Finished creating pipeline with CDK

Author: ferdingler

workshop/content/buildpipe/buildspec/_index.en.md

@@ -1,15 +1,11 @@
 +++
-title = "Verify pipeline running"
+title = "Verify pipeline"
 date = 2019-11-05T14:20:52-08:00
 weight = 35
 +++
 
-Once you push the buildspec.yaml file into the code repository, the pipeline should trigger automatically. This time, the build step should succeed along with the deployment steps.
+Once your pipeline has finished every stage successfully, it should look like the following screenshot:
 
-![VerifyPipelineRunning](/images/screenshot-pipeline-verify-3.png)
+![VerifyPipelineRunning](/images/chapter4/screenshot-pipeline-verify-3.png)
 
-{{% notice tip %}}
-This pipeline performs deployments using CloudFormation ChangeSets. If you are not familiar with them, you can learn about them here: https://docs.aws.amazon.com/AWSCloudFormation/latest/UserGuide/using-cfn-updating-stacks-changesets.html. 
-{{% /notice %}}
-
-#### Congratulations! You have created a CI/CD pipeline.
+#### Congratulations! You have created a CI/CD pipeline for a Serverless application!

workshop/content/buildpipe/done/_index.en.md

@@ -0,0 +1,106 @@
++++
+title = "Build Stage"
+date = 2019-11-01T15:26:09-07:00
+weight = 20
++++
+
+The build stage is where your Serverless application gets built and packaged. We are going to use AWS CodeBuild as the Build provider for our pipeline. It is worth mentioning that CodePipeline also supports other providers like Jenkins, TeamCity or CloudBees. 
+
+AWS CodeBuild is a great option because you only pay for the time where your build is running, which makes it very cost effective compared to running a dedicated build server 24 hours a day when you really only build during office hours. It is also container-based which means that you can bring your own Docker container image where your build runs, or [use a managed image](https://docs.aws.amazon.com/codebuild/latest/userguide/build-env-ref-available.html) provided by CodeBuild.  
+
+Let's go ahead and add a Build stage to our pipeline:
+
+```js
+// lib/pipeline-stack.ts
+
+import * as cdk from '@aws-cdk/core';
+import s3 = require('@aws-cdk/aws-s3');
+import codecommit = require('@aws-cdk/aws-codecommit');
+import codepipeline = require('@aws-cdk/aws-codepipeline');
+import codepipeline_actions = require('@aws-cdk/aws-codepipeline-actions');
+import codebuild = require('@aws-cdk/aws-codebuild');
+
+export class PipelineStack extends cdk.Stack {
+  constructor(scope: cdk.Construct, id: string, props?: cdk.StackProps) {
+    super(scope, id, props);
+
+    // The code that defines your stack goes here
+    const artifactsBucket = new s3.Bucket(this, "ArtifactsBucket");
+
+    // Import existing CodeCommit sam-app repository
+    const codeRepo = codecommit.Repository.fromRepositoryName(
+      this,
+      'AppRepository', // Logical name within CloudFormation
+      'sam-app' // Repository name
+    );
+
+    // Pipeline creation starts
+    const pipeline = new codepipeline.Pipeline(this, 'Pipeline', {
+      artifactBucket: artifactsBucket
+    });
+
+    // Declare source code as an artifact
+    const sourceOutput = new codepipeline.Artifact();
+
+    // Add source stage to pipeline
+    pipeline.addStage({
+      stageName: 'Source',
+      actions: [
+        new codepipeline_actions.CodeCommitSourceAction({
+          actionName: 'CodeCommit_Source',
+          repository: codeRepo,
+          output: sourceOutput,
+        }),
+      ],
+    });
+    
+    // Declare build output as artifacts
+    const buildOutput = new codepipeline.Artifact();
+    
+    // Declare a new CodeBuild project
+    const buildProject = new codebuild.PipelineProject(this, 'Build', {
+      environment: { buildImage: codebuild.LinuxBuildImage.AMAZON_LINUX_2_2 },
+      environmentVariables: {
+        'PACKAGE_BUCKET': {
+          value: artifactsBucket.bucketName
+        }
+      }
+    });
+    
+    // Add the build stage to our pipeline
+    pipeline.addStage({
+      stageName: 'Build',
+      actions: [
+        new codepipeline_actions.CodeBuildAction({
+          actionName: 'Build',
+          project: buildProject,
+          input: sourceOutput,
+          outputs: [buildOutput],
+        }),
+      ],
+    });
+    
+  }
+}
+```
+
+### Deploy the pipeline
+
+From your terminal, run the following commands to deploy the pipeline:
+
+```
+npm run build
+cdk deploy
+```
+
+### Verify pipeline creation
+
+Navigate to the [AWS CodePipeline Console](https://console.aws.amazon.com/codesuite/codepipeline/home) and click on your newly created pipeline! 
+
+![VerifyPipeline](/images/chapter4/screenshot-pipeline-verify-1.png)
+
+Oh no! the Build step failed. **Don't worry, this is expected** because we haven't specified what commands to run on the build yet so AWS CodeBuild doesn't know how to build our Serverless application.
+
+![VerifyPipeline](/images/chapter4/screenshot-pipeline-verify-2.png)
+
+Let's fix that.

workshop/content/buildpipe/pipeascode/build/_index.en.md

@@ -0,0 +1,78 @@
++++
+title = "Buildspec file"
+date = 2019-10-04T12:54:48-07:00
+weight = 30
++++
+
+A buildspec file is a series of commands in YAML format that CodeBuild executes to build your application. This file is placed in the root folder of a SAM application and CodeBuild will automatically find it and run it during build time.
+
+In your Cloud9 editor, create a new file named `buildspec.yml` in the root (top level) of the _sam-app_ directory by right clicking on the `sam-app` folder and selecting New file.
+
+{{% notice tip %}}
+The extension of the file can be either `yml` or `yaml`, CodeBuild will find it either way.
+{{% /notice%}}
+
+![CreateNewFileCloud9](/images/screenshot-cloud9-new-file.png)
+
+Then, paste the following content into the file:
+
+```
+# ~/environment/sam-app/buildspec.yml
+
+version: 0.2
+phases:
+  install:
+    runtime-versions:
+      nodejs: 12
+    commands:
+      # Install packages or any pre-reqs in this phase.
+      # Upgrading SAM CLI to latest version
+      - pip3 install --upgrade aws-sam-cli
+      - sam --version
+      # Installing project dependencies
+      - cd hello-world
+      - npm install
+  
+  pre_build:
+    commands:
+      # Run tests, lint scripts or any other pre-build checks.
+      - npm run test
+
+  build:
+    commands:
+      # Use Build phase to build your artifacts (compile, etc.)
+      - cd ..
+      - sam build
+
+  post_build:
+    commands:
+      # Use Post-Build for notifications, git tags, upload artifacts to S3
+      - sam package --s3-bucket $PACKAGE_BUCKET --output-template-file packaged.yaml
+
+artifacts:
+  discard-paths: yes
+  files:
+    # List of local artifacts that will be passed down the pipeline
+    - packaged.yaml
+```
+
+**Save the file**. It should look like the following screenshot.
+
+![CreateBuildspec](/images/chapter4/screenshot-buildspec.png)
+
+Take a moment to understand the structure of the file and feel free to read the Buildsec Reference here: https://docs.aws.amazon.com/codebuild/latest/userguide/build-spec-ref.html.
+
+### Push code changes
+Commit your changes and push them to the repository.
+
+```
+git add .
+git commit -m "Added buildspec.yml"
+git push
+```
+
+### Verify build succeeds
+
+Navigate to your CodePipeline again, and wait for it to trigger automatically. This time the build will succeed: 
+
+![BuildSucceeds](/images/chapter4/screenshot-build-succeeds.png)

workshop/content/buildpipe/pipeascode/buildspec/_index.en.md

@@ -0,0 +1,121 @@
++++
+title = "Deploy stage"
+date = 2019-10-04T12:54:48-07:00
+weight = 40
++++
+
+The deploy stage is where your SAM application and all its resources are created an in an AWS account. The most common way to do this is by using CloudFormation ChangeSets to deploy. This means that this stage will have 2 actions: the _CreateChangeSet_ and the _ExecuteChangeSet_.
+
+Add the Deploy stage to your pipeline: 
+
+```js
+// lib/pipeline-stack.ts
+
+import * as cdk from '@aws-cdk/core';
+import s3 = require('@aws-cdk/aws-s3');
+import codecommit = require('@aws-cdk/aws-codecommit');
+import codepipeline = require('@aws-cdk/aws-codepipeline');
+import codepipeline_actions = require('@aws-cdk/aws-codepipeline-actions');
+import codebuild = require('@aws-cdk/aws-codebuild');
+
+export class PipelineStack extends cdk.Stack {
+  constructor(scope: cdk.Construct, id: string, props?: cdk.StackProps) {
+    super(scope, id, props);
+
+    // The code that defines your stack goes here
+    const artifactsBucket = new s3.Bucket(this, "ArtifactsBucket");
+
+    // Import existing CodeCommit sam-app repository
+    const codeRepo = codecommit.Repository.fromRepositoryName(
+      this,
+      'AppRepository', // Logical name within CloudFormation
+      'sam-app' // Repository name
+    );
+
+    // Pipeline creation starts
+    const pipeline = new codepipeline.Pipeline(this, 'Pipeline', {
+      artifactBucket: artifactsBucket
+    });
+
+    // Declare source code as an artifact
+    const sourceOutput = new codepipeline.Artifact();
+
+    // Add source stage to pipeline
+    pipeline.addStage({
+      stageName: 'Source',
+      actions: [
+        new codepipeline_actions.CodeCommitSourceAction({
+          actionName: 'CodeCommit_Source',
+          repository: codeRepo,
+          output: sourceOutput,
+        }),
+      ],
+    });
+    
+    // Declare build output as artifacts
+    const buildOutput = new codepipeline.Artifact();
+    
+    // Declare a new CodeBuild project
+    const buildProject = new codebuild.PipelineProject(this, 'Build', {
+      environment: { buildImage: codebuild.LinuxBuildImage.AMAZON_LINUX_2_2 },
+      environmentVariables: {
+        'PACKAGE_BUCKET': {
+          value: artifactsBucket.bucketName
+        }
+      }
+    });
+    
+    // Add the build stage to our pipeline
+    pipeline.addStage({
+      stageName: 'Build',
+      actions: [
+        new codepipeline_actions.CodeBuildAction({
+          actionName: 'Build',
+          project: buildProject,
+          input: sourceOutput,
+          outputs: [buildOutput],
+        }),
+      ],
+    });
+    
+    // Deploy stage
+    pipeline.addStage({
+      stageName: 'Dev',
+      actions: [
+        new codepipeline_actions.CloudFormationCreateReplaceChangeSetAction({
+          actionName: 'CreateChangeSet',
+          templatePath: buildOutput.atPath("packaged.yaml"),
+          stackName: 'sam-app',
+          adminPermissions: true,
+          changeSetName: 'sam-app-dev-changeset',
+          runOrder: 1
+        }),
+        new codepipeline_actions.CloudFormationExecuteChangeSetAction({
+          actionName: 'Deploy',
+          stackName: 'sam-app',
+          changeSetName: 'sam-app-dev-changeset',
+          runOrder: 2
+        }),
+      ],
+    });
+    
+  }
+}
+```
+
+### Deploy the pipeline
+
+On your terminal, run the following commands from within the _pipeline_ directory:
+
+```
+npm run build
+cdk deploy
+```
+
+The CDK CLI might ask you to confirm the changes before deploying, this is because we are giving Admin permissions to the IAM role that deploys our application. This is generally not a bad practice since this role can only be assumed by CloudFormation and not by a human, however, if your organization has a stricter security posture you may want to consider providing a fine grain policy for the deployment role. 
+
+### Trigger a release
+
+Navigate to your pipeline and you will see the Deploy stage has been added, however, it is currently grayed out because it hasn't been triggered. Let's just trigger a new run of the pipeline manually by clicking the Release Change buttton. 
+
+![ReleaseChange](/images/chapter4/screenshot-release-change.png)