Stack Config

Stack config stores config related to a particular Stack, such as the path to that Stack’s Template, and any parameters that Stack may require.


A Stack config file is a yaml object of key-value pairs configuring a particular Stack. The available keys are listed below.

template_path - required

The path to the CloudFormation, Jinja2 or Python template to build the Stack from. The path can either be absolute or relative to the Sceptre Directory. Sceptre treats the template as CloudFormation, Jinja2 or Python depending on the template’s file extension. Note that the template filename may be different from the Stack config filename.


A list of other Stacks in the environment that this Stack depends on. Note that if a Stack fetches an output value from another Stack using the stack_output resolver, that Stack is automatically added as a dependency, and that Stack need not be added as an explicit dependency.


A list of arbitrary shell or Python commands or scripts to run. Find out more in the Hooks section.


List of SNS topic ARNs to publish Stack related events to. A maximum of 5 ARNs can be specified per Stack. This configuration will be used by the create, update, and delete commands. More information about Stack notifications can found under the relevant section in the AWS CloudFormation API documentation.


This parameter describes the action taken by CloudFormation when a Stack fails to create. For more information and valid values see the AWS Documentation.

Examples include:

on_failure: "DO_NOTHING"

on_failure: "ROLLBACK"

on_failure: "DELETE"



Sensitive data such as passwords or secret keys should not be stored in plaintext in Stack config files. Instead, they should be passed in from the CLI with User Variables, or set via an environment variable with the environment variable resolver.

A dictionary of key-value pairs to be supplied to a template as parameters. The keys must match up with the name of the parameter, and the value must be of the type as defined in the template.


Note that Boto3 throws an exception if parameters are supplied to a template that are not required by that template. Resolvers can be used to add functionality to this key. Find out more in the Resolvers section.


In case the same parameter key is supplied more than once, the last definition silently overrides the earlier definitions.

A parameter can be specified either as a single value/resolver or a list of values/resolvers. Lists of values/resolvers will be formatted into an AWS compatible comma separated string e.g. value1,value2,value3. Lists can contain a mixture of values and resolvers.


  <parameter1_name>: "value"
  <parameter2_name>: !<resolver_name> <resolver_value>
    - "value1"
    - "value2"
    - !<resolver_name> <resolver_value>
    - !<resolver_name> <resolver_value>
    - !<resolver_name> <resolver_value>
    - "value1"


  database_username: "mydbuser"
  database_password: !environment_variable DATABASE_PASSWORD
    - "subnet-12345678"
    - "subnet-87654321"
    - "sg-12345678"
    - !stack_output security-groups::BaseSecurityGroupId
    - !file_contents /file/with/security_group_id.txt


Stack protection against execution of the following commands:

  • launch
  • create
  • update
  • delete
  • execute

If a user tries to run one of these commands on a protected Stack, Sceptre will throw an error.


The ARN of a CloudFormation Service Role that is assumed by CloudFormation to create, update or delete resources.


Represents data to be passed to the sceptre_handler(sceptre_user_data) function in Python templates or accessible under sceptre_user_data variable key within Jinja2 templates.


A custom name to use instead of the Sceptre default.

Outputs from Stacks with custom names can’t be resolved using the standard stack output resolver. Outputs should be resolved using the stack output external resolver. An explicit dependency should be added, using the dependencies parameter, to make sure the Stacks are launched in the correct order.


  VpcID: !stack_output_external <custom-named-vpc-stack>.yaml::VpcID
  - <environment>/<Stack>

You can also pass an optional argument to stack_output_external specifying the profile you want to use. This is especially useful if the Template you’re referring to is in a different AWS account or region.

  VpcID: !stack_output_external <custom-named-vpc-stack>.yaml::VpcID my-aws-prod-profile
  - <environment>/<Stack>


A dictionary of CloudFormation Tags to be applied to the Stack.


A timeout in minutes before considering the Stack deployment as failed. After the specified timeout, the Stack will be rolled back. Specifiyng zero, as well as ommiting the field, will result in no timeout. Supports only positive integer value.

Cascading Config

Stack config can be cascaded in the same way StackGroup config can be, as described in the section in StackGroup Config on Cascading Config.


Stack config supports templating in the same way StackGroup config can be, as described in the section in StackGroup Config on Templating.

Stack config makes StackGroup config available to template.

StackGroup config

StackGroup config properties are available via the stack_group_config variable when using templating.

  sceptre-project-code: {{ stack_group_config.project-code }}

Environment Variables

It is possible to replace values in Stack config files with environment variables in two ways. For an explanation on why this is the case, see the FAQ.

Sceptre User Data

Python or Jinja templates can contain data which should be parameterised, but can’t be parameterised using CloudFormation parameters. An example of this is if a Python template which creates an IAM Role reads in the policy from a JSON file. The file path must be hard-coded in the Python template.

Sceptre user data allows users to store arbitrary key-value pairs in their <stack-name>.yaml file. This data is then passed as a Python dict to the sceptre_handler(sceptre_user_data) function in Python templates.


  iam_policy_file_path: /path/to/policy.json

When compiled, sceptre_user_data would be the dictionary {"iam_policy_file": "/path/to/policy.json"}.


template_path: templates/
  param_1: value_1
  param_2: value_2
template_path: example.yaml
    - dev/vpc.yaml
        - !cmd "echo creating..."
        - !cmd "echo created"
        - !cmd "echo done"
        - !cmd "mkdir example"
        - !cmd "touch example.txt"
    param_1: !stack_output stack_name::output_name
    param_2: !stack_output_external full_stack_name.yaml::output_name
    param_3: !environment_variable VALUE_3
        {{ var.value4 }}
        {{ command_path.3 }}
        {{ environment_variable.VALUE_6 }}
    thing_1: value_1
    thing_2: !file_contents path/to/file.txt
    tag_1: value_1
    tag_2: value_2