The DD4C redirection service
Begin by installing the AWS CLI aws configure. Set the default region to eu-west-2.
Then configure AWS CLI such that you can assume the NHSDAdminRole by adding the following dd4c profile to your local ~/.aws/config file.
[profile dd4c]
role_arn = arn:aws:iam::<Account ID>:role/NHSDAdminRole
mfa_serial = arn:aws:iam::<Account ID>:mfa/<Your username>
source_profile = default
Then install Pip sudo apt install python3-pip. Then using Pip install AWSume pip3 install awsume.
| Note |
|---|
| Make sure you add AWSume to the path. |
You should now be able to do awsume dd4c which will prompt you for your MFA code.
Once you are happy with any JS or Terraform changes, run terraform apply. You will be prompted for a value for a variable name 'integrity', give it something uncommon. A hashed version of the value gets passed between CloudFront and the Lambda to check the integrity of the request.
The Terraform state is held in an AWS S3 bucket named dd4c-terraform-state.