generated from Real-Dev-Squad/website-template
-
Notifications
You must be signed in to change notification settings - Fork 23
Deployment Notes
Lakshay Manchanda edited this page May 21, 2022
·
9 revisions
Currently, we have a single AWS user on which we have deployed a production identity service that is using the main branch.
- 1. Create a user named IdentityService with specific permissions:
- AWSCloudFormationFullAccess
- IAMFullAccess
- AWSLambda_FullAccess
- AmazonAPIGatewayAdministrator
- AmazonS3FullAccess
- AmazonEC2ContainerRegistryFullAccess
- AmazonSSMFullAccess
- 2. Create the profile for the IdentityService user in AWS CLI.
- 3. Using the above profile run
sam pipeline init --bootstrap. - 4. In the process, you will be asked to create two stages but we don't want to create both the stages (dev/prod) using a single user, so we will create all the roles for stage 1 (dev) but skip stage 2.
- 5. Save all the necessary role names, stack names, and region names somewhere.
- 6. Re-run 3,4 and 5 steps for a prod but for the production set the region different from dev, because our parameter store is a central place for storing data in a region for all the users where we are going to store our firestore key with name
firestoreCredas th - We want to deploy the production and development on different AWS accounts from the main and develop branches respectively. For that, we have to follow the Pipline Setup steps in both the accounts and get the credentials we want. and put it in the GitHub secrets.