The cdk.json file tells the CDK Toolkit how to execute your app.
npm install -g aws-cdk
npm install
This stack relies you a wild card ssl certification already existing in aws (e.g., *.example.com). Get that ARN and set it as the STACK_SSL_CERTIFICATION_ARN within the .env file. Also set a test STACK_URL (e.g., test-stack.example.com). You will also want to set up your aws profile with the necessary credentials.
You will also want to create a deployment user with policies:
- AWSCloudFormationFullAccess
- AWSLambdaFullAccess
- IAMFullAccess
- AmazonS3FullAccess
- CloudFrontFullAccess
- AmazonRoute53FullAccess
- AWSCertificateManagerFullAccess
- KMS-CDK-all-access
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Resource": "*", "Action": [ "kms:Create*", "kms:Describe*", "kms:Enable*", "kms:List*", "kms:Put*", "kms:Update*", "kms:Revoke*", "kms:Disable*", "kms:Get*", "kms:Delete*", "kms:ScheduleKeyDeletion", "kms:CancelKeyDeletion" ] } ] }
These may give to much control, but you can role back permissions as you see fit. Use this users account number as the CDK_DEPLOY_ACCOUNT defined within .env file and your aws user profile.
npm run up
npm run seed --url=test-stack.example.com
The above will spin up a stack and seed it with a simple hello world website
npm run buildcompile typescript to jsnpm run watchwatch for changes and compilenpm run testperform the jest unit testscdk deploydeploy this stack to your default AWS account/regioncdk diffcompare deployed stack with current statecdk synthemits the synthesized CloudFormation template
- Set A record within a route53 construct
- currently a bug on destroying the stack. lambda@edge function doesn't destroy on first pass. Has to be done twice.