feat: add VPC, EC2 Python Example (#204)

This pull request is aimed at creating the following Python Examples:
- Import VPC
- Create new VPC with 2 AZs and 6 Subnets, Public, Private and DataBase.
- Sharing VPC between two stacks
- Create ALB/EC2/AutoscalingGroup in the VPC
- How to define EC2 to specify AMI or auto-selection
- Define property override for EC2 Instance with BlockStorageMapping
- Define userdata for EC2 to setup httpd
- Create NAT GW and Bastion 
- Chain the Security Groups

Author: huangzbaws

python/existing-vpc-new-ec2-ebs-userdata/DO_NOT_AUTOTEST

@@ -0,0 +1 @@
+

python/existing-vpc-new-ec2-ebs-userdata/README.md

@@ -0,0 +1,17 @@
+# Create EC2 in an existing VPC with AWS CDK Python
+
+This is a project to create a new EC2 in an existing VPC on AWS with the AWS Cloud Development Kit.
+
+This project also demonstrates:
+* Using customized user data of EC2 
+* Customize multiple EBS volume
+* Specify AMI id
+* Security groups allow SSH access from internet
+
+## Useful commands
+
+ * `cdk ls`          list all stacks in the app
+ * `cdk synth`       emits the synthesized CloudFormation template
+ * `cdk deploy`      deploy this stack to your default AWS account/region
+ * `cdk diff`        compare deployed stack with current state
+ * `cdk docs`        open CDK documentation

python/existing-vpc-new-ec2-ebs-userdata/app.py

@@ -0,0 +1,13 @@
+#!/usr/bin/env python3
+
+from aws_cdk import core
+
+from cdk_vpc_ec2.cdk_vpc_ec2_stack import CdkVpcEc2Stack
+
+# Define your account id to make import vpc work
+env_cn = core.Environment(account="YOUR_ACCOUNT_ID_WITHOUT_HYPHEN", region="cn-northwest-1")
+
+app = core.App()
+CdkVpcEc2Stack(app, "cdk-vpc-ec2", env=env_cn)
+
+app.synth()

python/existing-vpc-new-ec2-ebs-userdata/cdk.json

@@ -0,0 +1,3 @@
+{
+  "app": "python3 app.py"
+}

python/existing-vpc-new-ec2-ebs-userdata/cdk_vpc_ec2/cdk_vpc_ec2_stack.py

@@ -0,0 +1,54 @@
+from aws_cdk import core
+import aws_cdk.aws_ec2 as ec2
+
+vpc_id = "MY-VPC-ID"  # Import an Exist VPC
+ec2_type = "t2.micro"
+key_name = "id_rsa"
+linux_ami = ec2.GenericLinuxImage({
+    "cn-northwest-1": "AMI-ID-IN-cn-northwest-1-REGION",  # Refer to an Exist AMI
+    "eu-west-1": "AMI-ID-IN-eu-west-1-REGION"
+})
+with open("./user_data/user_data.sh") as f:
+    user_data = f.read()
+
+
+class CdkVpcEc2Stack(core.Stack):
+
+    def __init__(self, scope: core.Construct, id: str, **kwargs) -> None:
+        super().__init__(scope, id, **kwargs)
+
+        # The code that defines your stack goes here
+        vpc = ec2.Vpc.from_lookup(self, "VPC", vpc_id=vpc_id)
+
+        host = ec2.Instance(self, "myEC2",
+                            instance_type=ec2.InstanceType(
+                                instance_type_identifier=ec2_type),
+                            instance_name="mySingleHost",
+                            machine_image=linux_ami,
+                            vpc=vpc,
+                            key_name=key_name,
+                            vpc_subnets=ec2.SubnetSelection(
+                                subnet_type=ec2.SubnetType.PUBLIC),
+                            user_data=ec2.UserData.custom(user_data)
+                            )
+        # ec2.Instance has no property of BlockDeviceMappings, add via lower layer cdk api:
+        host.instance.add_property_override("BlockDeviceMappings", [{
+            "DeviceName": "/dev/xvda",
+            "Ebs": {
+                "VolumeSize": "10",
+                "VolumeType": "io1",
+                "Iops": "150",
+                "DeleteOnTermination": "true"
+            }
+        }, {
+            "DeviceName": "/dev/sdb",
+            "Ebs": {"VolumeSize": "30"}
+        }
+        ])  # by default VolumeType is gp2, VolumeSize 8GB
+        host.connections.allow_from_any_ipv4(
+            ec2.Port.tcp(22), "Allow ssh from internet")
+        host.connections.allow_from_any_ipv4(
+            ec2.Port.tcp(80), "Allow ssh from internet")
+
+        core.CfnOutput(self, "Output",
+                       value=host.instance_public_ip)

python/existing-vpc-new-ec2-ebs-userdata/requirements.txt

@@ -0,0 +1 @@
+-e .

python/existing-vpc-new-ec2-ebs-userdata/setup.py

@@ -0,0 +1,46 @@
+import setuptools
+
+
+with open("README.md") as fp:
+    long_description = fp.read()
+
+
+setuptools.setup(
+    name="Import_VPC_Create_EC2",
+    version="1.0.0",
+
+    description="Import VPC and Create EC2 on it with two EBS and EC2 UserData",
+    long_description=long_description,
+    long_description_content_type="text/markdown",
+
+    author="Huang, Zhuobin (James)",
+
+    package_dir={"": "cdk_vpc_ec2"},
+    packages=setuptools.find_packages(where="cdk_vpc_ec2"),
+
+    install_requires=[
+        "aws-cdk.core",
+        "aws-cdk.aws-ec2"
+    ],
+
+    python_requires=">=3.6",
+
+    classifiers=[
+        "Development Status :: 4 - Beta",
+
+        "Intended Audience :: Developers",
+
+        "License :: OSI Approved :: Apache Software License",
+
+        "Programming Language :: JavaScript",
+        "Programming Language :: Python :: 3 :: Only",
+        "Programming Language :: Python :: 3.6",
+        "Programming Language :: Python :: 3.7",
+        "Programming Language :: Python :: 3.8",
+
+        "Topic :: Software Development :: Code Generators",
+        "Topic :: Utilities",
+
+        "Typing :: Typed",
+    ],
+)

python/existing-vpc-new-ec2-ebs-userdata/user_data/user_data.sh

@@ -0,0 +1,5 @@
+#!/bin/bash
+sudo yum update -y
+sudo yum -y install httpd php
+sudo chkconfig httpd on
+sudo service httpd start

python/new-vpc-alb-asg-mysql/README.md

@@ -0,0 +1,24 @@
+# Create VPC, EC2 ASG and RDS with AWS CDK Python
+
+This is a project to create a new VPC, EC2 autoscaling group and RDS on AWS with the AWS Cloud Development Kit.
+
+This project also demonstrates:
+* Create VPC in 3 tier layers of subnets: PUBLIC, PRIVATE and ISOLATED, you can specify the number of AZ and the CIDR.
+* Create Bastion instance, NAT Gateway and S3 endpoint
+* Create ALB, EC2 Autoscaling group with scaling policy and customize EBS volume
+* Creat RDS MySQL M-AZs Database or Aurora
+* Create security group and allow access from the other security group: Internet -> ALB -> EC2ASG -> RDS
+* Using customized user data of EC2 and specify generation AMI property and do not need to specify the AMI id in every region
+
+## Architeture 
+![Architecture](./img_demo_cdk_vpc.png)  
+
+This project create the new VPC part of the architeture. For the existing VPC part, please refer to the project in aws-cdk-examples/existing-vpc-new-ec2-ebs-userdata
+
+## Useful commands
+
+ * `cdk ls`          list all stacks in the app
+ * `cdk synth`       emits the synthesized CloudFormation template
+ * `cdk deploy`      deploy this stack to your default AWS account/region
+ * `cdk diff`        compare deployed stack with current state
+ * `cdk docs`        open CDK documentation

python/new-vpc-alb-asg-mysql/app.py

@@ -0,0 +1,18 @@
+#!/usr/bin/env python3
+
+from aws_cdk import core
+
+from cdk_vpc_ec2.cdk_vpc_stack import CdkVpcStack
+from cdk_vpc_ec2.cdk_ec2_stack import CdkEc2Stack
+from cdk_vpc_ec2.cdk_rds_stack import CdkRdsStack
+
+app = core.App()
+
+vpc_stack = CdkVpcStack(app, "cdk-vpc")
+ec2_stack = CdkEc2Stack(app, "cdk-ec2",
+                        vpc=vpc_stack.vpc)
+rds_stack = CdkRdsStack(app, "cdk-rds",
+                        vpc=vpc_stack.vpc,
+                        asg_security_groups=ec2_stack.asg.connections.security_groups)
+
+app.synth()