Commit Graph

1495 Commits

Author SHA1 Message Date
Rickard von Essen 4ce3b8712a
Replace unencrypted EBS snapshots with encrypted
To ensure that groups and users attributes are added to the encrypted
snapshots.
2016-12-06 03:31:09 +01:00
Rickard von Essen c3a352955e amazon: Added snapshot_users and snapshot_groups 2016-12-04 16:03:01 +01:00
Ari Aviran 46f217f255 amazon - Snapshot permissions correctly applied
Fixes #3344
2016-12-04 16:03:01 +01:00
poida 8b13b75097 Updated documentation and error messages
The docs for kms_key_id needed to be next to encrypt_boot.

Shortened some of the kms_key_id error messages.
2016-12-03 07:49:54 +11:00
poida 3eed6fd508 Added KMS CMK support to EBS builder
Added the 'kms_key_id' parameter. This supports supplying a customer master key (CMK) when encrypting the EBS volume.

The parameter is optional and only takes effect when 'encrypted' is true. When 'encrypted' is true but 'kms_key_id' is missing the 'aws/ebs' key will be used.
2016-12-03 07:49:34 +11:00
Matthew Hooker 6c6b38af79
don't need explicit span 2016-12-01 11:45:26 -08:00
Rickard von Essen c2512d232a Merge pull request #4233 from ankon/pr/docker-ref-ecr
Point to the ECR section for more information on `ecr_login`
2016-12-01 18:51:41 +01:00
Andreas Kohn f3e96c5c0a
Point to the ECR section for more information on `ecr_login`
Fixes #4218
2016-12-01 10:52:33 +01:00
Andreas Kohn 68e5baa74c
Fix the reference to the "Dockerfiles" section 2016-12-01 10:48:19 +01:00
Matthew Hooker 832de2104b
Revert "Merge pull request #4230 from mitchellh/revert-4223-closes_3320"
This reverts commit bda89b0c42, reversing
changes made to f9f9d82419.
2016-11-30 13:28:34 -08:00
Matthew Hooker f5c3c25d2b Revert "Adds `force_delete_snapshot` flag" 2016-11-30 13:10:22 -08:00
Matthew Hooker f9f9d82419 Merge pull request #4223 from artburkart/closes_3320
Adds `force_delete_snapshot` flag
2016-11-30 12:53:34 -08:00
Rickard von Essen d8ef6d1977 Fixed formatting of source_ami_filter example 2016-11-30 12:32:46 +01:00
Arthur Burkart 5b59f56cdb Adds `force_delete_snapshot` flag
This PR adds the ability for Packer to clean up snapshots in addition to
deregistering AMIs at build time.

To test this, I used the following `test.json` file:

```json
{
  "builders": [
    {
      "type": "amazon-ebs",
      "region": "us-east-1",
      "source_ami": "ami-fce3c696",
      "ami_name": "packer-test",
      "instance_type": "m3.medium",
      "ssh_username": "ubuntu",
      "vpc_id": "some-vpc-id",
      "subnet_id": "some-subnet-routed-through-igw",
      "security_group_id": "some-security-group-with-port-22-access",
      "force_delete_snapshot": true
    }
  ],
  "provisioners": [
    {
      "type": "shell-local",
      "command": "echo 'hello'"
    }
  ]
}

```

I appreciate any constructive feedbakc that can be given. Cheers!
2016-11-29 23:39:36 -05:00
Matthew Hooker 6c546d4d1f Merge pull request #3982 from artburkart/close_1195
Support remote ova downloads
2016-11-28 18:49:50 -08:00
Matthew Hooker 2d5d598529 Update virtualbox-iso.html.md 2016-11-28 16:00:06 -08:00
Matthew Hooker cd6b70a2b3 Update amazon-chroot.html.md 2016-11-28 12:41:22 -08:00
Arthur Burkart 1a0dc767f3 Rolls back `partials` work, but still consolidates
Since the packer website isn't yet ready to use middleman partials,
this commit rolls back the partials in favor of bringing parity to
each amazon docs page
2016-11-28 15:08:39 -05:00
Arthur Burkart 5499c37080 Adds add'l docs regarding delete_on_termination
This PR adds documentation pointing out that volumes are not by
default deleted on termination of any AWS EC2 instance during a
packer build.
2016-11-28 15:07:48 -05:00
Arthur Burkart 337856811e Implements OVA downloads w/local checksum support
Presumably, it is convention to store a manifest file with checksums
inside the OVA, so remote checksum support was not implemented.
2016-11-28 15:01:37 -05:00
Matthew Hooker 541a209f93
clarify docs for TRIM 2016-11-28 11:30:36 -08:00
Rickard von Essen e36b98ecd5 Merge pull request #4202 from nervo/docker-commit-changes
Introduce docker commit changes
2016-11-26 18:40:08 +01:00
Rickard von Essen cb78cb331d
Documented author, changes, and message 2016-11-26 18:34:49 +01:00
Rickard von Essen a09f20f996 Merge pull request #4015 from artburkart:closes_3908
Closes #3908: Adds snapshot tag overrides
2016-11-26 17:54:00 +01:00
Rickard von Essen 6947a74151 Merge pull request #4162 from classmarkets/google-source-image-family
builder/googlecompute: support source image family
2016-11-26 17:26:47 +01:00
Matthew Hooker a6e6b0dfd7 Merge pull request #4192 from mitchellh/manifestoutput
post-processor/manifest: fixes interpolation of output
2016-11-22 12:51:27 -08:00
Matthew Hooker 622813053e Merge pull request #4144 from mitchellh/filenamespaces
quote file names so account for spaces
2016-11-21 16:45:52 -08:00
Matthew Hooker a05817ee26
fix docs, remove escaping 2016-11-21 16:36:10 -08:00
Matthew Hooker 70ca8486ba
update docs 2016-11-21 15:35:57 -08:00
Rickard von Essen d3b39ae28f
Unified the docs for floppy_files 2016-11-21 20:50:26 +01:00
Rickard von Essen 8257c2dabd Merge pull request #4172 from rickard-von-essen/default-ssh-user
ssh: Remove ssh_username default values
2016-11-17 22:40:09 +01:00
Rickard von Essen 96e9a8e6e9 Removed default value for ssh_username 2016-11-17 22:30:34 +01:00
Chris Bednarski 79f748ef73 Merge pull request #4156 from friism/patch-1
fix markdown
2016-11-16 17:23:17 -08:00
Matthew Hooker 7443e21992
fix broken link in docs 2016-11-16 12:39:23 -08:00
Arthur Burkart 2e65867cba Closes #3908: Adds snapshot tag overrides
This commit adds the ability to configure unique tags on snapshots
that are separate from the tags defined on the AMI. Anything applied
to the AMI will also be applied to the snapshots, but `snapshot_tags`
will override and append tags to the tags already applied to the snapshots
2016-11-15 23:16:27 -05:00
Matthew Hooker 7f5432609f
fix website build 2016-11-15 15:03:58 -08:00
Matthew Hooker 1a38a9c7a2
prepare for version 0.12.0 2016-11-15 14:00:39 -08:00
Peter Schultz 54aa830943 builder/googlecompute: split docs for source_image and source_image_family
Also update the example values to currently non-deprecated images.
2016-11-14 13:06:43 +01:00
Peter Schultz bcb319640e builder/googlecompute: support source image family
Closes #4100
2016-11-13 16:54:04 +01:00
Jasper Siepkes 200aa74e78 Added support for passing arguments to salt-call. 2016-11-11 15:15:16 +01:00
Michael Friis 45188f2f2c fix markdown 2016-11-10 18:40:50 -08:00
Matthew Hooker 042f4b7bfb
fix documentation wrt command line variables. 2016-11-09 16:05:52 -08:00
Matthew Hooker 1cf9dbf27d
fix json 2016-11-09 11:20:06 -08:00
Rickard von Essen 233913bc38 Fixed misspelling of semantics 2016-11-05 13:57:57 +01:00
Matthew Hooker 3d69af1247 sort/uniq IAM policies 2016-11-03 11:49:50 -07:00
Matthew Hooker ac8e70ade0 Revert "Remove duplicate permission"
This reverts commit 78067ff949.
2016-11-03 11:48:55 -07:00
Matthew Hooker 8eab0ee5b2 Merge pull request #4109 from mitchellh/b-docs
builder/amazon: Fix doc of EBS Volume builder name
2016-11-03 10:29:57 -07:00
James Nugent 33c423529d builder/amazon: Fix doc of EBS Volume builder name
Various things still referred to `ebsinit` or `ebs-volume` - the
imported name was `amazon-ebsvolume`.
2016-11-03 11:59:02 -04:00
Amo Chumber 78067ff949 Remove duplicate permission
In the suggested policy `ec2:CopyImage` was listed twice.

I've also sorted alphabetically to make it easier for somebody who might be recreating the policy in the AWS gui to follow along more easily.
2016-11-03 14:41:12 +00:00
James Nugent b1ff8c3bfc builder/amazon: Add `ebs-volume` builder
This commit adds a builder that works like EBS builders, except does not
create an AMI, and instead is intended to create EBS volumes in an
initialized state. For example, the following template can be used to
create and export a set of 3 EBS Volumes in a ZFS zpool named `data` for
importing by instances running production systems:

```
{
	"variables": {
		"aws_access_key_id": "{{ env `AWS_ACCESS_KEY_ID` }}",
		"aws_secret_access_key": "{{ env `AWS_SECRET_ACCESS_KEY` }}",
		"region": "{{ env `AWS_REGION` }}",
		"source_ami": "{{ env `PACKER_SOURCE_AMI` }}",
		"vpc_id": "{{ env `PACKER_VPC_ID` }}",
		"subnet_id": "{{ env `PACKER_SUBNET_ID` }}"
	},
	"builders": [{
		"type": "amazon-ebs-volume",
		"access_key": "{{ user `aws_access_key_id` }}",
		"secret_key": "{{ user `aws_secret_access_key` }}",
		"region": "{{user `region`}}",
		"spot_price_auto_product": "Linux/UNIX (Amazon VPC)",

		"ssh_pty": true,
		"instance_type": "t2.medium",
		"vpc_id": "{{user `vpc_id` }}",
		"subnet_id": "{{user `subnet_id` }}",
		"associate_public_ip_address": true,
		"source_ami": "{{user `source_ami` }}",
		"ssh_username": "ubuntu",
		"ssh_timeout": "5m",

		"ebs_volumes": [
			{
				"device_name": "/dev/xvdf",
				"delete_on_termination": false,
				"volume_size": 10,
				"volume_type": "gp2",
				"tags": {
					"Name": "TeamCity-Data1",
					"zpool": "data",
					"Component": "TeamCity"
				}
			},
			{
				"device_name": "/dev/xvdg",
				"delete_on_termination": false,
				"volume_size": 10,
				"volume_type": "gp2",
				"tags": {
					"Name": "TeamCity-Data2",
					"zpool": "data",
					"Component": "TeamCity"
				}
			},
			{
				"device_name": "/dev/xvdh",
				"delete_on_termination": false,
				"volume_size": 10,
				"volume_type": "gp2",
				"tags": {
					"Name": "TeamCity-Data3",
					"zpool": "data",
					"Component": "TeamCity"
				}
			}
		]
	}],
	"provisioners": [
	{
		"type": "shell",
		"start_retry_timeout": "10m",
		"inline": [
			"DEBIAN_FRONTEND=noninteractive sudo apt-get update",
			"DEBIAN_FRONTEND=noninteractive sudo apt-get install -y zfs",
			"lsblk",
			"sudo parted /dev/xvdf --script mklabel GPT",
			"sudo parted /dev/xvdg --script mklabel GPT",
			"sudo parted /dev/xvdh --script mklabel GPT",
			"sudo zpool create -m none data raidz xvdf xvdg xvdh",
			"sudo zpool status",
			"sudo zpool export data",
			"sudo zpool status"
		]
	}
	]
}
```

StepModifyInstance and StepStopInstance are now shared between EBS and
EBS-Volume builders - move them into the AWS common directory and rename
them to indicate that they only apply to EBS-backed builders.
2016-11-02 12:56:39 -04:00