🎉 Added a new feature to easily tunnel to specific host using ssm thr…

…ough another host in AWS

d3b_cli_igor/utils/scripts/tunnel-to-host

@@ -0,0 +1,18 @@
+#!/bin/bash
+
+INSTANCE_ID=""
+
+if [ -z $1 ]; then
+  echo "getting info"
+	info=$(aws ec2 describe-instances --region us-east-1 --query "Reservations[*].Instances[?Tags[?Key=='Name']|[?Value=='$ORG-infra-bastion-ssm-ec2-$syslevel-0']].[InstanceId,PrivateIpAddress]" --output text | tail -1)
+INSTANCE_ID=$(echo "$info" | awk '{ print $1 }')
+INSTANCE_IP=$(echo "$info" | awk '{ print $2 }')
+  if [ -z "$INSTANCE_ID" ]; then
+    echo "Could not find bastion host. Please contact DevOps"
+    exit 1
+  fi
+  else
+  INSTANCE_ID="${1}"
+fi
+
+aws ssm start-session --target "${INSTANCE_ID}" --document-name AWS-StartPortForwardingSessionToRemoteHost --parameters '{"portNumber":["'$2'"],"localPortNumber":["'$3'"],"host":["'$4'"]}'

d3b_cli_igor/utils/shortcuts.py

@@ -13,6 +13,7 @@
 onboarding_script = "onboarding"
 awslogin_script = "awslogin"
 dev_env_tunnel_script = "dev-env-tunnel"
+tunnel_to_host_script = "tunnel-to-host"
 
 path = os.path.dirname(__file__)
 
@@ -52,5 +53,16 @@ def dev_env_tunnel(environment,cidr_block):
     except botocore.exceptions.NoCredentialsError:
         print("Credentials are NOT valid. You might want to execute : igor awslogin and export AWS_PROFILE=<profile_name> in order to set credentials.")
 
+def tunnel_to_host(instance_id,port,local_port,host):
+    sts = boto3.client('sts')
+    try:
+        sts.get_caller_identity()
+        print("Credentials are valid.")
+        os.system(tunnel_to_host_script + " " + instance_id + " " + port + " " + local_port + " " + host)
+    except botocore.exceptions.ClientError:
+        print("Credentials are NOT valid. You might want to execute : igor awslogin and export AWS_PROFILE=<profile_name> in order to set credentials.")
+    except botocore.exceptions.NoCredentialsError:
+        print("Credentials are NOT valid. You might want to execute : igor awslogin and export AWS_PROFILE=<profile_name> in order to set credentials.")
+
 def awslogin():
     os.system(awslogin_script)

igor

@@ -117,6 +117,15 @@ def dev_env_tunnel(environment,cidr_block):
     check_creds()
     d3b_cli_igor.utils.shortcuts.dev_env_tunnel(environment,cidr_block)
 
+@click.command(name="tunnel-to-host")
+@click.option("--instance_id", nargs=1, required=True)
+@click.option("--port", nargs=1, default="", required=True)
+@click.option("--local_port", nargs=1, default="", required=True)
+@click.option("--host", nargs=1, default="", required=True)
+def tunnel_to_host(instance_id,port,local_port,host):
+    check_creds()
+    d3b_cli_igor.utils.shortcuts.tunnel_to_host(instance_id,port,local_port,host)
+
 @click.command(name="diff")
 @click.option(
     "--file1",
@@ -223,6 +232,7 @@ igor_cli.add_command(github_open)
 igor_cli.add_command(onboarding)
 igor_cli.add_command(awslogin)
 igor_cli.add_command(dev_env_tunnel)
+igor_cli.add_command(tunnel_to_host)
 igor_cli.add_command(diff)
 igor_cli.add_command(split_files)
 

setup.py

@@ -13,6 +13,7 @@
         "d3b_cli_igor/utils/scripts/check_build",
         "d3b_cli_igor/utils/scripts/github_open",
         "d3b_cli_igor/utils/scripts/dev-env-tunnel",
+        "d3b_cli_igor/utils/scripts/tunnel-to-host",
         "d3b_cli_igor/utils/scripts/onboarding_devops_mac",
         "d3b_cli_igor/utils/scripts/onboarding_devops_ubuntu",
         "d3b_cli_igor/utils/scripts/onboarding_dev_mac",