Here is the high-level architecture of the solution
- IAM users and/or Root account sign-in to either Web Console or Mobile Console
- That sign-in activity is captured and tracked by Cloud Trail
- A Cloud Trail event is sent to Event Bridge automatically
- Event Bridge triggers a state machine in Step Function
- The state machine process the event and send a message SNS topic if needed
- SNS with a Lambda function subscribed to the topic will send appropriate notifications Slack
Details of the state machine - the main part of the solution
This project is set up like a standard Python project. The initialization
process also creates a virtualenv within this project, stored under the .venv
directory. To create the virtualenv it assumes that there is a python3
(or python for Windows) executable in your path with access to the venv
package. If for any reason the automatic creation of the virtualenv fails,
you can create the virtualenv manually.
To manually create a virtualenv on MacOS and Linux:
$ python3 -m venv .venv
After the init process completes and the virtualenv is created, you can use the following step to activate your virtualenv.
$ source .venv/bin/activate
If you are a Windows platform, you would activate the virtualenv like this:
% .venv\Scripts\activate.bat
Once the virtualenv is activated, you can install the required dependencies.
$ pip install -r requirements.txt
At this point you can now synthesize the CloudFormation template for this code.
$ cdk synth
To add additional dependencies, for example other CDK libraries, just add
them to your setup.py file and rerun the pip install -r requirements.txt
command.
export SLACK_WEBHOOK_ALARM_AWS=<SLACK_WEBHOOK_ALARM_AWS>