aws-cli
AWS CLI
An Ansible Role that installs and configures Amazon AWS Command Line Interface tools on RedHat systems.
Requirements
You will need an Amazon AWS account, with a user and access key security credentials with permission to the specified bucket.
By default, profiles will be defined for the root system user, if you are using another user then the user must exist on the server.
It is recommended that you create an AWS user with locked down permissions
suitable for only the operations of you require, this can be done using
policies. Below is a policy named AmazonS3CreateReadWriteAccess-[bucket-name]
that can be used to provide limited (create/list/put) access to the
bucket [bucket-name].
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Action": [ "s3:CreateBucket", "s3:ListBucket" ],
"Resource": [ "arn:aws:s3:::[bucket-name]" ]
},
{
"Effect": "Allow",
"Action": [ "s3:PutObject" ],
"Resource": [ "arn:aws:s3:::[bucket-name]/*" ]
}
]
}
Role Variables
Available variables are listed below, along with default values (see
defaults/main.yml):
aws_cli_system_user: root
System user AWS profile will be saved to.
aws_cli_profile: "default"
For separation we create a new AWS profile for this script context.
aws_cli_access_key: "<accesss-key>"
Your Amazon AWS access key.
aws_cli_secret_key: "<secret-key>"
Your Amazon AWS secret key.
aws_cli_region: eu-west-1
Region name where the S3 bucket can be located.
aws_cli_format: text
Output format from the AWS CLI, either json, text or table.
aws_cli_version: false
Specific AWS CLI bundle version, e.g. 1.19.107, default is latest.
Dependencies
None.
Example Playbook
- hosts: mysql-servers
become: yes
vars_files:
- vars/main.yml
roles:
- memiah.aws-cli
Inside vars/main.yml:
aws_cli_access_key: "access_key_here"
aws_cli_secret_key: "secret_key_here"
aws_cli_region: eu-west-1
aws_cli_format: text
License
MIT / BSD
Author Information
This role was created in 2016 by Memiah Limited.
ansible-galaxy install memiah/ansible-role-aws-cli