Astro CI/CD templates for AWS CodeBuild
Use the following CI/CD templates to automate deploying Apache Airflow DAGs from a Git repository to Astro with AWS CodeBuild.
The templates for AWS CodeBuild use the image-only deploy process. If you have one Deployment and one environment on Astro, use the single branch implementation. If you have multiple Deployments that support development and production environments, use the multiple branch implementation.
If you use the DAG-only deploy feature on Astro and are interested in a DAG-based CI/CD template, see Template overview to configure your own. To learn more about CI/CD on Astro, see Choose a CI/CD strategy.
Prerequisites
- An Astro project hosted in a Git repository that AWS CodeBuild can access. See Plan a build in AWS Codebuild.
- An Astro Deployment.
- Either a Deployment API key ID and secret, a Workspace API token, or an Organization API token.
- Access to AWS CodeBuild. See Getting started with CodeBuild.
Each CI/CD template implementation might have additional requirements.
Single branch implementation
To automate code deploys from a single branch to a single Deployment using AWS CodeBuild, complete the following setup in the Git-based repository that hosts your Astro project:
In your AWS CodeBuild pipeline configuration, add the following environment variables:
ASTRONOMER_KEY_ID: Your Deployment API key IDASTRONOMER_KEY_SECRET: Your Deployment API key secretASTRONOMER_DEPLOYMENT_ID: The Deployment ID of your Deployment
Be sure to set the values for your API credentials as secret.
At the root of your Git repository, add a
buildspec.ymlfile that includes the following script:
version: 0.2
phases:
install:
runtime-versions:
python: latest
build:
commands:
- echo "${CODEBUILD_WEBHOOK_HEAD_REF}"
- export ASTRONOMER_KEY_ID="${ASTRONOMER_KEY_ID}"
- export ASTRONOMER_KEY_SECRET="${ASTRONOMER_KEY_SECRET}"
- curl -sSL install.astronomer.io | sudo bash -s
- astro deploy "${ASTRONOMER_DEPLOYMENT_ID}" -fIn your AWS CodeBuild project, create a webhook event for the Git repository where your Astro project is hosted. If you use GitHub, see GitHub webhook events. When you configure the webhook, select an event type of
PUSH.
Your buildspec.yml file now triggers a code push to an Astro Deployment every time a commit or pull request is merged to the main branch of your repository.
Multiple branch implementation
To automate code deploys across multiple Deployments using AWS CodeBuild, complete the following setup.
This setup requires two Deployments on Astro and two branches in your Git repository. The example assumes that one Deployment is a development environment, and that the other Deployment is a production environment. To learn more, see Multiple environments.
In your AWS CodeBuild pipeline configuration, add the following environment variables:
PROD_ASTRONOMER_KEY_ID: Your production Deployment API key IDPROD_ASTRONOMER_KEY_SECRET: Your production Deployment API key secretPROD_DEPLOYMENT_ID: The Deployment ID of your production DeploymentDEV_ASTRONOMER_KEY_ID: Your development Deployment API key IDDEV_ASTRONOMER_KEY_SECRET: Your development Deployment API key secretDEV_DEPLOYMENT_ID: The Deployment ID of your development Deployment
At the root of your Git repository, add a
buildspec.ymlthat includes the following script:
version: 0.2
phases:
install:
runtime-versions:
python: latest
build:
commands:
- |
if expr "${CODEBUILD_WEBHOOK_HEAD_REF}" : "refs/heads/main" >/dev/null; then
export ASTRONOMER_KEY_ID="${PROD_ASTRONOMER_KEY_ID}"
export ASTRONOMER_KEY_SECRET="${PROD_ASTRONOMER_KEY_SECRET}"
curl -sSL install.astronomer.io | sudo bash -s
astro deploy "${PROD_DEPLOYMENT_ID}" -f
fi
- |
if expr "${CODEBUILD_WEBHOOK_HEAD_REF}" : "refs/heads/dev" >/dev/null; then
export ASTRONOMER_KEY_ID="${DEV_ASTRONOMER_KEY_ID}"
export ASTRONOMER_KEY_SECRET="${DEV_ASTRONOMER_KEY_SECRET}"
curl -sSL install.astronomer.io | sudo bash -s
astro deploy "${DEV_DEPLOYMENT_ID}" -f
fiIn your AWS CodeBuild project, create a webhook event for the Git repository where your Astro project is hosted. If you use GitHub, see GitHub webhook events. When you configure the webhook, select an event type of
PUSH.
Your buildspec.yml file now triggers a code push to your development Deployment every time a commit or pull request is merged to the dev branch of your repository, and a code push to your production Deployment every time a commit or pull request is merged to the main branch of your repository.