Last active
February 22, 2018 23:19
-
-
Save miguelmota/8b68c82482f4383e78c5f588265732d3 to your computer and use it in GitHub Desktop.
AWS CodePipeline/CodeBuild/ECR notes
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
- Need to add pull/push action permissions in ECR repo and use principal `codebuild.amazonaws.com` "SidCodeBuildAccess". | |
- Need to add policy with `ecr:GetAuthorizationToken` to code build role (AmazonECSTaskExecutionRolePolicy) | |
- Move "AWS-CodePipeline-Service" and "AWSServiceRoleForECS" entities to selected IAM entities. | |
- Need to have a `buildspec.yml` in repo root and set env vars in code build project settings. | |
- Need to use env docker image managed by CodeBuild. | |
- Need to allow CodeBuild to modify default role. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment