To Understand IF http://aws.typepad.com/aws/2011/08/aws-identity-and-access-management-now-with-identity-federation.html AWS Security Token Service API Actions AssumeRole (temp creds for upto 1hr) Returns a set of temporary security credentials. You call this API using the credentials of an existing IAM user. This API is useful to grant AWS access to users who do not have an IAM identity (that is, to […]
Guide – to run linux command using recipes in Opsworks
Issues faced working with AWS Opsworks.
Requirement : Set a URL redirection in Nginx Configuration. Example : download.appygeek.com => https://play.google.com/store/apps/details?id=com.mobilesrepublic.appygeek On Beanstalk with Phusion Passenger Standalone [3.0.17] (Ruby1.9), Nginx customization is highly discouraged. However to accomplish this, the following workaround is done : Beanstalk generates the nginx configuration file from a ERB template each time when restarted. Hence the configuration change has […]
CloudFormation Getting Started Guide http://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/GettingStarted.Walkthrough.html An AWS CloudFormation template begins with an open brace and ends with a close brace. Within those braces, you can declare six top level JSON objects: AWSTemplateFormatVersion, Description, Parameters, Mappings, Resources, and Outputs. Naming Hierarchy JSON Object->Eg.Resource->Attributes->Eg.Type & Properties->Eg. AWS::EC2::Instance->Resource Property Type->Eg. EC2 Tag 1.Resources This is mostly required compared […]
Here are some example ARNs: <!– AWS Elastic Beanstalk application version –> arn:aws:elasticbeanstalk:us-east-1:123456789012:environment/My App/MyEnvironment <!– IAM user name –> arn:aws:iam::123456789012:David <!– Amazon RDS tag –> arn:aws:rds:eu-west-1:001234567890:db:mysql-db <!– Amazon S3 bucket (and all objects in it)–> arn:aws:s3:::my_corporate_bucket/* The following are the general formats for ARNs; the specific components and values used depend on the AWS service. […]
Defining the right set of permissions requires some research to determine what is required for the specific task, what actions a particular service supports, and what permissions are required in order to perform those actions. Permissions can be assigned in two ways: as user-based permissions or as resource-based permissions. User-based permissions are attached to an […]