Question 102266 in Amazon Web Sevices Question posted in
The official Amazon Web Services documentation can be found here.

Amazon web services – How is it possible to get instance metadata using PHP AWS SDK?

I would like to get the instance metadata (like AZ) for the current EC2, using AWS SDK.
I was able to find an alternative solution, but it is not using the SDK just a file_get_contents
How is it possible with the SDK?

Tags:

3

Answers


  1. 0

    By current EC2 instance, are you referring to PHP code running on an EC2, and you would like to inject that metadata into some variables for use?

    Or do you mean you have an object created with the PHP SDK such as with something like:

    $ec2Client = new AwsEc2Ec2Client([
    'region' => 'us-east-1',
    'version' => 'latest'
]);

    If you mean the second way, you can access that data through describeInstances like this:

    $result = $ec2Client->describeInstances();
echo "Instances: n";
foreach ($result['Reservations'] as $reservation) {
    foreach ($reservation['Instances'] as $instance) {
        echo "InstanceId: {$instance['InstanceId']} - {$instance['State']['Name']} n";
        echo "Availability Zone: {$instance['Placement']['AvailabilityZone']} n";
    }
    echo "n";
}

    You can also filter by adding parameters to the method call such as by type or instanceId.

    If you’re just running PHP code on the EC2 instance and you want that info, you can check out this page for some options: https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/instancedata-data-retrieval.html

    Login or Signup to reply.
  2. 0

    I don’t think this is possible at all. IMDSv2 info like AZ, instance-id, instance-type, etc is readable via https://169.254.169.254 and if you look into the source code for the SDK, it only pulls temporary credentials via IMDSv2 (https://github.com/aws/aws-sdk-php/search?q=169.254)
    and does not allow arbitrary IMDSv2 queries.

    Unless I’m missing something, you need to pull this data yourself or use some 3rd-party library which does that for you in PHP.

    Login or Signup to reply.
  3. 0

    The solution proposed by JasonQ-AWS is useful to get information about all instances and applications in your account. However, it does not tell you what information describes the instance that is really executed by the current process.

    For that you have to use IMDSv2 which requires two CURL commands, the first one to get a TOKEN and the second one to get the actual metadata of the current instance.

    In PHP the code can therefore be :

    $ch = curl_init();

// get a valid TOKEN
$headers = array (
        'X-aws-ec2-metadata-token-ttl-seconds: 10' );
$url = "http://169.254.169.254/latest/api/token";

curl_setopt( $ch, CURLOPT_URL, $url );
curl_setopt( $ch, CURLOPT_HTTPHEADER, $headers );
curl_setopt( $ch, CURLOPT_RETURNTRANSFER, true );
curl_setopt( $ch, CURLOPT_CUSTOMREQUEST, "PUT" );
curl_setopt( $ch, CURLOPT_URL, $url );
$token = curl_exec( $ch );

echo "<p> TOKEN :" . $token;

// then get metadata of the current instance 
$headers = array (
        'X-aws-ec2-metadata-token: '.$token );
$url = "http://169.254.169.254/latest/dynamic/instance-identity/document";

curl_setopt( $ch, CURLOPT_URL, $url );
curl_setopt( $ch, CURLOPT_HTTPHEADER, $headers );
curl_setopt( $ch, CURLOPT_RETURNTRANSFER, true );
curl_setopt( $ch, CURLOPT_CUSTOMREQUEST, "GET" );
$result = curl_exec( $ch );

echo "<p> RESULT :" . $result;

    All you have to do is to extract the desired information. You can also ask for a unique information, such as the instance id with a more specific url like :

    $url = "http://169.254.169.254/latest/meta-data/instance-id";
    Login or Signup to reply.
Please signup or login to give your own answer.

Back To Top
Search