Merged dev into master

Author: Chris Machler

README.md

@@ -35,6 +35,13 @@ First create an IAM policy called "ebs-backup-worker" with the following policy
             "Resource": [
                 "*"
             ]
+        },
+        {
+            "Effect": "Allow",
+            "Action": [
+                "sns:Publish"
+            ],
+            "Resource": "*"
         }
     ]
 }
@@ -79,6 +86,11 @@ Type "help", "copyright", "credits" or "license" for more information.
 ```
 **We will copy the encoded value and add it as the Lambda environment variable "aws_regions". When copying the encoded value please omit the single quotes in the output (ie. dXMtd2VzdC0yLHVzLWVhc3QtMg==).**
 
+## Add the SNS Topics ARN you want publish as a Lambda environmenet variable "aws_sns_arn"
+
+This is optional environment variable if you want publish any topic, so you might receive email notification
+once backing up was executed.
+
 ## Create the Lambda Functions
 
 Create two functions in Lambda using the Python 2.7 runtime, one for the backup script and one for the cleanup script. I recommend just using the 128 MB memory setting, and adjust the timeout to 10 seconds (longer in a larger environment). Set the event source to be "CloudWatch Events - Schedule" and set the Schedule expression to be a cron expression of your liking i.e. "cron(0 6 * * ? *)" if you want the job to be kicked off at 06:00 UTC, set the cleanup job to run a few minutes later.

lambda-ebs-backup-cleanup.py

@@ -44,6 +44,10 @@ def lambda_handler(event, context):
         ]
         snapshot_response = ec.describe_snapshots(OwnerIds=account_ids, Filters=filters)
 
+        print "Found %d snapshots that need deleting in region %s on %s" % (
+            len(snapshot_response['Snapshots']),
+            region,
+            delete_on)
 
         for snap in snapshot_response['Snapshots']:
             print "Deleting snapshot %s" % snap['SnapshotId']

lambda-ebs-backup.py

@@ -3,8 +3,28 @@
 import datetime
 import base64
 import os
+import json
 
 base64_region = os.environ['aws_regions']
+aws_sns_arn = os.getenv('aws_sns_arn', None)
+
+def send_to_sns(subject, message):
+    if aws_sns_arn is None:
+        return
+
+    print "Sending notification to: %s" % aws_sns_arn
+
+    client = boto3.client('sns')
+
+    response = client.publish(
+        TargetArn=aws_sns_arn,
+        Message=message,
+        Subject=subject)
+
+    if 'MessageId' in response:
+        print "Notification sent with message id: %s" % response['MessageId']
+    else:
+        print "Sending notification failed with response: %s" % str(response)
 
 def lambda_handler(event, context):
     decoded_regions = base64.b64decode(base64_region)
@@ -28,7 +48,7 @@ def lambda_handler(event, context):
                 for r in reservations
             ], [])
 
-        print "Found %d instances that need backing up" % len(instances)
+        print "Found %d instances that need backing up in region %s" % (len(instances), region)
 
         to_tag_retention = collections.defaultdict(list)
         to_tag_mount_point = collections.defaultdict(list)
@@ -82,3 +102,6 @@ def lambda_handler(event, context):
                     {'Key': 'DeleteOn', 'Value': delete_fmt},
                 ]
             )
+
+        message = "{} instances have been backed up in region {}".format(len(instances), region)
+        send_to_sns('EBS Backups', message)