You're reading from Mastering AWS CloudFormation Build resilient and production-ready infrastructure in Amazon Web Services with CloudFormation

Product type Paperback

Published in Nov 2023

Publisher Packt

ISBN-13 9781805123903

Length 310 pages

Edition 2nd Edition

Languages

Python

Tools

AWS

Concepts

Cloud Computing

Author (1):

Karen Tovmasyan

View More author details

Table of Contents (19) Chapters

Preface

1. Part 1: CloudFormation Internals

2. Chapter 1: Working with CloudFormation FREE CHAPTER

3. Chapter 2: Advanced Template Development

4. Part 2: Provisioning and Deployment at Scale

5. Chapter 3: Validation, Linting, and Deploying the Stack

6. Chapter 4: Continuous Integration and Deployment

7. Chapter 5: Deploying to Multiple Regions and Accounts Using StackSets

8. Chapter 6: Configuration Management of EC2 Instances Using cfn-init

9. Part 3: Extending CloudFormation

10. Chapter 7: Creating Resources Outside AWS Using Custom Resources

11. Chapter 8: Creating Your Own Resource Registry for CloudFormation

12. Chapter 9: Scale Your Templates Using Macros, Nested Stacks, and Modules

13. Chapter 10: Generating CloudFormation Templates Using AWS CDK

14. Chapter 11: Deploying Serverless Applications Using AWS SAM

15. Chapter 12: What’s Next?

16. Assessments

17. Index

Why subscribe?

18. Other Books You May Enjoy

AWS pseudo parameters

What makes these parameters special? Well, the fact that they are obtained from AWS itself.

The current list of these parameters is as follows:

AWS::AccountId
AWS::NotificationARNs
AWS::NoValue
AWS::Region
AWS::StackId
AWS::StackName
AWS::URLSuffix
AWS::Partition

We’re not going to cover all of them, only the most widely used ones.

AWS::AccountId

One of the use cases where we need to use AccountId is when we are using an IAM principal.

If you are familiar with IAM, then you know that we can set the AWS account ID as a principal element. If you need to refresh your memory regarding IAM, you can read a great blog series at https://medium.com/@thomas.storm/aws-iam-deep-dive-chapter-1-essentials-a9cfb1931a01.

At the same time, it is a security risk to expose an AWS account ID in public; for production environments, we should stick to using AWS pseudo parameters when we specify this kind of data.

An...