aws-codepipeline

AWS Cloudformation Role is not authorized to perform AssumeRole on Role

可紊 提交于 2021-02-18 10:14:14
问题 I am trying to execute a cloudformation stack which contains the following resources: Codebuild project Codepipeline pipeline Roles needed While trying to execute the stack, it fails with the following error: arn:aws:iam::ACCOUNT_ID:role/CodePipelineRole is not authorized to perform AssumeRole on role arn:aws:iam::ACCOUNT_ID:role/CodePipelineRole (Service: AWSCodePipeline; Status Code: 400; Error Code: InvalidStructureException; Request ID: 7de2b1c6-a432-47e6-8208-2c0072ebaf4b) I created the

AWS Cloudformation Role is not authorized to perform AssumeRole on Role

[亡魂溺海] 提交于 2021-02-18 10:10:57
问题 I am trying to execute a cloudformation stack which contains the following resources: Codebuild project Codepipeline pipeline Roles needed While trying to execute the stack, it fails with the following error: arn:aws:iam::ACCOUNT_ID:role/CodePipelineRole is not authorized to perform AssumeRole on role arn:aws:iam::ACCOUNT_ID:role/CodePipelineRole (Service: AWSCodePipeline; Status Code: 400; Error Code: InvalidStructureException; Request ID: 7de2b1c6-a432-47e6-8208-2c0072ebaf4b) I created the

Is it possible to order Source actions in CodePipeline?

对着背影说爱祢 提交于 2021-02-17 05:19:31
问题 I have two different sources in my CodePipeline, ECR and S3. My deployment pipeline uploads a zip to S3, and then an image to ECR. I need CodePipeline to detect just the ECR commit, which happens last, and then trigger the S3 source action. However whichever one is detected first starts the CodePipeline, which leads to a race condition in which the image for the new version hasn't been uploaded yet. How can I resolve this? I cannot move S3 out of the Source stage, as per CodePipeline

AWS CodePipeline with ECS Blue/Green deployment fails with internal error

牧云@^-^@ 提交于 2021-02-11 14:05:11
问题 I have a CodePipeline set up where changes to code builds and pushes an image to ECR. I am looking to automate updating ECS with the new image as it is built. I have configured the ECS Blue/Green action but when it runs it fails almost immediately with a message about an "Internal Error". There is no failed deployment created in CodeDeploy. I have configured CodePipeline with two inputs: the source code used to build the image a zip in S3 containing the appspec.yaml and the taskdef.json When

How to create a codepipeline to build jar file from java code stored at github and deploy it to lambda function?

[亡魂溺海] 提交于 2021-02-10 14:11:14
问题 I want to build a codepipeline that will get the code(java) from github build a jar file and deploy it to aws lamda(or store the jar in a specific S3 bucket). I only want to use tools provided by AWS platform only. If I am using only Codebuild I am able to build jar from the github code and store it to S3(https://docs.aws.amazon.com/codebuild/latest/userguide/getting-started.html) and I am using a deployer lamda function to deploy the code to my service lamda. Whenever there is any change in

How to create a codepipeline to build jar file from java code stored at github and deploy it to lambda function?

强颜欢笑 提交于 2021-02-10 14:06:29
问题 I want to build a codepipeline that will get the code(java) from github build a jar file and deploy it to aws lamda(or store the jar in a specific S3 bucket). I only want to use tools provided by AWS platform only. If I am using only Codebuild I am able to build jar from the github code and store it to S3(https://docs.aws.amazon.com/codebuild/latest/userguide/getting-started.html) and I am using a deployer lamda function to deploy the code to my service lamda. Whenever there is any change in

Get a list of AWS pipelines ready for stage approval

和自甴很熟 提交于 2021-01-29 21:55:03
问题 I have 40+ pipelines that I need to approve from dev to QA and then QA to stage. I am working on a script to use AWS CLI commands to do do. I have been able to do that for a single pipeline where I know that the specific pipeline is ready to be approved. aws codepipeline put-approval-result --cli-input-json file://TestPipeline.json This is how I gathered the information for the approval for a single pipeline aws codepipeline get-pipeline-state --name Pipeline-Ready-for-Approval What I am

AWS ECS Blue/Green CodePipeline: Exception while trying to read the image artifact

爷,独闯天下 提交于 2021-01-28 11:50:55
问题 I wanted to create a CodePipeline which builds a container image from CodeCommit source and afterwards deploys the new image in Blue/Green fashion to my ECS service (EC2 launchtype). The source stage is CodeCommit, which already includes appspec.json as well as taskdef.json The build stage is building the new container & pushing it to ECR successfully, the file imagedefinition.json is the BuildArtifact created at this step, containing the container and the recently created image with its tag

How to enforce standards and controls when using CDK Pipeline

有些话、适合烂在心里 提交于 2021-01-28 11:24:58
问题 CDK Pipelines is great, specially for cross-account deployments. It enables the developers to define and customize the CI/CD pipeline for their app to their heart's content. But to remain SoC compliant, we need to make sure that necessary controls like below are validated/enforced A manual approval stage should be present before the stage that does the cross-account deployment to production Direct deployment to production bypassing dev/staging environment is not allowed Test cases (Unit tests

Upload CodeBuild artifacts *if* they exist

主宰稳场 提交于 2021-01-24 09:39:20
问题 I have a simple CodeBuild spec that defines artifacts to be uploaded after tests run: artifacts: files: - cypress/**/*.png discard-paths: yes These artifacts are only generated if the test-action fails (a screenshot is captured of the failing test screen) and are being successfully uploaded to S3. In the case that tests succeed, no .png files will be generated and the CodeBuild action fails: [Container] 2018/09/21 20:06:34 Expanding cypress/**/*.png [Container] 2018/09/21 20:06:34 Phase