我正在使用
serverlessserverless我之前使用过
terraformimportserverless如果您询问如何将现有资源导入无服务器:
到目前为止,我对 AWS 和无服务器框架还没有丰富的经验(我最近才开始采用它们),但据我所知,导入现有的 AWS 资源并不是那么容易。
我最近必须将现有的手动创建的 DynamoDB 表添加到 Serverless (SLS),而不影响其中的数据。这个想法听起来很简单,直到我点击
sls deployResource of type 'AWS::DynamoDB::Table' with identifier 'myTable' already exists.无服务器框架采用 CloudFormation Stacks 进行底层部署,因此我专注于此,最终在 AWS Docs 中找到了解决方案。
我强烈建议成对执行此手动过程,您可能还想确保没有人并行修改堆栈和资源。
这是我所做的:
想象下面
serverless.ymlservice: aws-node-project-1
frameworkVersion: '3'
provider:
name: aws
region: eu-west-1
runtime: nodejs18.x
functions:
function1:
handler: index.handler
# The above was already deployed successfully.
# resources: # Here is the Resource we can't add to Serverless at this time.
# Resources:
# myTable:
# DeletionPolicy: Retain
# Type: AWS::DynamoDB::Table
# Properties:
# TableName: myTable
# AttributeDefinitions:
# - AttributeName: id
# AttributeType: S
# KeySchema:
# - AttributeName: id
# KeyType: HASH
# BillingMode: PAY_PER_REQUEST
部署无服务器服务后,它会创建一个 CloudFormation 堆栈,其中包括它管理的资源。例如,如果服务的名称是
aws-node-project-1devaws-node-project-1-devtemplate.jsonaws cloudformation get-template --stack-name aws-node-project-1-dev --output json > template.json
这应该如下所示:
{
"TemplateBody": {
"AWSTemplateFormatVersion": "2010-09-09",
"Description": "The AWS CloudFormation template for this Serverless application",
"Resources": {
// Your existing Resources in the Stack.
},
"Outputs": {
// ...
}
},
"StagesAvailable": [
// ...
]
}
获取您要导入的资源的描述。就我而言,它是一个 DynamoDB 表。
aws dynamodb describe-table --table-name myTable --output json > table.json
这应该如下所示:
{
"Table": {
"AttributeDefinitions": [
// ...
],
"TableName": "myTable",
"KeySchema": [
// ...
],
"TableStatus": "ACTIVE",
"ProvisionedThroughput": {
"NumberOfDecreasesToday": 0,
"ReadCapacityUnits": 0,
"WriteCapacityUnits": 0
},
"TableSizeBytes": 44,
"ItemCount": 3,
"TableArn": "SOME_ARN",
"TableId": "SOME_ID",
"GlobalSecondaryIndexes": [
// ...
],
"TableClassSummary": {
"TableClass": "STANDARD"
},
"DeletionProtectionEnabled": false
// ...
}
}
将新资源添加到
template.json您还需要将
TemplateBodyTemplateBodyStagesAvailable最终,文件应如下所示:
{
"AWSTemplateFormatVersion": "2010-09-09",
"Description": "The AWS CloudFormation template for this Serverless application",
"Resources": {
// Your existing Resources in the Stack.
// ...
// The resource you want to import:
"myTable": { // Don't forget: This field name is treated as the Logical Id.
"Type": "AWS::DynamoDB::Table",
"DeletionPolicy": "Retain", // You might need to add this.
"Properties": {
"AttributeDefinitions": [
{
"AttributeName": "id",
"AttributeType": "S"
}
],
"TableName": "myTable",
"KeySchema": [
{
"AttributeName": "id",
"KeyType": "HASH"
}
],
"ProvisionedThroughput": {
"ReadCapacityUnits": 0,
"WriteCapacityUnits": 0
}
}
}
},
"Outputs": {
// ...
}
}
aws cloudformation create-change-set \
--stack-name aws-node-project-1-dev --change-set-name ImportChangeSet \
--change-set-type IMPORT \
--resources-to-import "[{\"ResourceType\":\"AWS::DynamoDB::Table\",\"LogicalResourceId\":\"myTable\",\"ResourceIdentifier\":{\"TableName\":\"myTable\"}}]" \
--template-body file://template.json \
# --capabilities CAPABILITY_NAMED_IAM # You may need such Capabilities depending on your case. Use this field consciously.
aws cloudformation describe-change-set --change-set-name ImportChangeSet --stack-name aws-node-project-1-dev
aws cloudformation execute-change-set --change-set-name ImportChangeSet --stack-name aws-node-project-1-dev
如果成功,您应该会看到
"ResourceStatus": "IMPORT_COMPLETE"# In AWS Web Console: CloudFormation -> aws-node-project-1-dev -> Events
aws cloudformation describe-stack-events --stack-name aws-node-project-1-dev
验证资源是否已按预期添加到堆栈中。
# In AWS Web Console: CloudFormation -> aws-node-project-1-dev -> Resources
aws cloudformation describe-stack-resources --stack-name aws-node-project-1-dev
在此阶段,您应该能够将资源添加到
serverless.yml据我了解,术语
Drift# Start detection. This is a background process therefore it will return
# a `Stack-Drift-Detection-Id` so you can check the status of this process later.
# In AWS Web Console: CloudFormation -> aws-node-project-1-dev -> Stack Actions > Detect drifts
aws cloudformation detect-stack-drift --stack-name aws-node-project-1-dev
# Check the detection status until `DetectionStatus` is `DETECTION_COMPLETE`.
aws cloudformation describe-stack-drift-detection-status --stack-drift-detection-id YOUR_STACK_DRIFT_DETECTION_ID_HERE
# If `StackDriftStatus` is `DRIFTED`, check the Drifts with the following command and resolve accordingly.
# In AWS Web Console: CloudFormation -> aws-node-project-1-dev -> Stack Actions > View drift results
aws cloudformation describe-stack-resource-drifts --stack-name aws-node-project-1-dev
TL;DR: 无服务器框架不支持导入 CloudFormation 资源。但有办法解决所讨论的问题。
无服务器允许您使用现有 CloudFormation 资源的值。先决条件是您的同事或至少 CloudFormation 堆栈将您依赖的资源描述为 “输出”。
// in your colleagues serverless.yaml to export a VPC
resources:
// ...
Outputs:
StackVPC:
Description: The ID of the VPC
Value: !Ref MyVPC
Export:
Name: !Sub "${AWS::StackName}-VPCID"
在您的 serverless.yaml 中,您可以导入/引用现有 VPC。有几种方法可以将资源导入到您的堆栈中。
var1: 'Fn::ImportValue': '${refSackName}-VPCID'
var2: ${cf:${refSackName}-VPCID}
Fn::ImportValue此处列出了此方法的优点和缺点https://dev.to/lambdasharp/dynamic-bindings-for-cloudformation-stacks-15l6