Summary

Add support for connecting using Amazon SSM.

Review Request #14191 — Created Sept. 26, 2024 and submitted Oct. 16, 2024, 1:29 p.m.

Information

Owner

chipx86

Repository

fabazon

Branch

master

Bugs

Depends On

Reviewers

Groups

beanbag-misc

People

Description

Amazon SSM provides on-demand SSH access to hosts that may not be
exposed to the Internet in any form, adding extra security to
infrastructure.

SSM support can now be enabled by passign use_ssm=True to
EC2RoleDefs. This will result in EC2 instance IDs being returned
instead of hostnames.

This does require ~/.ssh/config to be configured properly for SSM
support, and that env.use_ssh_config = True is enabled in the
fabfile.

Testing Done

Tested this with our deployment infrastructure and verified that
Fabric and Paramiko engaged with SSM and connected.

Commits

Summary	ID
Add support for connecting using Amazon SSM. Amazon SSM provides on-demand SSH access to hosts that may not be exposed to the Internet in any form, adding extra security to infrastructure. SSM support can now be enabled by passign `use_ssm=True` to `EC2RoleDefs`. This will result in EC2 instance IDs being returned instead of hostnames. This does require `~/.ssh/config` to be configured properly for SSM support.	3ad75074906426ba496698da71a21afba26a31b0

Summary

Add support for connecting using Amazon SSM.

Amazon SSM provides on-demand SSH access to hosts that may not be exposed to the Internet in any form, adding extra security to infrastructure. SSM support can now be enabled by passign `use_ssm=True` to `EC2RoleDefs`. This will result in EC2 instance IDs being returned instead of hostnames. This does require `~/.ssh/config` to be configured properly for SSM support.

3ad75074906426ba496698da71a21afba26a31b0

flake8 passed.

JSHint passed.

Ship it!

```
Ship It!
```

Status:: Completed
Change Summary:: Pushed to master (a4a50ae)