ECN>> ecssc>> 返回
项目作者: rluisr

项目描述 :
Monitoring the ECS task event
高级语言: Go
项目地址: git://github.com/rluisr/ecssc.git
创建时间: 2020-12-12T16:17:43Z
项目社区:https://github.com/rluisr/ecssc
开源协议:Do What The F*ck You Want To Public License
下载


ecssc

ecssc(ECS State Check) is a Lambda function for notification to Slack if the ECS task event is changed.

image

Download

See GitHub Container Registry

Installation

ecssc is a Lambda function of EventBridge event target.

image

Copy the container image to your ECR repository.
The Lambda does not support third-party container registry.

This is an example for setting up EventBridge and Lambda with Terraform.

EventBridge:

  1. resource "aws_cloudwatch_event_bus" "ecs-state-check" {
  2.   name = "ecs-state-check"
  3. }
  5. resource "aws_cloudwatch_event_rule" "ecs-state-check" {
  6.   name        = "ecs-state-check"
  7.   event_pattern = <<EOF
  8. {
  9.   "source": [
  10.     "aws.ecs"
  11.   ],
  12.   "detail-type": [
  13.     "ECS Task State Change",
  14.     "ECS Container Instance State Change"
  15.   ]
  16. }
  17. EOF
  18. }

Lambda:

  1. # ECR
  2. resource "aws_ecr_repository" "foo" {
  3.   name                 = "ecs-state-check"
  4.   image_tag_mutability = "MUTABLE"
  6.   image_scanning_configuration {
  7.     scan_on_push = false
  8.   }
  9. }
  11. # CloudWatch Log Group
  12. resource "aws_cloudwatch_log_group" "ecs-state-check" {
  13.   name              = "/aws/lambda/ecs-state-check"
  14.   retention_in_days = 14
  15. }
  17. # IAM role for Lambda
  18. module "ecs-state-check_lambda_execution_role" {
  19.   source  = "baikonur-oss/iam-nofile/aws"
  20.   version = "v2.0.0"
  22.   type = "lambda"
  23.   name = "ecs-state-check"
  25.   policy_json = <<EOF
  26. {
  27.   "Version": "2012-10-17",
  28.   "Statement": [
  29.     {
  30.       "Effect": "Allow",
  31.       "Action": [
  32.         "logs:CreateLogStream",
  33.         "logs:PutLogEvents"
  34.       ],
  35.       "Resource": "*"
  36.     },
  37.     {
  38.       "Effect": "Allow",
  39.       "Action": [
  40.         "ssm:GetParametersByPath"
  41.       ],
  42.       "Resource": "arn:aws:ssm:${data.aws_region.region.name}:${data.aws_caller_identity.caller.account_id}:parameter${var.parameter_store_path}"
  43.     },
  44.     {
  45.       "Effect": "Allow",
  46.       "Action": [
  47.         "ecs:Describe*"
  48.       ],
  49.       "Resource": "*"
  50.     }
  51.   ]
  52. }
  53. EOF
  54. }
  56. # Lambda
  57. resource "aws_lambda_function" "ecs-state-check" {
  58.   function_name = "ecs-state-check"
  59.   image_uri = "to your ecr image uri"
  60.   package_type = "Image"
  61.   role = module.ecs-state-check_lambda_execution_role.arn
  62. }
  64. # Trigger
  65. resource "aws_lambda_permission" "ecs-state-check" {
  66.   action        = "lambda:InvokeFunction"
  67.   function_name = aws_lambda_function.ecs-state-check.function_name
  68.   principal     = "events.amazonaws.com"
  69.   source_arn    = "arn:aws:events:ap-northeast-1:111111111111:rule/ecs-state-check"
  70. }

Environment Variables

Name Description Required
ECSSC_DEBUG Show debug message. default: false no
ECSSC_IGNORE_CONTAINER_NAMES Skip container names. Support array like app1,app2 no
ECSSC_SLACK_CHANNEL_NAME Slack channel name like ‘#test’ yes
ECSSC_SLACK_WEBHOOK_URL Slack incoming webhook URL yes
ECSSC_SLACK_USER_NAME Slack Username default ‘ecs-state-check’ no
ECSSC_SLACK_ICON_URL Slack icon URL no
ECSSC_SLACK_ICON_EMOJI Slack icon emoji. default ‘:japanese_goblin: no