added bastion host

briancaffey · briancaffey · commit 156efb34dd75 · 2020-10-30T00:46:47.000-04:00
diff --git a/awscdk/app.py b/awscdk/app.py
@@ -3,7 +3,7 @@
 
 from aws_cdk import core
 
-from awscdk.cdk_app_root import ApplicationStack
+from awscdk.app_stack import ApplicationStack
 
 # naming conventions, also used for ACM certs, DNS Records, resource naming
 # Dynamically generated resource names created in CDK are used in GitLab CI
diff --git a/awscdk/awscdk/app_stack.py b/awscdk/awscdk/app_stack.py
@@ -15,6 +15,7 @@
 from static_site_bucket import StaticSiteStack
 from flower import FlowerServiceStack
 from celery_autoscaling import CeleryAutoscalingStack
+from bastion_host import BastionHost
 
 from backend import BackendServiceStack
 from backend_tasks import BackendTasksStack
@@ -80,7 +81,9 @@ def __init__(
 
         # image used for all django containers: gunicorn, daphne, celery, beat
         self.image = ecs.AssetImage(
-            "./backend", file="scripts/prod/Dockerfile", target="production",
+            "./backend",
+            file="scripts/prod/Dockerfile",
+            target="production",
         )
 
         self.variables = Variables(
@@ -110,3 +113,6 @@ def __init__(
 
         # migrate, collectstatic, createsuperuser
         self.backend_tasks = BackendTasksStack(self, "BackendTasksStack")
+
+        # bastion host
+        self.bastion_host = BastionHost(self, "BastionHost")
diff --git a/awscdk/awscdk/bastion_host.py b/awscdk/awscdk/bastion_host.py
@@ -0,0 +1,45 @@
+import os
+
+from aws_cdk import (
+    aws_autoscaling as autoscaling,
+    aws_cloudformation as cloudformation,
+    aws_ec2 as ec2,
+    aws_ecs as ecs,
+    core,
+)
+
+
+class BastionHost(cloudformation.NestedStack):
+    def __init__(
+        self,
+        scope: core.Construct,
+        id: str,
+        **kwargs,
+    ) -> None:
+        super().__init__(
+            scope,
+            id,
+            **kwargs,
+        )
+
+        self.asg = autoscaling.AutoScalingGroup(
+            self,
+            "AutoScalingGroup",
+            instance_type=ec2.InstanceType("t2.micro"),
+            machine_image=ecs.EcsOptimizedAmi(),
+            associate_public_ip_address=True,
+            update_type=autoscaling.UpdateType.REPLACING_UPDATE,
+            desired_capacity=1,
+            vpc=scope.vpc,
+            vpc_subnets={'subnet_type': ec2.SubnetType.PUBLIC},
+        )
+
+        self.cluster = ecs.Cluster(self, 'EcsCluster', vpc=scope.vpc)
+
+        self.cluster.add_auto_scaling_group(self.asg)
+        self.cluster.add_capacity(
+            "DefaultAutoScalingGroup",
+            instance_type=ec2.InstanceType("t2.micro"),
+            max_capacity=2,
+            key_name=os.environ.get("KEY_NAME"),
+        )
