-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathserverless.yml
142 lines (130 loc) · 3.61 KB
/
serverless.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
# Welcome to Serverless!
#
# This file is the main config file for your service.
# It's very minimal at this point and uses default values.
# You can always add more config options for more control.
# We've included some commented out config examples here.
# Just uncomment any of them to get that config option.
#
# For full config options, check the docs:
# docs.serverless.com
#
# Happy Coding!
service: ny-doorman
custom:
pythonRequirements:
pythonBin: python
provider:
name: aws
runtime: python3.6
# you can overwrite defaults here
stage: PROD
# you can add statements to the Lambda function's IAM Role here
iamRoleStatements:
- Effect: "Allow"
Action:
- "rekognition:DetectFaces"
- "rekognition:SearchFacesByImage"
- "rekognition:IndexFaces"
Resource: "*"
- Effect: "Allow"
Action:
- "s3:PutObject"
- "s3:PutObjectAcl"
- "s3:GetObject"
- "s3:DeleteObject"
Resource:
- "arn:aws:s3:::${env:BUCKET_NAME}/*"
- "arn:aws:s3:::${env:BUCKET_NAME}"
# - Effect: "Allow"
# Action:
# - "s3:ListBucket"
# Resource: { "Fn::Join" : ["", ["arn:aws:s3:::", { "Ref" : "ServerlessDeploymentBucket" } ] ] }
# - Effect: "Allow"
# Action:
# - "s3:PutObject"
# Resource:
# Fn::Join:
# - ""
# - - "arn:aws:s3:::"
# - "Ref" : "ServerlessDeploymentBucket"
# - "/*"
# you can define service wide environment variables here
environment:
BUCKET_NAME: ${env:BUCKET_NAME}
SLACK_API_TOKEN: ${env:SLACK_API_TOKEN}
SLACK_CHANNEL_ID: ${env:SLACK_CHANNEL_ID}
SLACK_TRAINING_CHANNEL_ID: ${env:SLACK_TRAINING_CHANNEL_ID}
REKOGNITION_COLLECTION_ID: ${env:REKOGNITION_COLLECTION_ID} # Setup outside of CloudFormation
#TRUPORTAL_USERNAME: ${env:TRUPORTAL_USERNAME}
#TRUPORTAL_PASSWORD: ${env:TRUPORTAL_PASSWORD}
#DOOR_ID: ${env:DOOR_ID}
#TRUPORTAL_IP: ${env:TRUPORTAL_IP}
# you can add packaging information here
#package:
# include:
# - include-me.py
# - include-me-dir/**
# exclude:
# - exclude-me.py
# - exclude-me-dir/**
functions:
guess:
handler: handler.guess
events:
- s3:
bucket: ${env:BUCKET_NAME}
event: s3:ObjectCreated:*
rules:
- prefix: incoming/
unknown:
handler: handler.unknown
events:
- s3:
bucket: ${env:BUCKET_NAME}
event: s3:ObjectCreated:*
rules:
- prefix: unknown/
train:
handler: handler.train
events:
- http:
path: faces/train
method: post
truportalevents:
handler: handler.truportalevents
events:
- schedule: rate(1 minute)
# find person, function for greengrass device
find-person:
handler: find_person.function_handler
runtime: python2.7
resources:
Resources:
# S3BucketDoormanfaces:
# Type: AWS::S3::Bucket
# Properties:
# BucketName: ${env:BUCKET_NAME}
# # add additional custom bucket configuration here
S3DoormanPolicy:
Type: AWS::IAM::Policy
Properties:
PolicyName: DeepLensS3Access
PolicyDocument:
Version: '2012-10-17'
Statement:
- Effect: Allow
Action:
- "s3:GetObject"
- "s3:DeleteObject"
- "s3:ListBucket"
- "s3:PutObject"
- "s3:PutObjectAcl"
Resource:
- "arn:aws:s3:::${env:BUCKET_NAME}/*"
- "arn:aws:s3:::${env:BUCKET_NAME}"
Roles:
- AWSDeepLensLambdaRole
#
plugins:
- serverless-python-requirements