UNPKG

@amazon-codecatalyst/blueprints.sam-serverless-application

Version:

This blueprint creates a project that leverages a serverless application model (SAM) to quickly create and deploy an API. You can choose Java, TypeScript, or Python as the programming language

aws.amazon.com

149 lines (111 loc) 4.48 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
# Publishing Modules The `Publisher` component supports publishing modules to various package managers. It is designed to be attached to a GitHub workflow that takes care of building the module and uploading a "ready to publish" artifact. > This component is utilized in `NodeProject` and `JsiiProject` to publish modules. Supported package managers: - npm - Maven - PyPI - NuGet - Go (GitHub) This is how a publisher is initialized: ```ts const publisher = new Publisher(project, { workflow: releaseWorkflow, buildJobId: 'my-build-job', artifactName: 'dist', }); ``` `workflow` is a `GithubWorkflow` with at least one job (in this case named `my-build-job`) which is responsible to build the code and upload a GitHub workflows artifact (named `dist` in this case) which will then be consumed by the publishing jobs. This component is opinionated about the subdirectory structure of the artifact: |Subdirectory|Type|Contents| |-|-|-| |`js/*.tgz`|NPM|npm tarballs |`dotnet/*.nupkg`|NuGet|Nuget packages |`python/*.whl`|PyPI|Python wheels |`go/**/go.mod`|Go|Go modules. Each subdirectory should have its own `go.mod` file |`java/**`|Maven|Maven artifacts in local repository structure Then, you should call `publishToXxx` to add publishing jobs to the workflow: For example: ```ts publisher.publishToNuGet(); publisher.publishToMaven(/* options */); // ... ``` See API reference for options for each target. ## Customizing Publishing Jobs You can customize the publishing jobs by specifying `prePublishSteps` which is a set of GitHub workflow steps to be executed before publishing. The `publishTools` option can be used to setup the toolchain required for the publishing job. For example: ```ts publisher.publishToNuGet({ publishTools: { dotnet: { version: '5.x' } }, prePublishSteps: [ { run: 'dotnet ...' } ] }); ``` ## Publishing to GitHub Packages Some targets come with dynamic defaults that support GitHub Packages. If the respective registry URL is detected to be GitHub, other relevant options will automatically be set to fitting values. It will also ensure that the workflow token has write permissions for Packages. **npm** ```ts publisher.publishToNpm({ registry: 'npm.pkg.github.com' // also sets npmTokenSecret }) ``` **Maven** ```ts publisher.publishToMaven({ mavenRepositoryUrl: 'https://maven.pkg.github.com/USER/REPO' // also sets mavenServerId, mavenUsername, mavenPassword // disables mavenGpgPrivateKeySecret, mavenGpgPrivateKeyPassphrase, mavenStagingProfileId }) ``` ## Publishing to AWS CodeArtifact The NPM target comes with dynamic defaults that support AWS CodeArtifact. If the respective registry URL is detected to be AWS CodeArtifact, other relevant options will automatically be set to fitting values. The authentication will done using [AWS CLI](https://docs.aws.amazon.com/codeartifact/latest/ug/tokens-authentication.html). It is neccessary to provide AWS IAM CLI `AWS_ACCESS_KEY_ID` and `AWS_SECRET_ACCESS_KEY` in GitHub Secrets. **npm** ```ts publisher.publishToNpm({ registry: 'my-domain-111122223333.d.codeartifact.us-west-2.amazonaws.com/npm/my_repo/', }); ``` The names of the GitHub Secrets can be overridden if different names should be used. ```ts publisher.publishToNpm({ registry: 'my-domain-111122223333.d.codeartifact.us-west-2.amazonaws.com/npm/my_repo/', codeArtifactOptions: { accessKeyIdSecret: 'CUSTOM_AWS_ACCESS_KEY_ID', secretAccessKeySecret: 'CUSTOM_AWS_SECRET_ACCESS_KEY', }, }); ``` ## Handling Failures You can instruct the publisher to create GitHub issues for publish failures: ```ts const publisher = new Publisher(project, { workflow: releaseWorkflow, buildJobId: 'my-build-job', artifactName: 'dist', issueOnFailure: true, failureIssueLabel: 'failed-release' }); ``` This will create an issue labeled with the `failed-release` label for every individual failed publish task. For example, if Nuget publishing failed for a specific version, it will create an issue titled *Publishing v1.0.4 to Nuget gallery failed*. This can be helpful to keep track of failed releases as well as integrate with third-party ticketing systems by querying issues labeled with `failed-release`. ## Dry run If you wish to completely disable publishing, you can enable the `dryRun` option on `Publisher` or `publishDryRun` on the project. This will cause all publishing tasks and jobs to just print the publishing command but not actually publish.