Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

v0.3 - Cross Account Deployments #253

Closed
12 tasks done
huntharo opened this issue Oct 2, 2022 · 2 comments
Closed
12 tasks done

v0.3 - Cross Account Deployments #253

huntharo opened this issue Oct 2, 2022 · 2 comments
Milestone
v0.3

Comments

@huntharo
Copy link
Collaborator

huntharo commented Oct 2, 2022
edited
Loading

Motivations

  • Larger organizations will have single CloudFront distributions with different dev teams deploying apps into different AWS accounts
  • MicroApps needs the ability to register child account Lambdas on a parent account CloudFront / MicroApps deploy

To-Do

  • Split Lambda and DynamoDB access into two different DeployerSvc requests
  • Update microapps-publish to detect and use the new style when it is supported
  • Setup GHPublicChild account for cross account testing
  • Create Child account CDK construct
  • Create Child account CDK stack
  • Add parameters to Parent account construct / stack to allow child account DeployerSvc to invoke
  • CI - Add Child account CDK stack deployment
  • CI - Add Child account deploy of child-demo app
  • Test and confirm that child-demo app appears in Release app and that app invoke works
  • Address inevitable issues with edge-to-origin request signing - Most likely there will be a problem with the target account or region being passed to the signing functions
  • Fix colliding names for the edge-role child stack for the basic and basic-prefix stacks
  • Fix registration of child account permission to invoke parent account deployer

Design

  • DeployerSvc
    • Add a stub version of this that invokes the Deployer in the primary account
      • This Deployer stub should grant the API Gateway in the primary account permission to invoke the lambda in the secondary account
  • microapps-publish
    • Add any parameters needed to publish to another account?
    • This can probably be handled with no parameters as the Deployer lambda can return the necessary config info
  • Apps from multiple accounts can all be served from a single prefix

Request Dispatch

MicroApps - Architecture

Deployment

Image
@huntharo huntharo moved this from Todo to In Progress in MicroApps Core Oct 2, 2022
@huntharo huntharo changed the title Next - Cross Account Deployments v0.3 - Cross Account Deployments Oct 2, 2022
@huntharo huntharo moved this from In Progress to Todo in MicroApps Core Oct 17, 2022
@huntharo huntharo removed this from MicroApps Core Jan 1, 2023
@huntharo huntharo changed the title v0.3 - Cross Account Deployments vNext - Cross Account Deployments Jan 1, 2023
@huntharo huntharo moved this to Todo in MicroApps Core Jan 6, 2023
@huntharo huntharo changed the title vNext - Cross Account Deployments v0.3 - Cross Account Deployments Jan 15, 2023
@huntharo huntharo moved this from Todo to In Progress in MicroApps Core Jan 16, 2023
huntharo added a commit that referenced this issue Jan 17, 2023
@huntharo
Cross account
8e3f4ad 
- Fixes #253
@huntharo huntharo mentioned this issue Jan 17, 2023
Merged
@github-project-automation github-project-automation bot moved this from In Progress to Done in MicroApps Core Jan 22, 2023
@huntharo huntharo reopened this Jan 22, 2023
@huntharo
Copy link
Collaborator Author

The base work for this is done but proving that this sorts of deployments work remains to be completed

@huntharo huntharo moved this from Done to In Progress in MicroApps Core Jan 22, 2023
@huntharo
Copy link
Collaborator Author

Stacks are created, CI is updated, manually adding the edge to origin arn to the resource policy of the demo-app alias allows this to work, but the edge to origin role arn export is not yet working

@huntharo huntharo mentioned this issue Jan 26, 2023
Merged
@huntharo huntharo moved this from In Progress to Done in MicroApps Core Feb 11, 2023
@huntharo huntharo added v0.3 and removed v0.3 labels Feb 11, 2023
@huntharo huntharo added this to the v0.3 milestone Feb 11, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
MicroApps Core
Status: Done
Milestone
v0.3
Development

No branches or pull requests
1 participant
@huntharo