closes #84

Author: michaelwittig

DEV.md

@@ -10,12 +10,40 @@ $ regions=$(aws ec2 describe-regions --query "Regions[].RegionName" --output tex
 
 ### RegionMapAmazonLinux
 
+Default user: ec2-user
+
 ```
-$ for region in $regions; do ami=$(aws --region $region ec2 describe-images --filters "Name=name,Values=amzn-ami-hvm-2017.03.1.20170812-x86_64-gp2" --query "Images[0].ImageId" --output "text"); printf "'$region':\n  AMI: '$ami'\n"; done
+$ for region in $regions; do ami=$(aws --region $region ec2 describe-images --filters "Name=name,Values=amzn-ami-hvm-2017.09.1.20171120-x86_64-gp2" --query "Images[0].ImageId" --output "text"); printf "'$region':\n  AMI: '$ami'\n"; done
 ```
 
 ### RegionMapUbuntu
 
+Default user: ubuntu
+
 ```
 $ for region in $regions; do ami=$(aws --region $region ec2 describe-images --filters "Name=name,Values=ubuntu/images/hvm-ssd/ubuntu-xenial-16.04-amd64-server-20171208" --query "Images[0].ImageId" --output "text"); printf "'$region':\n  AMI: '$ami'\n"; done
-```
+```
+
+### RegionMapSUSELinuxEnterpriseServer
+
+Default user: ec2-user
+
+```
+$ for region in $regions; do ami=$(aws --region $region ec2 describe-images --filters "Name=name,Values=suse-sles-12-sp3-v20171212-hvm-ssd-x86_64" --query "Images[0].ImageId" --output "text"); printf "'$region':\n  AMI: '$ami'\n"; done
+```
+
+### RegionMapRHEL
+
+Default user: ec2-user
+
+```
+$ for region in $regions; do ami=$(aws --region $region ec2 describe-images --filters "Name=name,Values=RHEL-7.4_HVM_GA-20170808-x86_64-2-Hourly2-GP2" --query "Images[0].ImageId" --output "text"); printf "'$region':\n  AMI: '$ami'\n"; done
+```
+
+### RegionMapCentOS
+
+Default user: centos
+
+```
+$ for region in $regions; do ami=$(aws --region $region ec2 describe-images --filters "Name=name,Values=CentOS Linux 7 x86_64 HVM EBS 1708_11.01" --query "Images[0].ImageId" --output "text"); printf "'$region':\n  AMI: '$ami'\n"; done
+```

README.md

@@ -1,6 +1,13 @@
 # Manage AWS EC2 SSH access with IAM
 
-Use your IAM user's public SSH key to get access via SSH to an EC2 instance running **Amazon Linux** or **Ubuntu**. Depends on the [AWS CLI](https://aws.amazon.com/cli/) and `git` if you use the `install.sh` script.
+Use your IAM user's public SSH key to get access via SSH to an **EC2 instance** running
+* Amazon Linux 2017.09
+* Ubuntu 16.04
+* SUSE Linux Enterprise Server 12 SP3
+* RHEL 7.4
+* CentOS 7
+
+`aws-ec2-ssh` depends on the [AWS CLI](https://aws.amazon.com/cli/) and `git` if you use the `install.sh` script.
 
 ## How does it work
 

showcase.yaml

@@ -23,43 +23,89 @@ Parameters:
     AllowedValues:
     - AmazonLinux
     - Ubuntu
+    - SUSELinuxEnterpriseServer
+    - RHEL
+    - CentOS
 Mappings:
   OSMap:
     AmazonLinux:
       RegionMap: RegionMapAmazonLinux
+      UserData: |
+        /opt/aws/bin/cfn-init --verbose --stack=${STACKNAME} --region=${REGION} --resource=Instance
+        /opt/aws/bin/cfn-signal --exit-code $? --stack=${STACKNAME} --region=${REGION} --resource=Instance
     Ubuntu:
       RegionMap: RegionMapUbuntu
+      UserData: |
+        bash -ex << "TRY"
+          apt-get update
+          apt-get -y install python-setuptools
+          mkdir aws-cfn-bootstrap-latest
+          curl -s -m 60 https://s3.amazonaws.com/cloudformation-examples/aws-cfn-bootstrap-latest.tar.gz | tar xz -C aws-cfn-bootstrap-latest --strip-components 1
+          easy_install aws-cfn-bootstrap-latest
+          /usr/local/bin/cfn-init --verbose --stack=${STACKNAME} --region=${REGION} --resource=Instance
+        TRY
+        /usr/local/bin/cfn-signal --exit-code $? --stack=${STACKNAME} --region=${REGION} --resource=Instance
+    SUSELinuxEnterpriseServer:
+      RegionMap: RegionMapSUSELinuxEnterpriseServer
+      UserData: |
+        bash -ex << "TRY"
+          mkdir aws-cfn-bootstrap-latest
+          curl -s -m 60 https://s3.amazonaws.com/cloudformation-examples/aws-cfn-bootstrap-latest.tar.gz | tar xz -C aws-cfn-bootstrap-latest --strip-components 1
+          easy_install aws-cfn-bootstrap-latest
+          /usr/bin/cfn-init --verbose --stack=${STACKNAME} --region=${REGION} --resource=Instance
+        TRY
+        /usr/bin/cfn-signal --exit-code $? --stack=${STACKNAME} --region=${REGION} --resource=Instance
+    RHEL:
+      RegionMap: RegionMapRHEL
+      UserData: |
+        bash -ex << "TRY"
+          mkdir aws-cfn-bootstrap-latest
+          curl -s -m 60 https://s3.amazonaws.com/cloudformation-examples/aws-cfn-bootstrap-latest.tar.gz | tar xz -C aws-cfn-bootstrap-latest --strip-components 1
+          easy_install aws-cfn-bootstrap-latest
+          /bin/cfn-init --verbose --stack=${STACKNAME} --region=${REGION} --resource=Instance
+        TRY
+        /bin/cfn-signal --exit-code $? --stack=${STACKNAME} --region=${REGION} --resource=Instance
+    CentOS:
+      RegionMap: RegionMapCentOS
+      UserData: |
+        bash -ex << "TRY"
+          mkdir aws-cfn-bootstrap-latest
+          curl -s -m 60 https://s3.amazonaws.com/cloudformation-examples/aws-cfn-bootstrap-latest.tar.gz | tar xz -C aws-cfn-bootstrap-latest --strip-components 1
+          easy_install aws-cfn-bootstrap-latest
+          /bin/cfn-init --verbose --stack=${STACKNAME} --region=${REGION} --resource=Instance
+        TRY
+        /bin/cfn-signal --exit-code $? --stack=${STACKNAME} --region=${REGION} --resource=Instance
   RegionMapAmazonLinux:
     'ap-south-1':
-      AMI: 'ami-2ed19c41'
+      AMI: 'ami-d5c18eba'
     'eu-west-3':
-      AMI: 'ami-c8a017b5'
+      AMI: 'ami-dd8b3ca0'
     'eu-west-2':
-      AMI: 'ami-e3051987'
+      AMI: 'ami-e7d6c983'
     'eu-west-1':
-      AMI: 'ami-760aaa0f'
+      AMI: 'ami-1a962263'
     'ap-northeast-2':
-      AMI: 'ami-fc862292'
+      AMI: 'ami-1196317f'
     'ap-northeast-1':
-      AMI: 'ami-2803ac4e'
+      AMI: 'ami-da9e2cbc'
     'sa-east-1':
-      AMI: 'ami-1678037a'
+      AMI: 'ami-286f2a44'
     'ca-central-1':
-      AMI: 'ami-ef3b838b'
+      AMI: 'ami-d29e25b6'
     'ap-southeast-1':
-      AMI: 'ami-dd7935be'
+      AMI: 'ami-c63d6aa5'
     'ap-southeast-2':
-      AMI: 'ami-1a668878'
+      AMI: 'ami-ff4ea59d'
     'eu-central-1':
-      AMI: 'ami-e28d098d'
+      AMI: 'ami-bf2ba8d0'
     'us-east-1':
-      AMI: 'ami-6057e21a'
+      AMI: 'ami-55ef662f'
     'us-east-2':
-      AMI: 'ami-aa1b34cf'
+      AMI: 'ami-15e9c770'
     'us-west-1':
-      AMI: 'ami-1a033c7a'
+      AMI: 'ami-a51f27c5'
     'us-west-2':
-      AMI: 'ami-32d8124a'
+      AMI: 'ami-bf4193c7'
   RegionMapUbuntu:
     'ap-south-1':
       AMI: 'ami-84dc94eb'
@@ -91,6 +137,93 @@ Mappings:
       AMI: 'ami-1a17137a'
     'us-west-2':
       AMI: 'ami-a2e544da'
+  RegionMapSUSELinuxEnterpriseServer:
+    'ap-south-1':
+      AMI: 'ami-01b3fb6e'
+    'eu-west-3':
+      AMI: 'ami-865fe8fb'
+    'eu-west-2':
+      AMI: 'ami-1b51487f'
+    'eu-west-1':
+      AMI: 'ami-9628adef'
+    'ap-northeast-2':
+      AMI: 'ami-3a51f754'
+    'ap-northeast-1':
+      AMI: 'ami-d944c6bf'
+    'sa-east-1':
+      AMI: 'ami-c3682eaf'
+    'ca-central-1':
+      AMI: 'ami-4acd772e'
+    'ap-southeast-1':
+      AMI: 'ami-cf0262b3'
+    'ap-southeast-2':
+      AMI: 'ami-4caf592e'
+    'eu-central-1':
+      AMI: 'ami-00e06b6f'
+    'us-east-1':
+      AMI: 'ami-d4abc1ae'
+    'us-east-2':
+      AMI: 'ami-466f4723'
+    'us-west-1':
+      AMI: 'ami-f16b6f91'
+    'us-west-2':
+      AMI: 'ami-8368cefb'
+  RegionMapRHEL:
+    'ap-south-1':
+      AMI: 'ami-e41b618b'
+    'eu-west-3':
+      AMI: 'ami-39902744'
+    'eu-west-2':
+      AMI: 'ami-a1f5e4c5'
+    'eu-west-1':
+      AMI: 'ami-bb9a6bc2'
+    'ap-northeast-2':
+      AMI: 'ami-0f5a8361'
+    'ap-northeast-1':
+      AMI: 'ami-30ef0556'
+    'sa-east-1':
+      AMI: 'ami-a789ffcb'
+    'ca-central-1':
+      AMI: 'ami-dad866be'
+    'ap-southeast-1':
+      AMI: 'ami-10bb2373'
+    'ap-southeast-2':
+      AMI: 'ami-ccecf5af'
+    'eu-central-1':
+      AMI: 'ami-d74be5b8'
+    'us-east-1':
+      AMI: 'ami-c998b6b2'
+    'us-east-2':
+      AMI: 'ami-cfdafaaa'
+    'us-west-1':
+      AMI: 'ami-66eec506'
+    'us-west-2':
+      AMI: 'ami-9fa343e7'
+  RegionMapCentOS:
+    'ap-south-1':
+      AMI: 'ami-a691d8c9'
+    'eu-west-2':
+      AMI: 'ami-d5213fb1'
+    'eu-west-1':
+      AMI: 'ami-147fc16d'
+    'ap-northeast-2':
+      AMI: 'ami-56a40238'
+    'ap-northeast-1':
+      AMI: 'ami-1b27a37d'
+    'sa-east-1':
+      AMI: 'ami-284d0a44'
+    'ca-central-1':
+      AMI: 'ami-161ea572'
+    'eu-central-1':
+      AMI: 'ami-8f62ece0'
+    'us-east-1':
+      AMI: 'ami-95096eef'
+    'us-east-2':
+      AMI: 'ami-2d103948'
+    'us-west-1':
+      AMI: 'ami-c0bf85a0'
+    'us-west-2':
+      AMI: 'ami-02c71d7a'
 Conditions:
   UseCrossAccountIAM: !Not [!Equals [!Ref AssumeRole, '']]
   UseLocalIAM: !Equals [!Ref AssumeRole, '']
@@ -163,14 +296,35 @@ Resources:
     Type: AWS::EC2::Instance
     Metadata:
       'AWS::CloudFormation::Init':
-        config:
-          packages: !If
-          - UseUbuntu
-          - apt:
+        configSets:
+          default: [!Sub 'prepare${OS}', install]
+        prepareAmazonLinux:
+          packages:
+            yum:
+              git: []
+        prepareUbuntu:
+          packages:
+            apt:
               git: []
               awscli: []
-          - yum:
+        prepareSUSELinuxEnterpriseServer: {}
+        prepareRHEL:
+          packages:
+            rpm:
+              epel: 'http://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm'
+            yum:
               git: []
+              python2-pip: []
+            python:
+              awscli: []
+        prepareCentOS:
+          packages:
+            rpm:
+              epel: 'http://dl.fedoraproject.org/pub/epel/epel-release-latest-7.noarch.rpm'
+            yum:
+              git: []
+              awscli: []
+        install:
           files:
             '/opt/install.sh':
               source: 'https://raw.githubusercontent.com/widdix/aws-ec2-ssh/master/install.sh'
@@ -186,23 +340,14 @@ Resources:
       IamInstanceProfile: !Ref InstanceProfile
       InstanceType: 't2.micro'
       KeyName: !If [HasKeyName, !Ref KeyName, !Ref 'AWS::NoValue']
-      UserData: !If
-      - UseUbuntu
-      - 'Fn::Base64': !Sub |
-          #!/bin/bash -x
-          bash -ex << "TRY"
-            apt-get update
-            apt-get -y install python-setuptools
-            mkdir aws-cfn-bootstrap-latest
-            curl -s -m 60 https://s3.amazonaws.com/cloudformation-examples/aws-cfn-bootstrap-latest.tar.gz | tar xz -C aws-cfn-bootstrap-latest --strip-components 1
-            easy_install aws-cfn-bootstrap-latest
-            /usr/local/bin/cfn-init --verbose --stack=${AWS::StackName} --region=${AWS::Region} --resource=Instance
-          TRY
-          /usr/local/bin/cfn-signal --exit-code $? --stack=${AWS::StackName} --region=${AWS::Region} --resource=Instance
-      - 'Fn::Base64': !Sub |
-          #!/bin/bash -x
-          /opt/aws/bin/cfn-init --verbose --stack=${AWS::StackName} --region=${AWS::Region} --resource=Instance
-          /opt/aws/bin/cfn-signal --exit-code $? --stack=${AWS::StackName} --region=${AWS::Region} --resource=Instance
+      UserData:
+        'Fn::Base64': !Sub
+          - |
+              #!/bin/bash -x
+              export REGION=${AWS::Region}
+              export STACKNAME=${AWS::StackName}
+              ${UserData}
+          - UserData: !FindInMap [OSMap, !Ref OS, UserData]
       NetworkInterfaces:
       - AssociatePublicIpAddress: true
         DeleteOnTermination: true