Server: '$(hostname)'
' >> /var/www/html/index.html\necho 'Great Spirit blesses this server
' >> /var/www/html/index.html\nsystemctl restart nginx" } }, "DependsOn": [ "CherokeeVPCSequoyahPublicSubnetSubnet1DefaultRouteC060B7D2", "CherokeeVPCSequoyahPublicSubnetSubnet1RouteTableAssociation256A0DB7", "CherokeeVPCSequoyahPublicSubnetSubnet2DefaultRoute1D5A23BC", "CherokeeVPCSequoyahPublicSubnetSubnet2RouteTableAssociationFF67AF4B", "SittingBullInstanceInstanceRole4E8753C4" ], "Metadata": { "aws:cdk:path": "ManitouProductionStack/SittingBullInstance/Resource" } }, "CrazyHorseInstanceInstanceRole4B55059C": { "Type": "AWS::IAM::Role", "Properties": { "AssumeRolePolicyDocument": { "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "Service": "ec2.amazonaws.com" } } ], "Version": "2012-10-17" }, "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Name", "Value": "CrazyHorse-WebServer" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ] }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/CrazyHorseInstance/InstanceRole/Resource" } }, "CrazyHorseInstanceInstanceProfile02082E2B": { "Type": "AWS::IAM::InstanceProfile", "Properties": { "Roles": [ { "Ref": "CrazyHorseInstanceInstanceRole4B55059C" } ] }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/CrazyHorseInstance/InstanceProfile" } }, "CrazyHorseInstance33E3E0F2": { "Type": "AWS::EC2::Instance", "Properties": { "AvailabilityZone": { "Fn::Select": [ 0, { "Fn::GetAZs": "" } ] }, "IamInstanceProfile": { "Ref": "CrazyHorseInstanceInstanceProfile02082E2B" }, "ImageId": { "Ref": "SsmParameterValueawsserviceamiamazonlinuxlatestamzn2amikernel510hvmx8664gp2C96584B6F00A464EAD1953AFF4B05118Parameter" }, "InstanceType": "t2.micro", "KeyName": "my-cdk-keypair", "NetworkInterfaces": [ { "AssociatePublicIpAddress": true, "DeviceIndex": "0", "GroupSet": [ { "Fn::GetAtt": [ "ApacheSecurityGroup0F9B9B26", "GroupId" ] } ], "SubnetId": { "Ref": "CherokeeVPCSequoyahPublicSubnetSubnet1SubnetF7178127" } } ], "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Name", "Value": "CrazyHorse-WebServer" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ], "UserData": { "Fn::Base64": "#!/bin/bash\n#!/bin/bash\nyum update -y\namazon-linux-extras install nginx1 -y\nsystemctl start nginx\nsystemctl enable nginx\necho 'Server: '$(hostname)'
' >> /var/www/html/index.html\necho 'Thunder Being protects this server
' >> /var/www/html/index.html\nsystemctl restart nginx" } }, "DependsOn": [ "CherokeeVPCSequoyahPublicSubnetSubnet1DefaultRouteC060B7D2", "CherokeeVPCSequoyahPublicSubnetSubnet1RouteTableAssociation256A0DB7", "CherokeeVPCSequoyahPublicSubnetSubnet2DefaultRoute1D5A23BC", "CherokeeVPCSequoyahPublicSubnetSubnet2RouteTableAssociationFF67AF4B", "CrazyHorseInstanceInstanceRole4B55059C" ], "Metadata": { "aws:cdk:path": "ManitouProductionStack/CrazyHorseInstance/Resource" } }, "CherokeeStorageBucket59591729": { "Type": "AWS::S3::Bucket", "Properties": { "BucketEncryption": { "ServerSideEncryptionConfiguration": [ { "ServerSideEncryptionByDefault": { "SSEAlgorithm": "AES256" } } ] }, "BucketName": "cherokee-storage-bucket-aws-20250627", "PublicAccessBlockConfiguration": { "BlockPublicAcls": true, "BlockPublicPolicy": true, "IgnorePublicAcls": true, "RestrictPublicBuckets": true }, "Tags": [ { "Key": "aws-cdk:auto-delete-objects", "Value": "true" }, { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ], "VersioningConfiguration": { "Status": "Enabled" } }, "UpdateReplacePolicy": "Delete", "DeletionPolicy": "Delete", "Metadata": { "aws:cdk:path": "ManitouProductionStack/CherokeeStorageBucket/Resource" } }, "CherokeeStorageBucketPolicy020BCB19": { "Type": "AWS::S3::BucketPolicy", "Properties": { "Bucket": { "Ref": "CherokeeStorageBucket59591729" }, "PolicyDocument": { "Statement": [ { "Action": [ "s3:DeleteObject*", "s3:GetBucket*", "s3:List*", "s3:PutBucketPolicy" ], "Effect": "Allow", "Principal": { "AWS": { "Fn::GetAtt": [ "CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092", "Arn" ] } }, "Resource": [ { "Fn::GetAtt": [ "CherokeeStorageBucket59591729", "Arn" ] }, { "Fn::Join": [ "", [ { "Fn::GetAtt": [ "CherokeeStorageBucket59591729", "Arn" ] }, "/*" ] ] } ] } ], "Version": "2012-10-17" } }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/CherokeeStorageBucket/Policy/Resource" } }, "CherokeeStorageBucketAutoDeleteObjectsCustomResource8D2E861E": { "Type": "Custom::S3AutoDeleteObjects", "Properties": { "ServiceToken": { "Fn::GetAtt": [ "CustomS3AutoDeleteObjectsCustomResourceProviderHandler9D90184F", "Arn" ] }, "BucketName": { "Ref": "CherokeeStorageBucket59591729" } }, "DependsOn": [ "CherokeeStorageBucketPolicy020BCB19" ], "UpdateReplacePolicy": "Delete", "DeletionPolicy": "Delete", "Metadata": { "aws:cdk:path": "ManitouProductionStack/CherokeeStorageBucket/AutoDeleteObjectsCustomResource/Default" } }, "CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092": { "Type": "AWS::IAM::Role", "Properties": { "AssumeRolePolicyDocument": { "Version": "2012-10-17", "Statement": [ { "Action": "sts:AssumeRole", "Effect": "Allow", "Principal": { "Service": "lambda.amazonaws.com" } } ] }, "ManagedPolicyArns": [ { "Fn::Sub": "arn:${AWS::Partition}:iam::aws:policy/service-role/AWSLambdaBasicExecutionRole" } ] }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/Custom::S3AutoDeleteObjectsCustomResourceProvider/Role" } }, "CustomS3AutoDeleteObjectsCustomResourceProviderHandler9D90184F": { "Type": "AWS::Lambda::Function", "Properties": { "Code": { "S3Bucket": { "Fn::Sub": "cdk-hnb659fds-assets-${AWS::AccountId}-us-east-2" }, "S3Key": "faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6.zip" }, "Timeout": 900, "MemorySize": 128, "Handler": "index.handler", "Role": { "Fn::GetAtt": [ "CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092", "Arn" ] }, "Runtime": "nodejs22.x", "Description": { "Fn::Join": [ "", [ "Lambda function for auto-deleting objects in ", { "Ref": "CherokeeStorageBucket59591729" }, " S3 bucket." ] ] } }, "DependsOn": [ "CustomS3AutoDeleteObjectsCustomResourceProviderRole3B1BD092" ], "Metadata": { "aws:cdk:path": "ManitouProductionStack/Custom::S3AutoDeleteObjectsCustomResourceProvider/Handler", "aws:asset:path": "asset.faa95a81ae7d7373f3e1f242268f904eb748d8d0fdd306e8a6fe515a1905a7d6", "aws:asset:property": "Code" } }, "KokopelliReadOnlyGroup4B191331": { "Type": "AWS::IAM::Group", "Properties": { "GroupName": "Kokopelli-ReadOnlyAccess-Group", "ManagedPolicyArns": [ { "Fn::Join": [ "", [ "arn:", { "Ref": "AWS::Partition" }, ":iam::aws:policy/ReadOnlyAccess" ] ] } ] }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/KokopelliReadOnlyGroup/Resource" } }, "QuetzalcoatlSecret1ACBBB62": { "Type": "AWS::SecretsManager::Secret", "Properties": { "Description": "Password for IAM user Quetzalcoatl-Production-User", "GenerateSecretString": { "ExcludeCharacters": " \"\\'@/\\", "GenerateStringKey": "password", "IncludeSpace": false, "PasswordLength": 16, "RequireEachIncludedType": true, "SecretStringTemplate": "{\"username\":\"Quetzalcoatl-Production-User\"}" }, "Name": "iam-user-password/quetzalcoatl-production-user", "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ] }, "UpdateReplacePolicy": "Delete", "DeletionPolicy": "Delete", "Metadata": { "aws:cdk:path": "ManitouProductionStack/QuetzalcoatlSecret/Resource" } }, "QuetzalcoatlUser1344F81A": { "Type": "AWS::IAM::User", "Properties": { "Groups": [ { "Ref": "KokopelliReadOnlyGroup4B191331" } ], "LoginProfile": { "Password": { "Fn::Join": [ "", [ "{{resolve:secretsmanager:", { "Ref": "QuetzalcoatlSecret1ACBBB62" }, ":SecretString:password::}}" ] ] } }, "ManagedPolicyArns": [ { "Fn::Join": [ "", [ "arn:", { "Ref": "AWS::Partition" }, ":iam::aws:policy/IAMUserChangePassword" ] ] } ], "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ], "UserName": "Quetzalcoatl-Production-User" }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/QuetzalcoatlUser/Resource" } }, "QuetzalcoatlUserDefaultPolicy8CAD25E5": { "Type": "AWS::IAM::Policy", "Properties": { "PolicyDocument": { "Statement": [ { "Action": [ "secretsmanager:DescribeSecret", "secretsmanager:GetSecretValue" ], "Effect": "Allow", "Resource": { "Ref": "QuetzalcoatlSecret1ACBBB62" } } ], "Version": "2012-10-17" }, "PolicyName": "QuetzalcoatlUserDefaultPolicy8CAD25E5", "Users": [ { "Ref": "QuetzalcoatlUser1344F81A" } ] }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/QuetzalcoatlUser/DefaultPolicy/Resource" } }, "WendigoSecret32B7B40E": { "Type": "AWS::SecretsManager::Secret", "Properties": { "Description": "Password for IAM user Wendigo-Production-User", "GenerateSecretString": { "ExcludeCharacters": " \"\\'@/\\", "GenerateStringKey": "password", "IncludeSpace": false, "PasswordLength": 16, "RequireEachIncludedType": true, "SecretStringTemplate": "{\"username\":\"Wendigo-Production-User\"}" }, "Name": "iam-user-password/wendigo-production-user", "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ] }, "UpdateReplacePolicy": "Delete", "DeletionPolicy": "Delete", "Metadata": { "aws:cdk:path": "ManitouProductionStack/WendigoSecret/Resource" } }, "WendigoUser39B04AD3": { "Type": "AWS::IAM::User", "Properties": { "Groups": [ { "Ref": "KokopelliReadOnlyGroup4B191331" } ], "LoginProfile": { "Password": { "Fn::Join": [ "", [ "{{resolve:secretsmanager:", { "Ref": "WendigoSecret32B7B40E" }, ":SecretString:password::}}" ] ] } }, "ManagedPolicyArns": [ { "Fn::Join": [ "", [ "arn:", { "Ref": "AWS::Partition" }, ":iam::aws:policy/IAMUserChangePassword" ] ] } ], "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ], "UserName": "Wendigo-Production-User" }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/WendigoUser/Resource" } }, "WendigoUserDefaultPolicy758A67B8": { "Type": "AWS::IAM::Policy", "Properties": { "PolicyDocument": { "Statement": [ { "Action": [ "secretsmanager:DescribeSecret", "secretsmanager:GetSecretValue" ], "Effect": "Allow", "Resource": { "Ref": "WendigoSecret32B7B40E" } } ], "Version": "2012-10-17" }, "PolicyName": "WendigoUserDefaultPolicy758A67B8", "Users": [ { "Ref": "WendigoUser39B04AD3" } ] }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/WendigoUser/DefaultPolicy/Resource" } }, "ThunderbirdSecret27014A30": { "Type": "AWS::SecretsManager::Secret", "Properties": { "Description": "Password for IAM user Thunderbird-Production-User", "GenerateSecretString": { "ExcludeCharacters": " \"\\'@/\\", "GenerateStringKey": "password", "IncludeSpace": false, "PasswordLength": 16, "RequireEachIncludedType": true, "SecretStringTemplate": "{\"username\":\"Thunderbird-Production-User\"}" }, "Name": "iam-user-password/thunderbird-production-user", "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ] }, "UpdateReplacePolicy": "Delete", "DeletionPolicy": "Delete", "Metadata": { "aws:cdk:path": "ManitouProductionStack/ThunderbirdSecret/Resource" } }, "ThunderbirdUser61136CC3": { "Type": "AWS::IAM::User", "Properties": { "Groups": [ { "Ref": "KokopelliReadOnlyGroup4B191331" } ], "LoginProfile": { "Password": { "Fn::Join": [ "", [ "{{resolve:secretsmanager:", { "Ref": "ThunderbirdSecret27014A30" }, ":SecretString:password::}}" ] ] } }, "ManagedPolicyArns": [ { "Fn::Join": [ "", [ "arn:", { "Ref": "AWS::Partition" }, ":iam::aws:policy/IAMUserChangePassword" ] ] } ], "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ], "UserName": "Thunderbird-Production-User" }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/ThunderbirdUser/Resource" } }, "ThunderbirdUserDefaultPolicy54D44ECB": { "Type": "AWS::IAM::Policy", "Properties": { "PolicyDocument": { "Statement": [ { "Action": [ "secretsmanager:DescribeSecret", "secretsmanager:GetSecretValue" ], "Effect": "Allow", "Resource": { "Ref": "ThunderbirdSecret27014A30" } } ], "Version": "2012-10-17" }, "PolicyName": "ThunderbirdUserDefaultPolicy54D44ECB", "Users": [ { "Ref": "ThunderbirdUser61136CC3" } ] }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/ThunderbirdUser/DefaultPolicy/Resource" } }, "CoyoteSecret6995EE4B": { "Type": "AWS::SecretsManager::Secret", "Properties": { "Description": "Password for IAM user Coyote-Production-User", "GenerateSecretString": { "ExcludeCharacters": " \"\\'@/\\", "GenerateStringKey": "password", "IncludeSpace": false, "PasswordLength": 16, "RequireEachIncludedType": true, "SecretStringTemplate": "{\"username\":\"Coyote-Production-User\"}" }, "Name": "iam-user-password/coyote-production-user", "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ] }, "UpdateReplacePolicy": "Delete", "DeletionPolicy": "Delete", "Metadata": { "aws:cdk:path": "ManitouProductionStack/CoyoteSecret/Resource" } }, "CoyoteUser15A74194": { "Type": "AWS::IAM::User", "Properties": { "Groups": [ { "Ref": "KokopelliReadOnlyGroup4B191331" } ], "LoginProfile": { "Password": { "Fn::Join": [ "", [ "{{resolve:secretsmanager:", { "Ref": "CoyoteSecret6995EE4B" }, ":SecretString:password::}}" ] ] } }, "ManagedPolicyArns": [ { "Fn::Join": [ "", [ "arn:", { "Ref": "AWS::Partition" }, ":iam::aws:policy/IAMUserChangePassword" ] ] } ], "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ], "UserName": "Coyote-Production-User" }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/CoyoteUser/Resource" } }, "CoyoteUserDefaultPolicy8701DEF0": { "Type": "AWS::IAM::Policy", "Properties": { "PolicyDocument": { "Statement": [ { "Action": [ "secretsmanager:DescribeSecret", "secretsmanager:GetSecretValue" ], "Effect": "Allow", "Resource": { "Ref": "CoyoteSecret6995EE4B" } } ], "Version": "2012-10-17" }, "PolicyName": "CoyoteUserDefaultPolicy8701DEF0", "Users": [ { "Ref": "CoyoteUser15A74194" } ] }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/CoyoteUser/DefaultPolicy/Resource" } }, "RavenSecret86DA1D54": { "Type": "AWS::SecretsManager::Secret", "Properties": { "Description": "Password for IAM user Raven-Production-User", "GenerateSecretString": { "ExcludeCharacters": " \"\\'@/\\", "GenerateStringKey": "password", "IncludeSpace": false, "PasswordLength": 16, "RequireEachIncludedType": true, "SecretStringTemplate": "{\"username\":\"Raven-Production-User\"}" }, "Name": "iam-user-password/raven-production-user", "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ] }, "UpdateReplacePolicy": "Delete", "DeletionPolicy": "Delete", "Metadata": { "aws:cdk:path": "ManitouProductionStack/RavenSecret/Resource" } }, "RavenUserB2391A0C": { "Type": "AWS::IAM::User", "Properties": { "Groups": [ { "Ref": "KokopelliReadOnlyGroup4B191331" } ], "LoginProfile": { "Password": { "Fn::Join": [ "", [ "{{resolve:secretsmanager:", { "Ref": "RavenSecret86DA1D54" }, ":SecretString:password::}}" ] ] } }, "ManagedPolicyArns": [ { "Fn::Join": [ "", [ "arn:", { "Ref": "AWS::Partition" }, ":iam::aws:policy/IAMUserChangePassword" ] ] } ], "Tags": [ { "Key": "CostCenter", "Value": "Engineering" }, { "Key": "Environment", "Value": "Production" }, { "Key": "Owner", "Value": "DevOps-Team" }, { "Key": "Project", "Value": "CDK-Demo" } ], "UserName": "Raven-Production-User" }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/RavenUser/Resource" } }, "RavenUserDefaultPolicy23F0D289": { "Type": "AWS::IAM::Policy", "Properties": { "PolicyDocument": { "Statement": [ { "Action": [ "secretsmanager:DescribeSecret", "secretsmanager:GetSecretValue" ], "Effect": "Allow", "Resource": { "Ref": "RavenSecret86DA1D54" } } ], "Version": "2012-10-17" }, "PolicyName": "RavenUserDefaultPolicy23F0D289", "Users": [ { "Ref": "RavenUserB2391A0C" } ] }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/RavenUser/DefaultPolicy/Resource" } }, "CDKMetadata": { "Type": "AWS::CDK::Metadata", "Properties": { "Analytics": "v2:deflate64:H4sIAAAAAAAA/3VPy27CQAz8Fu7LloYvAA6IU6Ok5Vo5i4EtiRfZ3iIU5d+rZANpDz3Nw5Y9k9lskdnFDG4yd4fLvPaVbUsFdzFwk88WXWbb/dWZzZH2+cbksaq9K2NFqL03sSJExXeoapz8yVuJBOdBfaDnck92pMiEugXFG9zHN6NaqYI7N0hqSnSRvd63HOJ1ePDH2JEokBtPJt4ZD41ti5ASPfAxzjkcfY3meTGRD0Hu1YB5qL0bQiXWGVnadh3dJXUeWYJp+bfujKBjVGmA4IRs23LQYwdG7TpToITIffwoGppJHumfUc7h2x+Q1yBoViKopcLJ02kICwwNairyFvUatTP5Xc+BXpb2NbPL2Zd4P+dI6hu0RcIflWas0gwCAAA=" }, "Metadata": { "aws:cdk:path": "ManitouProductionStack/CDKMetadata/Default" } } }, "Parameters": { "SsmParameterValueawsserviceamiamazonlinuxlatestamzn2amikernel510hvmx8664gp2C96584B6F00A464EAD1953AFF4B05118Parameter": { "Type": "AWS::SSM::Parameter::Value