amazon-eks-node-al2.json

{
  "variables":{
    "aws_region":"us-east-2",
    "ami_description":"EKS Kubernetes Worker AMI on AmazonLinux2 image (k8s: {{user `eks_version`}})",
    "eks_version":"1.18",
    "root_volume_size": "10",
    "data_volume_size": "50",
    "vpc_id":"",
    "subnet_id":"",
    "http_proxy": "",
    "https_proxy": "",
    "no_proxy": "",

    "source_ami_owner":"602401143452",
    "source_ami_owner_govcloud":"219670896067",
    "source_ami_ssh_user":"ec2-user",
    "source_ami_arch":"x86_64",
    "source_ami_name":"amazon-eks-node-{{user `eks_version`}}-*",
    "target_ami_name": "amazon-eks-node-{{user `eks_version`}}-al2-{{ timestamp }}"
  },
  "builders":[
    {
      "type":"amazon-ebs",
      "region":"{{user `aws_region`}}",
      "source_ami_filter":{
        "filters":{
          "name":"{{user `source_ami_name`}}",
          "root-device-type":"ebs",
          "state":"available",
          "virtualization-type":"hvm",
          "architecture":"{{user `source_ami_arch`}}"
        },
        "owners":[
          "{{user `source_ami_owner`}}",
          "{{user `source_ami_owner_govcloud`}}"
        ],
        "most_recent":true
      },
      "instance_type":"m5.xlarge",
      "ssh_username":"{{user `source_ami_ssh_user`}}",
      "ssh_pty":true,
      "subnet_id":"{{user `subnet_id`}}",
      "launch_block_device_mappings":[
        {
          "device_name":"/dev/sda1",
          "volume_size": "{{user `root_volume_size`}}",
          "volume_type":"gp2",
          "delete_on_termination":true
        },
        {
          "device_name":"/dev/sdb",
          "volume_size":"{{user `data_volume_size`}}",
          "volume_type":"gp2",
          "delete_on_termination":true
        }
      ],
      "ami_block_device_mappings":[
        {
          "device_name":"/dev/sdb",
          "volume_size":"{{user `data_volume_size`}}",
          "volume_type":"gp2",
          "delete_on_termination":true
        }
      ],
      "tags":{
        "Name":"{{user `target_ami_name`}}",
        "BuildDate":"{{ isotime }}"
      },
      "ami_name":"{{user `target_ami_name`}}",
      "ami_description":"{{user `ami_description` }}",
      "ami_virtualization_type":"hvm",
      "run_tags":{
        "Name":"packer-{{user `target_ami_name`}}"
      }
    }
  ],
  "provisioners":[
    {
      "type": "shell",
      "inline": [
        "mkdir -p /etc/packer/files",
        "chown -R {{user `source_ami_ssh_user`}}:{{user `source_ami_ssh_user`}} /etc/packer/files"
      ],
      "execute_command":"echo 'packer' | {{.Vars}} sudo -S -E bash -eux '{{.Path}}'"
    },
    {
      "type": "file",
      "source": "./files/",
      "destination": "/etc/packer/files"
    },
    {
      "type":"shell",
      "script":"./scripts/al2/boilerplate.sh",
      "environment_vars": [
        "HTTP_PROXY={{user `http_proxy`}}",
        "HTTPS_PROXY={{user `https_proxy`}}",
        "NO_PROXY={{user `no_proxy`}}"
      ],
      "execute_command":"echo 'packer' | {{.Vars}} sudo -S -E bash -eux '{{.Path}}'",
      "expect_disconnect":true,
      "pause_after":"15s"
    },
    {
      "type":"shell",
      "scripts": [
        "./scripts/al2/cis-benchmark.sh",
        "./scripts/shared/cis-docker.sh",
        "./scripts/shared/cis-eks.sh",
        "./scripts/al2/cleanup.sh"
      ],
      "environment_vars": [
        "HTTP_PROXY={{user `http_proxy`}}",
        "HTTPS_PROXY={{user `https_proxy`}}",
        "NO_PROXY={{user `no_proxy`}}"
      ],
      "execute_command":"echo 'packer' | {{.Vars}} sudo -S -E bash -eux '{{.Path}}'"
    }
  ]
}