From 7d18748db4c230a04a3146409227320886043f92 Mon Sep 17 00:00:00 2001
From: Chris Brown <1731074+ccbrown@users.noreply.github.com>
Date: Fri, 9 May 2025 20:41:21 -0400
Subject: [PATCH 1/2] add article on enumerating aws regions and services
---
...a-list-of-all-aws-regions-and-services.tsx | 238 ++++++++++++++++++
.../src/app/(public-area)/articles/index.tsx | 2 +
2 files changed, 240 insertions(+)
create mode 100644 frontend/src/app/(public-area)/articles/how-to-programmatically-get-a-list-of-all-aws-regions-and-services.tsx
diff --git a/frontend/src/app/(public-area)/articles/how-to-programmatically-get-a-list-of-all-aws-regions-and-services.tsx b/frontend/src/app/(public-area)/articles/how-to-programmatically-get-a-list-of-all-aws-regions-and-services.tsx
new file mode 100644
index 0000000..a0330e8
--- /dev/null
+++ b/frontend/src/app/(public-area)/articles/how-to-programmatically-get-a-list-of-all-aws-regions-and-services.tsx
@@ -0,0 +1,238 @@
+import { SyntaxHighlighter } from '@/components/SyntaxHighlighter';
+
+const regionListExample = [
+ 'aws ssm get-parameters-by-path --path /aws/service/global-infrastructure/regions',
+ '{',
+ ' "Parameters": [',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/regions/ap-northeast-1",',
+ ' "Type": "String",',
+ ' "Value": "ap-northeast-1",',
+ ' "Version": 1,',
+ ' "LastModifiedDate": "2019-04-08T17:37:38.637000-04:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/regions/ap-northeast-1",',
+ ' "DataType": "text"',
+ ' },',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/regions/ap-southeast-5",',
+ ' "Type": "String",',
+ ' "Value": "ap-southeast-5",',
+ ' "Version": 1,',
+ ' "LastModifiedDate": "2024-08-21T13:08:58.686000-04:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/regions/ap-southeast-5",',
+ ' "DataType": "text"',
+ ' },',
+ ' ...',
+ ' ]',
+ '}',
+];
+
+const regionExample = [
+ 'aws ssm get-parameters-by-path --path /aws/service/global-infrastructure/regions/us-east-1',
+ '{',
+ ' "Parameters": [',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/regions/us-east-1/domain",',
+ ' "Type": "String",',
+ ' "Value": "amazonaws.com",',
+ ' "Version": 1,',
+ ' "LastModifiedDate": "2019-06-21T08:15:34.835000-04:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/regions/us-east-1/domain",',
+ ' "DataType": "text"',
+ ' },',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/regions/us-east-1/geolocationCountry",',
+ ' "Type": "String",',
+ ' "Value": "US",',
+ ' "Version": 1,',
+ ' "LastModifiedDate": "2019-04-08T17:37:50.856000-04:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/regions/us-east-1/geolocationCountry",',
+ ' "DataType": "text"',
+ ' },',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/regions/us-east-1/geolocationRegion",',
+ ' "Type": "String",',
+ ' "Value": "US-VA",',
+ ' "Version": 1,',
+ ' "LastModifiedDate": "2019-04-08T17:37:51.403000-04:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/regions/us-east-1/geolocationRegion",',
+ ' "DataType": "text"',
+ ' },',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/regions/us-east-1/longName",',
+ ' "Type": "String",',
+ ' "Value": "US East (N. Virginia)",',
+ ' "Version": 1,',
+ ' "LastModifiedDate": "2019-04-08T17:37:51.477000-04:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/regions/us-east-1/longName",',
+ ' "DataType": "text"',
+ ' },',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/regions/us-east-1/partition",',
+ ' "Type": "String",',
+ ' "Value": "aws",',
+ ' "Version": 1,',
+ ' "LastModifiedDate": "2019-04-08T17:37:51.541000-04:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/regions/us-east-1/partition",',
+ ' "DataType": "text"',
+ ' }',
+ ' ]',
+ '}',
+];
+
+const serviceListExample = [
+ 'aws ssm get-parameters-by-path --path /aws/service/global-infrastructure/services',
+ '{',
+ ' "Parameters": [',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/services/arc-zonal-shift",',
+ ' "Type": "String",',
+ ' "Value": "arc-zonal-shift",',
+ ' "Version": 1,',
+ ' "LastModifiedDate": "2022-12-13T14:41:37.029000-05:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/services/arc-zonal-shift",',
+ ' "DataType": "text"',
+ ' },',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/services/codestar-connections",',
+ ' "Type": "String",',
+ ' "Value": "codestar-connections",',
+ ' "Version": 1003,',
+ ' "LastModifiedDate": "2020-03-17T10:38:01.897000-04:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/services/codestar-connections",',
+ ' "DataType": "text"',
+ ' },',
+ ' ...',
+ ' ]',
+ '}',
+];
+
+const serviceExample = [
+ 'aws ssm get-parameters-by-path --path /aws/service/global-infrastructure/services/ec2',
+ '{',
+ ' "Parameters": [',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/services/ec2/longName",',
+ ' "Type": "String",',
+ ' "Value": "Amazon Elastic Compute Cloud (EC2)",',
+ ' "Version": 2,',
+ ' "LastModifiedDate": "2020-02-05T05:41:45.323000-05:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/services/ec2/longName",',
+ ' "DataType": "text"',
+ ' },',
+ ' {',
+ ' "Name": "/aws/service/global-infrastructure/services/ec2/marketingHomeURL",',
+ ' "Type": "String",',
+ ' "Value": "https://aws.amazon.com/ec2/",',
+ ' "Version": 1,',
+ ' "LastModifiedDate": "2020-02-07T15:32:06.856000-05:00",',
+ ' "ARN": "arn:aws:ssm:us-east-1::parameter/aws/service/global-infrastructure/services/ec2/marketingHomeURL",',
+ ' "DataType": "text"',
+ ' }',
+ ' ]',
+ '}',
+];
+
+const accessReportExample = [
+ 'aws iam generate-organizations-access-report --entity-path o-myorgid/r-myrootid/123412341234',
+ '{',
+ ' "JobId": "5acb5bc4-ae86-eef1-4553-9ae3564ab6d2"',
+ '}',
+ '',
+ 'aws iam get-organizations-access-report --job-id 5acb5bc4-ae86-eef1-4553-9ae3564ab6d2',
+ '{',
+ ' "JobStatus": "COMPLETED",',
+ ' "JobCreationDate": "2025-05-10T00:06:20.450000+00:00",',
+ ' "JobCompletionDate": "2025-05-10T00:06:25.689000+00:00",',
+ ' "NumberOfServicesAccessible": 11,',
+ ' "NumberOfServicesNotAccessed": 0,',
+ ' "AccessDetails": [',
+ ' {',
+ ' "ServiceName": "Amazon EC2 Auto Scaling",',
+ ' "ServiceNamespace": "autoscaling",',
+ ' "Region": "us-east-1",',
+ ' "EntityPath": "o-myorgid/r-myrootid/123412341234",',
+ ' "LastAuthenticatedTime": "2025-04-20T05:57:49+00:00",',
+ ' "TotalAuthenticatedEntities": 1',
+ ' },',
+ ' {',
+ ' "ServiceName": "AWS CloudTrail",',
+ ' "ServiceNamespace": "cloudtrail",',
+ ' "Region": "us-east-1",',
+ ' "EntityPath": "o-myorgid/r-myrootid/123412341234",',
+ ' "LastAuthenticatedTime": "2025-03-05T20:19:31+00:00",',
+ ' "TotalAuthenticatedEntities": 1',
+ ' },',
+ ' ...',
+ ' ],',
+ '}',
+];
+
+const article = {
+ title: 'How To Programmatically Get a List of All AWS Regions and Services',
+ author: {
+ name: 'Chris',
+ image: '/images/chris.jpg',
+ },
+ description:
+ 'Here are some reliable, but little-known ways to programmatically get a list of all AWS regions and services.',
+ date: new Date(Date.parse('2025-05-10T12:05:00-04:00')),
+ content: (
+ <>
+
+ There may be times when you need to get a list of all available AWS regions or services. Cloud Snitch
+ for example needs an up-to-date list of regions to be able to plot them on a map. There are repositories
+ on GitHub where developers have attempted to maintain such lists, but inevitably they all become
+ out-dated.
+
+
+ Fortunately, there's a way to get what we need directly from AWS. This makes it far more practical
+ to maintain up-to-date databases of regions and services.
+
+ SSM Parameters for AWS Global Infrastructure
+
+ AWS publishes information about their global infrastructure via public SSM parameters under the{' '}
+ /aws/service/global-infrastructure path. These parameters include
+ all available regions, services, and more.
+
+ Listing AWS Regions
+ To get a list of all available AWS regions, you can use a command like...
+ {regionListExample.join('\n')}
+
+ These parameters are hierarchical, so you can drill down to get more information about a specific region
+ like so:
+
+ {regionExample.join('\n')}
+ Listing AWS Services
+ Similarly, to get a list of all available AWS services, you can use a command like...
+ {serviceListExample.join('\n')}
+ And you can drill down further like so:
+ {serviceExample.join('\n')}
+ Listing AWS Services Via Organizations Access Report
+
+ Based on your security configuration or private beta enrollments, your account may have more or fewer
+ services available to it. As an alternative to using the global infrastructure SSM parameters, you can
+ enumerate services available to your account by generating an organizations access report:
+
+ {accessReportExample.join('\n')}
+
+ If your account is locked down using service control policies, your report will only contain the
+ services you have enabled for it. For example, the report shown above only has 11 services listed,
+ because it's been locked down using Cloud Snitch. For an unrestricted account, your report would
+ contain several hundred services.
+
+
+ ),
+ relatedLinks: [
+ {
+ title: 'Calling public parameters for AWS services, Regions, endpoints, Availability Zones, local zones, and Wavelength Zones in Parameter Store',
+ url: 'https://docs.aws.amazon.com/systems-manager/latest/userguide/parameter-store-public-parameters-global-infrastructure.html',
+ },
+ {
+ title: 'GenerateOrganizationsAccessReport',
+ url: 'https://docs.aws.amazon.com/IAM/latest/APIReference/API_GenerateOrganizationsAccessReport.html',
+ },
+ ],
+};
+
+export default article;
diff --git a/frontend/src/app/(public-area)/articles/index.tsx b/frontend/src/app/(public-area)/articles/index.tsx
index 01943d3..0390202 100644
--- a/frontend/src/app/(public-area)/articles/index.tsx
+++ b/frontend/src/app/(public-area)/articles/index.tsx
@@ -1,5 +1,6 @@
import CapitalOneDataBreach from './capital-one-data-breach';
import AwsModifyOnlyCreatedResource from './how-to-allow-aws-principals-to-modify-only-resources-they-create';
+import ListAwsRegionsAndServices from './how-to-programmatically-get-a-list-of-all-aws-regions-and-services';
interface Article {
title: string;
@@ -16,4 +17,5 @@ interface Article {
export const articles: Record = {
'capital-one-data-breach': CapitalOneDataBreach,
'how-to-allow-aws-principals-to-modify-only-resources-they-create': AwsModifyOnlyCreatedResource,
+ 'how-to-programmatically-get-a-list-of-all-aws-regions-and-services': ListAwsRegionsAndServices,
};
From d5eb728871ce64ee82bb3d6cda78587eae34be8a Mon Sep 17 00:00:00 2001
From: Chris Brown <1731074+ccbrown@users.noreply.github.com>
Date: Fri, 9 May 2025 20:44:16 -0400
Subject: [PATCH 2/2] move back publishing date
---
...grammatically-get-a-list-of-all-aws-regions-and-services.tsx | 2 +-
1 file changed, 1 insertion(+), 1 deletion(-)
diff --git a/frontend/src/app/(public-area)/articles/how-to-programmatically-get-a-list-of-all-aws-regions-and-services.tsx b/frontend/src/app/(public-area)/articles/how-to-programmatically-get-a-list-of-all-aws-regions-and-services.tsx
index a0330e8..bf0f5fe 100644
--- a/frontend/src/app/(public-area)/articles/how-to-programmatically-get-a-list-of-all-aws-regions-and-services.tsx
+++ b/frontend/src/app/(public-area)/articles/how-to-programmatically-get-a-list-of-all-aws-regions-and-services.tsx
@@ -176,7 +176,7 @@ const article = {
},
description:
'Here are some reliable, but little-known ways to programmatically get a list of all AWS regions and services.',
- date: new Date(Date.parse('2025-05-10T12:05:00-04:00')),
+ date: new Date(Date.parse('2025-05-11T12:05:00-04:00')),
content: (
<>