Reputation: 537
How do I copy data from AWS S3 to EC2 in a CloudFormation template?
I've created a CloudFormation template that launches an AutoScaling group. During the launch, a policy allowing s3:GetObject access is attached to each EC2 instance. After this, I use User Data to install an Apache web server and PHP, and then change the settings for the relevant folders. I then need to copy multiple files from an S3 bucket (which has no public access) to the /var/www/html folder in each instance, but I can't work out how to do so without reverting to manually copying or syncing the files with the CLI after the CloudFormation stack has completed - this has to be an entirely automated process.
The user data in the template is as follows:
"UserData": {
"Fn::Base64": {
"Fn::Join": [
"\n",
[
"#!/bin/bash",
"yum update -y",
"yum install -y httpd24 php56",
"service httpd start",
"chkconfig httpd on",
"groupadd DMO",
"usermod -a -G DMO ec2-user",
"chgrp -R DMO /var/www",
"chmod 2775 /var/www",
"find /var/www -type d -exec chmod 2775 {} +",
"find /var/www -type f -exec chmod 0664 {} +"
]
]
}
}
Upvotes: 3
Views: 3015
Answers (1)
Reputation: 373
To stick with that you're already doing, you could run the AWS CLI from within your userdata script:
"UserData": {
"Fn::Base64": {
"Fn::Join": [
"\n",
[
"#!/bin/bash",
"yum update -y",
"yum install -y httpd24 php56",
"service httpd start",
"chkconfig httpd on",
"groupadd DMO",
"usermod -a -G DMO ec2-user",
"chgrp -R DMO /var/www",
"chmod 2775 /var/www",
"aws s3 cp s3://MYBUCKET/MYFILE.zip /tmp",
"unzip -d /var/www /tmp/MYFILE.zip",
"rm /tmp/MYFILE.zip",
"find /var/www -type d -exec chmod 2775 {} +",
"find /var/www -type f -exec chmod 0664 {} +"
]
]
}
}
In order to do this, you EC2 instance profile must grant permission to read the file from S3.
An alternative is to use AWS::CloudFormation::Init: it's a predefined metadata key that you can attach to either an EC2::Instance or AutoScaling::LaunchConfiguration resource, which allows you to configure packages, services, and individual files (including retrieving and unzipping a file from S3).
There's a tutorial here
Upvotes: 7
Related Questions
- Access CloudFormation template in S3 from within Lambda
- Importing s3 Bucket in Cloudformation template
- How to import existing S3 bucket from another stack in CloudFormation?
- How to upload contents into S3 bucket via CloudFormation template using custom resource?
- Cloudformation: How to read file contents from s3 object and use the contents in cloudformation template as a string
- How to use CloudFormation template from S3
- AWS - Moving data from one S3 bucket to another with CloudFormation
- How can I copy a file from s3 bucket into an ec2 instance using userdata inside a cloudformation template
- How to access contents of an s3 bucket through cloudformation template?
- How to map an AWS S3 Bucket into a container on AWS ECS with AWS CloudFormation template?