This project is part of our open source DevSecOps adoption approach.
It's 100% Open Source and licensed under the APACHE2.
This module creates an SSM automated patching process that runs on a schedule.
Requires aws provider >= 2.25.0
Include this repository as a module in your existing terraform code:
module "session-manager" {
source = "git::ssh://git@github.com/osodevops/aws-terraform-module-ssm-automated-patching.git.git"
application_tag_name = var.application_tag_name
ssm_patching_logs_bucket = var.ssm_patching_logs_bucket
patching_name = var.patching_name
operating_system_filter = var.operating_system_filter
environment = var.environment
common_tags = var.common_tags
}The following arguments are supported:
-
application_tag_name= Must exactly matchh the application tag present in OSO DevOps common tags list. -
environment= Prefix for all IAM roles, policies and resources created to patching module. -
operating_system_filter= Possible values: AMAZON_LINUX AMAZON_LINUX_2 UBUNTU CENTOS REDHAT_ENTERPRISE_LINUX. -
patching_name= "System name given to patching task: MUST NOT CONTAIN SPACES. -
patching_window= Default value: "cron(0 0 7 ? * SUN *)". -
patching_duration= default set to 5. -
patching_cutoff= default set to 0. -
patching_enabled= set totrueorfalseto run patching job. -
schedule_timezone= TimeZone on whihch the patching schedule should be run, default is set to "Europe/London". -
ssm_patching_logs_bucket= "Bucket name of outputted log information from each automation task run. -
common_tags= List of common tags to populate in the environment.
Got a question?
File a GitHub issue, send us an email or tweet us twitter.
Please use the issue tracker to report any bugs or file feature requests.
If you are interested in being a contributor and want to get involved in developing this project or help out with our other projects, we would love to hear from you! Shoot us an email.
In general, PRs are welcome. We follow the typical "fork-and-pull" Git workflow.
- Fork the repo on GitHub
- Clone the project to your own machine
- Commit changes to your own branch
- Push your work back up to your fork
- Submit a Pull Request so that we can review your changes
NOTE: Be sure to merge the latest changes from "upstream" before making a pull request!
Copyright © 2018-2019 OSO DevOps
See LICENSE for full details.
Licensed to the Apache Software Foundation (ASF) under one
or more contributor license agreements. See the NOTICE file
distributed with this work for additional information
regarding copyright ownership. The ASF licenses this file
to you under the Apache License, Version 2.0 (the
"License"); you may not use this file except in compliance
with the License. You may obtain a copy of the License at
https://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing,
software distributed under the License is distributed on an
"AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
KIND, either express or implied. See the License for the
specific language governing permissions and limitations
under the License.
All other trademarks referenced herein are the property of their respective owners.
We are a cloud consultancy specialising in transforming technology organisations through DevOps practices. We help organisations accelerate their capabilities for application delivery and minimize the time-to-market for software-driven innovation.
Check out our other projects, follow us on twitter, or hire us to help with your cloud strategy and implementation.