0.1.0 • Published 4 years ago

rinne v0.1.0

Weekly downloads
2
License
MIT
Repository
github
Last release
4 years ago

Rinne

Synopsis

rinne --config CONFPATH... bootstrap CDK-OPTION... ENVIRONMENT...

rinne --config CONFPATH... deploy CDK-OPTION...

Descriprion

Rinne manages AWS access keys in GitHub Actions Secrets and configures automated access key rotation.

Configuration

Rinne reads configuraion file written in Jsonnet templating language. The configuration file must represent a JSON object in the following structure:

{
  # See also https://docs.aws.amazon.com/cdk/api/latest/docs/@aws-cdk_core.StackProps.html#properties
  env: {
    region: 'us-east-1',  # optional
    account: 123456789012,  # optional
  },
  stackName: 'stack-name',  # optional, default: "Rinne"
  description: '...',  # optional
  tags: {  # optional
    Key: 'Value',
    # ...
  }

  githubToken: {
    # Rinne will obtain GitHub token from this SSM parameter
    parameter: '/parameter/name',
    keyId: '1234abcd-12ab-34cd-56ef-1234567890ab',  # optional
  },

  repositories: {
    'owner/repo': {
      # Managed policies to attach
      managed_policies: [
        'arn:aws:iam::aws:policy/...',
        # ...
      ],

      # Inline policies to attach
      policies: {
        name: [
          # IAM statements
          {
            Action: '...',
            Resource: 'arn:...',
          },
          # ...
        ],
        # ...
      }
    },
    # ...
  },
}

Further reading

  • Sei Seino, "時載りリンネ! (1) はじまりの本" (Tokinori Rinne! 1: Hajimari no Hon), ISBN 9784044732011
@aws-cdk/aws-events@aws-cdk/aws-events-targets@aws-cdk/aws-iam@aws-cdk/aws-lambda@aws-cdk/aws-ssm@aws-cdk/core@hanazuki/node-jsonnet@octokit/rest@zeit/nccaws-cdklodash.sortbyshell-escapesource-map-supporttweetsodium
@infinitebrahmanuniverse/nolb-rin@everything-registry/sub-chunk-2669
0.1.0

4 years ago

0.0.2

4 years ago

0.0.1

4 years ago