search

andsens / bootstrap-vz

Bootstrap Debian images for virtualized environments
http://bootstrap-vz.readthedocs.io/
Other
263 stars 143 forks source link

Add support for encrypted AMIs #468

Closed vmlintu-nosto closed 6 years ago

vmlintu-nosto commented 6 years ago

This adds support for using encrypted EBS volume with EC2 provider. The resulting snapshot and AMI are encrypted and they can be used to launch EC2 instances with encrypted root volume. Custom KMS key can be used by specifying kms_key_id or otherwise the default kms key is used.

More information about AMI encryption:

https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/AMIEncryption.html

Closes #405

This pull request conflicts with https://github.com/andsens/bootstrap-vz/pull/446 that I can update if this is merged first.

vmlintu-nosto commented 6 years ago

I updated the PR to use named parameters and defaults with get(). It is also rebased on top of the newest master.

andsens commented 6 years ago

Looks good! Merging...