README
¶
ec2-api
This API is a reimplementation of the internal ec2-api and provides simple restful API access to EC2.
API Endpoints
# Base Path
GET /v2/ec2/
# General Endpoints
GET /v2/ec2/ping
GET /v2/ec2/version
GET /v2/ec2/metrics
# Managing Instances
GET /v2/ec2/{account}/instances
GET /v2/ec2/{account}/instances/types
GET /v2/ec2/{account}/instances/{id}
GET /v2/ec2/{account}/instances/{id}/volumes
GET /v2/ec2/{account}/instances/{id}/volumes/{vid}
GET /v2/ec2/{account}/instances/{id}/snapshots
GET /v2/ec2/{account}/instances/{id}/ssm/ready
POST /v2/ec2/{account}/instances
POST /v2/ec2/{account}/instances/{id}/volumes
PUT /v2/ec2/{account}/instances/{id}
PUT /v2/ec2/{account}/instances/{id}/power
PUT /v2/ec2/{account}/instances/{id}/ssm/command
PUT /v2/ec2/{account}/instances/{id}/ssm/association
PUT /v2/ec2/{account}/instances/{id}/tags
PUT /v2/ec2/{account}/instances/{id}/attribute
DELETE /v2/ec2/{account}/instances/{id}
DELETE /v2/ec2/{account}/instances/{id}/volumes/{vid}
# Managing Security Groups (SG)
GET /v2/ec2/{account}/sgs
GET /v2/ec2/{account}/sgs/{id}
POST /v2/ec2/{account}/sgs
PUT /v2/ec2/{account}/sgs/{id}
PUT /v2/ec2/{account}/sgs/{id}/tags
DELETE /v2/ec2/{account}/sgs/{id}
# Managing Volumes
GET /v2/ec2/{account}/volumes
GET /v2/ec2/{account}/volumes/{id}
GET /v2/ec2/{account}/volumes/{id}/modifications
GET /v2/ec2/{account}/volumes/{id}/snapshots
POST /v2/ec2/{account}/volumes
PUT /v2/ec2/{account}/volumes/{id}
PUT /v2/ec2/{account}/volumes/{id}/tags
DELETE /v2/ec2/{account}/volumes/{id}
# Managing Snapshots
GET /v2/ec2/{account}/snapshots
GET /v2/ec2/{account}/snapshots/{id}
POST /v2/ec2/{account}/snapshots
PUT /v2/ec2/{account}/snapshots/synctags
DELETE /v2/ec2/{account}/snapshots/{id}
# Managing Images
GET /v2/ec2/{account}/images?name={name}
GET /v2/ec2/{account}/images
GET /v2/ec2/{account}/images/{id}
POST /v2/ec2/{account}/images
PUT /v2/ec2/{account}/images/{id}/tags
DELETE /v2/ec2/{account}/images/{id}
# Managing Subnets
GET /v2/ec2/{account}/subnets?vpc={vpc}
GET /v2/ec2/{account}/subnets
# Managing VPCs
GET /v2/ec2/{account}/vpcs
GET /v2/ec2/{account}/vpcs/{id}
# Managing SSM Parameters
GET /v2/ec2/{account}/ssm/parameters
GET /v2/ec2/{account}/ssm/parameters/{name}
POST /v2/ec2/{account}/ssm/parameters
PUT /v2/ec2/{account}/ssm/parameters/{name}
DELETE /v2/ec2/{account}/ssm/parameters/{name}
# Miscellaneous Endpoints
DELETE /v2/ec2/{account}/instanceprofiles/{name}
SSM Parameters
The SSM parameter endpoints allow you to create, retrieve, update, and delete Systems Manager parameters.
# List parameters
GET /v2/ec2/{account}/ssm/parameters
# Get a specific parameter
GET /v2/ec2/{account}/ssm/parameters/{name}
# Create a parameter
POST /v2/ec2/{account}/ssm/parameters
# Update a parameter
PUT /v2/ec2/{account}/ssm/parameters/{name}
# Delete a parameter
DELETE /v2/ec2/{account}/ssm/parameters/{name}
Parameters
{account}: AWS account ID or account alias{name}: Name of the SSM parameter (can include path, e.g., '/myapp/config/secret')
Query Parameters
For GET /v2/ec2/{account}/ssm/parameters:
name: Filter by parameter nametype: Filter by parameter typepath: Filter by parameter pathmax_results: Maximum number of results to returnnext_token: Token for pagination
For GET /v2/ec2/{account}/ssm/parameters/{name}:
decrypt: Set to 'true' to decrypt SecureString parameters (default: false)
Request Body (POST/PUT)
{
"name": "MyParameter",
"type": "String",
"value": "parameter-value",
"description": "My parameter description",
"overwrite": false,
"tags": {
"Environment": "Production"
}
}
Types supported:
String: Plain text stringStringList: Comma-separated list of stringsSecureString: Encrypted string using KMS
Response
{
"name": "MyParameter",
"type": "String",
"value": "parameter-value",
"version": 1,
"lastModifiedDate": "2023-01-01T00:00:00Z",
"arn": "arn:aws:ssm:us-east-1:123456789012:parameter/MyParameter",
"tags": {
"Environment": "Production"
}
}
Response Codes
- 200 OK: Request was successful
- 400 Bad Request: Invalid request parameters
- 403 Forbidden: Authorization error
- 404 Not Found: Parameter not found
- 500 Internal Server Error: Server error while processing the request
SSM Readiness Check
The SSM readiness check endpoint allows you to verify if an EC2 instance has the Systems Manager agent properly installed, configured, and connected.
GET /v2/ec2/{account}/instances/{id}/ssm/ready
Parameters
{account}: AWS account ID or account alias{id}: EC2 instance ID (e.g., 'i-12345678')
Response
{
"instanceId": "i-1234567890abcdef0",
"ready": true
}
Response Codes
- 200 OK: Request was successful (instance may or may not be ready)
- 400 Bad Request: Invalid request parameters
- 403 Forbidden: Authorization error
- 500 Internal Server Error: Server error while processing the request
Authentication
Authentication is accomplished via an encrypted pre-shared key passed via the X-Auth-Token header.
Authors
E Camden Fisher camden.fisher@yale.edu
Brandon Tassone brandon.tassone@yale.edu
License
GNU Affero General Public License v3.0 (GNU AGPLv3)
Copyright © 2021 Yale University
Documentation
¶
Overview ¶
Copyright © 2021 Yale University
This program is free software: you can redistribute it and/or modify it under the terms of the GNU Affero General Public License as published by the Free Software Foundation, either version 3 of the License, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more details.
You should have received a copy of the GNU Affero General Public License along with this program. If not, see <http://www.gnu.org/licenses/>.
Source Files
Directories