Merge pull request #225 from CodeNow/add-ec2-inventory

Add ec2 inventory

Author: bkendall

ansible/beta-hosts/variables

@@ -60,3 +60,37 @@ registry_host=10.20.1.55
 swarm_token=d363b783f03a845a2c82b081bfe8443e
 user_content_domain=runnablecloud.com
 api_hello_runnable_github_token=88ddc423c2312d02a8bbcaad76dd4c374a30e4af
+
+[ec2:vars]
+env=beta
+aws_custid=437258487404
+vpc_id=vpc-9e84e1fb
+security_groups:
+- sg_api
+- sg_bastion
+- sg_dock
+- sg_hipache
+- sg_mongo
+- sg_nat
+- sg_navi
+- sg_neo4j
+- sg_rabbit
+- sg_rds
+- sg_redis
+- sg_services
+- sg_userland
+- sg_web
+sg_api=sg-a6e684c2
+sg_bastion=sg-6bc8060f
+sg_dock=sg-d6e684b2
+sg_hipache=sg-1935727d
+sg_mongo=sg-13c30d77
+sg_nat=sg-4f07742b
+sg_navi=sg-8de684e9
+sg_neo4j=sg-78dd131c
+sg_rabbit=sg-42a76e26
+sg_rds=sg-a27f36c6
+sg_redis=sg-81d01ee5
+sg_services=sg-950172f1
+sg_userland=sg-5a28663e
+sg_web=sg-58da143c

ansible/delta-hosts/docks.js

@@ -0,0 +1,75 @@
+#!/usr/bin/env node
+
+'use strict';
+
+var aws = require('aws-sdk');
+var ec2 = new aws.EC2({
+  accessKeyId: 'AKIAJ3RCYU6FCULAJP2Q',
+  secretAccessKey: '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',
+  region: 'us-west-2'
+});
+
+var params = {
+  Filters: [
+    // Only search for docks in the cluster security group
+    {
+      Name: 'instance.group-id',
+      Values: ['sg-577a0d33']
+    },
+    // Only fetch instances that are tagged as docks
+    {
+      Name: 'tag:role',
+      Values: ['dock']
+    },
+    // Only fetch running instances
+    {
+      Name: 'instance-state-name',
+      Values: ['running']
+    }
+  ]
+};
+
+ec2.describeInstances(params, function (err, data) {
+  if (err) {
+    console.error("An error occurred: ", err);
+    process.exit(1);
+  }
+
+  // Get a set of instances from the describe response
+  var instances = [];
+  data.Reservations.forEach(function (res) {
+    res.Instances.forEach(function (instance) {
+      instances.push(instance);
+    });
+  });
+
+  // Map the instances to their private ip addresses
+  // NOTE This will work locally because of the wilcard ssh proxy in the config
+  var hosts = instances.map(function (instance) {
+    return instance.PrivateIpAddress;
+  });
+
+  var hostVars = {};
+  instances.forEach(function (instance) {
+    for (var i = 0; i < instance.Tags.length; i++) {
+      if (instance.Tags[i].Key === 'org') {
+        hostVars[instance.PrivateIpAddress] = {
+          host_tags: instance.Tags[i].Value + ',build,run'
+        };
+      }
+    }
+  });
+
+  // Output the resulting JSON
+  // NOTE http://docs.ansible.com/ansible/developing_inventory.html
+  console.log(JSON.stringify(
+    {
+      docks: {
+        hosts: hosts
+      },
+     _meta : {
+       hostvars : hostVars
+      }
+    }
+  ));
+});

ansible/delta-hosts/hosts

@@ -0,0 +1,114 @@
+[bastion]
+delta-bastion
+
+[hipache]
+delta-hipache httpsCheckForBackend80=false prependIncomingPort=true subDomainDepth=4
+delta-userland-hipache domain=runnableapp.com httpsCheckForBackend80=true prependIncomingPort=true subDomainDepth=3
+
+[mongodb]
+delta-mongo-us-west-2a
+delta-mongo-us-west-2b
+delta-mongo-us-west-2c
+
+[neo4j]
+delta-neo4j
+
+[api_group:children]
+worker
+api
+
+[api]
+delta-api
+
+[consul]
+delta-services
+delta-api
+delta-web
+
+[vault]
+delta-services
+
+[worker]
+delta-api
+
+[eru]
+delta-services
+
+[navi]
+delta-navi
+
+[charon]
+delta-services
+
+[khronos]
+delta-services
+
+[mavis]
+delta-services
+
+[optimus]
+delta-services
+
+[detention]
+delta-services
+
+[palantiri]
+delta-services
+
+[rabbitmq]
+delta-rabbit
+
+[web]
+delta-web
+
+[redis]
+delta-redis
+
+[redis-slave]
+delta-redis-slave
+
+[shiva]
+delta-services
+
+[registry]
+delta-registry
+
+[swarm-manager]
+delta-services
+
+[docks]
+
+[delta:children]
+bastion
+hipache
+mongodb
+api
+web
+redis
+redis-slave
+docks
+registry
+neo4j
+navi
+charon
+khronos
+mavis
+optimus
+rabbitmq
+eru
+shiva
+swarm-manager
+
+[admin]
+delta-admin
+
+[local]
+localhost,
+127.0.0.1
+
+[ec2:children]
+admin
+local
+
+[targets]
+localhost ansible_connection=local bastion_name=delta-bastion

ansible/delta-hosts/variables

@@ -0,0 +1,94 @@
+[api_group:vars]
+api_aws_access_key_id=AKIAIDC4WVMTCGV7KRVQ
+api_aws_secret_access_key=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
+api_github_client_id=b6072dc57062faca7fcb
+api_github_client_secret=ba73a9294dc4bfaa7ed02ba187f73918506e4293
+api_github_deploy_keys_bucket=runnable.deploykeys.production
+api_mixpanel_app_id=c41affa4b08818443365c526cbb51606
+api_mongo_auth=api:3f5210b8-8fe3-11e5-8e62-07b6eff19ecb
+api_mongo_database=delta
+api_mongo_replset_name=delta-rs0
+api_neo4j_auth=neo4j:oqGlRV1KTpaqbHDkdlJz
+api_new_relic_app_name=delta-api-production
+api_rollbar_key=a90d9c262c7c48cfabbd32fd0a1bc61c
+api_s3_context_bucket=runnable.context.resources.production
+
+[docks:vars]
+docker_config=docks
+
+[eru:vars]
+eru_github_id=8abb08f83f6d1c52bd1a
+eru_github_secret=74a23ee56486d57b14f292283cb04625f600917c
+
+[khronos:vars]
+khronos_mongo_auth=api:oW4c7x9Wiv28oiNBy2Bc
+khronos_mongo_database=delta
+khronos_mongo_replset_name=delta
+
+[optimus:vars]
+optimus_aws_access_id=AKIAJPA2ZYSVVA5V7XXQ
+optimus_aws_secret_id=5V70AUxfIyHeLvlYZe0xaYevDAdgTOWOn5G7nHlt
+optimus_github_deploy_keys_bucket=runnable.deploykeys.production
+
+[palantiri:vars]
+palantiri_rollbar_key=f675e9090d6f483ca4e742af2c7f2f83
+
+[registry:vars]
+registry_s3_access_key=AKIAJK5EN7W6E62A3C3Q
+registry_s3_bucket=runnableimages.alpha
+registry_s3_secret_key=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
+registry_s3_region=us-east-1
+
+[shiva:vars]
+aws_access_key_id=AKIAJ3RCYU6FCULAJP2Q
+aws_secret_access_key=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
+shiva_rollbar_key=0526a90faec845d796e1ef5361a00526
+
+[vault:vars]
+vault_auth_token=e22c3ebc-11cf-653b-7df0-79d78a499458
+vault_token_01=71d7b4754686013c8b9cfb22bafae79c661849dcd67c483c89efba12c0466aa201
+vault_token_02=794d6f7a3459c332a1fd2bbcc9230a7f84f1639806039ee8be547828cd7ab03a02
+vault_token_03=2e67faeffe4343c038d0f3210bdb83f3d3a5bc468975cf13e977ce9b5922aefe03
+vault_hello_runnable_github_token=88ddc423c2312d02a8bbcaad76dd4c374a30e4af
+vault_aws_access_key_id=AKIAJ7R4UIM45KH2WGWQ
+vault_aws_secret_key=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
+vault_aws_region=us-east-1
+
+[delta:vars]
+ansible_ssh_private_key_file=~/.ssh/delta.pem
+datadog_host_address=10.8.5.63
+datadog_tags=env:delta
+domain=runnable-delta.com
+mongo_port=27017
+new_relic_license_key=338516e0826451c297d44dc60aeaf0a0ca4bfead
+node_env=production-delta
+pg_host=delta-infrastructure-db.cnksgdqarobf.us-west-2.rds.amazonaws.com
+pg_pass=e9G7zYRCxYmxG9HQ8J9x2BDB
+rabbit_password=wKK7g7NWKpQXEeSzyWB7mIpxZIL8H2mDSf3Q6czR3Vk
+rabbit_username=o2mdLh9N9Ke2GzhoK8xsruYPhIQFN7iEL44dQJoq7OM
+registry_host=10.8.4.126
+swarm_token=d363b783f03a845a2c82b081bfe8443e
+user_content_domain=runnableapp.com
+api_hello_runnable_github_token=88ddc423c2312d02a8bbcaad76dd4c374a30e4af
+
+[ec2:vars]
+aws_access_key=AKIAIB3IJCCJZQWQMVSQ
+aws_secret_key=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
+aws_custid=437258487404
+sg_hipache=sg-7fd7fb1b
+sg_api=sg-0bf7db6f
+sg_neo4j=sg-a9d0fccd
+sg_bastion=sg-99d6fafd
+sg_dock=sg-6cd7fb08
+sg_mongo=sg-00d7fb64
+sg_rds=sg-65d2fe01
+sg_web=sg-51d2fe35
+sg_services=sg-71d2fe15
+sg_userland=sg-41d2fe25
+sg_nat=sg-3082cc54
+sg_rabbit=sg-92d1fdf6
+sg_redis=sg-6ed2fe0a
+sg_navi=sg-e5d7fb81
+env=delta
+region=us-west-2
+vpc_id=vpc-864c6be3

ansible/gamma-hosts/variables

@@ -70,3 +70,22 @@ registry_host=10.4.4.82
 swarm_token=d363b783f03a845a2c82b081bfe8443e
 user_content_domain=runnable.ninja
 api_hello_runnable_github_token=88ddc423c2312d02a8bbcaad76dd4c374a30e4af
+
+[ec2:vars]
+env=gamma
+aws_custid=437258487404
+vpc_id=vpc-c53464a0
+sg_api=sg-3b0c7b5f
+sg_bastion=sg-91eb81f5
+sg_dock=sg-577a0d33
+sg_hipache=sg-e70c7883
+sg_mongo=sg-977a0df3
+sg_nat=sg-b595ffd1
+sg_navi=sg-45633421
+sg_neo4j=sg-ff60179b
+sg_rabbit=sg-44b7cb201
+sg_rds=sg-081e596c
+sg_redis=sg-477b0c23
+sg_services=sg-8c6710e8
+sg_userland=sg-12ce9876
+sg_web=sg-fe8bf49a

ansible/group_vars/ec2_sg.yml

@@ -0,0 +1,3 @@
+---
+app_name: "ec2"
+git_branch: "null"

ansible/local/hosts

@@ -0,0 +1,2 @@
+[local]
+localhost

ansible/roles/create_sg/tasks/main.yml

@@ -0,0 +1,6 @@
+- name: create AWS SG
+  ec2_group:
+    name: "{{ sg_name }}"
+    description: "{{ env }} security policy for {{ descr }}"
+    vpc_id: "{{ vpc_id }}"
+    region: "{{ region }}"