||
| ``` | ||
|
|
||
| If you are a Windows platform, you would activate the virtualenv like this: | ||
|
|
||
| ``` | ||
| % .venv\Scripts\activate.bat | ||
| ``` | ||
|
|
||
| Once the virtualenv is activated, you can install the required dependencies. | ||
|
|
||
| ``` | ||
| $ pip install -r requirements.txt | ||
| ``` | ||
|
|
||
| At this point you can now synthesize the CloudFormation template for this code. | ||
|
|
||
| ``` | ||
| $ cdk synth | ||
| ``` | ||
|
|
||
| To add additional dependencies, for example other CDK libraries, just add | ||
| them to your `setup.py` file and rerun the `pip install -r requirements.txt` | ||
| command. | ||
|
|
||
| ## Useful commands | ||
|
|
||
| * `cdk ls` list all stacks in the app | ||
| * `cdk synth` emits the synthesized CloudFormation template | ||
| * `cdk deploy` deploy this stack to your default AWS account/region | ||
| * `cdk diff` compare deployed stack with current state | ||
| * `cdk docs` open CDK documentation | ||
|
|
||
| Enjoy! |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,28 @@ | ||
| #!/usr/bin/env python3 | ||
| import os | ||
|
|
||
| import aws_cdk as cdk | ||
|
|
||
| from cdp_cdk_python.cdp_cdk_python_stack import CdpCdkPythonStack | ||
|
|
||
|
|
||
| app = cdk.App() | ||
| CdpCdkPythonStack(app, "CdpCdkPythonStack", | ||
| # If you don't specify 'env', this stack will be environment-agnostic. | ||
| # Account/Region-dependent features and context lookups will not work, | ||
| # but a single synthesized template can be deployed anywhere. | ||
|
|
||
| # Uncomment the next line to specialize this stack for the AWS Account | ||
| # and Region that are implied by the current CLI configuration. | ||
|
|
||
| #env=cdk.Environment(account=os.getenv('CDK_DEFAULT_ACCOUNT'), region=os.getenv('CDK_DEFAULT_REGION')), | ||
|
|
||
| # Uncomment the next line if you know exactly what Account and Region you | ||
| # want to deploy the stack to. */ | ||
|
|
||
| #env=cdk.Environment(account='123456789012', region='us-east-1'), | ||
|
|
||
| # For more information, see https://docs.aws.amazon.com/cdk/latest/guide/environments.html | ||
| ) | ||
|
|
||
| app.synth() |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,79 @@ | ||
| { | ||
| "app": "python3 app.py", | ||
| "watch": { | ||
| "include": [ | ||
| "**" | ||
| ], | ||
| "exclude": [ | ||
| "README.md", | ||
| "cdk*.json", | ||
| "requirements*.txt", | ||
| "source.bat", | ||
| "**/__init__.py", | ||
| "**/__pycache__", | ||
| "tests" | ||
| ] | ||
| }, | ||
| "context": { | ||
| "@aws-cdk/aws-lambda:recognizeLayerVersion": true, | ||
| "@aws-cdk/core:checkSecretUsage": true, | ||
| "@aws-cdk/core:target-partitions": [ | ||
| "aws", | ||
| "aws-cn" | ||
| ], | ||
| "@aws-cdk-containers/ecs-service-extensions:enableDefaultLogDriver": true, | ||
| "@aws-cdk/aws-ec2:uniqueImdsv2TemplateName": true, | ||
| "@aws-cdk/aws-ecs:arnFormatIncludesClusterName": true, | ||
| "@aws-cdk/aws-iam:minimizePolicies": true, | ||
| "@aws-cdk/core:validateSnapshotRemovalPolicy": true, | ||
| "@aws-cdk/aws-codepipeline:crossAccountKeyAliasStackSafeResourceName": true, | ||
| "@aws-cdk/aws-s3:createDefaultLoggingPolicy": true, | ||
| "@aws-cdk/aws-sns-subscriptions:restrictSqsDescryption": true, | ||
| "@aws-cdk/aws-apigateway:disableCloudWatchRole": true, | ||
| "@aws-cdk/core:enablePartitionLiterals": true, | ||
| "@aws-cdk/aws-events:eventsTargetQueueSameAccount": true, | ||
| "@aws-cdk/aws-ecs:disableExplicitDeploymentControllerForCircuitBreaker": true, | ||
| "@aws-cdk/aws-iam:importedRoleStackSafeDefaultPolicyName": true, | ||
| "@aws-cdk/aws-s3:serverAccessLogsUseBucketPolicy": true, | ||
| "@aws-cdk/aws-route53-patters:useCertificate": true, | ||
| "@aws-cdk/customresources:installLatestAwsSdkDefault": false, | ||
| "@aws-cdk/aws-rds:databaseProxyUniqueResourceName": true, | ||
| "@aws-cdk/aws-codedeploy:removeAlarmsFromDeploymentGroup": true, | ||
| "@aws-cdk/aws-apigateway:authorizerChangeDeploymentLogicalId": true, | ||
| "@aws-cdk/aws-ec2:launchTemplateDefaultUserData": true, | ||
| "@aws-cdk/aws-secretsmanager:useAttachedSecretResourcePolicyForSecretTargetAttachments": true, | ||
| "@aws-cdk/aws-redshift:columnId": true, | ||
| "@aws-cdk/aws-stepfunctions-tasks:enableEmrServicePolicyV2": true, | ||
| "@aws-cdk/aws-ec2:restrictDefaultSecurityGroup": true, | ||
| "@aws-cdk/aws-apigateway:requestValidatorUniqueId": true, | ||
| "@aws-cdk/aws-kms:aliasNameRef": true, | ||
| "@aws-cdk/aws-autoscaling:generateLaunchTemplateInsteadOfLaunchConfig": true, | ||
| "@aws-cdk/core:includePrefixInUniqueNameGeneration": true, | ||
| "@aws-cdk/aws-efs:denyAnonymousAccess": true, | ||
| "@aws-cdk/aws-opensearchservice:enableOpensearchMultiAzWithStandby": true, | ||
| "@aws-cdk/aws-lambda-nodejs:useLatestRuntimeVersion": true, | ||
| "@aws-cdk/aws-efs:mountTargetOrderInsensitiveLogicalId": true, | ||
| "@aws-cdk/aws-rds:auroraClusterChangeScopeOfInstanceParameterGroupWithEachParameters": true, | ||
| "@aws-cdk/aws-appsync:useArnForSourceApiAssociationIdentifier": true, | ||
| "@aws-cdk/aws-rds:preventRenderingDeprecatedCredentials": true, | ||
| "@aws-cdk/aws-codepipeline-actions:useNewDefaultBranchForCodeCommitSource": true, | ||
| "@aws-cdk/aws-cloudwatch-actions:changeLambdaPermissionLogicalIdForLambdaAction": true, | ||
| "@aws-cdk/aws-codepipeline:crossAccountKeysDefaultValueToFalse": true, | ||
| "@aws-cdk/aws-codepipeline:defaultPipelineTypeToV2": true, | ||
| "@aws-cdk/aws-kms:reduceCrossAccountRegionPolicyScope": true, | ||
| "@aws-cdk/aws-eks:nodegroupNameAttribute": true, | ||
| "@aws-cdk/aws-ec2:ebsDefaultGp3Volume": true, | ||
| "@aws-cdk/aws-ecs:removeDefaultDeploymentAlarm": true, | ||
| "@aws-cdk/custom-resources:logApiResponseDataPropertyTrueDefault": false, | ||
| "@aws-cdk/aws-s3:keepNotificationInImportedBucket": false, | ||
| "@aws-cdk/aws-ecs:reduceEc2FargateCloudWatchPermissions": true, | ||
| "@aws-cdk/aws-dynamodb:resourcePolicyPerReplica": true, | ||
| "@aws-cdk/aws-ec2:ec2SumTImeoutEnabled": true, | ||
| "@aws-cdk/aws-appsync:appSyncGraphQLAPIScopeLambdaPermission": true, | ||
| "@aws-cdk/aws-rds:setCorrectValueForDatabaseInstanceReadReplicaInstanceResourceId": true, | ||
| "@aws-cdk/core:cfnIncludeRejectComplexResourceUpdateCreatePolicyIntrinsics": true, | ||
| "@aws-cdk/aws-lambda-nodejs:sdkV3ExcludeSmithyPackages": true, | ||
| "@aws-cdk/aws-stepfunctions-tasks:fixRunEcsTaskPolicy": true, | ||
| "@aws-cdk/aws-ec2:bastionHostUseAmazonLinux2023ByDefault": true | ||
| } | ||
| } |
Empty file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,57 @@ | ||
| from aws_cdk import ( | ||
| # Duration, | ||
| Stack, | ||
| # aws_sqs as sqs, | ||
| # aws_s3 as s3, | ||
| aws_iam as iam, | ||
| aws_redshiftserverless as redshiftserverless, | ||
|
|
||
| ) | ||
| import aws_cdk as core | ||
| from constructs import Construct | ||
|
|
||
| class CdpCdkPythonStack(Stack): | ||
|
|
||
| def __init__(self, scope: Construct, construct_id: str, **kwargs) -> None: | ||
| super().__init__(scope, construct_id, **kwargs) | ||
|
|
||
| # The code that defines your stack goes here | ||
|
|
||
| # example resource | ||
| # queue = sqs.Queue( | ||
| # self, "CdpCdkPythonQueue", | ||
| # visibility_timeout=Duration.seconds(300), | ||
| # ) | ||
|
|
||
| # bucket = s3.Bucket(self, "MyFirstBucket", versioned=True) | ||
|
|
||
| # Create IAM role for Redshift access | ||
| redshift_role = iam.Role( | ||
| self, "RedshiftRole", | ||
| assumed_by=iam.ServicePrincipal("redshift.amazonaws.com"), | ||
| managed_policies=[ | ||
| iam.ManagedPolicy.from_aws_managed_policy_name("AmazonS3ReadOnlyAccess") | ||
| ] | ||
| ) | ||
|
|
||
| # Create Redshift Serverless Namespace | ||
| namespace = redshiftserverless.CfnNamespace( | ||
| self, "RedshiftNamespace", | ||
| namespace_name="my-redshift-namespace", | ||
| admin_username="admin", | ||
| admin_user_password="YourSecurePassword123!", # Use Secrets Manager for production | ||
| iam_roles=[redshift_role.role_arn] | ||
| ) | ||
|
|
||
| # Create Redshift Serverless Workgroup | ||
| workgroup = redshiftserverless.CfnWorkgroup( | ||
| self, "RedshiftWorkgroup", | ||
| workgroup_name="my-redshift-workgroup", | ||
| namespace_name=namespace.namespace_name, | ||
| base_capacity=32, # Base capacity in Redshift Processing Units (RPUs) | ||
| publicly_accessible=True, | ||
| subnet_ids=["subnet-xxxxxxx", "subnet-yyyyyyy"], # Replace with actual subnet IDs | ||
| security_group_ids=["sg-zzzzzzzz"] # Replace with actual security group IDs | ||
| ) | ||
|
|
||
| core.CfnOutput(self, "WorkgroupEndpoint", value=workgroup.attr_endpoint_address) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1 @@ | ||
| pytest==6.2.5 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,2 @@ | ||
| aws-cdk-lib==2.173.2 | ||
| constructs>=10.0.0,<11.0.0 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,13 @@ | ||
| @echo off | ||
|
|
||
| rem The sole purpose of this script is to make the command | ||
| rem | ||
| rem source .venv/bin/activate | ||
| rem | ||
| rem (which activates a Python virtualenv on Linux or Mac OS X) work on Windows. | ||
| rem On Windows, this command just runs this batch file (the argument is ignored). | ||
| rem | ||
| rem Now we don't need to document a Windows command for activating a virtualenv. | ||
|
|
||
| echo Executing .venv\Scripts\activate.bat for you | ||
| .venv\Scripts\activate.bat |
Empty file.
Empty file.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,15 @@ | ||
| import aws_cdk as core | ||
| import aws_cdk.assertions as assertions | ||
|
|
||
| from cdp_cdk_python.cdp_cdk_python_stack import CdpCdkPythonStack | ||
|
|
||
| # example tests. To run these tests, uncomment this file along with the example | ||
| # resource in cdp_cdk_python/cdp_cdk_python_stack.py | ||
| def test_sqs_queue_created(): | ||
| app = core.App() | ||
| stack = CdpCdkPythonStack(app, "cdp-cdk-python") | ||
| template = assertions.Template.from_stack(stack) | ||
|
|
||
| # template.has_resource_properties("AWS::SQS::Queue", { | ||
| # "VisibilityTimeout": 300 | ||
| # }) |