CI/CD Using Native Tools Available on AWS/

...

/

Creating a Service Using a Deployment Strategy

aws iam create-role --role-name ecsTaskExecutionRole --assume-role-policy-document file:///usercode/ecs-tasks-trust-policy.json
aws iam attach-role-policy --role-name ecsTaskExecutionRole --policy-arn arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy
aws iam attach-role-policy --role-name ecsTaskExecutionRole --policy-arn arn:aws:iam::aws:policy/AmazonEKSFargatePodExecutionRolePolicy
aws iam attach-role-policy --role-name ecsTaskExecutionRole --policy-arn arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly
aws iam create-role --role-name ecsCodeDeployRole --assume-role-policy-document file:///usercode/ecs-codedeploy-trust-policy.json
aws iam attach-role-policy --role-name ecsCodeDeployRole --policy-arn arn:aws:iam::aws:policy/AWSCodeDeployRoleForECS
aws iam create-service-linked-role --aws-service-name ecs.amazonaws.com

# Create roles and attach policies
aws iam create-role \
    --role-name ecsTaskExecutionRole \
    --assume-role-policy-document file:///usercode/ecs-tasks-trust-policy.json

aws iam attach-role-policy \
    --role-name ecsTaskExecutionRole \
    --policy-arn arn:aws:iam::aws:policy/service-role/AmazonECSTaskExecutionRolePolicy

aws iam attach-role-policy \
    --role-name ecsTaskExecutionRole \
    --policy-arn arn:aws:iam::aws:policy/AmazonEKSFargatePodExecutionRolePolicy

aws iam attach-role-policy \
    --role-name ecsTaskExecutionRole \
    --policy-arn arn:aws:iam::aws:policy/AmazonEC2ContainerRegistryReadOnly

aws iam create-role \
    --role-name ecsCodeDeployRole \
    --assume-role-policy-document file:///usercode/ecs-codedeploy-trust-policy.json

aws iam attach-role-policy \
    --role-name ecsCodeDeployRole \
    --policy-arn arn:aws:iam::aws:policy/AWSCodeDeployRoleForECS

aws iam create-service-linked-role \
    --aws-service-name ecs.amazonaws.com

# Create the network components
aws ec2 create-vpc \
    --cidr-block 10.0.0.0/16 \
    --region us-east-1

aws ec2 create-subnet \
    --vpc-id <vpc-id> \
    --cidr-block 10.0.1.0/24 \
    --availability-zone us-east-1a

aws ec2 create-subnet \
    --vpc-id <vpc-id> \
    --cidr-block 10.0.2.0/24 \
    --availability-zone us-east-1b

aws ec2 create-security-group \
    --group-name mysg \
    --description "My security group" \
    --region us-east-1 \
    --vpc-id <vpc-id>

aws ec2 authorize-security-group-ingress \
    --group-id <security-group-id> \
    --protocol tcp \
    --port 80 \
    --cidr 0.0.0.0/0 \
    --region us-east-1

aws ec2 create-internet-gateway \
    --region us-east-1

aws ec2 attach-internet-gateway \
    --internet-gateway-id <internet-gateway-id> \
    --vpc-id <vpc-id> \
    --region us-east-1

aws ec2 create-route-table \
    --vpc-id <vpc-id> \
    --region us-east-1

aws ec2 create-route \
    --route-table-id <route-table-id> \
    --destination-cidr-block 0.0.0.0/0 \
    --gateway-id <internet-gateway-id> \
    --region us-east-1

aws ec2 associate-route-table \
    --route-table-id <route-table-id> \
    --subnet-id <subnet-1-id> \
    --region us-east-1

aws ec2 associate-route-table \
    --route-table-id <route-table-id> \
    --subnet-id <subnet-2-id> \
    --region us-east-1

Creating the IAM role and network components

Introduction to the Course

What is CI/CD?

Basics of CodeCommit

Basics of CodeBuild

Basics of CodeDeploy

Code Pipeline with a Sample Node.js Application

Building CI/CD Pipeline with AWS CodePipeline

COURSE ASSESSMENT

CodePipeline with a Sample Java Application

Bringing the Learnings Together

Creating a Service Using a Deployment Strategy

Introduction

Creating the necessary IAM role

Creating the network components

Creating an application load balancer