Using AWS against... AWS: How to control resources using Lambda

 


There are many ways to administrate resources in your AWS accounts because you have the power of IAC, which means that you can deploy/start/stop any services just using Code.


To do it, we usually use templates and CloudFormation or other tools that can enable the interaction with your accounts, maybe directly from a bash console, maybe using AWS pipeline.


Using a joke from a friend of mine, it is always funny to use AWS against AWS: this is the case when you need to stop resources that AWS starts and you don't want to pay for unused resources (and you don't have all the scripts to recreate all the instances). Let's see it


CONDITION

Suppose you have created a simple DocumentDB cluster which you need to stops. You don't have all the ability to recreate the instances each time using external disks as backup. You just stop the cluster when you don't use it.

If you wait too much, AWS will restart the cluster (after a week) and you will pay for it, even if you don't use it.

You need to remember it.. or you can leave AWS make it.

TIMING

We will use a scheduled operation for that, which means that you will create a schedule Event bridge and let be the trigger for our Lambda Function


It is scheduled for example every day at 8. Or maybe twice a day. Or maybe you can start it every 20 minutes because you are so afraid to spend even a penny.



LAMBDA FUNCTION

To easily test and deploy, we will use typescript and nodeJs. The logic is quite simple: 
  • we will call the describe cluster passing the name of the cluster
  • we will extract the status information
  • if the status is not stopped or stopping (or backing-up) we can try to stop it
  • we will call the command for stop
  • we will call the describe status until the status is stopping, waiting a while between each call
We then just return an ok response.

We can easily test it (the input is not so important because it's just time event, no other information are available)

Here the code



There are all the imports we need from documentDb and also there is a function (an async function) which is able to call the describe status whenever we need it.

ROLE AND PERMISSION


This is simple, because we just use the Lambda to call describe and stop, so we just used the rds:* (it's not the best choice..but we are not in production of course)




CONCLUSION

This is intended to be not for production. However this is a correct approach if you need to start and stop instances or clusters every day.

For example if you have the cloud formation template for deploy a kubernetes cluster and you want to stop it every day, you can call the code directly in the function and create the schedule using event bridge.

Please use always as much automation you can, enjoy all features of cloud!



Commenti

Posta un commento

Post popolari in questo blog

HTML and AI - A simple request, and a beautiful response for ElasticSearch without Kibana

Immagine
THE PROBEM I recently installed an ElasticSearch in a Docker environment and I want to be sure that it is working, before waiting the consumers start to connect to it. The Container is started using a volume which was cloned from another Docker installation, so it was not empty: we already have some indexes and some documents. I want to be sure that everything was available but I don't have any Kibana installation (and I can't install it at all). So only API was available and I need to check something  ElasticSearch REST APIs THE FIRST SOLUTION If you ask to Microsoft Copilot how to interact with ElasticSearch api, it will reply by suggesting: curl scripting postman But the interaction is not so human readable and it is quite noisy to write the commands. I want to have something to be easily used but I don't want to spend to much time on that. I need an accelerator THE SECOND SOLUTION I know that there is such an api to ask to ElasticSearch the list of indexes. And I also k...
Continua a leggere

A simple CD using AWS Pipeline

Immagine
  CD is a friend in software development: there is no other way to speed up feedback from your application without having a solid Continuous Deployment. I am skipping continuous integration because all of this examples are related to single repo.. where the only developer allowed to commit code it's me: the integration is with my self :) In this example we will create an automation related to a simple situation where we have a LambdaFunction exposed through an ApiGateway, where the lambda function is running a docker image. There are infinite ways of creating and managing Lambda and pipelines of course, but in this example we will use: CodeCommit to store the code ECR to store the code CloudFormation to create and update all the infrastructure. CodeBuild to create the artifacts we need Let's see it CODE COMMIT     To easily have a repository to store the code and to have a natural integration with AWS echosystem, I decided to use Code commit. Code is structured as other e...
Continua a leggere

Websocket Chat with Lambda (but all in Java)

Immagine
  I don't know if I am not able to perform search on Internet (I doubt it) but every examples of websocket chat created with Lambda was all created using Node.js. And I can cheat on Java, that's my love. So I decided to transform the usual chat into a Java project, by of course performing some changes in order to be easy to check if it works.  THE IDEA The idea behind the project is simple: a simple WebSocket API exposed with api gateway with 4 different route and a unique Lambda who is in charge to serve each request. The change I made is about the name registration: instead of just propagate the message to other connected users, I want to have the way to register a name for chat users so every time a message is published, the receiver can see who sent the message. As I said in other project, this is to be intended for testing purpose, so there are really infinite ways to do have the same behavior maybe in a better way. THE PROJECT The entire project is based on cloud formati...
Continua a leggere