Review the configurations
Open the CodeCommit repository
CodeBuild uses the buildspec.yml for building the docker image and pushing to the Elastic Container Registry
- Keep
buildspec.ymlin the root of the source code repository.
Expand to see buildspec.yml
version: 0.2
phases:
pre_build:
commands:
- echo Logging in to Amazon ECR...
- aws --version
- aws ecr get-login-password | docker login --username AWS --password-stdin $REPOSITORY_URI
- COMMIT_HASH=$(echo $CODEBUILD_RESOLVED_SOURCE_VERSION | cut -c 1-7)
- IMAGE_TAG=${COMMIT_HASH:=latest}
build:
commands:
- echo Docker build and tagging started on `date`
- docker build -t $REPOSITORY_URI:latest -t $REPOSITORY_URI:$IMAGE_TAG .
- echo Docker build and tagging completed on `date`
post_build:
commands:
- echo Build completed on `date`
- echo Pushing the docker images...
- docker push $REPOSITORY_URI:latest
- docker push $REPOSITORY_URI:$IMAGE_TAG
- echo Update the REPOSITORY_URI:IMAGE_TAG in task definition...
- echo Container image to be used $REPOSITORY_URI:$IMAGE_TAG
- sed -i 's@REPOSITORY_URI@'$REPOSITORY_URI'@g' taskdef.json
- sed -i 's@IMAGE_TAG@'$IMAGE_TAG'@g' taskdef.json
- echo update the REGION in task definition...
- sed -i 's@AWS_REGION@'$AWS_REGION'@g' taskdef.json
- echo update the roles in task definition...
- sed -i 's@TASK_EXECUTION_ARN@'$TASK_EXECUTION_ARN'@g' taskdef.json
- echo update the task family name in task definition...
- sed -i 's@TASK_FAMILY@'$TASK_FAMILY'@g' taskdef.json
- echo update the container name in appspec.yaml...
- sed -i 's@TASK_FAMILY@'$TASK_FAMILY'@g' appspec.yaml
artifacts:
files:
- "appspec.yaml"
- "taskdef.json"
The artifacts
appspec.yamlandtaskdef.jsonare used by the CodeDeploy.For Amazon ECS compute platform applications, the AppSpec file is used by CodeDeploy to determine your Amazon ECS task definition file.
TASK_DEFINITIONplaceholder will be replaced by the CodeDeploy automatically after registering the newtaskdef.json. We will replace theTASK_FAMILYin the build stage.
Expand to see appspec.yaml
version: 0.0
Resources:
- TargetService:
Type: AWS::ECS::Service
Properties:
TaskDefinition: "<TASK_DEFINITION>"
LoadBalancerInfo:
ContainerName: "TASK_FAMILY"
ContainerPort: 80
taskdef.jsonis the ECS task definition. New version is created by CodeDeploy for each deployment. We are replacing the below placeholders in the CodeBuild phase of the CodePipeline- AWS_REGION
- TASK_FAMILY
- REPOSITORY_URI:IMAGE_TAG
Expand to see taskdef.json
{
"containerDefinitions": [
{
"name": "TASK_FAMILY",
"image": "REPOSITORY_URI:IMAGE_TAG",
"portMappings": [
{
"containerPort": 80,
"protocol": "tcp"
}
],
"essential": true,
"dockerLabels": {
"name": "TASK_FAMILY"
},
"logConfiguration": {
"logDriver": "awslogs",
"options": {
"awslogs-group": "/ecs/TASK_FAMILY",
"awslogs-region": "AWS_REGION",
"awslogs-stream-prefix": "TASK_FAMILY"
}
}
}
],
"taskRoleArn": "TASK_EXECUTION_ARN",
"executionRoleArn": "TASK_EXECUTION_ARN",
"family": "TASK_FAMILY",
"networkMode": "awsvpc",
"requiresCompatibilities": ["FARGATE"],
"cpu": "256",
"memory": "1024"
}
- The placeholders for
appspec.yamlandtaskdef.jsonare being replaced in thebuildspec.yml - The CodeBuild job has the required values available as
ENVIRONMENTvariables in the CDK stack
Expand to see CodeBuild config
// Creating the code build project
const demoAppCodeBuild = new codeBuild.Project(this, "demoAppCodeBuild", {
role: codeBuildServiceRole,
description: "Code build project for the demo application",
environment: {
buildImage: codeBuild.LinuxBuildImage.STANDARD_4_0,
computeType: ComputeType.SMALL,
privileged: true,
environmentVariables: {
REPOSITORY_URI: {
value: ecrRepo.repositoryUri,
type: BuildEnvironmentVariableType.PLAINTEXT
},
TASK_EXECUTION_ARN: {
value: ecsTaskRole.roleArn,
type: BuildEnvironmentVariableType.PLAINTEXT
},
TASK_FAMILY: {
value: BlueGreenUsingEcsStack.ECS_TASK_FAMILY_NAME,
type: BuildEnvironmentVariableType.PLAINTEXT
}
}
},
source: codeBuild.Source.codeCommit({
repository: codeRepo
})
});
We have completed the review for the Blue/Green deployment using CodeDeploy and ECS. Let’s cleanup the resources.