Internal

• AWS CodeBuild

Build Project

Build Badge

A build badge is an embeddable, dynamically generated image that displays the status of the latest build for a project. This image is accessible through a publicly available URL generated for your CodeBuild project. This allows anyone to view the status of an CodeBuild project. Build badges do not contain any security information, so they do not require authentication.

Privileged Build

Service Role

The service role, unless specified otherwise, is automatically created with the following policies:

CodeBuildBasePolicy-<build-project-name>-<region>

Example of working CodeBuildBasePolicy-*:

CodeBuildBasePolicy-* Example

CodeBuildCloudWatchLogsPolicy-<build-project-name>-<region>

For operational details on handling the service role, see:

CodeBuild Operations - Role name

Important: if the build process will need to access an ECR instance, the role must get required ECR actions. If the build process will need to access the API Gateway, the role must get the require API Gateway actions, and so on.

VPC

If a VPC is used to run the build, additional permissions and configuration may be needed to allow git clone, docker pull and so on.

Security Group

The build project configuration allows selecting on or more security groups, which are security groups that AWS CodeBuild should use to work with the VPC. The security groups should allow outbound connections.

Environment Image

Docker Images Provided by CodeBuild

Environment Variables

Environment Variables in Build Environments

Build Specification

Build Spec

How the Build is Triggered

The build can be triggered manually from the console: Code Build -> Build projects -> select the project -> Start Build.

The build can be triggered programmatically. How?.

The build can be triggered by a repository push. How?

The build produces a container images and pushes it into a Docker repository. How about deploying it in ECS?

CodeBuild Operations

Create a Build Project

Organizatorium