Skip to content

create-atl-delete/summoner

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

16 Commits
summoner
summoner
 
 
.gitignore
.gitignore
 
 
.python-version
.python-version
 
 
README.md
README.md
 
 
pyproject.toml
pyproject.toml
 
 
uv.lock
uv.lock
 
 

Repository files navigation

About

Summoner is a lightweight, VDI-client-like solution for AWS EC2 using AWS SSM. It consists of a simple UI which allows:

  • Stopping, starting or restarting Instances
  • Initiating connections to Instances over RDP, SSH, or VNC
    • This can be extended to support other protocols

Packaging

As provided, Summoner is both a complete python package and a set of modules you can use in your own projects.

  1. Summoner (package) - Install with your choice of package manager and start using Summoner right away.
  2. Summoner (class) - The full Summoner UI.
  3. Evocation (class) - An extension of the SSMPlugin class. Handles starting/stopping the plugin and running a function to establish a connection to the Instance.
  4. SSMPlugin (class) - Runs the Session Manager Plugin.

Prerequisites

Local Host

AWS CLI

See install instructions here.

Session Manager Plugin

See install instructions here.

Remote Host

SSM Agent

The SSM agent is pre-installed on almost all AWS Marketplace AMIs. If you are using a custom AMI, see install instructions here.

IAM Policy

AWS SSM can be enabled at the account level or on individual Instances using an IAM Instance Profile.

Account

See instructions here.

EC2 Instance

See instructions here.

User/Role

  • To use Evocation or the SSMPlugin modules, users will need the permissions described here.
  • To use the full Summoner UI, users will also need permissions to start and stop Instances.

Networking

Security Groups

One of the main benefits of AWS SSM is that it requires no inbound access. The Instances' Security Groups do not need any inbound rules in order for Summoner to work.

VPC Endpoint

For added security, use a VPC Endpoint for AWS SSM See instructions here.

Authentication

Summoner supports most AWS authentication options. Credential expiry will cause any connection to end abrupty, so using long-lived or refreshable credentials is recommended. Summoner supports any credential handler that supports Credential Provider. Examples include saml2aws, aws-azure-login, and aws-vault.

Usage

Summoner has several usage modes. In any mode, Summoner will start the Instance if a connection is initiated while it is stopped.

Config

Use config files for simplified access to a set of Instances using the same AWS Profile/Role. In Config mode, users are presented with a menu from which they can manage their Instances, connect to them, or make changes to the config file.

Select

Select from a list of Instances in a specified region. On connection end, Summoner will ask if the Instance can be stopped.

Instance

Provide details of an Instance to connect to. On connection end, Summoner will stop the Instance if it started it. Else, it will exit immediately.

Custom Connection Types

When using Summoner (class) in your own project, you can add other connection types.

This begins with writing a new connector. See the connectors module for examples.

  • Connectors must accept **kwargs.
  • Connectors will be passed the Evocation.

Once a connector has been written, use Summoner.add_connection_type() to add menu options, and config file support.

About

A VDI-client-like solution for AWS EC2 using AWS SSM

Topics

ssh aws ec2 vnc-client ssh-client rdp vnc instance rdp-client session-manager ssm vdi systems-manager vdi-client

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages