Add functions:

- cert-resource-record-valid: Check DNS domain validation record
- iam-access-key-rotate: rotate key
- ssm-automation-step-executions: list them

Author: mbailey

TODO.md

@@ -1,4 +1,5 @@
 # TODO
 
+- Only `add_to_path_if_missing()`
 - (aws-)backup-functions
 

aliases

@@ -77,6 +77,7 @@ alias buckets='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma buckets'
 alias cert-chain='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma cert-chain'
 alias cert-delete='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma cert-delete'
 alias cert-ificate='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma cert-ificate'
+alias cert-resource-record-valid='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma cert-resource-record-valid'
 alias cert-users='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma cert-users'
 alias cert-verify='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma cert-verify'
 alias certs='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma certs'
@@ -110,6 +111,7 @@ alias elbv2-target-groups='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma elbv2-target-
 alias elbv2s='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma elbv2s'
 alias hosted-zone-ns-records='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma hosted-zone-ns-records'
 alias hosted-zones='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma hosted-zones'
+alias iam-access-key-rotate='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma iam-access-key-rotate'
 alias iam-role-principal='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma iam-role-principal'
 alias iam-roles='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma iam-roles'
 alias iam-users='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma iam-users'
@@ -200,7 +202,9 @@ alias ssm-association-execution-targets='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma
 alias ssm-association-executions='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma ssm-association-executions'
 alias ssm-associations='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma ssm-associations'
 alias ssm-automation-execution='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma ssm-automation-execution'
+alias ssm-automation-execution-failures='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma ssm-automation-execution-failures'
 alias ssm-automation-executions='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma ssm-automation-executions'
+alias ssm-automation-step-executions='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma ssm-automation-step-executions'
 alias ssm-instances='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma ssm-instances'
 alias ssm-parameter-value='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma ssm-parameter-value'
 alias ssm-parameters='${BMA_HOME:-$HOME/.bash-my-aws}/bin/bma ssm-parameters'

bash_completion.sh

@@ -179,6 +179,7 @@ complete -F _bma_buckets_completion buckets
 complete -F _bma_certs_completion cert-chain
 complete -F _bma_certs_completion cert-delete
 complete -F _bma_certs_completion cert-ificate
+complete -F _bma_certs_completion cert-resource-record-valid
 complete -F _bma_certs_completion cert-users
 complete -F _bma_certs_completion cert-verify
 complete -F _bma_certs_completion certs

docs/command-reference.md

@@ -1285,6 +1285,16 @@ Return Cert Chain for ACM Cert(s)
     USAGE: cert-chain cert-arn [cert-arn]
 
 
+### cert-resource-record-valid
+
+cert-resource-record-valid - Check if a specified DNS resource record matches the expected value and includes input validation.
+
+Usage: cert-resource-record-valid <name> <type> <value>
+Perform the DNS query
+Print the output of the DNS query
+Check if the expected value is in the output
+
+
 ### cert-verify
 
 Verify ACM cert(s)
@@ -1498,6 +1508,10 @@ List IAM Users
     ecsInstanceRole                          AROAJFQ3WMZXESGIKW5YD  2017-03-09T05:31:39Z
 
 
+### iam-access-key-rotate
+
+
+
 ## image-commands
 
 
@@ -1963,6 +1977,20 @@ USAGE: ssm-automation-executions [filter]
     ghijqrst-uvwx-2345-yzab-abcd5678efgh  UpdateAndSecureNodes    i-3d4e5f6g7h8i90123  Failed   2023-07-20T09:00:40.000000+00:00  None
 
 
+### ssm-automation-execution-failures
+
+
+
+### ssm-automation-step-executions
+
+Show step-by-step details for an SSM Automation Execution
+
+    USAGE: automation-execution-steps execution_id [execution_id]
+
+    $ ssm-automation-executions | ssm-automation-steps-executions
+    [Outputs detailed step information for each provided execution ID]
+
+
 ### ssm-automation-execution
 
 Show details for an SSM Automation Execution

functions

@@ -77,6 +77,7 @@ buckets
 cert-chain
 cert-delete
 cert-ificate
+cert-resource-record-valid
 cert-users
 cert-verify
 certs
@@ -110,6 +111,7 @@ elbv2-target-groups
 elbv2s
 hosted-zone-ns-records
 hosted-zones
+iam-access-key-rotate
 iam-role-principal
 iam-roles
 iam-users
@@ -201,7 +203,9 @@ ssm-association-execution-targets
 ssm-association-executions
 ssm-associations
 ssm-automation-execution
+ssm-automation-execution-failures
 ssm-automation-executions
+ssm-automation-step-executions
 ssm-instances
 ssm-parameter-value
 ssm-parameters

lib/extras/git/git-functions

@@ -8,20 +8,106 @@
 # - git-tarball-create: Creates a tarball based on a gitinclude (special gitginore) file
 # - git-repos: List all git repos (remote_url and git_dir)
 
+git-tarball-create() {
+
+    # git-tarball-create - Creates a tarball based on a single gitinclude file
+    #
+    # Usage: git-tarball-create <gitinclude_file>
+    #
+
+    local gitinclude_file="${1:-}"
+
+    # Verify gitinclude_file argument is provided
+    if [[ -z $gitinclude_file ]]; then
+        echo "Usage: tarball-create <gitinclude_file>" >&2
+        return 1
+    elif [[ ! -f $gitinclude_file ]]; then
+        # Verify gitinclude_file file exists
+        echo "Error: gitinclude file '$gitinclude_file' not found." >&2
+        return 1
+    fi
+
+    local last_commit_date="$(git log -1 --format=%cd --date=format:%Y-%m-%d)"
+    local git_repo_path="$(git rev-parse --show-toplevel)"
+    local git_repo_name="${git_repo_path##*/}"
+    local variant="$(basename "${gitinclude_file}")"
+    local release="${git_repo_name}-${variant}-${last_commit_date}"
+    local build_dir="${git_repo_path}/build"
+    local tarball="${build_dir}/${release}.tar.gz"
+
+    (
+        cd "${git_repo_path}" || exit
+        # Ensure the build directory exists
+        mkdir -p "$build_dir" || { echo "Failed to create build directory: $build_dir" >&2; return 1; }
+
+        # Use git to list files for inclusion in the tarball
+        if ! git-ls-noticed "$gitinclude_file" \
+        | tar \
+            --transform "s,^,${release}/," \
+            --transform 's,${release}/\([^/]*\) -> \(.*\),\1 -> \2,' \
+            -czf "${tarball}" -T -
+        then 
+            echo "Error: Failed to create tarball." >&2
+            return 1
+        fi
+    )
+
+    echo "Tarball created: ${tarball}"
+}
+
+git-archive() {
+
+    local last_commit_date="$(git log -1 --format=%cd --date=format:%Y-%m-%d)"
+    local git_repo_path="$(git rev-parse --show-toplevel)"
+    local git_repo_name="${git_repo_path##*/}"
+    local release="${git_repo_name}-${last_commit_date}"
+    local build_dir="${git_repo_path}/build"
+    local tarball="${build_dir}/${release}.tar.gz"
+    local label="$(basename $(git rev-parse --show-toplevel))-$(git log -1 --format=%cd --date=format:%Y-%m-%d)"
+
+    (
+        cd "${git_repo_path}" || exit
+
+        # Ensure the build directory exists
+        mkdir -p "$build_dir" || { echo "Failed to create build directory: $build_dir" >&2; return 1; }
+
+        git archive \
+        --prefix="${release}/"  \
+        --format=tar.gz      \
+        -o "${build_dir}/${release}.tar.gz" \
+        HEAD
+    )
+}
+
+git-remote-add-github() {
+    git remote add github "github.com_mbailey:mbailey/$(git-repo-name).git"
+    git branch -M master
+    git push -u github master
+}
+
+git-repo-name() {
+  basename "$(git rev-parse --show-toplevel)"
+}
+
 git-repos() {
 
-    local search_dir="${1:-.}" # Use provided directory or default to current directory if not provided
-
-    # Find all .git directories under the specified directory
-    find "$search_dir" -type d -name .git 2>/dev/null | while read -r git_dir; do
-        local repo_dir
-        repo_dir=$(dirname "$git_dir") # Get the repository directory by removing the .git part
-        local repo_url
-        repo_url=$(git -C "$repo_dir" config --get remote.origin.url) # Get the repository's remote URL
-        printf "%s\t%s\n" "$repo_url" "${repo_dir}" # Print the repository URL and directory path, separated by a tab
-    done \
-    | sort -k1,1 \
-    | bma columnise
+    local search_dirs="$(skim-stdin "$@")"
+    [[ -z $search_dirs ]] && search_dirs='.'
+    
+    # debug "$search_dirs"
+
+    # Find all .git directories under the specified directories
+    for search_dir in $search_dirs; do
+        find -L "$search_dir" -type d -name .git 2>/dev/null | while read -r git_dir; do
+            local repo_dir
+            repo_dir=$(dirname "$git_dir") # Get the repository directory by removing the .git part
+            local repo_url
+            repo_url=$(git -C "$repo_dir" config --get remote.origin.url) # Get the repository's remote URL
+            printf "%s\t%s\n" "$repo_url" "${repo_dir}" # Print the repository URL and directory path, separated by a tab
+        done \
+        | sort -k1,1 \
+        | bma columnise
+    done
 }
 
 git-ls-noticed() {
@@ -36,6 +122,10 @@ git-ls-noticed() {
     #     `--ignored`: Lists all files that are ignored by git
     #     `--cached`: Lists all files that are staged for commit. (Required to use `--ignored`.)
     #     `--exclude-from`: Use specified file as the ignore file (and ignore all others)
+    #
+    # Test with:
+    #
+    # diff <(git-ls-noticed path/to/.gitinclude/target)  <(tar-ls build/example-target-2024-04-17.tar.gz)
 
     local gitinclude_file="${1:-}"
 
@@ -65,49 +155,6 @@ git-ls-noticed() {
     )
 }
 
-git-tarball-create() {
-
-    # git-tarball-create - Creates a tarball based on a single gitinclude file
-    #
-    # Usage: git-tarball-create <gitinclude_file>
-    #
-
-    local gitinclude_file="${1:-}"
-
-    # Verify gitinclude_file argument is provided
-    if [[ -z $gitinclude_file ]]; then
-        echo "Usage: tarball-create <gitinclude_file>" >&2
-        return 1
-    elif [[ ! -f $gitinclude_file ]]; then
-        # Verify gitinclude_file file exists
-        echo "Error: gitinclude file '$gitinclude_file' not found." >&2
-        return 1
-    fi
-
-    local last_commit_date="$(git log -1 --format=%cd --date=format:%Y-%m-%d)"
-    local git_repo_path="$(git rev-parse --show-toplevel)"
-    local git_repo_name="${git_repo_path##*/}"
-    local variant="$(basename "${gitinclude_file}")"
-    local release="${git_repo_name}-${variant}-${last_commit_date}"
-    local build_dir="build"
-    local tarball="${build_dir}/${release}.tar.gz"
-
-    (
-        cd "${git_repo_path}" || exit
-        # Ensure the build directory exists
-        mkdir -p "$build_dir" || { echo "Failed to create build directory: $build_dir" >&2; return 1; }
-
-        # Use git to list files for inclusion in the tarball
-        if ! git-ls-noticed "$gitinclude_file" \
-        | tar --transform "s,^,${release}/," -czf "${tarball}" -T -
-        then 
-            echo "Error: Failed to create tarball." >&2
-            return 1
-        fi
-    )
-
-    echo "Tarball created: ${tarball}"
-}
 
 
 git-repo-dirs(){

scripts/build-docs

@@ -8,7 +8,7 @@ lib/stack-functions
 lib/instance-functions
 "
 
-filelist="${filelist}$(ls lib/* | grep -v 'aws-account\|region\|stack\|instance\|shared\|misc\|github\|pkcs12\|extras')"
+filelist="${filelist}$(ls lib/* | grep -v 'aws-account\|region\|stack\|instance\|shared\|misc\|git\|github\|pkcs12\|extras')"
 
 cp docs/.command-reference-intro.md $COMMAND_REFERENCE_FILE