Setting Up an Automated Java Build and Deployment Pipeline with AWS CodeArtifact

Introduction

In this guide, I will walk you through how I set up an EC2 instance to compile, package, and publish a Java-based Maven project to AWS CodeArtifact. This setup ensures a robust and reusable package management process in a cloud-native CI/CD pipeline.

Step 1: Setting Up the EC2 Instance

1.1 Launching an EC2 Instance

I started by launching an Amazon Linux 2023 t3.micro EC2 instance with the following specifications:

AMI: Amazon Linux 2023
Instance Type: t3.micro
Storage: 8 GB (default)
Security Group: Allowed SSH (port 22) and HTTP (port 80)

1.2 Connecting to the EC2 Instance

After launching the instance, I connected via SSH using:


ssh <span>-i</span> my-key.pem ec2-user@<EC2-Public-IP>
ssh <span>-i</span> my-key.pem ec2-user@<EC2-Public-IP>
ssh -i my-key.pem ec2-user@<EC2-Public-IP>

Enter fullscreen mode Exit fullscreen mode

This provided direct access to the instance for software installation.

Step 2: Installing Java and Maven

Maven is required to build and manage Java projects, while Java is needed to run Maven-based applications.

2.1 Installing Java Amazon Corretto 8

Amazon Corretto 8 is a free, production-ready distribution of OpenJDK. I installed it with:


<span>sudo </span>dnf <span>install</span> <span>-y</span> java-1.8.0-amazon-corretto-devel
<span>sudo </span>dnf <span>install</span> <span>-y</span> java-1.8.0-amazon-corretto-devel
sudo dnf install -y java-1.8.0-amazon-corretto-devel

Enter fullscreen mode Exit fullscreen mode

Then, I set environment variables to ensure Java was properly recognized:


<span>export </span><span>JAVA_HOME</span><span>=</span>/usr/lib/jvm/java-1.8.0-amazon-corretto.x86_64
<span>export </span><span>PATH</span><span>=</span><span>$JAVA_HOME</span>/bin:<span>$PATH</span>
<span>export </span><span>JAVA_HOME</span><span>=</span>/usr/lib/jvm/java-1.8.0-amazon-corretto.x86_64
<span>export </span><span>PATH</span><span>=</span><span>$JAVA_HOME</span>/bin:<span>$PATH</span>
export JAVA_HOME=/usr/lib/jvm/java-1.8.0-amazon-corretto.x86_64
export PATH=$JAVA_HOME/bin:$PATH

Enter fullscreen mode Exit fullscreen mode

To make this change permanent, I added the paths to ~/.bashrc:


<span>echo</span> <span>'export JAVA_HOME=/usr/lib/jvm/java-1.8.0-amazon-corretto.x86_64'</span> <span>>></span> ~/.bashrc
<span>echo</span> <span>'export PATH=$JAVA_HOME/bin:$PATH'</span> <span>>></span> ~/.bashrc
<span>source</span> ~/.bashrc
<span>echo</span> <span>'export JAVA_HOME=/usr/lib/jvm/java-1.8.0-amazon-corretto.x86_64'</span> <span>>></span> ~/.bashrc
<span>echo</span> <span>'export PATH=$JAVA_HOME/bin:$PATH'</span> <span>>></span> ~/.bashrc
<span>source</span> ~/.bashrc
echo 'export JAVA_HOME=/usr/lib/jvm/java-1.8.0-amazon-corretto.x86_64' >> ~/.bashrc
echo 'export PATH=$JAVA_HOME/bin:$PATH' >> ~/.bashrc
source ~/.bashrc

Enter fullscreen mode Exit fullscreen mode

I verified the installation with:


java <span>-version</span>
java <span>-version</span>
java -version

Enter fullscreen mode Exit fullscreen mode

2.2 Installing Maven 3.5.2

Maven 3.5.2 was required to build the Java web app. I downloaded and extracted it manually:


wget https://archive.apache.org/dist/maven/maven-3/3.5.2/binaries/apache-maven-3.5.2-bin.tar.gz
<span>sudo tar</span> <span>-xzf</span> apache-maven-3.5.2-bin.tar.gz <span>-C</span> /opt
wget https://archive.apache.org/dist/maven/maven-3/3.5.2/binaries/apache-maven-3.5.2-bin.tar.gz
<span>sudo tar</span> <span>-xzf</span> apache-maven-3.5.2-bin.tar.gz <span>-C</span> /opt
wget https://archive.apache.org/dist/maven/maven-3/3.5.2/binaries/apache-maven-3.5.2-bin.tar.gz
sudo tar -xzf apache-maven-3.5.2-bin.tar.gz -C /opt

Enter fullscreen mode Exit fullscreen mode

Then, I added it to my system PATH:


<span>echo</span> <span>"export PATH=/opt/apache-maven-3.5.2/bin:</span><span>$PATH</span><span>"</span> <span>>></span> ~/.bashrc
<span>source</span> ~/.bashrc
<span>echo</span> <span>"export PATH=/opt/apache-maven-3.5.2/bin:</span><span>$PATH</span><span>"</span> <span>>></span> ~/.bashrc
<span>source</span> ~/.bashrc
echo "export PATH=/opt/apache-maven-3.5.2/bin:$PATH" >> ~/.bashrc
source ~/.bashrc

Enter fullscreen mode Exit fullscreen mode

I confirmed Maven was installed by running:


mvn <span>-version</span>
mvn <span>-version</span>
mvn -version

Enter fullscreen mode Exit fullscreen mode

Step 3: Cloning and Configuring the Java Project

I initialized a Git repository on my EC2 instance and connected it to my GitHub repository:


git init
git remote add origin https://github.com/richardatodo/nextwork-web-project.git
git pull origin main
git init
git remote add origin https://github.com/richardatodo/nextwork-web-project.git
git pull origin main
git init
git remote add origin https://github.com/richardatodo/nextwork-web-project.git
git pull origin main

Enter fullscreen mode Exit fullscreen mode

Inside the project directory, I ensured the required dependencies were defined in pom.xml:


<span><dependencies></span>
    <span><dependency></span>
        <span><groupId></span>junit<span></groupId></span>
        <span><artifactId></span>junit<span></artifactId></span>
        <span><version></span>3.8.1<span></version></span>
        <span><scope></span>test<span></scope></span>
    <span></dependency></span>
<span></dependencies></span>
<span><dependencies></span>
    <span><dependency></span>
        <span><groupId></span>junit<span></groupId></span>
        <span><artifactId></span>junit<span></artifactId></span>
        <span><version></span>3.8.1<span></version></span>
        <span><scope></span>test<span></scope></span>
    <span></dependency></span>
<span></dependencies></span>
<dependencies>
    <dependency>
        <groupId>junit</groupId>
        <artifactId>junit</artifactId>
        <version>3.8.1</version>
        <scope>test</scope>
    </dependency>
</dependencies>

Enter fullscreen mode Exit fullscreen mode

Then, I built the project to verify everything was working:


mvn compile
mvn compile
mvn compile

Enter fullscreen mode Exit fullscreen mode

Step 4: Setting Up AWS CodeArtifact

4.1 Creating a CodeArtifact Repository and Domain

Got it! I’ll update the blog post to reflect that you created the CodeArtifact domain and repository via the AWS Console instead of using the AWS CLI.

Here’s the revised section:

Step 4: Setting Up AWS CodeArtifact

I created the CodeArtifact domain and repository via the AWS Management Console:

Navigate to AWS CodeArtifact:
- Open the AWS Console and go to CodeArtifact.
Create a CodeArtifact Domain:
- Click Create domain.
- Enter the domain name: nextwork.
- Click Create domain.
Create a CodeArtifact Repository:
- Click Create repository.
- Enter the repository name: nextwork-devops-cicd.
- Select the domain nextwork.
- (Optional) Enable Upstream repositories if needed.
- Click Create repository.

4.2 Configuring IAM Permissions

To allow EC2 to interact with CodeArtifact, I created an IAM policy:


<span>{</span><span> </span><span>"Version"</span><span>:</span><span> </span><span>"2012-10-17"</span><span>,</span><span> </span><span>"Statement"</span><span>:</span><span> </span><span>[</span><span> </span><span>{</span><span> </span><span>"Effect"</span><span>:</span><span> </span><span>"Allow"</span><span>,</span><span> </span><span>"Action"</span><span>:</span><span> </span><span>[</span><span> </span><span>"codeartifact:GetAuthorizationToken"</span><span>,</span><span> </span><span>"codeartifact:GetRepositoryEndpoint"</span><span>,</span><span> </span><span>"codeartifact:ReadFromRepository"</span><span>,</span><span> </span><span>"codeartifact:PublishPackageVersion"</span><span>,</span><span> </span><span>"codeartifact:PutPackageMetadata"</span><span> </span><span>],</span><span> </span><span>"Resource"</span><span>:</span><span> </span><span>"*"</span><span> </span><span>},</span><span> </span><span>{</span><span> </span><span>"Effect"</span><span>:</span><span> </span><span>"Allow"</span><span>,</span><span> </span><span>"Action"</span><span>:</span><span> </span><span>"sts:GetServiceBearerToken"</span><span>,</span><span> </span><span>"Resource"</span><span>:</span><span> </span><span>"*"</span><span>,</span><span> </span><span>"Condition"</span><span>:</span><span> </span><span>{</span><span> </span><span>"StringEquals"</span><span>:</span><span> </span><span>{</span><span> </span><span>"sts:AWSServiceName"</span><span>:</span><span> </span><span>"codeartifact.amazonaws.com"</span><span> </span><span>}</span><span> </span><span>}</span><span> </span><span>}</span><span> </span><span>]</span><span> </span><span>}</span><span> </span>
<span>{</span><span> </span><span>"Version"</span><span>:</span><span> </span><span>"2012-10-17"</span><span>,</span><span> </span><span>"Statement"</span><span>:</span><span> </span><span>[</span><span> </span><span>{</span><span> </span><span>"Effect"</span><span>:</span><span> </span><span>"Allow"</span><span>,</span><span> </span><span>"Action"</span><span>:</span><span> </span><span>[</span><span> </span><span>"codeartifact:GetAuthorizationToken"</span><span>,</span><span> </span><span>"codeartifact:GetRepositoryEndpoint"</span><span>,</span><span> </span><span>"codeartifact:ReadFromRepository"</span><span>,</span><span> </span><span>"codeartifact:PublishPackageVersion"</span><span>,</span><span> </span><span>"codeartifact:PutPackageMetadata"</span><span> </span><span>],</span><span> </span><span>"Resource"</span><span>:</span><span> </span><span>"*"</span><span> </span><span>},</span><span> </span><span>{</span><span> </span><span>"Effect"</span><span>:</span><span> </span><span>"Allow"</span><span>,</span><span> </span><span>"Action"</span><span>:</span><span> </span><span>"sts:GetServiceBearerToken"</span><span>,</span><span> </span><span>"Resource"</span><span>:</span><span> </span><span>"*"</span><span>,</span><span> </span><span>"Condition"</span><span>:</span><span> </span><span>{</span><span> </span><span>"StringEquals"</span><span>:</span><span> </span><span>{</span><span> </span><span>"sts:AWSServiceName"</span><span>:</span><span> </span><span>"codeartifact.amazonaws.com"</span><span> </span><span>}</span><span> </span><span>}</span><span> </span><span>}</span><span> </span><span>]</span><span> </span><span>}</span><span> </span>
{ "Version": "2012-10-17", "Statement": [ { "Effect": "Allow", "Action": [ "codeartifact:GetAuthorizationToken", "codeartifact:GetRepositoryEndpoint", "codeartifact:ReadFromRepository", "codeartifact:PublishPackageVersion", "codeartifact:PutPackageMetadata" ], "Resource": "*" }, { "Effect": "Allow", "Action": "sts:GetServiceBearerToken", "Resource": "*", "Condition": { "StringEquals": { "sts:AWSServiceName": "codeartifact.amazonaws.com" } } } ] }

Enter fullscreen mode Exit fullscreen mode

I attached this policy to an IAM role and associated it with my EC2 instance.

4.3 Generating an Authorization Token

To authenticate Maven with CodeArtifact, I generated a token and stored it in an environment variable:


<span>export </span><span>CODEARTIFACT_AUTH_TOKEN</span><span>=</span><span>$(</span>aws codeartifact get-authorization-token <span>--domain</span> nextwork <span>--query</span> authorizationToken <span>--output</span> text<span>)</span>
<span>export </span><span>CODEARTIFACT_AUTH_TOKEN</span><span>=</span><span>$(</span>aws codeartifact get-authorization-token <span>--domain</span> nextwork <span>--query</span> authorizationToken <span>--output</span> text<span>)</span>
export CODEARTIFACT_AUTH_TOKEN=$(aws codeartifact get-authorization-token --domain nextwork --query authorizationToken --output text)

Enter fullscreen mode Exit fullscreen mode

Step 5: Configuring Maven to Use CodeArtifact

I created a settings.xml file in my project directory:


<span><settings></span>
  <span><servers></span>
    <span><server></span>
      <span><id></span>nextwork-nextwork-devops-cicd<span></id></span>
      <span><username></span>aws<span></username></span>
      <span><password></span>${env.CODEARTIFACT_AUTH_TOKEN}<span></password></span>
    <span></server></span>
  <span></servers></span>
  <span><profiles></span>
    <span><profile></span>
      <span><id></span>nextwork-nextwork-devops-cicd<span></id></span>
      <span><activation></span>
        <span><activeByDefault></span>true<span></activeByDefault></span>
      <span></activation></span>
      <span><repositories></span>
        <span><repository></span>
          <span><id></span>nextwork-nextwork-devops-cicd<span></id></span>
          <span><url></span>https://nextwork-617439230997.d.codeartifact.us-east-1.amazonaws.com/maven/nextwork-devops-cicd/<span></url></span>
        <span></repository></span>
      <span></repositories></span>
    <span></profile></span>
  <span></profiles></span>
<span></settings></span>
<span><settings></span>
  <span><servers></span>
    <span><server></span>
      <span><id></span>nextwork-nextwork-devops-cicd<span></id></span>
      <span><username></span>aws<span></username></span>
      <span><password></span>${env.CODEARTIFACT_AUTH_TOKEN}<span></password></span>
    <span></server></span>
  <span></servers></span>
  <span><profiles></span>
    <span><profile></span>
      <span><id></span>nextwork-nextwork-devops-cicd<span></id></span>
      <span><activation></span>
        <span><activeByDefault></span>true<span></activeByDefault></span>
      <span></activation></span>
      <span><repositories></span>
        <span><repository></span>
          <span><id></span>nextwork-nextwork-devops-cicd<span></id></span>
          <span><url></span>https://nextwork-617439230997.d.codeartifact.us-east-1.amazonaws.com/maven/nextwork-devops-cicd/<span></url></span>
        <span></repository></span>
      <span></repositories></span>
    <span></profile></span>
  <span></profiles></span>
<span></settings></span>
<settings>
  <servers>
    <server>
      <id>nextwork-nextwork-devops-cicd</id>
      <username>aws</username>
      <password>${env.CODEARTIFACT_AUTH_TOKEN}</password>
    </server>
  </servers>
  <profiles>
    <profile>
      <id>nextwork-nextwork-devops-cicd</id>
      <activation>
        <activeByDefault>true</activeByDefault>
      </activation>
      <repositories>
        <repository>
          <id>nextwork-nextwork-devops-cicd</id>
          <url>https://nextwork-617439230997.d.codeartifact.us-east-1.amazonaws.com/maven/nextwork-devops-cicd/</url>
        </repository>
      </repositories>
    </profile>
  </profiles>
</settings>

Enter fullscreen mode Exit fullscreen mode

Then, Run the Maven compile command, which uses the settings.xml file we just configured::


mvn <span>-s</span> settings.xml compile
mvn <span>-s</span> settings.xml compile
mvn -s settings.xml compile

Enter fullscreen mode Exit fullscreen mode

Step 6: Publishing the Package to CodeArtifact

I updated my pom.xml to include distributionManagement:


<span><distributionManagement></span>
  <span><repository></span>
    <span><id></span>nextwork-nextwork-devops-cicd<span></id></span>
    <span><url></span>https://nextwork-617439230997.d.codeartifact.us-east-1.amazonaws.com/maven/nextwork-devops-cicd/<span></url></span>
  <span></repository></span>
<span></distributionManagement></span>
<span><distributionManagement></span>
  <span><repository></span>
    <span><id></span>nextwork-nextwork-devops-cicd<span></id></span>
    <span><url></span>https://nextwork-617439230997.d.codeartifact.us-east-1.amazonaws.com/maven/nextwork-devops-cicd/<span></url></span>
  <span></repository></span>
<span></distributionManagement></span>
<distributionManagement>
  <repository>
    <id>nextwork-nextwork-devops-cicd</id>
    <url>https://nextwork-617439230997.d.codeartifact.us-east-1.amazonaws.com/maven/nextwork-devops-cicd/</url>
  </repository>
</distributionManagement>

Enter fullscreen mode Exit fullscreen mode

Then, I deployed the package:


mvn <span>-s</span> settings.xml deploy
mvn <span>-s</span> settings.xml deploy
mvn -s settings.xml deploy

Enter fullscreen mode Exit fullscreen mode

Conclusion

This guide covered how I set up an AWS CodeArtifact repository, configured an EC2 instance to authenticate with it, and successfully deployed a Maven package. This process forms the foundation for integrating package management into a CI/CD pipeline, ensuring secure and scalable software delivery.

原文链接：Setting Up an Automated Java Build and Deployment Pipeline with AWS CodeArtifact

展开阅读全文

文章版权声明 1、本网站名称：拾光赋
2、本站永久网址：https://www.blogs.ink
3、本网站的文章部分内容可能来源于网络，仅供大家学习与参考，如有侵权，请联系站长QQ：805375623进行删除处理。
4、本站一切资源不代表本站立场，并不代表本站赞同其观点和对其真实性负责。
5、本站一律禁止以任何方式发布或转载任何违法的相关信息，访客发现请向站长举报
6、本站资源大多存储在云盘，如发现链接失效，请联系我们我们会第一时间更新。

THE END