Feature Request: Option to clear and delete S3 bucket on delete #3297
Comments
|
Hey @AlexCheema, There's already a |
|
The RemovalPolicy will only work if the Bucket is empty. I think, Alex also would like to see something like a flag that allows user to force the deletion of all bucket contents before it is deleted. I would like that feature a lot as well, since we are working around this with a CustomResource + Lambda function right now. |
|
Apologies. There's a comment related to this issue: #2526 (comment) |
|
@Obirah |
NGL321
added
package/cfn
|
Hey @AlexCheema, Unfortunately, @Obirah is correct. The DeletionPolicy attribute in Cloudformation will only delete if the bucket is completely empty. I understand the desire for this functionality, however we are somewhat limited by Cloudformation support. Imo the fastest way to see movement here would be to put in a request to the Cloudformation team on their forums. |
|
Check out the custom CDK resource I wrote to address this specific purpose: @mobileposse/auto-delete-bucket |
Hey @NGL321, Fortunately, CDK has support for custom resources which allows us to build things on top of the standard Cloudformation featureset. @schof already made something for it! My suggestion was to include this custom resource in CDK - perhaps there could be a flag on the bucket for this |
|
@schof would you be interested to submit a PR to incorporate your support for bucket auto-deletion into the @aws-cdk/aws-s3 library? |
|
@eladb I'm open to it, but I'm a bit short on time right now with some pressing deadlines. I agree that this is a common use case and this functionality belongs in CDK proper. There's also one existing bug I've yet to look at in detail, which is that if you rename the bucket it will no longer auto-delete. That seems solvable though. |
|
I'm also been thinking on a solution for this problem. Right now we have custom resources everywhere with inline lambdas in our CF templates.
I can't find anything about this in Issues/PRs, does anyone have any thoughts? EDIT: seems to be discussed here: https://github.com/aws/aws-cdk/issues/922 |
|
I would love to see post deploy hooks for a variety of reasons (unrelated
to bucket cleanup which I've solved with @mobileposse/auto-delete-bucket)
…On Mon, Aug 19, 2019 at 10:09 AM Patrick Marques ***@***.***> wrote:
I'm also been thinking on a solution for this problem. Right now we have
custom resources everywhere with inline lambdas in our CF templates.
I'm trying to make it transparent as possible for the developers, and by
that I mean not having much boilerplate on their side (CDK or CF) and also
avoiding to have extra resources in their stacks.
I was also looking for some kind of hooks for CDK, like pre-deploy and
post-deploy events that we can use to do things like:
- Cleanup Resources: S3, Cloudwatch Groups, etc
- Smoke tests and Route 53 changes for some Blue-Green deployments
- possible other use cases.
I can't find anything about this in Issues/PRs, does anyone have any
thoughts?
—
You are receiving this because you were mentioned.
Reply to this email directly, view it on GitHub
<#3297?email_source=notifications&email_token=AAAU4DQUEIPBOSCJ2NGJEXLQFKSRTA5CNFSM4ICCQ6QKYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGOD4TB7DQ#issuecomment-522592142>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/AAAU4DWC55FIK6CHXDVPOX3QFKSRTANCNFSM4ICCQ6QA>
.
|
NGL321
added
needs-cfn
eladb
removed
package/cfn
|
👍 |
|
There's also the AutoDeleteBucket construct: https://github.com/mobileposse/auto-delete-bucket/blob/master/README.md Maybe parts of this approach could be incorporated into the CDK. |
|
@schof Thanks for your great work on the custom CDK Resource you wrote @mobileposse/auto-delete-bucket which helps to resolve the limitation in CloudFormation regarding destroying non-empty S3 buckets. Do you reckon we can do something similar for ECR ? We would need to build a Custom CDK Resource to force delete ECR repos with existing images #2765. The difference is that ECR does have a force delete option in the CLI but not in CloudFormation. |
|
@heiba If it can be done in a lambda, and in a reasonable period of time, then it can be done with a custom resource. Lambda automatically has the JS SDK available to it but if what you need is only in the CLI then you will have to webpack/parcel the stuff you need. The auto-delete project is a good working example of a custom resource and perhaps you can extend an existing ECR related resource like I did with S3. Good luck! |
|
Hi Team. We are seeing this issue when CDK stacks are destroyed and leaves too many orphaned s3 buckets. I see the PR would help for future efficient cleanup, but i was curious if there is a pattern i can follow for cleaning up the existing orphaned S3 buckets across accounts. Thanks! |
|
We have the same problem in one of our projects. For this reason, I created a simple command line script that cleans up old orphaned S3 buckets that are no longer referred to by any CloudFormation stacks: https://gist.github.com/Dzhuneyt/53d57e1234cafb956791ddcc1ba66406
|
|
@srinivasreddych
|
|
So I started with @mobileposse/auto-delete-bucket and modernized it to work with CDK 1.73.0, refactored deprecated methods and refactored the code to eliminate the node-fixture and axios dependencies. I got this working in my fork of that code and also tested it with code i use inside Amazon. Seems to work. I need someone from Amazon to run this by, so we can make sure open source, etc. is properly handled. Feel free to contact me for more info. |
|
@aehrath-amazon Does that mean you are going to officially add to CDK at some point? If so, please let me know if you need anything from me to make that happen. Thanks. |
|
That is the plan. I will follow up with AWS folks to see where this is at. |
|
After diving deep into the CDK guts, I just verified that this does what AutoDeleteBucket is trying to solve (tested with CDK 1.73.0): Therefore I am dropping the AutoDeleteBucket work. Use this instead :) |
|
@aehrath-amazon the I'm also interested in this feature. My use case is that on our team we are constantly spinning up CodePipeline resources via CDK to build up test environments. When tests are done we teardown the pipelines but the artifacts bucket are left behind. We are constantly hitting the maximum number of buckets in the account. Having a built-in solution for this use case would be good. |
|
@dnlopes Have you tried adding the BucketDeployment right after the bucket creation? You should be able to leave sources as an empty list of not specify it at all and it should do the right thing. |
|
@aehrath-amazon Thats a nifty workaround :) We do want to also provide native support for this, there is already an ongoing PR, its a little stalled at the moment so if anyone wants to pick this up that would be great. |
|
@iliapolo can we just add the model deployment object if auto delete is desired? Very little code change that way: |
|
@aehrath-amazon Unfortunately no because this creates a circular dependency between |
|
Ah ok, good point. I forked the Posse solution previously and refactored the code to work with CDK 1.73.0 for my own use. I hope this PR though goes through soon. There definitely seems to be a need for a standardized solution. |
Use the custom resource provider from core to delete objects in the bucket. A bucket policy gives the correct permissions to the provider's Lambda function role. Credits to @Chriscbr for starting the work on this. Closes #3297 Closes #9751 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
|
Use the custom resource provider from core to delete objects in the bucket. A bucket policy gives the correct permissions to the provider's Lambda function role. Credits to @Chriscbr for starting the work on this. Closes aws#3297 Closes aws#9751 ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
|
Now, you can delete the bucket as well as the contents of the Bucket which got created with the help of CloudFormation (i.e. cdk deploy) You just have to add autoDeleteObjects: true parameter while creating the S3 object. Here is the Sample TypeScript Code: Here is the reference link from the official AWS Documentation: |
Note: for support questions, please first reference our documentation, then use Stackoverflow. This repository's issues are intended for feature requests and bug reports.
I'm submitting a ...
What is the current behavior?
If the current behavior is a 🪲bug🪲: Please provide the steps to reproduce
S3 Buckets currently do not get deleted if they contain objects.
There should be an option to override this behaviour and force the S3 bucket to be cleared and deleted.
If you are doing frequent deploys with different stack names, you will eventually stack up many s3 buckets that have been left behind from previous deploys. Eventually, this hits the default limit of 100 S3 buckets per account and it is a nightmare to selectively delete the ones that you don't want.
The text was updated successfully, but these errors were encountered: