nakada0907/n-daisuke-blog-deployment-source
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

feat: add Codebuild resources

Browse source
This commit is contained in:
Daisuke Nakahara 2025-05-08 20:56:21 +09:00
parent 45028307fd
commit e7d6113ba4
1 changed files with 48 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

49
template-codepipeline.yaml
View file

@ -32,6 +32,53 @@ Resources:
- s3:DeleteObject - s3:DeleteObject
Resource: !Sub "arn:aws:s3:::${WebsiteBucket}/*" Resource: !Sub "arn:aws:s3:::${WebsiteBucket}/*"
CodeBuildServiceRole:
Type: AWS::IAM::Role
Properties:
AssumeRolePolicyDocument:
Version: "2012-10-17"
Statement:
- Effect: Allow
Principal:
Service:
- codebuild.amazonaws.com
Action:
- sts:AssumeRole
Policies:
- PolicyName: CodeBuildPolicy
PolicyDocument:
Version: "2012-10-17"
Statement:
- Effect: Allow
Action:
- logs:CreateLogGroup
- logs:CreateLogStream
- logs:PutLogEvents
Resource: "*"
- Effect: Allow
Action:
- s3:GetObject
- s3:PutObject
- s3:ListBucket
Resource:
- "arn:aws:s3:::codebuild-ap-northeast-1-692859919890-input-bucket"
- "arn:aws:s3:::codebuild-ap-northeast-1-692859919890-input-bucket/*"
- "arn:aws:s3:::naputo-blog-source"
- "arn:aws:s3:::naputo-blog-source/*"
MyBlogCodeBuildProject:
Type: AWS::CodeBuild::Project
Properties:
ServiceRole: !GetAtt CodeBuildServiceRole.Arn
Artifacts:
Type: CODEPIPELINE
Environment:
ComputeType: BUILD_LAMBDA_1GB
Image: aws/codebuild/amazonlinux-x86_64-lambda-standard:nodejs22
Type: LINUX_LAMBDA_CONTAINER
Source:
Type: CODEPIPELINE
CodePipelineRole: CodePipelineRole:
Type: AWS::IAM::Role Type: AWS::IAM::Role
Properties: Properties:
@ -115,7 +162,7 @@ Resources:
Provider: CodeBuild Provider: CodeBuild
Version: "1" Version: "1"
Configuration: Configuration:
ProjectName: "MyBlogCodeBuildProject" ProjectName: !Ref MyBlogCodeBuildProject
OutputArtifacts: OutputArtifacts:
- Name: BuildArtifact - Name: BuildArtifact
InputArtifacts: InputArtifacts: