Scripts to provision sandboxed IAM users for an intro AWS workshop. The policy is set up so that only the services required for the workshop are allowed.
- mise for task running
- aws cli v2
- to configure credentials, i did the quick unsafe path by yoinking root account access keys from here (after authing into shared SoDA login using credentials from The Login Sheet) and put them in my local
credentialsfile according to these docs
- to configure credentials, i did the quick unsafe path by yoinking root account access keys from here (after authing into shared SoDA login using credentials from The Login Sheet) and put them in my local
mise run create-policy # one-time setup
mise run create-users # creates 50 users, outputs to workshop-credentials.csvTest with fewer users first:
USER_COUNT=2 mise run create-usersTerminates all EC2 instances, deletes workshop-* S3 buckets, and removes IAM users.
mise run cleanupMail merge via Google Apps Script:
- Create a new Google Sheet, open Extensions → Apps Script
- Paste contents of
mail-merge.js - Replace
CREDENTIALS_CSVwith contents ofworkshop-credentials.csv - Replace
ATTENDEES_CSVwith attendees CSV exported from sun devil central - Click Run and authorize when prompted
The script assigns credentials to attendees in order and emails each their login info.