Section 10: AWS CloudFormation

Question 1

Why is manual work (clicking in the console…) not very good?

Answer 1

Hard to reproduce

Question 2

What is CloudFormation?

Answer 2

A declarative way of outlining your AWS

Infrastructure, for any resources

Question 3

Which resources are supported by AWS CloudFormation?

Answer 3

Most of them

Question 4

Do you have to specify a creation order for the resources in a CloudFormation template?

Answer 4

No, you write your templates in a declarative way and CloudFormation will take care of creating the resources in the right order

Question 5

In what file type can you write CloudFormation templates?

Answer 5

JSON or YAML

Question 6

What does IaC stand for?

Answer 6

Infrastructure as Code

Question 7

What are the benefits of IaC

Answer 7

No manual work
You get version control just like regular code
You can review your infrastructure easily through code
You get easy deployments

Question 8

What are the cost of CloudFormation?

Answer 8

No additional cost

You only pay for the underlying resources

Question 9

How can you estimate the cost of a CloudFormation stack?

Answer 9

By using the provided tool for that purpose in CloudFormation

Question 10

What is a good savings strategy for development environments when using CloudFormation?

Answer 10

You can automate the deletion of templates at 5PM and creation of templates at 8AM (So that you don’t pay for dev environment when you are not using it at night)

Question 11

What are the productivity benefits of CloudFormation?

Answer 11

Ability to create and destroy stacks on the fly
You get automated generation of diagrams
No need to figure out ordering and orchestration of your infrastructure

Question 12

How to do seperation of concerns with CloudFormation?

Answer 12

Create many stacks for many apps and many layers

Question 13

Where must CloudFormation templates be uploaded to in order to be able to use them?

Answer 13

In S3

Question 14

How can you update a CloudFormation stack?

Answer 14

By reuploading a new version to AWS

Question 15

How are stacks identified in CloudFormation?

Answer 15

By name

Question 16

What happens to the underlying resources when you delete a stack?

Answer 16

They get deleted

Question 17

What is the manual way of deploying a CloudFormation stack?

Answer 17

By editing templates in the CloudFormation Designer

Using the console to input parameters

Question 18

What is the automated way of deploying a CloudFormation stack?

Answer 18

Editing templates in a YAML file

Using the CLI to deploy the templates

Question 19

What is the recommended way to deploy CloudFormation templates?

Answer 19

The automated way

Question 20

What are the building blocks of CloudFormation templates?

Answer 20

Templates components

Templates helpers

Question 21

What are the CloudFormation templates helpers?

Answer 21

References

Functions

Question 22

What are the CloudFormation templates components?

Answer 22

Resources
Parameters
Mappings
Outputs
Conditionals
Metadata

Question 23

Which CloudFormation templates component is mandatory?

Answer 23

Resources

Question 24

What does YAML stand for?

Answer 24

YAML Ain’t Markup Language (A recursive acronym)

Question 25

What can be in a YAML file?

Answer 25

Key value pairs
Nested objects
Arrays
Multi line string
Comments

Question 26

What do key value pairs look like in YAML?

Answer 26

key: value

Question 27

What do nested objects look like in YAML?

Answer 27

key:
param1: value1
param2: value2
otherKey: otherValue

Question 28

What do arrays look like in YAML?

Answer 28

keys:

• “one”
• “two”
• “three”

Question 29

What do multi line string look like in YAML?

Answer 29

myString: |
I am a
multiline string

Question 30

What do comments look like in YAML?

Answer 30

This is a comment

Question 31

What are resources in a CloudFormation template?

Answer 31

AWS Components/Resources that will get created and configured

Question 32

What is the form of resource types identifiers?

Answer 32

AWS::aws-product-name::data-type-name

Question 33

Can you create a dynamic amount of resources directly in a CloudFormation template?

Answer 33

No, CloudFormation templates are declarative, everything has to be declared

Question 34

What are the two fields that every resource declared in a CloudFormation template must contain?

Answer 34

Type: AWS::XXX:XXX
Properties:
Property1: value1
Property2: value2

Question 35

How to know what properties are available on what AWS resources types?

Answer 35

By looking at the CloudFormation documentation for the corresponding AWS resource

Question 36

What are CloudFormation parameters?

Answer 36

A way to provide inputs to your AWS CloudFormation

template

Question 37

When should you use CloudFormation parameters?

Answer 37

When a certain resource configuration is likely to change in the future

Question 38

What are the settings of a CloudFormation parameter?

Answer 38

Type
Description
ConstraintDescription
Min/MaxLenght
Min/MaxValue
Default
AllowedValues (array)
AllowedPattern (regexp)
NoEcho (bool)

Question 39

What are the available types of CloudFormation parameters?

Answer 39

String
Number
List
CommaDelimitedList
AWS Parameter

Question 40

What is the “AWS parameter type” used for in CloudFormation parameters?

Answer 40

A way to help catch invalid values - match against existing values in the AWS account

Question 41

What can you do to make sure a CloudFormation parameter matches a certain pattern?

Answer 41

Define the AllowedPattern parameter setting

Question 42

What can you do to make sure a CloudFormation parameter matche is between a certain range?

Answer 42

Define the Min/MaxLenght for String

Define the Min/MaxValue for Number

Question 43

What does the parameter setting NoEcho does?

Answer 43

It displays the parameter value as *** in the console in order to mask the value

Question 44

How to reference a parameter in a CloudFormation template?

Answer 44

By using the Fn::ref function

Question 45

What is an other/cleaner way of using a Fn::ref function?

Answer 45

By using the !ref syntax

Question 46

What are pseudo parameters?

Answer 46

Parameters directly provided by AWS

Question 47

How to reference the account id in a CloudFormation template?

Answer 47

By using the AWS::AccountId pseudo parameter like so:

!ref “AWS::AccountId”

Question 48

What are the available pseudo parameters in CoudFormation?

Answer 48

AWS::AccountId
AWS::NotificationARNs
AWS::NoValue
AWS::Partition
AWS::Region
AWS::StackId
AWS::StackName
AWS::URLSuffix

Question 49

What does the AWS::NoValue pseudo parameters give us

Answer 49

They allow us to removes the corresponding resource property when specified as a return value in the Fn::If intrinsic function

DBSnapshotIdentifier:
      Fn::If:
      - UseDBSnapshot
      - Ref: DBSnapshotName
      - Ref: AWS::NoValue

Question 50

What are mappings?

Answer 50

Mappings are fixed variables within your CloudFormation Template

Question 51

What are they good for?

Answer 51

Handy to differentiate between env, regions, AMI types, etc.

Question 52

Where are mappings value defined?

Answer 52

Within the template

Question 53

When should you use mappings instead of parameters?

Answer 53

When you know in advance all the values that can be used and the circumstances when each value must be used

Question 54

Which are safer, mappings or parameters?

Answer 54

Mappings

Question 55

How to define mappings in your template?

Answer 55

In the Mappings section of your template, you must define the mapping, the top level keys and second levels keys
For example:

Mappings:
    MyFirstMapping:
        TopLevelKey1:
            SecondLevelKey1:
            SecondLevelKey2:
        TopLevelKey2:
            SecondLevelKey1:
            SecondLevelKey2:

Question 56

How to access mapping values?

Answer 56

With the Fn::FindInMap function

!FindInMap [MapName, TopLevelKey, SecondLevelKey]

Question 57

What are Outputs in CloudFormation?

Answer 57

Optional values that can be imported into other stacks

Question 58

Where can you view CloudFormation outputs?

Answer 58

In the AWS console or using the AWS CLI

Question 59

How are outputs useful?

Answer 59

They are useful when you have something like a network CloudFormation stack and you want to output the variables such as VPC ID and Subnet IDs

Question 60

What happens if you try to delete a stack which outputs are used by another stack

Answer 60

It won’t be able to delete

Question 61

How to import values from the outputs of another CloudFormation stack?

Answer 61

By using the Fn::ImportValue function

Question 62

What are conditions used for in CloudFormation?

Answer 62

Used to control the creation of resources or outputs based on a condition

Question 63

What are some common conditions which are used in a CloudFormation template based on?

Answer 63

Environment

Region

Question 64

Can conditions reference other conditions

Answer 64

Absolutely

Question 65

How/Where do you define conditions in a CloudFormation template

Answer 65

In the Conditions section of the template, for example:

Conditions:
CreateProdResource: !Equals [!Ref EnvType, prod]

Question 66

How to use a condition when creating a resource?

Answer 66

You use the Condition field like so:

Resources:
MyResource:
Type: “AWS::PRODUCT::TYPE”
Condition: MyCondition

Question 67

What does the Fn::GetAtt allows you to get?

Answer 67

Available attributes that are attached to any resources you create (See the docs to know which attributes are available)

Question 68

What does the Fn::Ref function allow you to get?

Answer 68

Parameters (Value of the parameters)

Resources (ID of the underlying resource)

Question 69

What does the Fn::Join function allow you to do?

Answer 69

Join values with a delimiter, for example:

!Join [”:”, [a,b,c]]

This create “a:b:c”

Question 70

What does the Fn::Sub function allow you to do?

Answer 70

Substitute variables from a text, for example:

Name: !Sub

• www.${Domain}
• { Domain: !Ref RootDomainName }

Question 71

What are the available intrinsic condition functions in CloudFormation?

Answer 71

Fn::And
Fn::Equals
Fn::If
Fn::Not
Fn::Or

Question 72

What happens by default if a stack creation fails?

Answer 72

Everything rolls back (get deleted since it’s a creation)

Question 73

What happens by default if a stack update fails?

Answer 73

Everything rolls back to the previous known working version