CloudProductActions/ECS/YAML/ACS::ECS::SMCVerifyInstanceByRunCommand.yml

FormatVersion: OOS-2019-06-01
Description:
  name-en: ACS::ECS::SMCVerifyInstanceByRunCommand
  name-zh-cn: 通过执行云助手命令验证实例
  en: Checking by customer command and default command for ecs instance
  zh-cn: 在ECS实例上，检测客户命令和默认命令
Parameters:
  regionId:
    Type: String
    Description:
      en: The ID of region
      zh-cn: 地域ID
    AssociationProperty: RegionId
    Default: '{{ ACS::RegionId }}'
  instanceId:
    Description:
      en: The ID of ECS instance
      zh-cn: ECS实例ID
    Type: String
  isDeleteInstance:
    Description:
      en: Whether delete ECS instance after check, (default is false)
      zh-cn: 在检测完毕后，选择是否删除实例（默认为不删除）
    Type: Boolean
    Default: false
  commandType:
    Description:
      en: The type of command
      zh-cn: 命令类型
    Type: String
    AllowedValues:
      - RunBatScript
      - RunPowerShellScript
      - RunShellScript
    Default: RunShellScript
  commandContent:
    Description:
      en: The content of command
      zh-cn: 命令内容
    Type: String
    AssociationProperty: Code
    Default: ''
  timeout:
    Description:
      en: Timeout for executing script
      zh-cn: 执行脚本的超时时间
    Type: Number
    Default: 60
  workingDir:
    Description:
      en: The directory where the created command runs on the ECS instances
      zh-cn: 在ECS实例上执行脚本的位置
    Type: String
    Default: /root
Tasks:
  - Name: waitInstanceReady
    Action: 'ACS::WaitFor'
    Description:
      en: Wait the ECS instance status is running
      zh-cn: 等待ECS实例至Running状态
    Retries: 7
    Delay: 15
    Properties:
      Service: ECS
      API: DescribeInstances
      Parameters:
        RegionId: '{{ regionId }}'
        InstanceIds:
          - '{{ instanceId }}'
      DesiredValues:
        - Running
      PropertySelector: 'Instances.Instance[].Status'
    Outputs:
      oSType:
        Type: String
        ValueSelector: 'Instances.Instance[].OSType'
      vpcId:
        Type: String
        ValueSelector: 'Instances.Instance[].VpcAttributes.VpcId'
      vSwitchId:
        Type: String
        ValueSelector: 'Instances.Instance[].VpcAttributes.VSwitchId'
      securityGroupIds:
        Type: List
        ValueSelector: 'Instances.Instance[].SecurityGroupIds.SecurityGroupId[]'
  - Name: installCloudAssistant
    Action: 'ACS::ExecuteAPI'
    Description:
      en: Install cloud assistant with specified instance ID
      zh-cn: 通过实例ID下载云助手客户端
    Properties:
      Service: ECS
      API: InstallCloudAssistant
      Parameters:
        RegionId: '{{ regionId }}'
        InstanceIds:
          - '{{ instanceId }}'
  - Name: rebootInstance
    Action: 'ACS::ECS::RebootInstance'
    Description:
      en: Restarts an ECS instance
      zh-cn: 重启ECS实例
    Properties:
      regionId: '{{ regionId }}'
      instanceId: '{{ instanceId }}'
  - Name: waitCloudAssistantStatusReachtrue
    Action: 'ACS::WaitFor'
    Description:
      en: Wait for the cloud assistant status reach true
      zh-cn: 等待云助手客户端安装完成
    Retries: 7
    Delay: 30
    DelayType: Constant
    Properties:
      Service: ECS
      API: DescribeCloudAssistantStatus
      Parameters:
        RegionId: '{{ regionId }}'
        InstanceIds:
          - '{{ instanceId }}'
      DesiredValues:
        - 'true'
      PropertySelector: 'InstanceCloudAssistantStatusSet.InstanceCloudAssistantStatus[].CloudAssistantStatus'
  - Name: doInstanceDefaultCheck
    Action: 'ACS::ECS::RunCommand'
    Description:
      en: Execute cloud assistant command to check Instance
      zh-cn: 执行云助手命令检测实例
    OnError: whetherExecuteCustomerCheck
    Properties:
      regionId: '{{ regionId }}'
      commandContent:
        'Fn::If':
          - 'Fn::Equals':
              - linux
              - '{{ waitInstanceReady.oSType }}'
          - |
            #!/bin/bash
            function print_title() { echo -e "\n========================= $1:\n"; }
            print_title "ip addr"
            ip addr
            print_title "df -hPT"
            df -hPT
            print_title "cat /etc/fstab"
            cat /etc/fstab
            print_title "Default Result"
            if mount -a; then echo DISK_DEVICE_OK; fi
            if curl -s --connect-timeout 3 100.100.100.200 >/dev/null; then
              echo PRIVATE_NET_OK
              if curl -s --connect-timeout 3 www.aliyun.com >/dev/null; then echo PUBLIC_NET_OK; fi
            fi
          - |
            function print_title($title) { echo "========================= $title :" }
            print_title "ipconfig"
            ipconfig
            print_title "list disk/volume"
            get-wmiobject -class win32_logicaldisk
            print_title "Default Result"
            if (get-wmiobject -class win32_logicaldisk) { echo DISK_DEVICE_OK }
            Try {
                if (Invoke-WebRequest -UseBasicParsing  100.100.100.200 -TimeoutSec 3) {
                echo PRIVATE_NET_OK
                if (Invoke-WebRequest -UseBasicParsing www.aliyun.com -TimeoutSec 3) { echo PUBLIC_NET_OK }
                }
            } Catch {}
      instanceId: '{{ instanceId }}'
      commandType:
        'Fn::If':
          - 'Fn::Equals':
              - linux
              - '{{ waitInstanceReady.oSType }}'
          - RunShellScript
          - RunPowerShellScript
      workingDir: '{{ workingDir }}'
      timeout: '180'
    Outputs:
      commandOutput:
        Type: String
        ValueSelector: invocationOutput
  - Name: whetherExecuteCustomerCheck
    Action: 'ACS::Choice'
    Description: Choose next task by IsDeleteInstance.
    Properties:
      DefaultTask: doInstanceCustomerCheck
      Choices:
        - When:
            'Fn::Equals':
              - ''
              - '{{ commandContent }}'
          NextTask: whetherDeleteInstanceIsTrue
  - Name: doInstanceCustomerCheck
    Description:
      en: Execute customer command to check Instance
      zh-cn: 执行客户的云助手命令检测实例
    Action: 'ACS::ECS::RunCommand'
    OnError: whetherDeleteInstanceIsTrue
    Properties:
      regionId: '{{ regionId }}'
      commandContent: '{{ commandContent }}'
      instanceId: '{{ instanceId }}'
      commandType: '{{ commandType }}'
      workingDir: '{{ workingDir }}'
      timeout: '{{ timeout }}'
    Outputs:
      commandOutput:
        Type: String
        ValueSelector: invocationOutput
  - Name: whetherDeleteInstanceIsTrue
    Action: 'ACS::Choice'
    Description:
      en: Choose next task by IsDeleteInstance
      zh-cn: 选择是否删除实例
    Properties:
      DefaultTask: 'ACS::END'
      Choices:
        - When:
            'Fn::Equals':
              - true
              - '{{ isDeleteInstance }}'
          NextTask: waitDataRecover
  - Name: waitDataRecover
    Action: 'ACS::Sleep'
    Description:
      en: Wait the cloud assistanat status
      zh-cn: 等待云助手客户端的状态
    Properties:
      Duration: PT1M
  - Name: deleteInstance
    Action: 'ACS::ExecuteAPI'
    Description:
      en: Deletes ECS instance with the specified instance ID
      zh-cn: 通过实例ID删除ECS实例
    Properties:
      Service: ECS
      API: DeleteInstance
      Parameters:
        RegionId: '{{ regionId }}'
        InstanceId: '{{ instanceId }}'
        Force: true
  - Name: waitInstanceDeleted
    Action: 'ACS::WaitFor'
    Description:
      en: Wait for the ECS instance deletion to complete
      zh-cn: 等待ECS实例删除完成
    Retries: 7
    Delay: 15
    Properties:
      Service: ECS
      API: DescribeInstances
      Parameters:
        RegionId: '{{ regionId }}'
        InstanceIds:
          - '{{ instanceId }}'
      DesiredValues:
        - null
      PropertySelector: 'Instances.Instance[]'
  - Name: waitSecurityGroupAvailable
    Action: 'ACS::Sleep'
    Description:
      en: Wait for the instance to remove the security group
      zh-cn: 等待实例解除安全组
    Properties:
      Duration: PT30S
  - Name: deleteSecurityGroup
    Action: 'ACS::ExecuteAPI'
    Description:
      en: Call DeleteSecurityGroup to delete a security group
      zh-cn: 调用DeleteSecurityGroup删除一个安全组
    OnError: waitVSwitchAvailable
    Properties:
      Service: ECS
      API: DeleteSecurityGroup
      Parameters:
        RegionId: '{{ regionId }}'
        SecurityGroupId: '{{ ACS::TaskLoopItem }}'
    Loop:
      RateControl:
        Mode: Concurrency
        MaxErrors: 10
        Concurrency: 10
      Items: '{{ waitInstanceReady.securityGroupIds }}'
  - Name: waitVSwitchAvailable
    Action: 'ACS::WaitFor'
    Description:
      en: Wait for the VSwitches status utilAvailable
      zh-cn: 等待交换机至可用状态
    Retries: 7
    Delay: 15
    OnError: deleteVSwitch
    Properties:
      Service: VPC
      API: DescribeVSwitches
      Parameters:
        RegionId: '{{ regionId }}'
        VSwitchId: '{{ waitInstanceReady.vSwitchId }}'
      DesiredValues:
        - Available
      PropertySelector: '.VSwitches.VSwitch[].Status'
  - Name: deleteVSwitch
    Action: 'ACS::ExecuteAPI'
    Description:
      en: Call the DeleteVSwitch interface to delete the switch
      zh-cn: 调用DeleteVSwitch接口删除交换机
    OnError: waitVSwitchDeleted
    Properties:
      Service: VPC
      API: DeleteVSwitch
      Parameters:
        RegionId: '{{ regionId }}'
        VSwitchId: '{{ waitInstanceReady.vSwitchId }}'
  - Name: waitVSwitchDeleted
    Action: 'ACS::WaitFor'
    Description:
      en: Wait for the VSwitches deletion to complete
      zh-cn: 等待交换机删除完成
    Retries: 7
    Delay: 15
    OnError: waitVpcUtilAvailable
    Properties:
      Service: VPC
      API: DescribeVSwitches
      Parameters:
        RegionId: '{{ regionId }}'
        VSwitchId: '{{ waitInstanceReady.vSwitchId }}'
      DesiredValues:
        - null
      PropertySelector: '.VSwitches.VSwitch[]'
  - Name: waitVpcUtilAvailable
    Action: 'ACS::WaitFor'
    Description:
      en: Wait for the VPC status util available
      zh-cn: 等待专有网络至可用状态
    Retries: 7
    Delay: 15
    OnError: waitVpcCustomRouteUnbind
    Properties:
      Service: VPC
      API: DescribeVpcs
      Parameters:
        RegionId: '{{ regionId }}'
        VpcId: '{{ waitInstanceReady.vpcId }}'
      DesiredValues:
        - Available
      PropertySelector: 'Vpcs.Vpc[].Status'
  - Name: waitVpcCustomRouteUnbind
    Action: 'ACS::Sleep'
    Description:
      en: Waiting for the VPC to unbind the route
      zh-cn: 等待专有网络解绑路由
    Properties:
      Duration: PT30S
  - Name: deleteVpc
    Action: 'ACS::ExecuteAPI'
    Description:
      en: Call the DeleteVpc interface to delete a private network (VPC)
      zh-cn: 调用DeleteVpc接口删除一个专有网络（VPC)
    Properties:
      Service: VPC
      API: DeleteVpc
      Parameters:
        RegionId: '{{ regionId }}'
        VpcId: '{{ waitInstanceReady.vpcId }}'
Outputs:
  invocationOutput:
    Type: Json
    Value:
      'Fn::If':
        - 'Fn::Equals':
            - ''
            - '{{ commandContent }}'
        - instanceId: '{{ instanceId }}'
          instanceDefaultCheck: '{{ doInstanceDefaultCheck.commandOutput }}'
        - instanceId: '{{ instanceId }}'
          instanceDefaultCheck: '{{ doInstanceDefaultCheck.commandOutput }}'
          instanceCustomerCheck: '{{ doInstanceCustomerCheck.commandOutput }}'