more work on SLS workstation, and start of graphql demo

mcliff1 · mcliff1 · commit 53daafc3253f · 2018-04-20T15:16:26.000-06:00
diff --git a/README.md b/README.md
@@ -1,6 +1,11 @@
 # AWS
 Collection of AWS Cloud resources
 
+The *cfn-ec2workstation.json* Cloud Formation template will build out a Serverless workstation with NodeJS, NPM, SLS, and REACT frameworks install. You MUST define the parameters **myKeyPair** (name of your SSH Key to access the instance), and optionally **stage** (dev or prod) and **myDomain** (if you have a hosted domain will set a convenience URL *bot-{stage}.{domainname}*) 
+
+<code>
+aws cloudformation create-stack --stack-name <stackName> --template-body file://cfn-ec2workstation.json --parameters ParameterKey=myKeyPair
+</code>
 ## Serverless
 
 Frameworks with API Gateway/Lambda
diff --git a/cfn-ec2workstation.json b/cfn-ec2workstation.json
@@ -1,13 +1,13 @@
 { "AWSTemplateFormatVersion" : "2010-09-09",
-	"Description" : "Template will build SLS workstation",
+	"Description" : "Template will build SLS workstation, can be used in all stages has SLS and REACT frameworks installed",
   "Parameters" :
 {
     "myKeyPair" : {
 	"Description" : "Amazon EC2 Key Pair",
 	"Type" : "AWS::EC2::KeyPair::KeyName"
     },
     "myDomain" : {
-	"Description" : "Domain to add the sls-${region}",
+	"Description" : "(optional) Domain to add the sls-${region}",
 	"Type" : "String",
 	"Default" : "nodomainname"
     }
@@ -24,7 +24,12 @@
                 "ImageId" : { "Fn::FindInMap" : [ "AWSRegionArch2AMI", { "Ref" : "AWS::Region" }, "HVM64" ]},
                 "KeyName" : { "Ref" : "myKeyPair" },
                 "InstanceType" : "t2.micro",
-                "Tags" : [ { "Key" : "Role", "Value" : "SLS Workstation" } ],
+                "IamInstanceProfile" : { "Ref" : "InstanceRole" },
+                "SecurityGroups" : [ {"Ref" : "SG" } ],
+                "Tags" : [ 
+			{ "Key" : "Name", "Value" : "SLS Workstation" } ,
+			{ "Key" : "Created", "Value" : "CFN github aws/cgn-ec2workstation.json" } 
+		],
                 "UserData" : { "Fn::Base64" : { "Fn::Join" : ["",[
                         "#!/bin/bash", "\n",
                         "yum update -y", "\n",
@@ -42,6 +47,75 @@
     },
 
 
+
+
+
+    "SLSRole": {
+        "Type" : "AWS::IAM::Role",
+        "Properties" : {
+                "AssumeRolePolicyDocument" : {
+			"Version" : "2012-10-17",
+			"Statement" : [ {
+				"Effect" : "Allow",
+				"Principal" : {
+					"Service" : [ "ec2.amazonaws.com" ]
+				},
+				"Action" : [ "sts:AssumeRole" ]
+			} ]
+		},
+                "Path" : "/",
+                "Policies" : [ 
+			{
+				"PolicyName" : "sls-iam-instance-policy",
+				"PolicyDocument": {
+					"Version" : "2012-10-17",
+					"Statement" : [
+						{
+							"Action" : [
+								"route53:ChangeResourceRecordSets",
+								"cloudformation:*"
+							],
+							"Resource" : "*",
+							"Effect" : "Allow"
+						}
+					]
+				}
+			}
+		]
+        }
+    },
+
+    "InstanceRole": {
+        "Type" : "AWS::IAM::InstanceProfile",
+        "Properties" : {
+                "Path" : "/",
+                "Roles" : [ 
+			{ "Ref" : "SLSRole" }
+		]
+        }
+    },
+
+
+    "SG": {
+        "Type" : "AWS::EC2::SecurityGroup",
+        "Properties" : {
+		"GroupDescription" : "SLS Workstation CFN generated group" ,
+                "SecurityGroupIngress" : [ 
+			{ "Description" : "Access to SSH", "IpProtocol" : "tcp", "FromPort" : "22", "ToPort" : "22", "CidrIp" : "0.0.0.0/0" },
+			{ "Description" : "REACT dev port", "IpProtocol" : "tcp", "FromPort" : "3000", "ToPort" : "3000", "CidrIp" : "0.0.0.0/0" },
+			{ "Description" : "http test port", "IpProtocol" : "tcp", "FromPort" : "8000", "ToPort" : "8000", "CidrIp" : "0.0.0.0/0" }
+		],
+                "Tags" : [ 
+			{ "Key" : "Name", "Value" : "SLS Workstation" } ,
+			{ "Key" : "Created", "Value" : "CFN github aws/cgn-ec2workstation.json" } 
+		]
+        }
+    },
+
+
+
+
+
     "DnsRecord": {
         "Type" : "AWS::Route53::RecordSet",
 	"Condition" : "CreateDnsResources",
diff --git a/garden-gql/README.md b/garden-gql/README.md
@@ -0,0 +1,6 @@
+# Serverless GraphQL
+
+Attemping to following along with
+[Serverless Zone]([200~https://serverless.zone/graphql-with-the-serverless-framework-79924829a8ca)
+
+
diff --git a/garden-gql/serverless.yml b/garden-gql/serverless.yml
@@ -0,0 +1,26 @@
+service: garden-gql
+provider:
+    name: aws
+    runtime: nodejs4.3
+    region: us-west-2
+
+    iamRoleStatements:
+       -  Effect: Allow
+          Action:
+            - dynamodb:DescribeTable
+            - dynamodb:Query
+            - dynamodb:Scan
+            - dynamodb:GetItem
+            - dynamodb:PutItem
+            - dynamodb:UpdateItem
+            - dynamodb:DeleteItem
+          Resource: "arn:aws:dynamodb:us-west-2:*:*"
+
+functions:
+    graphQl:
+        handler: index.graphql
+        events:
+            - http:
+                path: graphql
+                method: post
+                cors: true
