aws-env

command module

v0.1.3 Latest Latest Go to latest Published: Jan 2, 2019 License: MIT Imports: 9 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/base2services/aws-env

Links

Open Source Insights

README ¶

aws-env - Secure way to handle environment variables in Docker

Forked from Droplr/aws-env

Published as a docker image

How it works

Searches for SSM Parameters in your AWS account based on the variables provided and places them in a .env file

Parameters

Environment Variables

SSM_PATH [Required] - Complete path structure created in SSM Parameter store
AWS_REGION [Required] - Region in which the SSM Parameters are stored
DIRECTORY [Optional] - Directory path of the .env file. Can contain child directories. Default is /ssm. NOTE: The default cannot be changed if used in a side car configuration.
LOG_LEVEL [Optional] - Levels such as fatal, error, warn, info, debug, or disable. Default is info

FORMAT [Optional] - Format of the .env file.

unset

export DB_HOST=$'mysql'
export DB_USERNAME=$'Username'
export DB_PASSWORD=$'SecretPassword'

shell

DB_HOST='mysql'
DB_USERNAME='Username'
DB_PASSWORD='SecretPassword'

unquoted-shell

DB_HOST=mysql
DB_USERNAME=Username
DB_PASSWORD=SecretPassword

Command Line

-v [Optional] - Show version and exit 0

Parameter Hierarchy

Provide the hierachy structure using the SSM_PATH environment variable

SSM_PATH: /my-app/production/prod1

This path can be completely dynamic and the hierarchy can have a maximum depth of five levels. You can define a parameter at any level of the hierarchy.
Both of the following examples are valid:
/Level-1/Level-2/Level-3/Level-4/Level-5/parameter-name
/Level-1/parameter-name

Higher levels of the hierarchy will override the lower levels if the same parameter name is found.
Example: /my-app/production/prod1/EMAIL would override the value of /my-app/EMAIL for the prod1 environment
/my-app/production/API_KEY would override the value of /my-app/API_KEY for the environment type production
/my-app/develop/test/API_KEY would override the value of /my-app/develop/API_KEY for the test environment

Add parameters to Parameter Store using hierarchy structure:

$ aws ssm put-parameter --name /my-app/DB_HOST --value "mysql" --type SecureString --key-id "alias/aws/ssm" --region ap-southeast-2
$ aws ssm put-parameter --name /my-app/production/DB_USERNAME --value "Username" --type SecureString --key-id "alias/aws/ssm" --region ap-southeast-2
$ aws ssm put-parameter --name /my-app/production/prod1/DB_PASSWORD --value "SecretPassword" --type SecureString --key-id "alias/aws/ssm" --region ap-southeast-2

Usage

There are 2 ways this can be implemented

Include base2/awsenv as a side car container

volume mount the /ssm directory
eval the /ssm/.env file to export the environment parameters

awsenv:
  image: base2/awsenv
  environment:
    SSM_PATH: /my-app/production/prod1
    AWS_REGION: ap-southeast-2

test:
  image: my-app
  volumes_from:
    - awsenv
  entrypoint: eval $(cat /ssm/.env)

Build FROM base2/awsenv as awsenv and extract the binary

extract the binary from the base2/awsenv image to your PATH
eval the /ssm/.env file to export the environment parameters

FROM base2/awsenv as awsenv

FROM debian:jessie

COPY --from=awsenv /awsenv /bin/awsenv

ENTRYPOINT awsenv && eval $(cat /ssm/.env)

Documentation ¶

There is no documentation for this package.

Source Files ¶

View all Source files

aws-env.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL