AWS CodeBuild is a fully managed build service that offers flexibility, continuous scaling, and metered pricing. This repository is an example application to integrate CodeBuild with GitHub. This project will allow you to run builds on every pull request automatically using CodeBuild.
- Metered pricing (pay for build time, not subscription)
- Free Tier eligible
- Default limit of 20 concurrent builds
- Unlimited build minutes per month
- Integration into other AWS Services
The included CloudFormation template creates:
- Lambda Function
- API Gateway
- CodeBuild Project
- CloudWatch Event Rule
- IAM Roles for Lambda Function, CodeBuild Project, and API Gateway
All of these service are Free Tier eligible
Step 1: Create Deployment Package
First, we have to create a deployment package for Lambda and upload it to S3. You can create a deployment package by navigating to the root of the repository and running the create_deployment_package.sh script.
$ ./create_deployment_package.sh
This will output a zip file called codebuild-ci-lambda.zip. Upload that to any S3 bucket in the same region that you will be creating your infrastructure in.
Step 2: Get API Token
We must get an API token to authenticate with GitHub. We will reference this in our CloudFormation template so our Lambda function can create Statuses.
To create an API token See the GitHub documentation.
Creating a GitHub App or something similar is best practice. We are using a personal token to easily run this sample. Personal tokens are not recommended in production.
Step 3: Link CodeBuild to GitHub
If you have used CodeBuild with GitHub previously you can skip this step
We must authenticate CodeBuild to our GitHub account so it can see our repositories. It requires read only access in order to pull code during a run.
- Login to your AWS Account and go to the CodeBuild Console.
- If you have never used CodeBuild, click the "Get Started". If you have used it before, click "Create Project".
- Under the heading "Source: What to build", select
GitHubas your Source provider. - Click the button that says "Connect to GitHub"
- Allow CodeBuild access to your repositories. Then you should get redirected back to the CodeBuild page.
- Click "Cancel" at the very bottom.
We can just cancel out of our project creation because our CloudFormation project will create the project for us. We simply needed to establish an OAuth relationship with CodeBuild.
Step 4: Create Infrastructure
We can now create our infrastructure in AWS. I have provided a CloudFormation template in this repository that creates everything required.
Click Deploy to AWS to launch the template in your account.
| Region | Launch Template |
|---|---|
| N. Virginia (us-east-1) |  |
| Ohio (us-east-2) | |
| N. California (us-west-1) | |
| Oregon (us-west-2) | |
The template has the follow Parameters:
RepositoryUrl- HTTPS Clone URL of the repository in GitHub. Example: 'https://github.com/owner/repo.git'GithubToken- GitHub API Token used for Status creation.ProjectName- Name to give the CodeBuild Project. For this sample, use the same name as your repository.S3Key- S3 Key for Lambda Function ZipS3Bucket- S3 Bucket name for Lambda Function ZipBuildImage- Docker Image to use in CodeBuild Project
Once you have created your infrastructure via CloudFormation, navigate to the Outputs tab in your CloudFormation Stack. There will be an Output called "WebhookUrl". This is your API Gateway endpoint to use in GitHub. Copy this for use in the next step.
In this template, we are passing the GitHub API Token into Lambda via an Environment Variable. While this is good for keep it out of code, you should encrypt this value if you plan to use this sample beyond testing. Possible solutions are Encryption Helpers or Parameter Store.
Step 5: Setup GitHub
Now we can navigate to our repository in GitHub and go to the Settings page. Under the "Webhooks" section, we can click Add webhook in the upper right. Here we can paste in the https url for our API Gateway endpoint that we grabbed from Step 4. Change the content-type to application/json.
Under the Which events would you like to trigger this webhook? heading, select the "Let me select individual events." option. Then check the Pull Request box and deselect the Push box. Make sure the 'Active' box is checked then click "Add webhook".
You should then see a green checkmark by your webhook url.
To learn more about adding webhooks to a repository, see the GitHub documentation
Step 6: Open a Pull Request
That should be all we need! To try it out, simply open a new pull request in your repository. You should see a Status of pending appear with a link to CodeBuild. The Status will be updated once the build completes. A build will be triggered whenever a pull request is Opened, Reopened, or Synchronized (pushed to).
Don't forget to add a buildspec.yml file to your repository. This is required by CodeBuild to know what commands to run.
React
Typescript
Django
Laravel
Facebook
Microsoft
Google
Alibaba
D3
Tencent