Quick Links
- Configuring and running a build server to bake container images and push to private repo
- Configure deployment controller for server containers
- Implement Continuous Deployment for backend and frontend applications
I think I'm getting better and reading the logs and creating policies to have the proper permissions. Debugging the permission errors in the CodeBuild failures didn't take as long as it has for me in previous weeks.
- Using a VPC and the private subnets in CodeBuild can cause issues if it cannot access outside to pull the code.
I added my AWS Account ID as a variable in parameter store. I had to add a policy to read from parameter store ssm:GetParameters as described in the buildspec docs.
As described in the CodeBuild sample docker docs, the other policies I had to add were:
"ecr:BatchCheckLayerAvailability",
"ecr:CompleteLayerUpload",
"ecr:GetAuthorizationToken",
"ecr:InitiateLayerUpload",
"ecr:PutImage",
"ecr:UploadLayerPart"
The build stage deployed twice so I had to remove the optional webhook from the CodeBuild project we configured in isolate.