Multiple tools used when creating new accounts

Documentation

Go see our docs

How to use

$ AWS_PROFILE=awsprofile poetry run python setup_account.py --help
usage: setup_account.py [-h] -a ACCOUNT_NAME -f SAML_FILE [-s SAML_PROVIDER] -c PHASE -p PURPOSE [-r REGIONS] [-e EMAIL] [-t TAG_PREFIX] [-l {CRITICAL,ERROR,WARNING,INFO,DEBUG}]

1. Creates new sub-account, if email is provided 2. Removes default VPCs 3. Sets account alias 4. Configures SAML 5. Creates default roles and allows access via SAML only

options:
  -h, --help            show this help message and exit
  -a ACCOUNT_NAME, --account-name ACCOUNT_NAME
                        AWS Account Name and alias
  -f SAML_FILE, --saml-metadata-document-file SAML_FILE
                        Path to An XML document generated by an identity provider (IdP) that supports SAML 2.0
  -s SAML_PROVIDER, --saml-provider-name SAML_PROVIDER
                        Name of the saml provider. Examples: gsuite, azuread
  -c PHASE, --phase PHASE
                        AWS Sub Account Phase (prod, dev, stage, ...)
  -p PURPOSE, --purpose PURPOSE
                        AWS Sub Account purpose (app, tools, sandbox, ...)
  -r REGIONS, --regions REGIONS
                        Comma-separated list of AWS regions
  -e EMAIL, --e-mail EMAIL
                        E-Mail address for the AWS Sub Account
  -t TAG_PREFIX, --tag-prefix TAG_PREFIX
                        Tag prefix also known as namespace
  -l {CRITICAL,ERROR,WARNING,INFO,DEBUG}, --log-level {CRITICAL,ERROR,WARNING,INFO,DEBUG}
                        Set the logging output level

How to test

./run_tests.sh
...
collected 3 items

tests/test_setup_account.py::test_sub_account_creation PASSED
tests/test_setup_account.py::test_sub_account_duplicate PASSED
tests/test_setup_account.py::test_account_setup PASSED
tests/test_setup_account.py::test_account_alias_duplicate PASSED
tests/test_setup_account.py::test_vpc_cleaner PASSED
...
---------- coverage: platform darwin, python 3.8.4-final-0 -----------
Name                                 Stmts   Miss  Cover
--------------------------------------------------------
new_sub_account/new_sub_account.py      81     30    63%
setup_account.py                        44     44     0%
setup_sso/setup_sso.py                 110     32    71%
tests/test_setup_account.py             65      0   100%
vpc_cleaner/vpc_cleaner.py             154     35    77%
--------------------------------------------------------
TOTAL                                  454    141    69%

...

About poetry

Why we use `poethepoet`

One area poetry lags behind pipenv is that shell scripts cannot be ran from poetry run <task> so we use poe instead. Maybe after poetry version 1.0.0 is released we may stop using it.

See links:

Name		Name	Last commit message	Last commit date
Latest commit History 51 Commits
.github/workflows		.github/workflows
azure		azure
docs		docs
infra_buckets		infra_buckets
new_sub_account		new_sub_account
setup_sso		setup_sso
tests		tests
thunder_github_automation		thunder_github_automation
vpc_cleaner		vpc_cleaner
.coveragerc		.coveragerc
.gitignore		.gitignore
.pre-commit-config.yaml		.pre-commit-config.yaml
LICENSE		LICENSE
README.md		README.md
poetry.lock		poetry.lock
poetry.toml		poetry.toml
pyproject.toml		pyproject.toml
run_tests.sh		run_tests.sh
setup_account.py		setup_account.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Multiple tools used when creating new accounts

Documentation

How to use

How to test

About poetry

Why we use `poethepoet`

About

Releases

Packages

Languages

License

Over-haul/cloud-accounts-tools

Folders and files

Latest commit

History

Repository files navigation

Multiple tools used when creating new accounts

Documentation

How to use

How to test

About poetry

Why we use poethepoet

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Languages

Why we use `poethepoet`

Packages