Switch to test
branch for responses to tech challenge response
Demo pipeline using Serverless Framework and Github Actions to deploy lambda functions with APIGateway RestAPI endpoint
handler.py
file includes lambda function code- Serverless Framework to deploy handler.py to AWS Lambda functions and related APIGateway resources
- Github repo to manage source code
- Github Action for the pipeline
1.1
deploy-aws-lambda
1.1AWS Credentials
are stored in repo secrets
- Currently the workflow is triggered automatically when there is a
commit
ormerge
action onmain
branch - Actions workflow can also be maually triggered by navagating to
CiCD-demo -> Actions -> All workflows -> rerun
- Navigate to Settings - > Secrets -> Action Secrets
- update
AWS_ACCESS_KEY_ID
andAWS_SECRET_ACCESS_KEY
and save - run the pipeline again
As this is a demo pipeline to show the techstack and workflow, there are few improvements needed to be made before production ready.
- Branch protection on main branch
- Secrets management
- unit testing & integration testing
- Security/ code volubility scan
- PR valid checks, merge check for feature and dev branches
- add dynamic variables for different environment, aws account, resources arn, etc
- add seperate iamrole.yml resource files for cleaner template
- add multiple region and cross account resources sharing by output resources etc
- add different service repos for different microservices /lambda functions
- Seperate environment for dev/staging/prod by different environment or AWS accounts
- Granular access controls, set up different IAM user roles for different job roles
- monitoring and alerting for misconfigurations and application running alerts